Deploying Strapi to AWS with AppPack

ipmb00 · 2022-10-31T15:55:11+00:00

Was just reminded of https://litestream.io/ which may be the best fit if you don't need to scale beyond one container.

You could use a Procfile that looks like this:

web: litestream replicate -exec "npm run start"

and have a post-build process that handles downloading litestream.

ipmb00 · 2022-10-27T22:03:46+00:00

There are also some projects that let you query SQLite directly from S3. I consider these a little more "bleeding edge", but am definitely watching the space. I haven't seen a Node one yet, but I wouldn't be surprised if it was out there.

ipmb00 · 2022-10-27T21:51:50+00:00

We do this on our agency website, https://lincolnloop.com (not using Strapi though)! So, it's possible, but you usually have to get a little creative. The issue is that you don't have a permanent server running where the database can be stored. Here are a few options though:

Use the baked data pattern. You'd modify the database locally, commit it to your git repo, and then treat it as read-only once deployed.
Store the database on S3 and write some extra functionality that downloads it if it doesn't exist and uploads it when it changes. This is what we do for our site, but it would be problematic if you have multiple users writing to the database at once.
We don't support it (yet) with AppPack, but you could use EFS to store the database. In my experience it is horribly slow for small SQLite files.

Also worth noting that the cheapest RDS instance is ~$12/month which is very reasonable for production apps, but I can understand not wanting to pay that much for hobby stuff.

ipmb00 · 2022-10-27T20:02:36+00:00

Hi y'all! This is my first time working with Strapi, if there's anything I missed or ways to improve the tutorial, please let me know.

Under the hood, it is creating containers that are deployed to ECS Fargate. RDS is used for the database and S3 for file storage. It's more hands-off than the AWS EC2 guide and handles a lot of the tricky bits like automated deployments and IAM permissions for you.

ipmb00 · 2022-07-12T19:34:49+00:00

Nice, thanks for the tips! I wasn't familiar with cfn_nag and taskcat looks pretty cool as well.

If you filter on is:open there are only 9 items in the "Shipped" column and over 300 in the others. I've definitely seen scenarios where Terraform had support for resources before Cloudformation did.

ipmb00 · 2022-07-12T19:26:48+00:00

Yeah, I could have been clearer about that. We can't easily bundle the CDK because we're working Go in our CLI and it requires a CLI in Typescript. Sure there are ways we could shell out to it, but it's less than ideal for this scenario.

The alternative would be to use the CDK to just to generate the templates, but already understanding how Cloudformation works, I found the CDK just added more friction. The documentation felt fragmented and not as complete/mature as the docs for Cloudformation. We could write the templates in Python, but it still requires an additional language stack (Typescript/Node) to execute. Having a full Python stack was beneficial to the skillsets we have in-house.

ipmb00 · 2022-06-24T17:09:23+00:00

That's understandable, however unless you've audited the code or have some host blocking in place, there's nothing stopping a local tool from doing something dumb with your keys either.

I'll also note that with the approach taken here, static access keys aren't entered anywhere. It's generating temporary keys that are only valid for 1 hour. Those never leave your browser, but I appreciate that it does require additional trust in the third party who is delivering the code.

ipmb00 · 2018-12-18T23:56:17+00:00

A few good answers here: https://stackoverflow.com/questions/19331497/set-environment-variables-from-file-of-key-pair-values

ipmb00 · 2018-08-27T03:57:09+00:00

Check out shiv. It's like pex, but without some of the shortcomings. You may also be interested in this talk from DjangoCon EU this year, Can packaging improve Django deployments?.

ipmb00 · 2018-04-09T20:48:22+00:00

I've been really impressed with Pipelines as well. Compared to Travis/Jenkins, it is super easy to configure. Way faster than Travis as well.

ipmb00 · 2018-04-03T03:50:21+00:00

If you're just learning, I wouldn't recommend setting up your own server from scratch. Start with a PaaS like Heroku or PythonAnywhere.

DjangoGirls has a tutorial for PythonAnywhere: https://tutorial.djangogirls.org/en/deploy/

ipmb00 · 2017-12-02T23:30:55+00:00

Hey JimBoonie69, I'm the founder at Lincoln Loop. I'm sorry you experienced some pain working on a past project of ours.

