Elastic Beanstalk is a developer centric view of deploying application on AWS.
- A managed service
- Instance configuration
- OS is handled by Beanstalk
- Deployment strategy is configurable but performed by Beanstalk
- Application code configurable
- It will leverage all the AWS components that we have gone over thus far: EC2, ASG, ELB, RDS, Etc..
- Elastic Beanstalk is free but we pay for the underlying instances
- Three architecture models:
- Single instance deployment: good for developers
- LB + ASG: great for production or staging web applications
- ASG only: great for non-web apps in production
- Elastic Beanstalk has three different components:
- Application: collection of EB components (environments, versions, configuration, etc.)
- Application Version (Each deployment gets assigned a version)
- Environment (dev, staging, prod):
- Collection of AWS resources running an application version
- Tiers: Web Server Environment Tier and Worker Tier Environment
- We deploy application versions to environments and can promote application versions to the next environment
- Rollback feature to previous application versions
- Full control over the lifecycle of environments
- Support for many platforms:
- Go
- Java (SE, Tomcat)
- .NET Core on Linux / .NET Server on Windows
- Python
- Node.js
- Ruby
- Single Container Docker
- Multi Container Docker
- Pre-configure Docker
- Packer Builder
- Write our own custom platforms (If the any of the above is not supported)
- Web Server Tier vs. Worker Tier:
- Single Instance deployment: good for development, we get 1 ec2 instance in 1 ASG and 1 Elastic IP. DNS names maps straight ot the Elastic IP
- High Availability with Load Balancer: great for production, we have an ASG across multiple AZs
- Deployment updates:
- All at once: we deploy all our applications in on go. Fastest, but instances have a downtime. No additional cost is applied while deploying
- Rolling: update e few instances at a time, move onto next set of instances (bucket) if the first set was healthy. The application will run bellow capacity for a given period (bucket size). At some point the application will run both versions. No additional cost is encountered during deployment
- Rolling with additional batches: similar deployment procedure as the rolling approach with the difference of having an additional batch started at the beginning of deployment with the newer version of the application. Afterwards, the older instanced are gradually moved to newer version. While deploying, both application version will be running at the same time. Minor additional cost may be encountered since the additional batch will be present until the deployment is finished.
- Immutable: new version of the application is deployed to an entirely new ASG. If the new version passes the initial validation, the old ASG is terminated. Deployment will cause 0 downtime. The additional cost encountered while deploying is the highest compared to other deployment types.
- This is not a direct feature of Elastic Beanstalk
- Zero downtime and release facility
- Create a new staging environment and deploy our newest version there
- The new environment (green) can be validated independently and roll back if there's issues
- Route 53 can be setup using weighted policies to redirect a little bit of traffic to the staging environment
- Using the elastic beanstalk console, we can "swap URLs" when with the testing environment
- This is a manual feature, it's not directly embedded in EB
- Used for Canary Testing - a new application version is deployed to a temporary ASG with the same capacity. A small percentage of the traffic is sent to the temporary ASG for a configurable amount of time
- Deployment health is monitored
- If there is a deployment failure, an automated rollback is triggered
- No application downtime will happen
- In case of success, new instances are migrated from the temporary to the original ASG and the old application version is terminated
- Traffic Splitting deployment is automated
- Documentation: https://docs.aws.amazon.com/elasticbeanstalk/latest/dg/using-features.deploy-existing-version.html
- Elastic Beanstalk can store at most 1000 application versions
- When this limit is reached, we wont be able to deploy a new version
- In order to be able to deploy again, we have to remove older versions
- To phase out old versions, we can use a lifecycle policy
- This policy can be based on:
- Time (remove versions which are older than...)
- Space (remove older versions if we have more versions than...)
- Currently used versions are not deleted
- There is an option to not delete source bundles from S3, only from beanstalk interface
- A zip file containing our code must be deployed to Elastic Beanstalk
- All the parameters set in the UI can be configured with code using files
- Requirements:
- in the
.ebextensions/directory in the root of source code - YAML / JSON format
.configextensions (example:logging.config)- Able to modify some default settings using: option_settings
- Ability to add resources such as RDS, ElastiCache, DynamoDB, etc...
- in the
- Resources managed by
.ebextensionsget deleted if the environment goes away - The
.ebextensionsfolder goes to the root of our project
- Elastic Beanstalk uses CloudFormation under the hood
- We can take advantage of this by provisioning other resources from beanstalk
- We can place config files in the
.ebextensionsto provision basically anything we want
- We can clone an environment with the exact same configurations
- Can be useful for deploying "test" versions for our applications
- All resources and configurations are preserved after cloning
- Settings can be changed for the new EB stack after cloning
- Migrate Load Balancer:
- The LB type can not be changed after the EB environment was created
- In order to be able to change the type of an LB, we need to do a migration:
- Create a new environment with the same configurations as the original except LB => this means we can not do cloning !!!
