AWS SAM を CircleCI でデプロイさせよう #circlecijp #デプロイしNight

"844".Λ $JSDMF$*ͰσϓϩΠͤ͞Α͏ ݄ σϓϩΠ͠Night in ෱Ԭ

ࣗݾ঺հ wΫϥεϝιουגࣜձࣾ w෱ԬΦϑΟεॴଐ w$9ࣄۀຊ෦ wϞόΠϧΞϓϦΤϯδχΞ wαʔόʔαΠυΞϓϦΤϯδχΞ ాத޹໌ @kongmingtrap

ࠓճͷٞ୊ • αʔόʔϨεΞϓϦέʔγϣϯ • AWS SAM ͱαʔόʔϨεΞϓϦέʔγϣϯ •
AWS SAM ͱ CircleCI ͷ૊Έ߹Θͤ

αʔόʔϨεΞϓϦέʔγϣϯ

αʔόʔϨεͷϝϦοτ • αʔόʔͷ؅ཧ͕ෆཁ • ॊೈੑͷ͋ΔεέʔϦϯά • Ձ஋ʹର͢Δࢧ෷͍ •
ߴՄ༻ੑͷࣗಈԽ https://aws.amazon.com/jp/serverless/

αʔόʔϨεΞϓϦέʔγϣϯΛߏ੒͢ΔͨΊͷαʔϏεʢҰ෦ʣ • AWS Lambda • Amazon API Gateway
• Amazon Kinesis • Amazon CloudWatch • Amazon S3 • Amazon DynamoDB • AWS Step Functions • Amazon Simple Queue Service • Amazon Athena • AWS Glue …etc

AWS Lambda • αʔόʔͷϓϩϏδϣχϯάɺεέʔϦϯά΍ ؅ཧ͕ෆཁ • ։ൃऀ͸αʔόʔ΍ϥϯλΠϜͷ؅ཧɺૢ࡞ʹ ൥Θ͞Εͣɺίʔυʹूத͢Δ͜ͱ͕Ͱ͖Δ
• ར༻Ͱ͖Δݴޠ͕๛෋ • Ruby / Node.js / Python / Java / Go / C# / PowerShell • Custom RuntimesΛར༻͢Ε͹ɺ೚ҙͷݴޠΛ ಈ࡞ͤ͞Δ͜ͱ͕Մೳ https://aws.amazon.com/jp/lambda/

Amazon API Gateway • ಠࣗͷ REST ͓Αͼ WebSocket
API Λ࡞੒ɺ ެ։ɺอकɺϞχλϦϯάɺอޢͰ͖Δ • ಠࣗͷΫϥΠΞϯτΞϓϦέʔγϣϯ (ΞϓϦ) Ͱ࢖༻͢ΔͨΊͷ API Λ࡞੒Ͱ͖Δ https://aws.amazon.com/jp/api-gateway/

Amazon Kinesis • ͋ΒΏΔن໛ͷετϦʔϛϯάσʔλΛίετ ޮ཰ྑ͘ॲཧ͢ΔͨΊͷओཁػೳΛఏڙ • ετϦʔϛϯάσʔλΛϦΞϧλΠϜͰऔಘɺ όοϑΝɺॲཧ͢ΔͨΊɺ௨ৗ͸਺͔࣌ؒΒ਺
೔͔͔ΔΠϯαΠτͷੜ੒Λ਺ඵ͔Β਺෼Ͱ׬ ྃ • ΠϯϑϥετϥΫνϟΛ؅ཧ͢Δඞཁͳ͘ɺε τϦʔϛϯάΞϓϦέʔγϣϯΛ࣮ߦͰ͖Δ https://aws.amazon.com/jp/kinesis/

