Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

AWS Docker deployment

Tags:

docker

amazon-web-services

amazon-elastic-beanstalk

amazon-ecs

I have a custom docker image uploaded to ECS. I opened up the permissions to try and get through this issue (I will lock it down again once I can get this to work). I am attempting to deploy the docker image to elastic beanstalk. I have a docker enabled elastic beanstalk environment set up. According to the AWS docs, if I am pulling my image from within AWS, I don't need to pass in credentials. So I upload my Dockerrun.aws.json file and attempt to install it. It fails with the error:

Command failed on instance. Return code: 1 Output: Failed to authenticate with ECR for registry '434875166128' in 'us-east-1'. Hook /opt/elasticbeanstalk/hooks/appdeploy/pre/03build.sh failed. For more detail, check /var/log/eb-activity.log using console or EB CLI.

The /var/log/eb-activity.log information has nothing useful in it.

Here's my Dockerrun.aws.json file:

{
  "AWSEBDockerrunVersion": "1",
  "Image": {
  "Name": "{id000xxxx}.dkr.ecr.us-east-1.amazonaws.com/my-repo:1.0.0",
  "Update": "true"
  },
  "Ports": [
    {
      "ContainerPort": "4000"
    }
  ],
  "Logging": "/var/log/app-name"
}

I have also tried adding the authentication with the dockercfg.json file in S3. It didn't work for me either.

Note that I am using a business account instead of a personal account, so there may be some unknown variances as well.

Thanks!

Update: My user has full permissions at the moment too, so there shouldn't be anything permission-wise getting in the way.

like image 966
Nick Allen Avatar asked Aug 22 '16 15:08

Nick Allen

People also ask

Can you deploy Docker on AWS?

AWS and Docker have collaborated to make a simplified developer experience that enables you to deploy and manage containers on Amazon ECS directly using Docker tools. You can now build and test your containers locally using Docker Desktop and Docker Compose, and then deploy them to Amazon ECS on Fargate.

How does AWS Docker integrate?

Create AWS context Run the docker context create ecs myecscontext command to create an Amazon ECS Docker context named myecscontext . If you have already installed and configured the AWS CLI, the setup command lets you select an existing AWS profile to connect to Amazon.

1 Answers

I was having the same problem.

Solution: In AWS -> IAM -> Roles - > pick the role your beanstalk is using.

In my case it was set to aws-elasticbeanstalk-ec2-role

Under Permissions for the role, attach policy: AmazonEC2ContainerRegistryReadOnly

In ECR there is no need to give any permissions to this role.

like image 124
Anter Avatar answered Oct 20 '22 05:10

Anter
Sign in to Comment

Related questions

AWS: how to fix S3 event replacing space with '+' sign in object key names in json
AWS IAM: Unable to create additional Access Key
How to cp file only if it does not exist, throw error otherwise?
How could I use aws lambda to write file to s3 (python)?
Get AWS Account ID from Boto
How can I deduce the AWS Account ID from available BasicAWSCredentials?
S3 bucket policy vs access control list
Is there a way to export an AWS CLI Profile to Environment Variables?
Cloudwatch failedinvocation error no logs available [closed]
Add swap memory with ansible
Connect to MySQL on AWS from local machine
How to export a dynamodb table as a csv through aws-cli ( without using pipeline)
Using Amazon SES with Rails ActionMailer
Reducing memory consumption of mysql on ubuntu@aws micro instance
conda environment to AWS Lambda
How to make MSCK REPAIR TABLE execute automatically in AWS Athena
DynamoDB create index on map or list type
"invalid ELF header" when using the nodejs "ref" module on AWS Lambda
Setting http response header from AWS lambda
How can I get list of only running instances when using ec2-describe-tags

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!