For example, the following code fragment defines a pipeline that automatically deploys a CloudFormation template directly from a CodeCommit repository, with a manual approval step in between to confirm the changes:

example Pipeline to deploy CloudFormation

See the AWS documentation for more details about using CloudFormation in CodePipeline.

Actions defined by this package

This package defines the following actions:

PipelineCreateUpdateStackAction - Deploy a CloudFormation template directly from the pipeline. The indicated stack is created, or updated if it already exists. If the stack is in a failure state, deployment will fail (unless replaceOnFailure is set to true, in which case it will be destroyed and recreated).
PipelineDeleteStackAction - Delete the stack with the given name.
PipelineCreateReplaceChangeSetAction - Prepare a change set to be applied later. You will typically use change sets if you want to manually verify the changes that are being staged, or if you want to separate the people (or system) preparing the changes from the people (or system) applying the changes.
PipelineExecuteChangeSetAction - Execute a change set prepared previously.

Custom Resources

Custom Resources are CloudFormation resources that are implemented by arbitrary user code. They can do arbitrary lookups or modifications during a CloudFormation synthesis run.

You will typically use Lambda to implement a Construct implemented as a Custom Resource (though SNS topics can be used as well). Your Lambda function will be sent a CREATE, UPDATE or DELETE message, depending on the CloudFormation life cycle, and can return any number of output values which will be available as attributes of your Construct. In turn, those can be used as input to other Constructs in your model.

In general, consumers of your Construct will not need to care whether it is implemented in term of other CloudFormation resources or as a custom resource.

Note: when implementing your Custom Resource using a Lambda, use a SingletonLambda so that even if your custom resource is instantiated multiple times, the Lambda will only get uploaded once.

Example

Sample of a Custom Resource that copies files into an S3 bucket during deployment (implementation of actual copy.py operation elided).

interface CopyOperationProps {
    sourceBucket: IBucket;
    targetBucket: IBucket;
}

class CopyOperation extends Construct {
    constructor(parent: Construct, name: string, props: DemoResourceProps) {
        super(parent, name);

        const lambdaProvider = new SingletonLambda(this, 'Provider', {
            uuid: 'f7d4f730-4ee1-11e8-9c2d-fa7ae01bbebc',
            code: new LambdaInlineCode(resources['copy.py']),
            handler: 'index.handler',
            timeout: 60,
            runtime: LambdaRuntime.Python3,
        });

        new CustomResource(this, 'Resource', {
            lambdaProvider,
            properties: {
                sourceBucketArn: props.sourceBucket.bucketArn,
                targetBucketArn: props.targetBucket.bucketArn,
            }
        });
    }
}

More examples are in the example directory, including an example of how to use the cfnresponse module that is provided for you by CloudFormation.

References

See the following section of the docs on details to write Custom Resources:

0.10.0 (2018-09-27)

This release introduces a better way to "escape" L2 constructs in case of missing features by adding the ability to add arbitrary overrides for resource properties:

const bucket = new s3.Bucket(this, 'L2Bucket');

// access L1
const bucketResource = bucket.findChild('Resource') as s3.cloudformation.BucketResource;

// strongly-typed overrides
bucketResource.propertyOverrides.bucketName = 'amzn-s3-demo-bucket';

// weakly-typed overrides
bucketResource.addPropertyOverride('BucketName', 'amzn-s3-demo-bucket1');

Bug Fixes

aws-codecommit: typo in README (#780) (0e79c2d)
aws-ec2: fix capitalization of "VPCEndpointType" to "VpcEndpointType" (#789) (7a8ee2c), closes #765
docs: fix issue #718 (Aurora DB example) (#783) (016f3a8)

