Provides commands for packaging images for deployment to AWS EKS.
- An AWS ECR registry with the same name as the service being deployed exists on the same AWS account.
orbs:
oot-eks: ovotech/[email protected]
jobs:
push-image-nonprod:
executor: oot-eks/aws
steps:
- oot-eks/push-image:
service: my-service
account: "1234567890"This is what will happen upon running the push-image-nonprod job:
- A new docker image is built from the current source.
- The image is scanned for vulnerabilities by Snyk.
- The image is pushed to an ECR registry called "my-service" within the AWS account 1234567890
This orb tests switching aws deployment authentication away from an iam user and towards our OIDC provider.
Between version 2.3.0 and version 3.0.0 we moved to using the oidc provider for authentication rather than an AWS IAM user.