How do I write dynamic CDK configurations during deployment?
I have a simple CDK application with a backend stack that basically creates an gateway API and configures a cognito workflow for user registration and login using google federation.
In addition, there is a frontend stack which creates a ApplicationLoadBalancedFargateService and loads a NextJS application running as a docker image.
There are two interdependent variables that both stacks need and it has become a catch 22 situation.
The backend stack needs the frontends URL, because it needs to configure the UserPoolClient callback URL
The frontend stack needs the backends RestApi URL for configuring the NextJS env file specifying the fetch URLs.
For production deployment, I already know the domain and api URLs ahead of time ie
www.example.com api.example.com
so it's not an issue, but for staging and development I rely on the outputted URLs generated by AWS.
How can I grab these values during cdk deployment and what's the best way to do this? I am thinking of deploying the frontend first to get the URL, and then feed that to the backend stack as part it's callbackUrl. Then somehow use AppConfig to specify the API url for nextJS to read and use when fetching data. Is this a good approach?
As you say, the CDK can't deploy the app if each stack depends upon the other. One way to remove the cyclic dependency is to add an event-triggered Lambda to the Backend Stack. The Lambda sets the Callback URL whenever the Frontend Stack deploys.
- Frontend Stack: Add a Parameter Store StringParameter construct. Give it an explicit
parameterName. Set its value to the NextJS URL your backend needs for the callback URL. - Backend Stack: use a dummy Cognito callbackUrl in your CDK code. This solves the Catch-22 problem - the app will deploy.
- Backend Stack: Add an EventBridge rule that triggers whenever your Frontend Stack deploys.
- Backend Stack: The rule's target is a Lambda function in your Backend Stack. The Lambda calls two APIs: the Systems Manager GetParameter API to fetch the Callback URL value and the Cognito UpdateUserPoolClient API to update it in Cognito.
To make this work, the Backend Stack just needs to know the Frontend Stack's stack name (for the event rule) and the name of the parameter where the Frontend Stack has stored the callback URL.
Note: Alternatively, it might be possible to add Step 4's Lambda to the Frontend Stack as a Custom Resource. This would be a pure CloudFormation solution without a need for Step 3's event logic. The Frontend Stack would need to know the Cognito ClientId. The big disadvantage woud be that the Frontend Stack would be modifiying a Backend Stack resource, introducing cross-stack mingling of concerns. The above event-driven solution maintains better separation of concerns.
- AWS ElasticBeanstalk EC2 Termination Protection
- Install pgAgent on AWS RDS for Postgres
- Row was updated or deleted by another transaction (or unsaved-value mapping was incorrect)
- List all parameters in AWS SSM Parameter Store
- AWS push_down_predicate not working with DynamoDb
- localstack AWS S3 javascript error : getaddrinfo ENOTFOUND bucketname.localhost
- AWS ECS agent won't start
- AWS VPC (Virtual Private Cloud), rapidly increasing expenses
- SemaphoreCI OIDC AWS connection
- Can't delete AWS internet Gateway
- How to provide multiple StringNotEquals conditions in AWS policy?
- Not able to get ECS fargate metrics on Datadog
- 502 "Internal Server Error" with API Gateway + Lambda when deploying
- Java Springboot application not able to connect to AWS Elasticache Valkey Cache (Serverless)
- Splitting PDF with PyPDF2 in Lambda function
- "libdbus-glib-1.so.2: cannot open shared object file: No such file or directory"
- Partial credentials found in env, missing: AWS_SECRET_ACCESS_KEY
- Best way to store Firebase admin private key file for AWS lambda
- AWS Elastic Beanstalk and Secret Manager
- Unable to upload data using sagemaker_session.upload_data in s3 bucket that I created, it is getting stored in default s3 bucket
- Parse Aws IoT message in python
- How to temporarily switch profiles for AWS CLI?
- Python Sqlalchemy insert data into AWS Redshift
- Using AWS Bedrock Prompt Management with InvokeCommand
- How to skip IAM change confirmation during a cdk deploy?
- Restarting AWS lambda function to clear cache
- How to send data to API Post to be used by Lambda Function
- Why is postman showing error message but react app not showing it?
- Terraform shows `InvalidGroup.NotFound` while creating an EC2 instance
- How to delete keys matching pattern in AWS Elasticache Valkey