使用AWS re:Post即您表示您同意 AWS re:Post 使用条款
AWS re:Postre:Post

How do I roll back a CodePipeline deploy action if a test action fails?

0

How do I rollback my RestSvc.Deploy action to a previously deployed artifact (a Cfn template in this case), if my E2ETests action fails? I have a pipeline defined in CDK:

A screenshot of a Beta CDK pipeline stage with 3 actions, RestSvc.Prepare, RestSvc.Deploy, and E2ETests

I have defined the pipeline in TypeScript:

        const betaStack = new WeatherServiceStack(this, 'Beta', {
            env: {
                account: '975049914859',
                region: 'us-west-2',
            },
        })
        const betaStage = pipeline.addStage(betaStack);

        betaStage.addPost(new pipelines.CodeBuildStep("E2ETests", {
            envFromCfnOutputs: {
                "WEATHER_API_URL": betaStack.apiUrl,
            },
            commands: [
                'python3 test_api.py'
            ]
        }));

I've searched the docs high and low and I can't see anything. I also couldn't see it in the Console. Some folks on Google mention I might be able to trigger a rollback via CodeDeploy, but this pipeline uses the LambdaRestApi construct, which uses CloudFormation to deploy the changes to the Lambda code. CloudFormation can monitor CloudWatch Alarms, but I want to rollback if my tests fail. Sometimes you have tests which cover important-but-less-used features that an alarm might not catch.

I'm happy to move my E2ETests action around if it helps.

Bonus points if you can tell me how to manually roll-back a given stage/environment (e.g. Beta or Prod-YUL) to a given build, without necessarily waiting for the whole pipeline to run (and maybe create different build artifacts -- especially dangerous if a dependency version update caused the outage!). Sometimes things slip by deployment alarms and tests, so the on-call has the job of pushing the rollback button 😅

主题
开发者工具AWS 云开发工具包 (CDK)
标签
AWS CodePipelineAWS 云开发工具包 (CDK)
语言
English
Dan Turner
已提问 1 个月前153 查看次数
1 回答
0

To rollback the deployment if the E2E tests fail, you can add a rollback step after the E2ETests step in your pipeline stage.

The rollback step would use the AWS CLI cloudformation rollback command to roll back the CloudFormation stack deployed by the RestSvc.Deploy action.

For example:

Add a new CodeBuild step after E2ETests:


betaStage.addPost(new pipelines.CodeBuildStep(E2ETests, {
  //...
}))

betaStage.addPost(new pipelines.CodeBuildStep(Rollback, {
  commands: [
    'aws cloudformation rollback --stack-name RestSvcStack' 
  ]
}))

This will roll back the RestSvcStack if E2ETests fails. The pipeline will then continue to the next stage with the previous version deployed.

You may also want to add error handling or conditions to only execute the rollback step if E2ETests fails/errors out.

profile picture
专家
Giovanni Lauria
已回答 1 个月前
  • Dan Turner
    1 个月前

    How do you rollback only if E2ETests failed? It looks like the second step would roll back unconditionally. My current attempt is to update the command property of the E2ETests approval action:

    "python3 test_api.py || aws cloudformation rollback-stack --role-arn 'arn:aws:iam::975049914859:role/cross-account-role-serverless-deployment' --stack-name Beta-RestSvc"

    Unfortunately, this fails with an error: An error occurred (AccessDenied) when calling the RollbackStack operation: Cross-account pass role is not allowed.

您未登录。 登录 发布回答。

一个好的回答可以清楚地解答问题和提供建设性反馈,并能促进提问者的职业发展。

回答问题的准则

相关内容