Funky Cloud Medina
Home Browse Study Guides About Contact
Auto deploy a Hugo website from GitHub to S3 - Part 1
| 4 minutes
AWS Hugo GitHub Lambda S3 Blog How-To

This post is part of a series. You’re reading Part 1.

Introduction

For those who don’t know what Hugo is, it’s a static website generator. Its source material is a Hugo template with your content in Markdown. I’ve used it for a while, in fact this blog is generated using Hugo. Hugo can give you an entire site in HTML/CSS and any required Javascript that you can then place anywhere on the web.

While that sounds fantastic, I had to run Hugo on my local machine and copy the resulting website files to my S3 bucket that hosts this blog. That’s just too manual for me and not cloudy enough.

I have my blog source material in a GitHub repo. Let’s see if there’s anything I can do with it.

Let’s step out my current process of a blog post:

  1. Write a blog post in Markdown.
  2. Add file to Git, Commit the changes and push to my remote repo in GitHub.
  3. Run Hugo locally to generate a new copy of my blog in HTML.
  4. Copy site files to my S3 bucket (drag and drop - gross)

Enter Lambda, SNS topics and GitHub service integrations

With these 3 services you can have your GitHub source pulled by Lambda, generate your site with Hugo and written to your S3 bucket everytime a commit is made to the GitHub repo.

There are plenty of tutorials out there that cover each component separately but none that can walk through the entire process (one definitely came close though). This post will cover the creation of the SNS topic and integration with GitHub.

I’m assuming you already have an AWS account and a GitHub account with a repo you’d like to deploy from.

Configuring SNS and GitHub Integration

The first step is to get GitHub to notify AWS whenever there is a new commit. We’ll need to create an SNS topic, an IAM user and a policy so GitHub can use this user to publish to the SNS topic.

SNS Topic

  1. Login to the AWS console
  2. Open the SNS dashboard
  3. Click Create topic
  4. Give the topic a name and description.
  5. Once created, note the ARN. You’ll need it later.

IAM policy for the GitHub user

  1. In the AWS console open the IAM dashboard.

  2. Click Policies on the left.

  3. Click Create policy along the top.

  4. In the policy editor, select the JSON tab.

  5. Enter the following JSON snippet for the new policy:

     {
     "Version": "2012-10-17",
     "Statement": [
         {
             "Action": [
                 "sns:Publish"
             ],
             "Resource": [
                 "{your-SNS-topic-ARN-here}"
             ],
             "Effect": "Allow"
         }
     ]
 }

  6. Click the Review policy button to continue.

  7. Give this new policy a name and description.

  8. Review the summary of privileges that the policy will provide.

  9. Click Create policy when you are happy with it. Keep note of the policy name you’ll need it in the next step.

The policy you just created will Allow (the “Effect”) any attached IAM role or user to Publish (the “Action”) to the ARN specified (the “Resource”).

Next up is the IAM user.

IAM user for GitHub integration

We’ll need to create an IAM user for GitHub. The GitHub service integration needs an Access Key and a Secret Key to publish to the SNS topic.

  1. In the AWS console open the IAM dashboard.
  2. Click Users on the left.
  3. Click Add user along the top.
  4. Provide a new username and select Programmatic access for the AWS access type.
  5. Click Next: Permissions.
  6. Go to Attach existing policies directly and search for the new policy you created.
  7. Select the checkbox next to the policy name.
  8. Click Next: Review.
  9. Review the user name, access type and policies given. Click Create user.
  10. Keep a copy of the Access key ID and the Secret access key of the new user you’ve created. You’ll need them for the next step.

Enable GitHub integration to SNS

  1. Login to GitHub and open your repository.
  2. Click the Settings tab.
  3. Go to Integrations & services on the left.
  4. Using the Add service drop down, select Amazon SNS.
  5. Provide the AWS information required for SNS publication:
  6. Aws key is the IAM user Access Key from the previous step.
  7. Sns topic is the full ARN of the SNS topic created earlier.
  8. Sns region is the AWS region identifier that your SNS topic was created in. To find your region’s identifier go here.
  9. Aws secret is the IAM user Secret Key from the previous step.
  10. Click Add service.

GitHub will now publish a notification to the SNS topic whenever a new commit is made.

That’s it for Part 1. Part 2 is below:

Share this on:
About Stellios Williams
Senior Cloud Solutions Architect - Service Providers VMware
This is my personal tech related blog for anything private and public cloud - including homelabs! My postings are my own and don’t necessarily represent VMware’s positions, strategies or opinions. Any technical guidance or advice is given without warranty or consideration for your unique issues or circumstances.
Contact
Comments
comments powered by Disqus
Latest Posts
Advertisement
Popular Tags
vmware63 vrealize-suite19 vsphere19 how-to17 vcloud-director12 professional-development10 aws8 certificates8 vrealize-orchestrator7 github6 hugo6 lambda6 tanzu6 vcd6 vcenter6 blog5 s35 homelab4 python4 tanzu-kubernetes-grid4 tkg4 tkgm4 vmware-cloud-director4 vrealize-automation4 vrealize-suite-lifecycle-manager4 api3 api-gateway3 automation3 container-service-extension3 cse3 csp-cloud-builder3 esxi3 javascript3 kubernetes3 pfsense3 powercli3 psc3 upgrade3 vcsa3 velero3 vrealize-log-insight3 vrealize-operations-manager3 vrealize-saltstack-config3 azure2 cassandradb2 certification2 cloud-director2 dns2 hardware2 microsoft2 packer2 rest2 saltstack2 storage2 swagger2 telegraf2 vcd-10.4.12 vcd-10.52 vcloud-availability2 vcp2 vrealize-operations2 active-directory1 adfs1 alp1 app-launchpad1 automator1 blueprints1 bmc1 certificate-authority1 cisco-aci1 clarityui1 cloud-init1 converter1 cpu1 custom-resource1 dell1 docker1 draas1 federation1 firmware1 freebsd1 freenas1 gcp1 ipmi1 ipsec1 json1 macos1 network1 nodejs1 nsx1 opensource1 ova1 postman1 quanta1 route531 saml1 self-hosted1 ubuntu1 utilities1 vcenter-server1 vcloud1 vcpp1 vexpert1 vidm1 virtual-network-gateway1 vmware-identity-manager1 vpn1 vrli1 vro1 vsan1 vvols1 windows-server1 wordpress1
Blogroll