Set up a fully automated CI/CD pipeline using AWS CodePipeline, CodeBuild, CodeDeploy, EC2, and GitHub. This guide will help you create a zero-touch solution that automates code updates, ensures reliable deployments, and eliminates the need for manual SSH sessions. By the end, you'll have a robust and efficient deployment process that enhances both reliability and speed.
Quick Links
- Overview & Benefits
- Step 1: GitHub Repository Setup
- Step 2: IAM Roles
- Step 3: EC2 Configuration
- Step 4: CodeDeploy Setup
- Step 5: CodePipeline Integration
- Conclusion
Technologies Used:
- GitHub: Stores the application’s source code.
- AWS CodePipeline: Detects changes in the repository, triggers builds, and initiates deployments.
- AWS CodeBuild: Builds your code into production-ready artifacts.
- AWS CodeDeploy: Automates the deployment of your builds onto EC2 instances.
- Amazon EC2: Hosts your web application.
- Amazon S3 (Optional): Stores build artifacts
- IAM: Manages secure permissions for the pipeline and services to interact.
Prerequisites
- AWS Account with administrative access
- GitHub account
- Basic understanding of AWS services
- Familiarity with React/Vite applications
Business Value
Key Benefits
- Improved Reliability: No more manual SSH deployments. CodeDeploy ensures consistency in every deployment.
- Faster Iteration: Push code and let the pipeline test and deploy automatically, speeding up feedback loops.
- Rollback Capability: If something goes wrong, CodeDeploy can roll back to a previous stable version quickly, minimizing downtime.
Problem Statement
Your team currently deploys updates by SSHing into a live EC2 instance—leading to human error, missed steps, and risky rollbacks. This tutorial fixes that by detecting GitHub changes automatically, deploying them via CodeDeploy, and using a repeatable, testable process.
Problem Solved
Traditional SSH-based deployments lead to:
- Human errors during manual deployments
- Inconsistent deployment steps
- Difficult rollbacks
- Security vulnerabilities
This solution implements industry best practices for automated, secure, and reliable deployments.
Ready to eliminate manual deployments? Let's build your pipeline.
Implementation Guide
Step 1: GitHub Repository
You can use your own repo or follow along with mine:
Fork this repository:
Github Repo: Github EC2
Repo Contains:
Repository Structure:
├── my-react-app/ # Sample React application
├── buildspec.yml # CodeBuild instructions
├── appspec.yml # CodeDeploy configuration
└── scripts/ # Deployment scripts
Step 2: IAM Roles
Important: If you attach a new role to an existing EC2 instance, reboot the instance so it recognizes the updated permissions.
EC2 Role
In the AWS Console search Roles -> Create role.
Trusted Entity: EC2 > EC2 use case.
Click Next
Add Permissions: Attach the AmazonEC2RoleforAWSCodeDeploy policy.
Click Next
Provide a name for the role.
- EC2CodeDeployRole
Review your settings then click "Create role".
CodeDeploy Role
Click Create role.
Trusted Entity: EC2 > EC2 use case.
Click Next
Add Permissions: Attach AWSCodeDeployRole.
Click Next
Provide a name for the role.
- CodeDeployRole
Review your settings then click "Create role".
Edit the trusted policy using:
Search for the newly created CodeDeployRole and select.
Choose the Trust relationships tab.
Choose Edit trust policy.
Copy and paste this trust policy.
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "",
"Effect": "Allow",
"Principal": {
"Service": [
"codedeploy.amazonaws.com"
]
},
"Action": "sts:AssumeRole"
}
]
}
Click "Update policy".
Step 3: EC2 Configuration
In the AWS console search up EC2 > Launch Instance.
Launch an Instance
Keep default settings.
Name and tags: Name your instance.
Application and OS Images: Ubuntu
Instance type: t2.micro
Key pair (login): Create or use an existing key pair.
Network settings: Use or create a security group allowing SSH (port 22) from your IP and HTTP (port 80) from the internet..
Under Advanced details
IAM instance profile: EC2CodeDeployRole
User data: Install the CodeDeploy agent on launch. Adjust region endpoints if you’re not using us-east-1:
Use this link to get your region to fetch your appropriate code-deploy region identifier
Edit this line in the script "aws-codedeploy-us-east-1.s3.us-east-1." with your appropriate region and identifier.
Copy and paste the code below.
#!/bin/bash
# Update system
apt update -y
# Install CodeDeploy Agent
apt install ruby-full -y
cd /home/ubuntu
wget https://aws-codedeploy-us-east-1.s3.us-east-1.amazonaws.com/latest/install
chmod +x ./install
./install auto
systemctl enable codedeploy-agent
systemctl start codedeploy-agent
Click Launch Instance and wait until it’s initialized..