Amazon CloudWatch • ओཁͳϝτϦΫεͱϩάͷϞχλϦϯάɺΞϓ Ϧέʔγϣϯ͓ΑͼΠϯϑϥετϥΫνϟελο ΫͷՄࢹԽɺΞϥʔϜͷ࡞੒ɺ͓ΑͼϝτϦΫ εͱϩάͷؔ࿈෇͚ʹΑͬͯɺύϑΥʔϚϯε ͷ໰୊ͷࠜຊతݪҼΛ೺Ѳ
• ΞϥʔϜͷઃఆ΍ࣗಈԽ͞ΕͨΞΫγϣϯΛى ͜͢ • ϩάΛ͢͹΍͘ൃݟɺ෼ੳɺࢹ֮Խ͢Δ͜ͱͰ ӡ༻্ͷ໰୊ʹରॲ͠΍͘͢͢Δ https://aws.amazon.com/jp/cloudwatch/

αʔϏεΛ૊Έ߹ΘͤͯΞϓϦέʔγϣϯΛߏங https://docs.aws.amazon.com/ja_jp/AmazonCloudWatch/latest/events/ WhatIsCloudWatchEvents.html • લड़ͨ͠αʔϏεΛ૊ΈΘͤͯɺػೳΛ࣮૷͍ͯ͘͠ AM 2:00 ʹ࣮ߦ

ͱ͋ΔҊ݅ • σόΠεʹରͯ͠ɺ֎෦API͔Βঢ়ଶΛมԽͤ͞Δ • ଟ਺ͷσόΠεͷঢ়ଶ͔Βɺঢ়ଶ͕มԽͨ͠΋ͷʹରͯ͠ಛ ఆͷΞΫγϣϯΛى͜͢ • σόΠεͷঢ়ଶΛมԽΛऔಘ͠ଓ͚Δ
• ͦͷ೔ͷऴྃޙͷσόΠεͷঢ়ଶΛදͨ͠σʔλΛՃ޻͠ɺ ՄࢹԽ͢Δ

AWS IoT • Πϯλʔωοτʹ઀ଓͨ͠σόΠεͱAWSͷ αʔϏεΛηΩϡΞʹ௨৴ͤ͞Δ࢓૊ΈΛఏڙ • σόΠε΁ͷࢦྩɺσόΠε͔ΒͷσʔλΛड ͚औΓɺAWSͷαʔϏε΁ڮ౉͠Λߦ͏
• ؔ࿈͢ΔαʔϏε • AWS IoT Core • AWS IoT Device Defender • AWS IoT Analytics https://docs.aws.amazon.com/ja_jp/iot/latest/developerguide/what-is-aws-iot.html

AWS IoT ϧʔϧ

AWS IoT ϧʔϧ SELECT * FROM '$aws/things/+/shadow/update' WHERE
state.reported.power = True

AWS IoT ϧʔϧ \ TUBUF\ SFQPSUFE\ QPXFSl0/ ^
^ ^ SELECT * FROM '$aws/things/+/shadow/update' WHERE state.reported.power = True ࢦఆͨ͠τϐοΫ΁ σʔλΛૹ৴

^ ^ SELECT * FROM '$aws/things/+/shadow/update' WHERE state.reported.power = True ϧʔϧʹϚον

^ ^ SELECT * FROM '$aws/things/+/shadow/update' WHERE state.reported.power = True ϧʔϧʹઃఆ͞Εͨ ΞΫγϣϯΛ࣮ߦ͢Δ

AWS IoT ϧʔϧ SELECT * FROM '$aws/things/+/shadow/update/documents'

AWS IoT ϧʔϧ SELECT * FROM '$aws/things/+/shadow/update/documents' σʔλΛ֨ೲ͢ΔΞΫγϣ
ϯΛඥ͚ͮͨผͷϧʔϧ

AWS IoT ϧʔϧ SELECT * FROM '$aws/things/+/shadow/update/documents' σʔλΛ֨ೲ͢ΔΞΫγϣ
ϯΛඥ͚ͮͨผͷϧʔϧ ෳ਺ͷτϐοΫͱϧʔϧΛ૊Έ߹Θ ͤͯɺΞΫγϣϯΛઃఆ͍ͯ͘͠

