AWS CloudFormation Custom Resource
AWS & cloud are the two words you will hear together in the area of cloud.
And one awesome thing which I interacted recently with was AWS custom resources for the AWS CloudFormation.
This story/ article is going to focus mainly on custom resource for the AWS CloudFormation & AWS Lambda Functions using the AWS CDK & Serverless framework respectively.
Prerequisites
- Zeal to learn & explore 😄.
- Experience with NodeJS, Typescript, Serverless framework(some knowledge), AWS CDK(some little knowledge should be fine).
- Experience with AWS and some components like, AWS Cognito, AWS Lambda Functions, Dynamo DB, CloudFormation.
- And most important one AWS Account 😈.
Example Scenario
- Create AWS Cognito User Pool.
- Create Client in the same User Pool.
- Create a custom Resource backed by Lambda function to create new Dynamo Table and save app client settings as an item(entry) in the same table
Code Repositories
Had created two separate repositories:-
- First one for AWS CDK, for CloudFormation stack. Link here
- And second one is for AWS Lambda function(& it’s stack). Link here
The code repos are kind of straight forward for developers & the most expected readers of this article. But will only share the most important parts here.
Instructions for setup (will not cover obvious ones)
- For Lambda Function run following commands
1. (Obviously) Setup dependencies —npm install
2. Use the same AWS profile as per other stack.
3. To deploy you will need to user the commandserverless deploy
4. Note — for serverless to work properly one will need to install serverless as global dependency on the system usingnpm install -g serverless
- CloudFormation CDK code run following commands
1. (Obviously) Setup dependencies —npm install
2. Setup the AWS profile using your account and using command —aws config
3. To deploy the example stack in the code use the command as below replace the profile as per your setup on system etc.cdk deploy AwsCustomResourceCdkStack — profile <profile_name>— path-metadata false — version-reporting false
Important Note — Lambda need to be deployed First!
Some important points for the flow (tried my best to create a flow diagram for that)
- Custom Resource triggers the Lambda Function based on provided Lambda function’s ARN as Service Token. (Explore the code you will understand it more)
- Lambda function manages few things related to dynamo DB And conditionally manages status which will be sent to response URL.
- Lambda function receives a response url which is a Signed S3 URL where lambda function will push the status of custom resource i.e. — SUCCESS or FAILED
- Custom resource fetches the response from the S3 bucket(internally) based on certain parameters and then continues stack creation/flow.
For any issues or discussions feel free to comment here, or get in touch over Linkedin