🕋 Implementing AWS CDK Stack
In this section, we'll implement the backend infrastructure we designed using AWS CDK (Cloud Development Kit). We'll go through the process step-by-step, explaining each part of the code and how it relates to our architecture.
A Stack is a term used within this context to describe a collective definition for cloud resources specific to the application.
🧐 Understanding AWS CDK
AWS CDK allows us to define cloud infrastructure using familiar programming languages. In our case, we're using Python. CDK synthesizes our Python code into a CloudFormation template, which is then used to provision the actual AWS resources.
⌨️ Setting Up the CDK Project
-
First, make sure you're in the project root directory.
If you're not already in the root folder for the project (photosky-activity) to do so with the following commandcd photosky-activity -
Our CDK code will live in the
cdkdirectory. Let's navigate there with the following command:cd cdk -
Open
photosky_stack.pyin your preferred text editor. This is where we'll define our stack.
If you're Github Codespaces or VSCode, the file can be opened by simply clicking on cdk and then photosky_stack.py. This should open the file to edit.
📝 Initializing the AWS CDK
Before we can use the CDK, we must initialize it. Initializing the CDK must be done within app.py still within the cdk directory.
For Github Codespace or VS Code users, double click the file to open it for editing.
Looking more closely at the code we can see that we import PhotoskyStack within our python code. We will be creating this very stack later. First we must initialize it!
To do so, place the provided code within the specified file (app.py).
Before we do that, let's take a closer look at it!
We utilize the python native os import properly obtain enviornment variable data we previously initialized within our .env file. The dotenv import enables us to assign enviornment variables with our .env file without having to modify them directly.
Most importantly, we also import cdk to properly intialize initialize our Photosky app's stack (PhotoskyStack). The function call the synth() is what will enable use to sythesize our infrastructure and to build a template of it's specifications and structure.
#!/usr/bin/env python3
import os
from dotenv import load_dotenv
import aws_cdk as cdk
from photosky_stack import PhotoskyStack
load_dotenv()
app = cdk.App()
PhotoskyStack(app, os.getenv("APP_NAME"),)
app.synth()
🔨 Implementing the PhotoSky Stack
Let's break down the PhotoskyStack class and implement it step by step:
-
First, let's import the necessary modules:
from aws_cdk import (
Duration,
Stack,
RemovalPolicy,
aws_lambda as _lambda,
aws_s3 as s3,
aws_apigateway as apigateway,
)
from constructs import ConstructImporting these modules enables us to interact with the AWS CDK.
aws_lambda,aws_s3, &aws_apigatewayare the three primary cloud interfaces we would be using. Hence, their imports here enable us to write infrastructure as code.
The inclusion of RemovalPolicy allows us to specify the action that should be taken if a resource stops being managed by Cloud formation. More info from the docs can be found here
The import of the
Stackclass allows us to create our own stack, which inherits from the baseStackclass. -
Now, let's define our stack class:
class PhotoskyStack(Stack):
def __init__(self, scope: Construct, construct_id: str, **kwargs) -> None:
super().__init__(scope, construct_id, **kwargs)
# We'll add our resources here
The code above enables to define the class in a preliminary phase.
Notice that is has the parameters ofscopeandconstruct_id.scope- Represents the construct's parent or owner. OurPhotoskyStackis a cloudformation stack. Constructs are the building blocks of the CDK. Each construct represents one or more AWS resources and their configid- Represents a unique identifier within our scope. This identifier is used as a namespace for everything within the construct. This identifier is later used to create information such as resource names and CloudFormation logical IDs.- More info from the official docs
-
Let's add our Lambda function within our
PhotoskyStackclass:dockerFunc = _lambda.DockerImageFunction(
scope=self,
id=f"ID{construct_id}",
function_name=construct_id,
environment= {
"BUCKET_NAME": f"{construct_id.lower()}"
},
code=_lambda.DockerImageCode.from_image_asset(
directory="src"
),
timeout=Duration.seconds(300)
)This creates a Lambda function from a Docker image. The Docker image will be built from the
Dockerfilein thesrcdirectory.
