Utility functions to help with performing blue/green and canary deployments in AWS infrastructure
AWS support for blue/green and canary deployments is provided by CodeDeploy. CodeDeploy is great in what it does, but it only really manages swapping versions for web services. Any services that sit behind the public facing API don't get managed by the CodeDeploy flow.
A common pattern for blue/green and canary deployments is to not just use a pair of services for the web component, but use a pair of services for the whole pipeline, eg data ingestion, databases, queues, data manipulation lambdas etc. You can manage starting, hydrating, and using these services as part of the CodeDeploy pipeline through the use of hooks (in the form of lambdas). Using these hook lambdas you can manage blue/green or canary deployments of a whole stack of services using the aws-sdk, unfortunately this normally means writing a lot of code to manage the process.
This module is a set of utility functions that I use to reduce the boilerplate required to set up these deploment hook lambdas.
For an example web api, using a node application in docker, with a SQL data store, and data updates being published on an SNS topic, the architecture may looks something like this:
In order to manage blue/green deployments for this service, CodeDeploy will directly handle deploying the new ECS service, attaching target groups to load balancers, flipping traffic over to the new service, and tearing down the old containers.
Unfortunately this really only covers less than half of the architecture. Everything from the data updates topic through to the database is up to you to manage through hooks. When deploying a new version of the service, the steps required will be something like this:
- Replacement database cluster is started or created
- Autoscaling minimum capacity on the new db cluster is set to match the current capacity of the active cluster
- Replacement database is purged and the latest schema is created
- SNS subscriptions are enabled for the replacement queue
- SQS subscription lambda is enabled for the replacement stack
- A new task set is created in the ECS service, it is bound to the replacement stack's database
- The new task set is placed in a testing target group, this is attached to a testing port on the load balancer
- Automated tests are carried out against the replacement service via the testing port
- The replacement stack becomes the active stack, what was the active stack is now the old stack.
- Autoscaling minimum capacity on the active set is reverted to the normal value, database will scale in when traffic is lower.
- SNS subscriptions are disabled for the old stack
- SQS subscription for the old stack's ingest queue is disabled
- Old database cluster is stopped or deleted
- The old SQS queues are purged
- The old ECS taskset is destroyed
CodeDeploy will carry out steps 6, 7, 9, and 15. This module contains tools to help you perform the other steps from your deployment hook lambda functions.
- ClusterState
- EcsTools
- SqsTools
- DynamoTools
- CloudWatchTools
- KinesisTools
- StackReference
- AuroraTools
- LambdaTools
- SnsTools
Enum for describing the state of an RDS cluster
Type: number
Tools for managing pairs of ECS services
Disables an ECS service by setting the desired task count to zero
referenceStackReference The stack to modify
Returns any {Promise}
Enables an ECS service by setting the desired task count to it's normal value
referenceStackReference The stack to modify
Returns any {Promise}
Toolkit for SQS operations
Purges a queue pair (q and dlq) based on config and queue reference
referenceStackReference Reference to a subscription queue stack
Returns Promise<void>
src/main/dynamo-tools.ts:14-55
Toolkit for Dynamo operations
src/main/dynamo-tools.ts:35-48
Deletes a dynamo table
referenceStackReference Reference to a active table
Returns Promise<void>
src/main/cloudwatch-tools.ts:16-80
Toolkit for CloudWatch operations
src/main/cloudwatch-tools.ts:36-41
Disable all alarm actions
referenceStackReference Reference to a subscription queue stack
Returns Promise<void>
src/main/cloudwatch-tools.ts:49-54
Enable all alarm actions
referenceStackReference Reference to a subscription queue stack
Returns Promise<void>
src/main/kinesis-tools.ts:18-91
Toolkit for Kinesis data stream operations
src/main/kinesis-tools.ts:39-46
Deregisters an existing consumer for a Kinesis data stream
referenceStackReference Reference to an active stack
Returns Promise<void>
src/main/kinesis-tools.ts:55-64
Describes a consumer for a Kinesis data stream
referenceStackReference Reference to an active stack
Returns Promise<DescribeStreamConsumerOutput>
src/main/kinesis-tools.ts:73-82
Registers a new consumer for a Kinesis data stream
referenceStackReference Reference to an active stack
Returns Promise<RegisterStreamConsumerOutput>
Enum for referencing blue or green stacks
Type: number
src/main/aurora-tools.ts:32-374
Toolkit for Aurora operations
src/main/aurora-tools.ts:58-76
Gets the current state of one of the Aurora clusters
referenceStackReference Reference to a db cluster
Returns Promise<ClusterState>
src/main/aurora-tools.ts:85-87
Reverts a cluster's minimum reader count to the configured minimum
referenceStackReference Reference to a db cluster
Returns Promise<void>
src/main/aurora-tools.ts:96-101
Scales out a cluster to match it's partner's size
referenceStackReference Reference to a db cluster
Returns Promise<void>
src/main/aurora-tools.ts:110-120
Get a count of the number of active readers for a cluster
referenceStackReference Reference to a db cluster
Returns Promise<number> The number of active readers
src/main/aurora-tools.ts:129-132
Starts a stopped db cluster
referenceStackReference Reference to a db cluster
Returns Promise<void>
src/main/aurora-tools.ts:141-144
Stops a running db cluster
referenceStackReference Reference to a db cluster
Returns Promise<void>
src/main/aurora-tools.ts:153-185
Deletes a running db cluster
referenceStackReference Reference to a db cluster
Returns Promise<void>
src/main/aurora-tools.ts:195-235
Parses a message from an rds event subscription, if the event was triggered by a scale out operation, the tags defined in config are applied to the newly created reader.