AWS SAMͱ αʔόʔϨεΞϓϦέʔγϣϯ

։ൃͱӡ༻ͷฒߦ • ػೳ։ൃͱӡ༻͸։ൃऀ͕ฒߦͯ͠ߦ͏৔߹͕ଟ͍ • ܞΘ͍ͬͯΔҊ݅͸։ൃνʔϜɾӡ༻νʔϜͳͲͷ໾ׂ෼୲ Λ͍ͯ͠ͳ͍ • εύΠΫΞΫηεͷରԠͳͲɺϚωʔδυαʔϏεʹد͍ͤͯ
Δ෦෼ͷରԠ͸ෆཁ͕ͩɺͦͷ݁ՌΛ౿·͑ͯػೳΛߟྀ͢ Δ৔߹͸͋Δ • ϚΠΫϩαʔϏεΛ૊Έ߹ΘͤΔ্Ͱͷ։ൃɾӡ༻ͷઃܭ͕؊ ཁ

AWS αʔόʔϨεΞϓϦέʔγϣϯϞσϧ (AWS SAM) ͷ࢖༻ • αʔόʔϨεΞϓϦέʔγϣϯʹదͨ͠ॻࣜͰ AWS
CloudFromation ͷ Stack Λग़ྗͯ͘͠ΕΔ • SwaggerͷఆٛΛݩʹ Amazon API Gateway ͷઃఆ͕ߦ͑Δ • API࢓༷ͱ࣮૷ͷဃ཭Λ๷͙ • AWS CloudFormation ςϯϓϨʔτͱಉ༷Ͱɺ૊ΈࠐΈؔ਺ ͳͲ͕࢖͑Δ • ผͷϦʔδϣϯ΍ผͷAWSΞΧ΢ϯτʹΞϓϦέʔγϣϯͷ σϓϩΠΛߦ͑ΔΑ͏ʹ͢Δ https://docs.aws.amazon.com/ja_jp/lambda/latest/dg/serverless_app.html

AWS SAM sam.yml AWSΞΧ΢ϯτB AWSΞΧ΢ϯτA AWSΞΧ΢ϯτC

AWS SAM sam.yml AWSΞΧ΢ϯτB AWSΞΧ΢ϯτA AWSΞΧ΢ϯτC AWSΞΧ΢ϯτB΁ ίϚϯυ࣮ߦ

AWS SAM sam.yml AWSΞΧ΢ϯτB AWSΞΧ΢ϯτA AWSΞΧ΢ϯτC CloudFormationͷ Stackʹม׵

AWS SAM sam.yml AWSΞΧ΢ϯτB AWSΞΧ΢ϯτA AWSΞΧ΢ϯτC AWSͷϦιʔεΛల։

AWS SAM sam.yml AWSΞΧ΢ϯτB AWSΞΧ΢ϯτA AWSΞΧ΢ϯτC AWSΞΧ΢ϯτA ΁ίϚϯυ࣮ߦ

AWS SAM sam.yml AWSΞΧ΢ϯτB AWSΞΧ΢ϯτA AWSΞΧ΢ϯτC CloudFormationͷ Stackʹม׵

AWS SAM sam.yml AWSΞΧ΢ϯτB AWSΞΧ΢ϯτA AWSΞΧ΢ϯτC

AWS SAM ͷه๏ͷྫ • Amazon CloudWatch Events +
AWS Lambdaͷྫ AM 2:00 ʹ࣮ߦ

AWS Lambdaͷྫ AM 2:00 ʹ࣮ߦ TimerEventFunction: Type: AWS::Serverless::Function Properties: FunctionName: timer-event-function CodeUri: src/handlers/timer_event Handler: index.handler Runtime: python3.7 Policies: - arn:aws:iam::aws:policy/AmazonS3FullAccess Events: Schedule: Type: Schedule Properties: Schedule: cron(0 17 * * ? *) sam.yml

AWS Lambdaͷྫ AM 2:00 ʹ࣮ߦ TimerEventFunction: Type: AWS::Serverless::Function Properties: FunctionName: timer-event-function CodeUri: src/handlers/timer_event Handler: index.handler Runtime: python3.7 Policies: - arn:aws:iam::aws:policy/AmazonS3FullAccess Events: Schedule: Type: Schedule Properties: Schedule: cron(0 17 * * ? *) sam.yml AWS LambdaΛඥ͚ͮΔ Πϕϯτͷઃఆ