Notice how we utilize theidparameter within this code to specify resource names within thefunction_name,id, andenvronmentparameters of ourlambda.DockerImageFunctioninstance.warningIf you're copying the content section by section, be sure to correct indentation! Python is indentation sensitive.
Within VS Code this can be done usingCtrl + Shift + ior byCtrl + Shift + pand then typing & clickingFormat Document. -
Next, let's create our API Gateway:
api = apigateway.LambdaRestApi(self, "api",
handler=dockerFunc,
proxy=True,
default_cors_preflight_options={
"allow_origins": ["*"],
"allow_methods": apigateway.Cors.ALL_METHODS,
"allow_headers": ["*"],
}
)This creates an API Gateway that proxies all requests to our Lambda function. It also sets up CORS to allow requests from any origin.
CORS stands for Cross-Origin Resource Sharing. It enables our backend to accept uploads of pictures from our client and process downloads from the cloud itself. -
Now, let's create our S3 bucket:
bucket = s3.Bucket(
self,
id=f"id{construct_id.lower()}",
bucket_name=f"{construct_id.lower()}",
cors=[s3.CorsRule(
allowed_methods=[s3.HttpMethods.GET, s3.HttpMethods.POST, s3.HttpMethods.PUT, s3.HttpMethods.DELETE],
allowed_origins=["*"],
allowed_headers=["*"],
exposed_headers=["ETag"],
max_age=3000
)],
removal_policy=RemovalPolicy.DESTROY,
auto_delete_objects=True
)This creates an S3 bucket with CORS configured to allow all methods from any origin. The
removal_policyandauto_delete_objectsparameters ensure the bucket will be deleted when we destroy our stack. -
Finally, let's grant our Lambda function read/write access to the S3 bucket by adding the following line of code to the very end of our
PhotoskyStackclass:bucket.grant_read_write(dockerFunc)
Here's what the complete PhotoskyStack class should look like:
class PhotoskyStack(Stack):
def __init__(self, scope: Construct, construct_id: str, **kwargs) -> None:
super().__init__(scope, construct_id, **kwargs)
dockerFunc = _lambda.DockerImageFunction(
scope=self,
id=f"ID{construct_id}",
function_name=construct_id,
environment= {
"BUCKET_NAME": f"{construct_id.lower()}"
},
code=_lambda.DockerImageCode.from_image_asset(
directory="../src"
),
timeout=Duration.seconds(300)
)
api = apigateway.LambdaRestApi(self, "api",
handler=dockerFunc,
proxy=True,
default_cors_preflight_options={
"allow_origins": ["*"],
"allow_methods": apigateway.Cors.ALL_METHODS,
"allow_headers": ["*"],
}
)
bucket = s3.Bucket(
self,
id=f"id{construct_id.lower()}",
bucket_name=f"{construct_id.lower()}",
cors=[s3.CorsRule(
allowed_methods=[s3.HttpMethods.GET, s3.HttpMethods.POST, s3.HttpMethods.PUT, s3.HttpMethods.DELETE],
allowed_origins=["*"],
allowed_headers=["*"],
exposed_headers=["ETag"],
max_age=3000
)],
removal_policy=RemovalPolicy.DESTROY,
auto_delete_objects=True
)
bucket.grant_read_write(dockerFunc)
This code defines our entire backend infrastructure:
- It creates a Lambda function, packaged as a Docker image.
- It sets up an API Gateway that proxies all requests to our Lambda function.
- It creates an S3 bucket for storing our images, with CORS configured.
- It grants the Lambda function read and write access to the S3 bucket.
🛣️ Conclusion
We successfully just implement our CDK stack for PhotoSky!
We can now spool resources on the cloud from the cloud as specified within our stack.
These resources will be used to handle and process our requests to the backend of PhotoSky!