Code Refactoring

util: remove @aws-cdk/util (#745) (10015cb), closes #709

Features

aws-cloudformation: rename the CodePipeline actions (#771) (007e7b4)
aws-cloudformation: update the README of the module to reflect the new action names (#775) (6c0e75b), closes #771
aws-codedeploy: add auto-scaling groups property to ServerDeploymentGroup (#739) (0b28886)
aws-codedeploy: add deployment configuration construct (#653) (e6b67ad)
aws-codepipeline, aws-codecommit, aws-s3: change the convention for naming the source Actions to XxxSourceAction (#753) (9c3ce7f)
aws-elasticloadbalancingv2: support for ALB/NLB (#750) (bd9ee01)
tagging support for AutoScaling/SecurityGroup (#766) (3d48eb2)
core: resource overrides (escape hatch) (#784) (5054eef), closes #606
toolkit: stop creating 'empty' stacks (#779) (1dddd8a)

BREAKING CHANGES TO EXPERIMENTAL FEATURES

cdk: the constructor signature of TagManager has changed. initialTags is now passed inside a props object.
util: @aws-cdk/util is no longer available
aws-elasticloadbalancingv2: adds classes for modeling Application and Network Load Balancers. AutoScalingGroups now implement the interface that makes constructs a load balancing target. The breaking change is that Security Group rule identifiers have been changed in order to make adding rules more reliable. No code changes are necessary but existing deployments may experience unexpected changes.
aws-cloudformation: this renames all CloudFormation Actions for CodePipeline to bring them in line with Actions defined in other service packages.
aws-codepipeline, aws-codecommit, aws-s3: change the names of the source Actions from XxxSource to XxxSourceAction. This is to align them with the other Actions, like Build. Also, CodeBuild has the concept of Sources, so it makes sense to strongly differentiate between the two.