- Deploy our application into the new environment
- Shift the traffic from the old environment to the new one (this can be done with a CNAME swap or DNS update)
- Decouple RDS from the EB stack:
- RDS database can be added to the EB stack, although it is not recommended for production, because the DB lifecycle is tied to the EB lifecycle
- Steps to decouple RDS:
- Create a snapshot form the DB for safety
- Protect the RDS DB from deletion
- Create a new EB environment without RDS and point the application to the existing RDS instance
- Perform a CNAME swap
- Terminate the old EB stack (RDS wont be deleted because of the protection)
- Delete CloudFormation stack (it will be in DELETE_FAILED state)
- We can run docker container if we provide:
- Dockerfile: EB will build an run the Docker container
Dockerrun.aws.json(v1): describe where the Docker image should be downloaded from (DockerHub, ECR, etc.)
- EB in single container mode wont use ECS!
- Multi Docker Container:
- Will run multiple containers per EC2 instance
- Will create:
- ECS Cluster
- EC2 instances in an ECS cluster
- Load Balancer (high availability mode)
- Task definition and execution
- Requires a config of
Dockerrun.aws.json(V2) in the root of the source codeDockerrun.aws.jsonis used to generate the ECS task definition- Docker images should be pre-build and stored in ECR, DockerHub, etc.
- SSL certificate can be loaded from the console (EB console, load balancer configuration) or from the
config .ebextensions/securelistener-alb.config - SSL certificates can be provisioned using ACM (AWS Certificate Manager) or CLI
- Must configure SG with allowing port 443
- Redirect HTTP to HTTPS:
- Instances can be configured to redirect traffic
- Or ALB can be configured with a rule as well
- Health checks should ne be redirected from the ALB
-
To install run:
pip install awsebcli --upgrade --user -
Initialize an Elastic Beanstalk project:
eb init -
Initialize Elastic Beanstalk environments:
eb create dev-env -
Open the application from a web browser:
eb open -
Other useful CLI commands:
eb status: shows the health of the environmenteb health (--refresh): displays the health of the applicationeb logseb deploy:eb terminate: terminate stack
-
Used to back up configurations as code and create new environments from them
-
Back up current configurations from environment:
eb config save env --cfg <initial-configuration> -
Set an environment variable on the selected EB environment:
eb setenv PORT=8080 -
Update existing saved configuration
eb config put <config-name> -
Apply configuration to environment:
eb config <environment-name> --cfg <config-name>
- Configurations for EB can be set in ab .ebextensions folder
- Every configuration file in that folder should have the extension of
.config - .ebextensions reference: https://docs.aws.amazon.com/elasticbeanstalk/latest/dg/ebextensions.html
- Configuration options for .ebextensions: https://docs.aws.amazon.com/elasticbeanstalk/latest/dg/command-options-general.html
- Settings applied directly to environment
- Saved configurations
- Configuration files (.ebextensions)
- Default values
- We can add any kind of resources in our
.configtemplates in the.ebextensionsfolder - The format of a config file containing resources should be the same as a CloudFormation template
- If the environment is deleted, every resource will be deleted with it!
- We can specify commands in the
.ebextensionsfiles - There are 2 types of commands:
commands: the commands run before the application and web server are set up and the application version file is extractedcontainer_commands:- Can be used to execute commands that affect our application source code. Container commands run after the application ad web server have been set up and the application version archive has ben extracted but before the application version is deployed
leader_onlyflag: can be used if we want the command to be executed by a single EB instance
- Every time the application is deployed, a new application version is created
- We can see all the application versions in EB console under "Application version"
- EB has a maximum limit of how many application versions we can have, the value of this is 1000
- In order to remove older application versions, we can set up a lifecycle policy
- If application version is deployed to an environment, it wont be deleted
- EB will delete the old environment and will recreate everything
- This will remove and recreate resources as well
- If our application performs tasks that are long to complete, offload these tasks to a dedicated worker environment, for example processing videos, processing cron jobs, etc.
- This is called decoupling
- It uses SQS queues under the hood for being able to queue upcoming tasks
- Worker environments polls the SQS queue for more work, in case of failure, the task is passed onto the DLQ
cron.yml: configuration file for the worker environment for being able to create cron jobs
- Uses ECS cluster under the hood
Dockerrun.aws.json: EB specific json file describing how to deploy a set of Docker containers as an Elastic Beanstalk application- Reference: https://docs.aws.amazon.com/elasticbeanstalk/latest/dg/create_deploy_docker_ecs.html
- EB emits numerous notifications in EventBridge
- We can react to the following events:
- Environment Operation Status - create update, terminate
- Other Resources Status - ASG, ELB, EC2 instance created/deleted
- Managed Update Status
- Environment Health Status - if application health degrades to Warning/Severe