AWS CodeCommit Flashcards
AWS CodeCommit
AWS CodeCommit is a fully managed source control service that hosts secure Git-based repositories.
Git is an Open Source distributed source control system:
- Centralized repository for all of your code, binaries, images, and libraries.
- Tracks and manages code changes.
- Maintains version history.
- Manages updates from multiple sources.
- Enables collaboration.
CodeCommit repositories are private ? T/F
CodeCommit repositories are private.
CodeCommit is one of the AWS continuous integration tools ? T/F
CodeCommit is one of the AWS continuous integration tools
CodeCommit Encryption Principles
You can transfer your files to and from AWS CodeCommit using HTTPS or SSH.
Repositories are automatically encrypted at rest through AWS Key Management Service (AWS KMS) using customer-specific keys.
Authentication and Access Control
AWS CodeCommit uses AWS Identity and Access Management to control and monitor who can access data as well as how, when, and where they can access it.
IAM supports CodeCommit with three types of credentials:
- Git credentials, an IAM -generated user name and password pair you can use to communicate with CodeCommit repositories over HTTPS.
- SSH keys, a locally generated public-private key pair that you can associate with your IAM user to communicate with CodeCommit repositories over SSH.
- AWS access keys, which you can use with the credential helper included with the AWS CLI to communicate with CodeCommit repositories over HTTPS.
Notifications - Use cases for notifications SNS / AWS Lambda
Deletion of branches.
Trigger for pushes that happen in the master branch.
Notify external build system.
Trigger AWS Lambda function to perform codebase analysis.
Notifications - Use cases for CloudWatch Event Rules:
Trigger for pull request updates (created / updated / deleted / commented).
Commit comment events.
CloudWatch Event Rules go into an SNS Topic.