CloudFormation Changes

@aws-cdk/cfnspec: Updated [CloudFormation resource specification] to v2.8.0 ([@RomainMuller] in #767)
- New Construct Libraries
  - @aws-cdk/aws-amazonmq
  - @aws-cdk/aws-iot1click
- New Resource Types
  - AWS::IoT1Click::Device
  - AWS::IoT1Click::Placement
  - AWS::IoT1Click::Project
- Attribute Changes
  - AWS::EC2::VPCEndpoint CreationTimestamp (added)
  - AWS::EC2::VPCEndpoint DnsEntries (added)
  - AWS::EC2::VPCEndpoint NetworkInterfaceIds (added)
- Property Changes
  - AWS::ApiGateway::Deployment DeploymentCanarySettings (added)
  - AWS::ApiGateway::Method AuthorizationScopes (added)
  - AWS::ApiGateway::Stage AccessLogSetting (added)
  - AWS::ApiGateway::Stage CanarySetting (added)
  - AWS::AutoScaling::AutoScalingGroup LaunchTemplate (added)
  - AWS::CodeBuild::Project LogsConfig (added)
  - AWS::CodeBuild::Project SecondaryArtifacts (added)
  - AWS::CodeBuild::Project SecondarySources (added)
  - AWS::CodeDeploy::DeploymentGroup Ec2TagSet (added)
  - AWS::CodeDeploy::DeploymentGroup OnPremisesTagSet (added)
  - AWS::EC2::FlowLog LogDestination (added)
  - AWS::EC2::FlowLog LogDestinationType (added)
  - AWS::EC2::FlowLog DeliverLogsPermissionArn.Required (changed)
    - Old: true
    - New: false
  - AWS::EC2::FlowLog LogGroupName.Required (changed)
    - Old: true
    - New: false
  - AWS::EC2::VPCEndpoint IsPrivateDnsEnabled (deleted)
  - AWS::EC2::VPCEndpoint PrivateDnsEnabled (added)
  - AWS::EC2::VPCEndpoint RouteTableIds.DuplicatesAllowed (added)
  - AWS::EC2::VPCEndpoint SecurityGroupIds.DuplicatesAllowed (added)
  - AWS::EC2::VPCEndpoint SubnetIds.DuplicatesAllowed (added)
  - AWS::EC2::VPCEndpoint VPCEndpointType.UpdateType (changed)
    - Old: Mutable
    - New: Immutable
  - AWS::ECS::Service SchedulingStrategy (added)
  - AWS::ECS::Service ServiceRegistries.UpdateType (changed)
    - Old: Mutable
    - New: Immutable
  - AWS::ElastiCache::ReplicationGroup NodeGroupConfiguration.UpdateType (changed)
    - Old: Immutable
    - New: Conditional
  - AWS::ElastiCache::ReplicationGroup NumNodeGroups.UpdateType (changed)
    - Old: Immutable
    - New: Conditional
  - AWS::RDS::DBCluster EngineMode (added)
  - AWS::RDS::DBCluster ScalingConfiguration (added)
  - AWS::SageMaker::NotebookInstance LifecycleConfigName.UpdateType (changed)
    - Old: Immutable
    - New: Mutable
- Property Type Changes
  - AWS::ApiGateway::Deployment.AccessLogSetting (added)
  - AWS::ApiGateway::Deployment.CanarySetting (added)
  - AWS::ApiGateway::Deployment.DeploymentCanarySettings (added)
  - AWS::ApiGateway::Stage.AccessLogSetting (added)
  - AWS::ApiGateway::Stage.CanarySetting (added)
  - AWS::AutoScaling::AutoScalingGroup.LaunchTemplateSpecification (added)
  - AWS::CodeBuild::Project.CloudWatchLogsConfig (added)
  - AWS::CodeBuild::Project.LogsConfig (added)
  - AWS::CodeBuild::Project.S3LogsConfig (added)
  - AWS::CodeDeploy::DeploymentGroup.EC2TagSet (added)
  - AWS::CodeDeploy::DeploymentGroup.EC2TagSetListObject (added)
  - AWS::CodeDeploy::DeploymentGroup.OnPremisesTagSet (added)
  - AWS::CodeDeploy::DeploymentGroup.OnPremisesTagSetListObject (added)
  - AWS::EC2::SpotFleet.ClassicLoadBalancer (added)
  - AWS::EC2::SpotFleet.ClassicLoadBalancersConfig (added)
  - AWS::EC2::SpotFleet.FleetLaunchTemplateSpecification (added)
  - AWS::EC2::SpotFleet.LaunchTemplateConfig (added)
  - AWS::EC2::SpotFleet.LaunchTemplateOverrides (added)
  - AWS::EC2::SpotFleet.LoadBalancersConfig (added)
  - AWS::EC2::SpotFleet.TargetGroup (added)
  - AWS::EC2::SpotFleet.TargetGroupsConfig (added)
  - AWS::ECS::TaskDefinition.DockerVolumeConfiguration (added)
  - AWS::ECS::TaskDefinition.RepositoryCredentials (added)
  - AWS::ECS::TaskDefinition.Tmpfs (added)
  - AWS::Events::Rule.SqsParameters (added)
  - AWS::RDS::DBCluster.ScalingConfiguration (added)
  - AWS::ApiGateway::Deployment.StageDescription AccessLogSetting (added)
  - AWS::ApiGateway::Deployment.StageDescription CanarySetting (added)
  - AWS::ApiGateway::Method.Integration ConnectionId (added)
  - AWS::ApiGateway::Method.Integration ConnectionType (added)
  - AWS::ApiGateway::Method.Integration TimeoutInMillis (added)
  - AWS::ApiGateway::UsagePlan.ApiStage Throttle (added)
  - AWS::CodeBuild::Project.Artifacts ArtifactIdentifier (added)
  - AWS::CodeBuild::Project.Source SourceIdentifier (added)
