amazon-web-services - Amazon cli 映像不适用于 Gitlab CI
问题描述
我正在尝试使用官方 aws 映像运行 aws 命令(使云端无效),并具有以下 .gitlab-ci.yml 配置:
static-invalidation:
<<: *production-env
stage: static_invalidation
image: amazon/aws-cli:latest
variables:
AWS_ACCESS_KEY_ID: $CLOUDFRONT_AWS_ACCESS_KEY_ID
AWS_SECRET_ACCESS_KEY: $CLOUDFRONT_AWS_SECRET_ACCESS_KEY
script:
- aws cloudfront create-invalidation --distribution-id $CLOUDFRONT_DISTRIBUTION --invalidation-batch file://deployment/configs/inv-batch.json
作业失败并出现以下错误:
Using docker image sha256:00cf4f100b03d1b26e93cce377c1311c34efa753e379cd5c6ea5d458337cbaab for amazon/aws-cli:2.2.17 with digest amazon/aws-cli@sha256:39e9898fc43f618636a2190f82b9babcdc618d054e66b49c9959b9cd23285ade ...
usage: aws [options] <command> <subcommand> [<subcommand> ...] [parameters]
To see help text, you can run:
aws help
aws <command> help
aws <command> <subcommand> help
aws: error: argument command: Invalid choice, valid choices are:
accessanalyzer | acm
acm-pca | alexaforbusiness
...
ERROR: Job failed: exit code 252
任何想法为什么它不起作用?当我在本地运行命令时,它可以工作。
解决方案
amazon/aws-clidocker 已将入口点设置aws为预期的执行方式
$ docker run amazon/aws-cli cloudfront create-invalidation --distribution-id ...
但是 gitlab 期望 shell 的入口点,因此它可以执行script命令。
查看 gitlab 文档:https ://docs.gitlab.com/ee/ci/docker/using_docker_images.html#available-settings-for-image
您将在那里找到如何覆盖 docker 图像入口点。
工作配置是:
image:
name: amazon/aws-cli:2.2.18
entrypoint: [""]