Add submodule 3 for CICD

Author: zachahuy01

3_ECS_Java_Spring_PetClinic_CICD/Config

@@ -0,0 +1,37 @@
+# -*-perl-*-
+
+package.Petclinic-microservices-cicd = {
+    interfaces = (1.0);
+
+    deploy = {
+        generic = true;
+    };
+
+    build-environment = {
+        chroot = basic;
+        network-access = blocked;
+    };
+
+    # Use NoOpBuild. See https://w.amazon.com/index.php/BrazilBuildSystem/NoOpBuild
+    build-system = no-op;
+    build-tools = {
+        1.0 = {
+            NoOpBuild = 1.0;
+        };
+    };
+
+    # Use runtime-dependencies for when you want to bring in additional
+    # packages when deploying.
+    # Use dependencies instead if you intend for these dependencies to
+    # be exported to other packages that build against you.
+    dependencies = {
+        1.0 = {
+        };
+    };
+
+    runtime-dependencies = {
+        1.0 = {
+        };
+    };
+
+};

3_ECS_Java_Spring_PetClinic_CICD/codebuild-custom-env/Dockerfile

@@ -0,0 +1,43 @@
+
+FROM docker:17.06-rc
+#https://github.com/frol/docker-alpine-openjdk7/blob/master/Dockerfile
+ENV JAVA_HOME=/usr/lib/jvm/default-jvm
+
+# https://github.com/docker/docker/blob/master/project/PACKAGERS.md#runtime-dependencies
+RUN apk add --no-cache \
+		btrfs-progs \
+		e2fsprogs \
+		e2fsprogs-extra \
+		iptables \
+		xfsprogs \
+		xz
+
+# TODO aufs-tools
+
+# set up subuid/subgid so that "--userns-remap=default" works out-of-the-box
+RUN set -x \
+	&& addgroup -S dockremap \
+	&& adduser -S -G dockremap dockremap \
+	&& echo 'dockremap:165536:65536' >> /etc/subuid \
+	&& echo 'dockremap:165536:65536' >> /etc/subgid
+
+ENV DIND_COMMIT 3b5fac462d21ca164b3778647420016315289034
+
+RUN set -ex; \
+	apk add --no-cache --virtual .fetch-deps libressl; \
+	wget -O /usr/local/bin/dind "https://raw.githubusercontent.com/docker/docker/${DIND_COMMIT}/hack/dind"; \
+	chmod +x /usr/local/bin/dind; \
+	apk del .fetch-deps
+
+#install java and mvn, aws cli for aws ecr cli
+RUN apk add --no-cache coreutils git openssh-client curl zip unzip bash ttf-dejavu ca-certificates openssl groff \
+	py-pip python jq coreutils curl zip unzip bash ttf-dejavu ca-certificates openssl openjdk8 maven \
+	&& pip install awscli
+
+COPY dockerd-entrypoint.sh /usr/local/bin/
+
+VOLUME /var/lib/docker
+EXPOSE 2375
+
+ENTRYPOINT ["dockerd-entrypoint.sh"]
+CMD []

3_ECS_Java_Spring_PetClinic_CICD/codebuild-custom-env/README

@@ -0,0 +1,6 @@
+put these files
+in your codecommit repo [1].
+
+launch the ../infra-automation/codebuild-custom-container-ci.yaml 
+ with param: CodeCommitRepo : repo name of [1]
+             ECR Repo name for this codebuild custom environment [You need this as a param to ../infra-automation/master-ecs-yaml - CodeBuildContainerSpringBootDocker ]

3_ECS_Java_Spring_PetClinic_CICD/codebuild-custom-env/dockerd-entrypoint.sh

@@ -0,0 +1,22 @@
+#!/bin/sh
+set -e
+
+# no arguments passed
+# or first arg is `-f` or `--some-option`
+if [ "$#" -eq 0 -o "${1#-}" != "$1" ]; then
+	# add our default arguments
+	set -- dockerd \
+		--host=unix:///var/run/docker.sock \
+		--host=tcp://0.0.0.0:2375 \
+		--storage-driver=vfs \
+		"$@"
+fi
+
+if [ "$1" = 'dockerd' ]; then
+	# if we're running Docker, let's pipe through dind
+	# (and we'll run dind explicitly with "sh" since its shebang is /bin/bash)
+	set -- sh "$(which dind)" "$@"
+fi
+
+exec "$@"
+

3_ECS_Java_Spring_PetClinic_CICD/codebuild-custom-env/m2-settings.xml

@@ -0,0 +1,31 @@
+<settings>
+  <activeProfiles>
+    <!--make the profile active all the time -->
+    <activeProfile>securecentral</activeProfile>
+  </activeProfiles>
+  <profiles>
+    <profile>
+      <id>securecentral</id>
+      <!--Override the repository (and pluginRepository) "central" from the
+         Maven Super POM -->
+      <repositories>
+        <repository>
+          <id>central</id>
+          <url>https://repo1.maven.org/maven2</url>
+          <releases>
+            <enabled>true</enabled>
+          </releases>
+        </repository>
+      </repositories>
+      <pluginRepositories>
+        <pluginRepository>
+          <id>central</id>
+          <url>https://repo1.maven.org/maven2</url>
+          <releases>
+            <enabled>true</enabled>
+          </releases>
+        </pluginRepository>
+      </pluginRepositories>
+    </profile>
+  </profiles>
+</settings>

3_ECS_Java_Spring_PetClinic_CICD/images/CWLog.png

@@ -0,0 +1,63 @@
+
+
+Parameters:
+  EnvironmentName:
+    Type: String
+
+  PubELBSubnets:
+    Type: CommaDelimitedList
+  VpcId:
+    Type: String
+  ElbSecurityGroup:
+    Type: String
+
+Outputs:
+  LoadBalancer:
+    Description: Your ALB DNS URL
+    Value: !Join ['', ["http://",!GetAtt [LoadBalancer, DNSName]]]
+  ALBListener:
+    Description: ALB Port 80 http Listener
+    Value: !Ref LoadBalancerListener
+
+Resources:
+
+### ALB (ELB v2)
+  LoadBalancer:
+    Type: AWS::ElasticLoadBalancingV2::LoadBalancer
+    Properties:
+      Name: !Sub ${EnvironmentName}-ALB
+      Scheme: internet-facing
+      Subnets: !Ref PubELBSubnets
+      SecurityGroups:
+        - !Ref ElbSecurityGroup
+
+  LoadBalancerListener:
+    Type: AWS::ElasticLoadBalancingV2::Listener
+    Properties:
+      LoadBalancerArn: !Ref LoadBalancer
+      Port: 80
+      Protocol: HTTP
+      DefaultActions:
+      - Type: forward
+        TargetGroupArn: !Ref DefaultTargetGroup
+
+  # We define a default target group here, as this is a mandatory Parameters
+  # when creating an Application Load Balancer Listener. This is not used, instead
+  # a target group is created per-service.
+  DefaultTargetGroup:
+    Type: AWS::ElasticLoadBalancingV2::TargetGroup
+    Properties:
+      Name: !Sub ${EnvironmentName}-Def-TG
+      VpcId: !Ref VpcId
+      Port: 80
+      Protocol: HTTP
+      Matcher:
+        HttpCode: 200-299
+      HealthCheckIntervalSeconds: 10
+      HealthCheckPath: /
+      HealthCheckProtocol: HTTP
+      HealthCheckTimeoutSeconds: 5
+      HealthyThresholdCount: 2
+      TargetGroupAttributes:
+        - Key: deregistration_delay.timeout_seconds
+          Value: 30