AWS CloudFormation Validation Pipeline
AWS CloudFormation Validation Pipeline

Overview

Amazon Web Services (AWS) offers AWS Developer Tools, a set of services designed to enable customers to rapidly and safely deliver software. Together, these services help you follow continuous integration and continuous delivery practices, including secure storage and version control, and enable you to automatically build, validate, and deploy your code.

Many customers use AWS CloudFormation to manage their infrastructure as code and to help deploy AWS resources in a controlled and predictable way. As with other source code, DevOps teams are commonly tasked with validating AWS CloudFormation templates before launch to ensure they follow industry best practices and satisfy company-specific business and governance requirements. Often, they will use AWS Developer Tools to create their own development and deployment pipelines to validate templates against a set of predefined business, architectural, and security rules.

To help customers more easily and more reliably build, test, deploy, and manage their AWS CloudFormation templates, AWS offers the AWS CloudFormation Validation Pipeline solution. This reference implementation automatically provisions and configures the necessary services, including AWS CodePipeline and AWS Lambda, to run a set of predefined and customizable tests against AWS CloudFormation templates, and then stage those templates for manual deployment into a production environment. The validation pipeline automatically assesses logical and functional integrity using preconfigured AWS Lambda test functions, a default set of tests from cfn-nag (an open source linting tool for AWS CloudFormation), and any user-developed tests.

The AWS CloudFormation Validation Pipeline is designed to integrate with an existing AWS CodeCommit repository, and validates all AWS CloudFormation templates committed to that repository, helping to accelerate template development and deployment. The AWS CloudFormation Validation Pipeline leverages the AWS Quick Start testing methodology, which enables users to define specific template parameters and AWS Regions for testing. This solution includes a supplementary AWS CloudFormation template that configures a fully functioning demo environment using a popular Quick Start architecture. This demo enables customers to modify and experiment with pipeline functionality while familiarizing themselves with Quick Start best practices for building AWS CloudFormation-based reference implementations.

Cost

You are responsible for the cost of the AWS services used while running this solution. Example monthly pricing is shown in the following table. This pricing represents the base cost for running the AWS CloudFormation Validation Pipeline with default settings in the US East (N. Virginia) Region and includes base charges for AWS CodePipeline, AWS CodeCommit, and Amazon DynamoDB.

AWS CodePipeline Pipelines AWS CodeCommit Users Monthly Base Cost
1 3 $4.81
10 10 $25.85
20 30 $61.45

These cost estimates do not reflect variable charges for AWS CodeCommit (storage and Git requests), AWS CodeBuild, Amazon Simple Storage Service (Amazon S3), or AWS Lambda beyond free tier usage. This pricing also does not include the cost of resources deployed in each test stack. Prices are subject to change. For full details, see the pricing webpage for each AWS service you will be using in this solution.

On this page: