pipelines: Provide means to link publish and deploy stages #21918
Comments
danieljamesscott
added
feature-request
mascur
added
p1
needs-discussion
|
Since this issue is specifically about CDK Pipelines for GitHub, create the issue there instead of here: https://github.com/cdklabs/cdk-pipelines-github/ I also have to confess I don't quite understand what the request is. If the request is about allowing GitHub to access your account, the README has instructions on how to set this up. You don't necessarily need a separate pipeline account, you can directly link the account you're deploying into. You need to do a one-off deployment using |
|
Describe the feature
I would like to be able to specify a role during
pipeline.addStage(), which is assumed prior to publication, and deployment. Alternatively, I would like the ability to link the publish stage with the deployment stage using some sort of name/identifier.Use Case
I am trying to use GitHub actions with CDK pipelines: https://github.com/cdklabs/cdk-pipelines-github/
I have run into an issue where I would like to link the "publish" stages with the "deploy" stages, so that I can permit GitHub actions to assume a role in the correct account during the "publish" stage. cdklabs/cdk-pipelines-github#302
I am aware that when using CodePipeline, the account executing the pipeline would be bootstrapped into the target accounts as a trusted entity. However, when using GitHub actions to execute the pipeline, there is no "pipeline" account, and it seems overkill to create an entire AWS account, simply to handle the initial role authentication.
Proposed Solution
No response
Other Information
No response
Acknowledgements
CDK version used
2.40.0
Environment details (OS name and version, etc.)
macOS
The text was updated successfully, but these errors were encountered: