constructor()

in source/4-containerized-service/cdk/lib/pipeline-stack.ts [37:117]

• 74 lines of code
• 5 McCabe index (conditional complexity)

  constructor(scope: Construct, id: string, props?: StackProps) {
    super(scope, id, props);

    const sourceArtifact = new codepipeline.Artifact();
    const cloudAssemblyArtifact = new codepipeline.Artifact();

    const pipeline = new CdkPipeline(this, "Pipeline", {
      pipelineName: "MyAppPipeline",
      selfMutating: false,
      cloudAssemblyArtifact,
      sourceAction: new codepipeline_actions.GitHubSourceAction({
        actionName: "GitHub",
        output: sourceArtifact,
        owner: this.node.tryGetContext("github_alias"),
        repo: this.node.tryGetContext("github_repo_name"),
        branch: this.node.tryGetContext("github_repo_branch"),
        oauthToken: SecretValue.secretsManager("GITHUB_TOKEN"),
      }),

      synthAction: SimpleSynthAction.standardNpmSynth({
        sourceArtifact,
        cloudAssemblyArtifact,
        subdirectory: "source/3-landing-page-cicd/cdk",
        installCommand: "npm install",
        buildCommand: "npm run build",
        rolePolicyStatements: [
          new PolicyStatement({
            actions: ["organizations:ListAccounts"],
            resources: ["*"],
          }),
        ],
      }),
    });

    const AWS_PROFILE = "cicd";
    if (!process.env.CODEBUILD_BUILD_ID) {
      config.credentials = new SharedIniFileCredentials({
        profile: AWS_PROFILE,
      });
    }

    (async () => {
      try {
        const orders: any = { Staging: 1, Prod: 2 };
        const orgs = new Organizations({ region: "us-east-1" });
        const { Accounts = [] } = await orgs.listAccounts().promise();

        Accounts.filter((account) => orders[account.Name!])
          .sort((a, b) => orders[a.Name!] - orders[b.Name!])
          .forEach((account) => {
            const infraStage = new InfrastructureStage(this, account.Name!, {
              env: { account: account.Id },
            });
            const applicationStage = pipeline.addApplicationStage(infraStage, {
              manualApprovals: account.Name === "Prod",
            });
            applicationStage.addActions(
              new ShellScriptAction({
                actionName: "IntegrationTesting",
                commands: ["curl -Ssf $URL/info.php"],
                useOutputs: {
                  URL: pipeline.stackOutput(infraStage.loadBalancerAddress),
                },
              })
            );
          });
      } catch (error) {
        const messages: any = {
          CredentialsError: `Failed to get credentials for "${AWS_PROFILE}" profile. Make sure to run "aws configure sso --profile ${AWS_PROFILE} && aws sso login --profile ${AWS_PROFILE}"\n\n`,
          ExpiredTokenException: `Token expired, run "aws sso login --profile ${AWS_PROFILE}"\n\n`,
          AccessDeniedException: `Unable to call the AWS Organizations ListAccounts API. Make sure to add a PolicyStatement with the organizations:ListAccounts action to your synth action`,
        };
        const message = messages[error.code];
        message
          ? console.error("\x1b[31m", message)
          : console.error(error.message);

        process.exit(1); //force CDK to fail in case of an unknown exception
      }
    })();
  }