recordSNSEventRecord An SNS event record of the type published by rds event streams
Returns Promise<void>
src/main/aurora-tools.ts:249-300
Parses a message from an rds event subscription, if the event was triggered by a scale out operation and the new instance does not have performance insights enabled, the instance is updated to enable performance insights.
recordSNSEventRecord An SNS event record of the type published by rds event streamsreEnableIfDisabledboolean Whether or not to automatically re enable insights if they are disabled (optional, defaulttrue)retryDelaynumber Time in ms to wait before retrying (optional, default60e3)retryAttemptsnumber Number of retry attempts (optional, default5)
Returns any {Promise}
src/main/lambda-tools.ts:38-345
Toolkit for Lambda operations
src/main/lambda-tools.ts:68-83
Creates a lambda's event source mapping (eg, a Kinesis stream)
referenceStackReference Reference to a lambda stackeventSourceArnstring The ARN of the event sourcesourceSpecificParametersOmit<CreateEventSourceMappingRequest, ("FunctionName"|"EventSourceArn")> (optional, default{})sourceSpecificParams(Omit<CreateEventSourceMappingRequest, ("FunctionName"|"EventSourceArn")>) Any params specific to the event source (optional, default{})
Returns any {Promise}
src/main/lambda-tools.ts:94-96
Deletes a lambda's event mapping (eg, a Kinesis stream)
You may use the listEventSourceMappings method if you
need to retrieve UUIDs of the function event sources
UUIDStackReference The identifier of the event source mapping
Returns Promise<void>
src/main/lambda-tools.ts:105-107
Disables a lambda's event mappings (eg, an SQS subscription)
referenceStackReference Reference to a lambda stack
Returns Promise<void>
src/main/lambda-tools.ts:116-118
Disables a lambda's cloudwatch events rule (ie, cron trigger)
referenceStackReference Reference to a lambda stack
Returns Promise<void>
src/main/lambda-tools.ts:127-129
Enables a lambda's event mappings (eg, an SQS subscription)
referenceStackReference Reference to a lambda stack
Returns Promise<void>
src/main/lambda-tools.ts:138-140
Enables a lambda's cloudwatch events rule (ie, cron trigger)
referenceStackReference Reference to a lambda stack
Returns Promise<void>
src/main/lambda-tools.ts:150-156
Returns details about a Lambda function alias.
referenceStackReference Reference to a lambda stackNamestring The name of the alias to return data about
Returns Promise<AliasConfiguration>
src/main/lambda-tools.ts:165-237
Returns the latest metrics about a Lambda function alias.
referenceStackReference Reference to a lambda stack
Returns Promise<LatestLambdaMetricsMap>
src/main/lambda-tools.ts:246-254
Gets the currently running version of a lambda fn
referenceStackReference Reference to a lambda stack
Returns Promise<string> The lambda version
src/main/lambda-tools.ts:263-282
Lists all event source mappings for the referenced function
referenceStackReference -- Reference to a lambda stack
Returns any {Promise<EventSourceMappingConfiguration[]>}
Toolkit for SNS operations
Disables an SNS subscription
referenceStackReference Reference to a subscription queue stack
Returns Promise<void>
Enables an SNS subscription
referenceStackReference Reference to a subscription queue stack
Returns Promise<void>