Step 4: CodeDeploy Setup
We are setting up CodeDeploy first because it makes it easier to use and reference for later in the CodePipeline Section.
In the AWS search and select CodeDeploy > Create Application.
- Application name: vite-react-deploy
- Compute platform EC2/on-premise
Click Create application.
Click Create deployment group
Create deployment group
Select "Amazon Instances".
Key: Name
Value: Select your Instance
Leave the default settings for Agent configuration with AWS Systems Manager and Deployment settings.
Load balancer
Enable load balancing: Uncheck selection
Click Create deployment group
Review changes than Click Create deployment
Now on the creating a deployment page we can leave this section empty(exit page) and just move on to the next section because CodePipeline will handle the deployment for.
AppSpec Basics
version: 0.0
os: linux
files:
- source: /my-react-app/dist
destination: /var/www/html/
hooks:
BeforeInstall:
- location: scripts/before_install.sh
timeout: 300
runas: root
AfterInstall:
- location: scripts/after_install.sh
timeout: 300
runas: root
ApplicationStart:
- location: scripts/start_application.sh
timeout: 300
runas: root
AppSpec Configuration Explained
-
source: /my-react-app/distis where CodeBuild places the compiled files. -
destination: /var/www/html/is where Nginx serves static files. -
hooks:are scripts you define to run before/after install and on app start.
Step 5 CodePipeline Integration
In the AWS console search CodePipeline > Create Pipeline
This option allows us to build a custom pipeline to deploy from GitHub.
Click Next.
- Name the Pipeline: Choose a meaningful name.
- Service Role: Select New service role to allow AWS to create a role automatically.
- Advanced settings: Use the default location to allow AWS to create an S3 bucket for CodePipeline artifacts, which will maintain deployment history.
Source
I have previously connected to GitHub so I will be using that connection.
For New Connections:
Click Connect to GitHub.
Name your connection and click Connect to Github.
Click Authorize AWS Connector for Github to grant AWS access to your GitHub repository.
- A basic GitHub user connection suffices for our deployment pipeline.
- If working with multiple organizations, select the specific user or organization repositories you want to use.
- Click Connect.
Configure Source Stage
- Source Provider: GitHub (via GitHub App)
- Connection: Your GitHub connection
- Repository Name: Select your repository
- Default Branch: main
- Output Artifact Format: Default settings
- Webhook Events: Trigger the pipeline on push and pull request events.
- Click Next.
Build Stage
Here is where we will be the vite app using the buildspec.yml. so we will be creating a CodeBuild project to reference our file in the repo.
Click Create project
Keep the default settings.
Name your project.
A new service role will be create for us through AWS.
Buildspec
Build specifications: Use a buildspec file
Here is where your buildspec.yml in the repo will be referenced.
version: 0.2
phases:
install:
runtime-versions:
nodejs: 20
commands:
- cd ./my-react-app
- npm install
build:
commands:
- npm run build
artifacts:
files:
- 'my-react-app/dist/**/*'
- 'appspec.yml'
- 'scripts/**/*'
discard-paths: no
(This builds your Vite app and includes the dist, appspec.yml, and scripts folder in the output artifacts.)
BuildSpec Configuration Explained
-
cd ./my-react-appwill move to the react app folder -
npm installwill install all our node dependencies -
npm buildwill build our production static vite app into the dist folder - The
'./my-react-app/dist'line is to ensure all files in the build output are copied. -
'**/*'will include all build files in the root folder - The
appspec.ymlandscripts/**/*are explicitly listed to ensure they're included
Click Continue to CodePipeline
Build provider: Other build providers (AWS CodeBuild)
Build Type: Single Type
Region: Select your Region
Input artifacts: Keep defaults
Click Next
Deploy Stage
Here is how we will deploy to our EC2 instance. We will be using the CodeDeploy application we created earlier.
Deploy provider: CodeDeploy
Region: Select your region
Input artifacts: Keep defaults
Application name: vite-react-deploy
Deployment group: vite-react-group
Click Next
Review your settings than click "Create pipeline"
Your Pipeline will now run an each stage we worked on will get built.
Now head on over to your instance an get the public address our site should now be deployed on the EC2 Instance.
Conclusion
By following these steps, you’ve implemented a fully automated CI/CD pipeline using CodePipeline as the orchestrator an AWS Codebuild and CodeDeploy, EC2, and GitHub. This setup transforms your deployment process from fragile and manual to consistent, secure, and fast. You’ve minimized human error, introduced a clear rollback mechanism, and set the stage for more advanced enhancements—like adding integration tests, canary deployments, or blue/green strategies.
This is a crucial step toward embracing modern DevOps practices and ensures any team can deliver value to users with speed and confidence.
Top comments (0)