AWS Lambdaͷྫ AM 2:00 ʹ࣮ߦ TimerEventFunction: Type: AWS::Serverless::Function Properties: FunctionName: timer-event-function CodeUri: src/handlers/timer_event Handler: index.handler Runtime: python3.7 Policies: - arn:aws:iam::aws:policy/AmazonS3FullAccess Events: Schedule: Type: Schedule Properties: Schedule: cron(0 17 * * ? *) sam.yml

ʢຊ୊ʣ AWS SAM ͱ CricleCI ͷ૊Έ߹Θͤ

CircleCIͱͷ૊Έ߹Θͤ • AWS SAM ͱ CircleCI Λ૊Έ߹ΘͤͯɺϢχοτςετɹˠ σϓϩΠ
→ e2eςετ ·ͰΛҰ؏ͯ͠ߦ͏ • Approval ͳͲͷػೳΛར༻͠ɺຊ൪؀ڥద༻ͳͲΛҰ࿈ͷ ϫʔΫϑϩʔͰߦ͑ΔΑ͏ʹ͢Δ sam.yml

δϣϒ ͱ ϫʔΫϑϩʔ IUUQTDJSDMFDJDPNEPDTXPSLqPXT • Ϣχοτςετɺ σϓϩΠɺ e2eςετ
ͳͲΛ δϣϒ ͱ͍ ͏୯ҐͰ࡞੒Ͱ͖Δ • ϫʔΫϑϩʔ ͸ δϣϒ ͷॲཧͷෳࡶͳखॱʢ௚ྻɾฒߦ࣮ ߦͳͲʣΛ౿ΉΑ͏ͳϑϩʔΛදݱͰ͖Δ

αϯϓϧίʔυ IUUQTHJUIVCDPNLPOHNJOHTUSBQ4MBDL/PUJpFS4BNQMFS

.circleci/config.yml ʹ δϣϒ Λఆٛ IUUQTHJUIVCDPNLPOHNJOHTUSBQ4MBDL/PUJpFS4BNQMFSCMPCNBTUFSDJSDMFDJDPOpHZNM--

Makefile ͳͲʹ AWS SAM ίϚϯυ Λఆٛ IUUQTHJUIVCDPNLPOHNJOHTUSBQ4MBDL/PUJpFS4BNQMFSCMPCNBTUFS.BLFpMF--

δϣϒ͔Β Makefile ͷίϚϯυΛݺͿΑ͏ʹ͢Δ IUUQTHJUIVCDPNLPOHNJOHTUSBQ4MBDL/PUJpFS4BNQMFSCMPCNBTUFSDJSDMFDJDPOpHZNM-

ϫʔΫϑϩʔͷ࡞੒ IUUQTHJUIVCDPNLPOHNJOHTUSBQ4MBDL/PUJpFS4BNQMFSCMPCNBTUFSDJSDMFDJDPOpHZNM- • ࡞੒ͨ͠ δϣϒ ΛݺͿॱ൪Λ ϫʔΫϑϩʔ ͱͯ͠࡞੒͢Δ

ϫʔΫϑϩʔͷ࡞੒ • ࡞੒ͨ͠ δϣϒ ΛݺͿॱ൪Λ ϫʔΫϑϩʔ ͱͯ͠࡞੒͢Δ IUUQTHJUIVCDPNLPOHNJOHTUSBQ4MBDL/PUJpFS4BNQMFSCMPCNBTUFSDJSDMFDJDPOpHZNM--

CircleCIͱͷ૊Έ߹Θͤ https://circleci.com/docs/2.0/workflows/ • ϫʔΫϑϩʔͷྫ

CircleCIͱͷ૊Έ߹Θͤ https://circleci.com/docs/2.0/workflows/ Ϣχοτςετ Λߦ͏ • ϫʔΫϑϩʔͷྫ

CircleCIͱͷ૊Έ߹Θͤ https://circleci.com/docs/2.0/workflows/ Ϣχοτςετ Λߦ͏ ։ൃ؀ڥ΁ͷσϓ ϩΠͱe2eςετ • ϫʔΫϑϩʔͷྫ

