Questions tagged with Microservices
Content language: English
Sort by most recent
Hi team,
i'm trying to create AWS code build using this example :
https://aws.amazon.com/blogs/containers/creating-container-images-with-cloud-native-buildpacks-using-aws-codebuild-and-aws-codepipeline/
it finish always with error on this command at the end of the buildspec file:
```
./pack build --no-color --builder $builder \
--tag $IMAGE_TAG $ECR_REPOSITORY:latest \
--cache-image $ECR_REPOSITORY:cache \
--publish
```
I have this error :
> ERROR: failed to : ensure registry read access to 111111111.dkr.ecr.region.amazonaws.com/myrepo:latest
> ERROR: failed to build: executing lifecycle: failed with status code: 1
not sure what I did wrong? I tried to follow the blog's buildspec as is
I already added the required ECR permissions to the code build service role
update:
I added the adminAccess to the code build service role to see if it's a permissions issue
now I have this error :
```
===> ANALYZING
Restoring data for SBOM from previous image
===> DETECTING
ERROR: No buildpack groups passed detection.
ERROR: Please check that you are running against the correct path.
ERROR: failed to detect: no buildpacks participating
ERROR: failed to build: executing lifecycle: failed with status code: 20
[Container] Command did not exit successfully ./pack build --no-color --builder $builder \
--tag $IMAGE_TAG $REPOSITORY_URI:latest \
--cache-image $REPOSITORY_URI:cache \
--publish
exit status 1
```
basically I just want to generate the docker image of my spring boot appli in buildspec.yml without using a docker file,
if there is any other method then using packbuikders?
I appreciate your help on this
Cheers,
I want to connect my EventBridge's API Destinations to resources in my private VPC by calling the API endpoints at their private endpoints (not going through any public route like API Gateway). I saw this [doc](https://docs.amazonaws.cn/en_us/eventbridge/latest/userguide/eb-related-service-vpc.html) from AWS China that says using PrivateLink it might be possible but also found other [sources](https://repost.aws/questions/QUF6vrV82RQDe7__jyGFK7cg/how-to-invoke-a-private-rest-api-created-with-aws-gateway-endpoint-from-an-event-bus-rule) that say EventBridge can't connect to VPC. How should I go about this?
I created a Sample Websocket Chat App using this https://github.com/aws-samples/simple-websockets-chat-app
The websocket connection is working fine.
But when I connect a API Gateway Custom Domain to this api.
The connection is successfull, the messages are sent from client to server, **but the messages from server are not received at the client**
asked 3 days ago
Hi there,
As is not recommended by "Database per service" design pattern, every integration between microservices should be done with any messaging system?
We have an application where users can upload videos.
The API is available using GraphQL, and we have federation to route the video uploads to a cluster of servers responsible to create the video in the database (RDS).
Once the video is uploaded to S3, a service that is triggered by a S3 event start a MediaConvert job to create a HLS profile.
Once completed, we need to mark the video as available to viewers (updating the table).
What is the best practice to do this?
The convert service should connect to the database and update the record?
Execute a service API to update the record?
Send a SQS message that will be handle in the cluster that is connected to the database?
I have a service which is hosted in my private VPC and currently we are using API Gateway to expose it publicly. All our API calls go through it. So right now EventBridge's API Destinations point to the API Gateway's public endpoint. But we would like to change that and call the service at its private endpoint from EventBridge's API Destination itself so as to make sure our internal service calls stays in our VPC. How can we go about this?
Hi,
We are looking to implement AWK Rekognition for specific use cases. Please find below the use-cases for your reference:
1. Half Image Ban: We are looking to conduct facial recognition and ban all half images uploaded in our application by end-users while creating their profiles. Kindly provide required code-snippets to enable this feature of AWS Rekognition in our application
2. Memes and GIFs Ban: Our application aims to create genuine profile of users. As a part of the same, we are looking to enable image of face of end users. We request to dis-allow all users from uploading memes and gifs while uploading their photograph in the account creation section. Kindly provide required code-snippets to enable this feature of AWS Rekognition to dis-allow Memes and GIFs upload in the application.
Hi, I am building a CDK application, micro service architecture leveraging services like ECS Fargate, AppMesh.
So far I have only 2 services, Service-a-Stack and Service-b-stack. For service to service communication I created a third stack called ClouldMap-stack. I export resources from shared Cloud-Map-Stack into Service-a and Service-b stack to utilise cloudMapNamespace defining ECS service.
```
const serviceA = new FargateService(this, `ServiceA`, {
serviceName: 'service-a',
cluster,
taskDefinition: serviceATaskDef,
desiredCount: 1,
securityGroups: [allowAllSG],
cloudMapOptions: {
cloudMapNamespace // imported from CloudMap Stack
}
```
This pattern work well
Now, I'd like to `meshify` the application. First guess is to create a 4th Stack where appMesh is defined and import resources from there into Service Stacks. But this approach brakes micro service principe - `decoupling`. I want keep my stacks independent as much as possible.
the questions are:
- is it a good idea to create appMesh per Stack, assuming service to service communication with in multiple stacks?
- is appMesh to AppMesh communication enabled if utilising the same cloudmap Namespaces say clouster.local
I have an angular and spring-boot application in the EKS cluster. My spring boot is connected to RDS in a private subnet in the same VPC as my cluster. I have created one alb ingress controller for my two deployment services. my frontend is in http://albdns/health and my backend is in http://albdns/user/app. How do I enable communication between the backend and frontend?
I know it can be configured with REST API, but does WebSocket API also support MTLS?
Would appreciate a pointer to the documentation!
Thanks in advance.
Hi team,
I have a spring boot application I want to deploy it to my fargate cluster using codePipeline,
in my build buildspec.yml is it best practice to use tye Cloud Native Build packs to generate the image or to use dockerfile with docker commands :
`docker build -t`, `docker tag` ...
if it's best practice to use build packs
I found 2 ways to do it :
1 - `buildpack-builder build my-app -p my-app/ --builder cloudfoundry/cnb:bionic`
2 - by installing the build packs in the installation phase : `echo "$(curl -Ls https://github.com/buildpacks/pack/releases/download/v0.13.0/pack-v0.13.0-linux.tgz | gunzip | tar -xf - -C /usr/local/bin)"`
not sure what is the difference between them and which one is best to use.
is there a complete example of a buildspec.yml using buildPacks
Thank you for your help,
Regards,
Hello,
I created HTTP API gateway with private resource. My question is that is it possible to create HTTP API with stage variable for private resource.
I mean I want to create stage variable and I want to call vpc link according to this variable in HTTP API for private resource.
I have a redis cluster after using that in my node.js backend code it is giving 'ENOTFOUND' error, my backend deployed in ECS docker.
can anyone please help me on why i am getting this error?