  - AWS::CodeBuild::Project.VpcConfig SecurityGroupIds.Required (changed)
    - Old: true
    - New: false
  - AWS::CodeBuild::Project.VpcConfig Subnets.Required (changed)
    - Old: true
    - New: false
  - AWS::CodeBuild::Project.VpcConfig VpcId.Required (changed)
    - Old: true
    - New: false
  - AWS::CodeDeploy::DeploymentGroup.EC2TagFilter Key.Documentation (changed)
    - Old: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-codedeploy-deploymentgroup-ec2tagfilters.html#cfn-properties-codedeploy-deploymentgroup-ec2tagfilters-key
    - New: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-codedeploy-deploymentgroup-ec2tagfilter.html#cfn-codedeploy-deploymentgroup-ec2tagfilter-key
  - AWS::CodeDeploy::DeploymentGroup.EC2TagFilter Type.Documentation (changed)
    - Old: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-codedeploy-deploymentgroup-ec2tagfilters.html#cfn-properties-codedeploy-deploymentgroup-ec2tagfilters-type
    - New: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-codedeploy-deploymentgroup-ec2tagfilter.html#cfn-codedeploy-deploymentgroup-ec2tagfilter-type
  - AWS::CodeDeploy::DeploymentGroup.EC2TagFilter Value.Documentation (changed)
    - Old: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-codedeploy-deploymentgroup-ec2tagfilters.html#cfn-properties-codedeploy-deploymentgroup-ec2tagfilters-value
    - New: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-codedeploy-deploymentgroup-ec2tagfilter.html#cfn-codedeploy-deploymentgroup-ec2tagfilter-value
  - AWS::CodeDeploy::DeploymentGroup.TagFilter Key.Documentation (changed)
    - Old: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-codedeploy-deploymentgroup-onpremisesinstancetagfilters.html#cfn-properties-codedeploy-deploymentgroup-onpremisesinstancetagfilters-key
    - New: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-codedeploy-deploymentgroup-tagfilter.html#cfn-codedeploy-deploymentgroup-tagfilter-key
  - AWS::CodeDeploy::DeploymentGroup.TagFilter Type.Documentation (changed)
    - Old: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-codedeploy-deploymentgroup-onpremisesinstancetagfilters.html#cfn-properties-codedeploy-deploymentgroup-onpremisesinstancetagfilters-type
    - New: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-codedeploy-deploymentgroup-tagfilter.html#cfn-codedeploy-deploymentgroup-tagfilter-type
  - AWS::CodeDeploy::DeploymentGroup.TagFilter Value.Documentation (changed)
    - Old: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-codedeploy-deploymentgroup-onpremisesinstancetagfilters.html#cfn-properties-codedeploy-deploymentgroup-onpremisesinstancetagfilters-value
    - New: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-codedeploy-deploymentgroup-tagfilter.html#cfn-codedeploy-deploymentgroup-tagfilter-value
  - AWS::EC2::SpotFleet.SpotFleetRequestConfigData InstanceInterruptionBehavior (added)
  - AWS::EC2::SpotFleet.SpotFleetRequestConfigData LaunchTemplateConfigs (added)
  - AWS::EC2::SpotFleet.SpotFleetRequestConfigData LoadBalancersConfig (added)
  - AWS::EC2::SpotFleet.SpotPlacement Tenancy (added)
  - AWS::ECS::Service.ServiceRegistry ContainerName (added)
  - AWS::ECS::Service.ServiceRegistry ContainerPort (added)
  - AWS::ECS::Service.ServiceRegistry Port.UpdateType (changed)
    - Old: Mutable
    - New: Immutable
  - AWS::ECS::Service.ServiceRegistry RegistryArn.UpdateType (changed)
    - Old: Mutable
    - New: Immutable
  - AWS::ECS::TaskDefinition.ContainerDefinition RepositoryCredentials (added)
  - AWS::ECS::TaskDefinition.LinuxParameters SharedMemorySize (added)
  - AWS::ECS::TaskDefinition.LinuxParameters Tmpfs (added)
  - AWS::ECS::TaskDefinition.Volume DockerVolumeConfiguration (added)
  - AWS::ElastiCache::ReplicationGroup.NodeGroupConfiguration NodeGroupId (added)
  - AWS::Events::Rule.Target SqsParameters (added)
  - AWS::RDS::OptionGroup.OptionConfiguration OptionSettings.DuplicatesAllowed (added)
  - AWS::RDS::OptionGroup.OptionConfiguration OptionSettings.ItemType (added)
  - AWS::RDS::OptionGroup.OptionConfiguration OptionSettings.Type (changed)
    - Old: OptionSetting
    - New: List

Keywords

FAQs

What is @aws-cdk/aws-cloudformation?

Is @aws-cdk/aws-cloudformation popular?

Is @aws-cdk/aws-cloudformation well maintained?

Package last updated on 27 Sep 2018

Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install