CircleCIͱͷ૊Έ߹Θͤ https://circleci.com/docs/2.0/workflows/ Ϣχοτςετ Λߦ͏ ։ൃ؀ڥ΁ͷσϓ ϩΠͱe2eςετ ຊ൪؀ڥ΁ͷద༻ Λߦ͏
• ϫʔΫϑϩʔͷྫ

Approval Ͱຊ൪ద༻ͷ δϣϒ Λ଴ͨͤΔ IUUQTDJSDMFDJDPNEPDTXPSLqPXT • ࣍ͷ δϣϒ
ʹਐΉલʹɺ δϣϒ ͷ खಈঝೝ Λ଴ͭΑ͏ʹ ϫʔΫϑϩʔ Λߏ੒Ͱ͖Δ • ϦϙδτϦ΁ͷϓογϡΞΫηεݖΛ͍࣋ͬͯΔਓͳΒ୭Ͱ ΋ ঝೝϘλϯ ΛΫϦοΫͯ͠ ϫʔΫϑϩʔ Λଓ͚Δ͜ͱ͕ Ͱ͖Δ

Approval Ͱຊ൪ద༻ͷ δϣϒ Λ଴ͨͤΔ IUUQTHJUIVCDPNLPOHNJOHTUSBQ4MBDL/PUJpFS4BNQMFSCMPCNBTUFSDJSDMFDJDPOpHZNM-

CircleCIͱͷ૊Έ߹Θͤ https://circleci.com/docs/2.0/workflows/ ຊ൪ద༻ͷ࣮ߦ͸ ApprovalͰ଴ͨͤΔ • ϫʔΫϑϩʔͷྫ

CircleCIͱͷ૊Έ߹Θͤ https://circleci.com/docs/2.0/workflows/ • ϫʔΫϑϩʔͷྫ

ঝೝૢ࡞ʹΑΔຊ൪ద༻ sam.yml AWSΞΧ΢ϯτB AWSΞΧ΢ϯτA AWSΞΧ΢ϯτC

࣍ੈ୅ߏ૝

AWS CDK ͷ׆༻ IUUQTHJUIVCDPNLPOHNJOHTUSBQ4MBDL/PUJpFS4BNQMFSCMPCNBTUFSDJSDMFDJDPOpHZNM- • AWS CDK (Cloud
Development Kit) • AWS ϦιʔεΛ ߏ੒ཁૉ(construct) ͱͯ͠ϓϩάϥϜͰॻ ͖ɺͦΕΒΛ૊Έ߹Θ࣮ͤͯߦ͢ΔͱσϓϩΠͰ͖Δͱ͍͏ πʔϧΩοτɻ • AWSͷΠϯϑϥΛ TypeScript ͳͲͷϓϩάϥϛϯάݴޠΛ ࢖ͬͯఆٛɾσϓϩΠ͢Δɻ • CDKϓϩάϥϜΛ࣮ߦ͢Δ͜ͱͰ CloudFormation ςϯϓ ϨʔτΛੜ੒ɺͦͷςϯϓϨʔτΛ࢖ͬͯσϓϩΠ͢Δɻ

·ͱΊ

·ͱΊ • CircleCI ͷ δϣϒ ͱ ϫʔΫϑϩʔ Λ૊Έ߹ΘͤͯαʔόʔϨ
εΞϓϦέʔγϣϯͷ Ϣχοτςετ → σϓϩΠ → e2eς ετ ΛҰ؏ͯ͠ߦ͑Δ • ຊ൪ద༻ͳͲͷঝೝ͕ඞཁͳϑϩʔʹ͍ͭͯ΋ Approval ͱఆ ٛ͢Δ͜ͱͰՄೳͱͳΔ • ΑΓΠϯϑϥΛίʔυͰ؅ཧ͠΍͘͢ͳΔ

AWS SAM を CircleCI でデプロイさせよう #circlecijp #デプロイしNight

AWS SAM を CircleCI でデプロイさせよう #circlecijp #デプロイしNight

More Decks by Takaaki Tanaka

Other Decks in Technology

Featured

Transcript