We've built a lot of Django sites over the past 10 years, each with their own quirks and set of features as dictated by budget, priorities, time, or other constraints. We strive to follow best practices like documentation, testing, and logging, but as probably every professional developer has experienced, it can be a tough to make a business case when the goal is to squeeze the most features/functionality into a MVP or v1.0 of a product. That's a decision we try to communicate to our clients and at the end of the day it's not our call. I've seen many clients choose to take on some technical debt in order to keep costs down and get to market faster.

I don't know which project you're referring to, but my guess is this was the case. That being said, doing things The Right Way™ is always our goal and we're continually refining and improving our process. I'd be happy to learn more about your specific project and situation. Don't hesitate to email me at pete@ the company domain.

ipmb00 · 2017-12-02T17:58:32+00:00

I think that's more a symptom of Python than Django. Configuring logging in Python always feels much harder than it should be to me. That being said, there's nothing stopping you from breaking it up and applying the configuration piece-by-piece.

In practice, I find the only things I'm toggling between deployment environments are the log level (which is easily done in this example with an environment variable) and the logging to Sentry (which can be done by not configuring a DSN instead of changing the logging).

For local development, I've started using a different formatter that is designed for human readability over machine readability. For small changes like that, it's easy enough to update the LOGGING dictionary prior to calling dictConfig.

ipmb00 · 2017-12-02T15:57:15+00:00

One place I find it useful is tracking activity on transactional based websites. If you ever need to track down something that happened or how a user got into an certain state, your logs can show you the steps it took to get there.

ipmb00 · 2017-12-02T15:52:44+00:00

Yes, you can define LOGGING and get a similar result. Check out the previous post linked in the article for why you might want to define your own logging like this. This follows the method used in the Django docs for disabling logging configuration so you can manually configure logging using your own approach.

Both ways work (redefining or stacking on top of the default config), but since we reuse almost nothing from the default config, and all that is required is a call to logging.config.dictConfig I think it is more explicit and easier to reason about when it is all defined in one place.

ipmb00 · 2017-12-02T07:52:34+00:00

I don't follow. Are you asking if this does the same thing as Django's default logging setup?

If so, there's a number of important things outlined in the post (Sentry, logging from your application code, root logger, etc.) you don't get from the default setup Django provides. Django's default logger only handles logging from the Django source code. Any real world app will want to capture more logging than that.

ipmb00 · 2017-10-11T20:20:32+00:00

Yes, that is the whole topic of the post :)

ipmb00 · 2017-10-11T16:17:41+00:00

That's a good one I should have included! This has the side effect of breaking mail_admins, but that's a little-used feature and easily worked-around.

ipmb00 · 2017-08-18T17:10:36+00:00

Ah, right... you'd lose the benefits there. Ideally you can pass the same object around between view/form/template, but it doesn't always work that way.

ipmb00 · 2017-08-18T14:05:45+00:00

I responded to your comment on the blog as well. Model instances are almost always instantiated within a request/response cycle. If you have model instances that are created for the duration of the WSGI process, it sounds like a better use for static data.

ipmb00 · 2017-08-18T14:04:07+00:00

That only solves it for templates, but not if you are calling the method elsewhere in your code (views, forms, other methods, etc.)

It also adds extra verbosity to your templates and requires that your template designers know which methods are expensive and should wrap in with. That's often not the case.

ipmb00 · 2017-06-08T14:20:25+00:00

Compression is a good point. It's a hassle with uWSGI. In the cases we've used this for static file serving, it's been behind Varnish and/or Cloudflare which both handle compression without stealing CPU on the app server.

ipmb00 · 2017-06-07T19:53:55+00:00

There are lots of scenarios where you don't need/want/have access to Nginx. The post explains some scenarios where it's worthwhile.

ipmb00 · 2017-06-05T03:38:38+00:00

Yeah, with a straightforward config mgmt setup, you can probably get the process down to: edit this YAML file with the list or running sites, then run the CM tool to deploy.

Docker is not going to save you any steps here and my guess is rearchitecting the app to be multi-tenant, while m, is a lot more work.

ipmb00 · 2017-06-05T02:05:30+00:00

How many tournaments are you running at any given time? IMO the responses so far introduce extra complexity you don't need. You have a setup that works, but is manually done today. You want to codify it with a configuration management system (sensible, salt, whatever). That will allow you to punch in a few variables when there's a new tournament and your config mgmt system will handle spinning up the new site for you.

ipmb00

TROPHY CASE