Skip to content

Commit

Permalink
Remove iot and ssm from pipeline (#235)
Browse files Browse the repository at this point in the history 
* Fix cicd

* Remove Iot and Ssm from pipeline
  • Loading branch information
@ericzbeard
ericzbeard authored Sep 14, 2023
1 parent d4bcf4b commit 2c94420
Showing 1 changed file with 0 additions and 157 deletions.
157 changes: 0 additions & 157 deletions release/awscommunity/cicd.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -256,50 +256,6 @@ Resources:
Version: '2012-10-17'
ManagedPolicyArns:
- Fn::ImportValue: !Sub "cep-${Env}-common-build-project-policy"

SSMDocumentEBSVolumeModuleBuildProjectRole:
Type: AWS::IAM::Role
Properties:
AssumeRolePolicyDocument:
Statement:
- Action: sts:AssumeRole
Effect: Allow
Principal:
Service: codebuild.amazonaws.com
Version: '2012-10-17'
ManagedPolicyArns:
- Fn::ImportValue: !Sub "cep-${Env}-common-build-project-policy"

SSMDocumentEBSVolumeModuleBuildProjectPolicy:
Type: AWS::IAM::Policy
Properties:
PolicyDocument:
Statement:
- Action:
- ssm:ListDocuments
- ssm:ListDocumentVersions
- ssm:DescribeDocument
- ssm:DeleteDocument
- ssm:GetDocument
Effect: Allow
Resource: "*"
Version: '2012-10-17'
PolicyName: ssm-document-ebs-build-project-policy
Roles:
- !Ref SSMDocumentEBSVolumeModuleBuildProjectRole

IotAnalyticsPipelineModuleBuildProjectRole:
Type: AWS::IAM::Role
Properties:
AssumeRolePolicyDocument:
Statement:
- Action: sts:AssumeRole
Effect: Allow
Principal:
Service: codebuild.amazonaws.com
Version: '2012-10-17'
ManagedPolicyArns:
- Fn::ImportValue: !Sub "cep-${Env}-common-build-project-policy"

CloudFrontS3WebsiteModuleBuildProjectRole:
Type: AWS::IAM::Role
Expand Down Expand Up @@ -423,33 +379,6 @@ Resources:
Roles:
- !Ref S3DeleteBucketContentsBuildProjectRole

IotAnalyticsPipelineModuleBuildProjectPolicy:
Type: AWS::IAM::Policy
Properties:
PolicyDocument:
Statement:
- Action:
- iotanalytics:*
- iot:CreateTopicRule
- iot:DeleteTopicRule
- iot:ReplaceTopicRule
- iot:ListTopicRules
- iot:GetTopicRule
- iot:EnableTopicRule
- iot:DisableTopicRule
- iot:CreateTopicRuleDestination
- iot:DeleteTopicRuleDestination
- iot:UpdateTopicRuleDestination
- iot:GetTopicRuleDestination
- iot:ConfirmTopicRuleDestination
- iot:ListTopicRuleDestinations
Effect: Allow
Resource: "*"
Version: '2012-10-17'
PolicyName: iot-analytics-pipeline-build-project-policy
Roles:
- !Ref IotAnalyticsPipelineModuleBuildProjectRole

ResourceLookupBuildProjectPolicy:
Type: AWS::IAM::Policy
Properties:
Expand Down Expand Up @@ -1278,50 +1207,6 @@ Resources:
Type: CODEPIPELINE
BuildSpec: !Sub "modules/${Env}-buildspec.yml"
TimeoutInMinutes: 480

SSMDocumentEBSVolumeModuleBuildProject:
Type: AWS::CodeBuild::Project
Properties:
Name: !Sub "${PrefixLower}-${Env}-ssm-document-ebsvolume-module"
Artifacts:
Type: CODEPIPELINE
Environment:
ComputeType: BUILD_GENERAL1_LARGE
Image: !Sub "${AWS::AccountId}.dkr.ecr.${AWS::Region}.amazonaws.com/cep-cicd:latest"
ImagePullCredentialsType: SERVICE_ROLE
PrivilegedMode: true
Type: LINUX_CONTAINER
EnvironmentVariables:
- Name: MODULE_PATH
Type: PLAINTEXT
Value: "placeholder-for-path-to-module"
ServiceRole: !GetAtt SSMDocumentEBSVolumeModuleBuildProjectRole.Arn
Source:
Type: CODEPIPELINE
BuildSpec: !Sub "modules/${Env}-buildspec.yml"
TimeoutInMinutes: 480

IotAnalyticsPipelineModuleBuildProject:
Type: AWS::CodeBuild::Project
Properties:
Name: !Sub "${PrefixLower}-${Env}-iot-analytics-pipeline-module"
Artifacts:
Type: CODEPIPELINE
Environment:
ComputeType: BUILD_GENERAL1_LARGE
Image: !Sub "${AWS::AccountId}.dkr.ecr.${AWS::Region}.amazonaws.com/cep-cicd:latest"
ImagePullCredentialsType: SERVICE_ROLE
PrivilegedMode: true
Type: LINUX_CONTAINER
EnvironmentVariables:
- Name: MODULE_PATH
Type: PLAINTEXT
Value: "placeholder-for-path-to-module"
ServiceRole: !GetAtt IotAnalyticsPipelineModuleBuildProjectRole.Arn
Source:
Type: CODEPIPELINE
BuildSpec: !Sub "modules/${Env}-buildspec.yml"
TimeoutInMinutes: 480

AlternateContactBuildProjectRole:
Type: AWS::IAM::Role
Expand Down Expand Up @@ -1505,8 +1390,6 @@ Resources:
- !GetAtt CloudFrontWebAclAssociationBuildProject.Arn
- !GetAtt S3BucketModuleBuildProject.Arn
- !GetAtt CloudFrontS3WebsiteModuleBuildProject.Arn
- !GetAtt SSMDocumentEBSVolumeModuleBuildProject.Arn
- !GetAtt IotAnalyticsPipelineModuleBuildProject.Arn
- !GetAtt AlternateContactBuildProject.Arn
- !GetAtt KMSEncryptionSettingsBuildProject.Arn
- !GetAtt ApplicationAutoscalingScheduledActionBuildProject.Arn
Expand Down Expand Up @@ -1578,8 +1461,6 @@ Resources:
- !GetAtt CloudFrontWebAclAssociationBuildProjectRole.Arn
- !GetAtt S3BucketModuleBuildProjectRole.Arn
- !GetAtt CloudFrontS3WebsiteModuleBuildProjectRole.Arn
- !GetAtt SSMDocumentEBSVolumeModuleBuildProjectRole.Arn
- !GetAtt IotAnalyticsPipelineModuleBuildProjectRole.Arn
- !GetAtt KMSEncryptionSettingsBuildProjectRole.Arn
- !GetAtt ApplicationAutoscalingScheduledActionBuildProjectRole.Arn
Resource: "*"
Expand Down Expand Up @@ -1820,44 +1701,6 @@ Resources:
}
]
RunOrder: 2
- Name: SSMDocumentEBSVolumeModule
InputArtifacts:
- Name: extensions-source
ActionTypeId:
Category: Build
Owner: AWS
Provider: CodeBuild
Version: 1
Configuration:
ProjectName: !Ref SSMDocumentEBSVolumeModuleBuildProject
EnvironmentVariables: |-
[
{
"name": "MODULE_PATH",
"type": "PLAINTEXT",
"value": "modules/SSM_Document_ResizeVolume"
}
]
RunOrder: 2
- Name: IotAnalyticsPipelineModule
InputArtifacts:
- Name: extensions-source
ActionTypeId:
Category: Build
Owner: AWS
Provider: CodeBuild
Version: 1
Configuration:
ProjectName: !Ref IotAnalyticsPipelineModuleBuildProject
EnvironmentVariables: |-
[
{
"name": "MODULE_PATH",
"type": "PLAINTEXT",
"value": "modules/IOT_ANALYTICS_PIPELINE"
}
]
RunOrder: 2
- Name: S3BucketVersioningEnabled
InputArtifacts:
- Name: extensions-source
Expand Down

0 comments on commit 2c94420

Please sign in to comment.