Phase 3 - Container Infrastructure
1. Create ECR repository and push backend image
Open ECR Console -
Repositories-Create repository.
Enter Repository name:
myfit-backend.Select Image tag mutability:
MUTABLE.Select Encryption configuration:
AES256.Confirm repository URI format:
<your-account-id>.dkr.ecr.us-east-1.amazonaws.com/myfit-backend.
Build and push image to ECR:
aws ecr get-login-password --region us-east-1 | docker login --username AWS --password-stdin <your-account-id>.dkr.ecr.us-east-1.amazonaws.com
docker build -t <your-account-id>.dkr.ecr.us-east-1.amazonaws.com/myfit-backend:latest .
docker push <your-account-id>.dkr.ecr.us-east-1.amazonaws.com/myfit-backend:latest
2. Create ECS cluster
Open ECS Console -
Clusters-Create cluster.
Enter Cluster name:
<your-ecs-cluster-name>.Pick
Fargate only.
Set Container Insights to either Disable or enable.
Click
Create.
Confirm cluster status:
ACTIVE.Copy cluster ARN:
<your-cluster-arn>.
3. Register backend task definition
- Open ECS Console -
Task definitions-Create new task definition.
- Paste and edit this JSON base on your actual arn service ID:
{
"family": "myfit-backend-task",
"taskRoleArn": "arn:aws:iam::YOUR_ACCOUNT_ID:role/myfit-task-role",
"executionRoleArn": "arn:aws:iam::YOUR_ACCOUNT_ID:role/myfit-task-execution-role",
"networkMode": "awsvpc",
"requiresCompatibilities": [
"FARGATE"
],
"cpu": "256",
"memory": "512",
"containerDefinitions": [
{
"name": "web",
"image": "YOUR_ACCOUNT_ID.dkr.ecr.us-east-1.amazonaws.com/myfit-backend:latest",
"essential": true,
"portMappings": [
{
"containerPort": 8080,
"hostPort": 8080,
"protocol": "tcp"
}
],
"environment": [
{
"name": "SPRING_PROFILES_ACTIVE",
"value": "prod"
},
{
"name": "AWS_REGION",
"value": "us-east-1"
},
{
"name": "DB_URL",
"value": "jdbc:postgresql://YOUR_RDS_ENDPOINT:5432/myfit?ssl=true&sslmode=require"
},
{
"name": "CORS_ALLOWED_ORIGINS",
"value": "https://YOUR_DOMAIN,https://*.cloudfront.net,http://localhost:8081,http://localhost:19006"
},
{
"name": "COGNITO_ISSUER_URI",
"value": "https://cognito-idp.us-east-1.amazonaws.com/YOUR_USER_POOL_ID"
},
{
"name": "COGNITO_USER_POOL_ID",
"value": "YOUR_USER_POOL_ID"
},
{
"name": "S3_BUCKET_NAME",
"value": "YOUR_MEDIA_BUCKET_NAME"
}
],
"secrets": [
{
"name": "DB_USERNAME",
"valueFrom": "arn:aws:secretsmanager:us-east-1:YOUR_ACCOUNT_ID:secret:YOUR_DB_SECRET_NAME:username::"
},
{
"name": "DB_PASSWORD",
"valueFrom": "arn:aws:secretsmanager:us-east-1:YOUR_ACCOUNT_ID:secret:YOUR_DB_SECRET_NAME:password::"
},
{
"name": "BEDROCK_API_KEY",
"valueFrom": "arn:aws:secretsmanager:us-east-1:YOUR_ACCOUNT_ID:secret:YOUR_BEDROCK_SECRET_NAME"
}
],
"logConfiguration": {
"logDriver": "awslogs",
"options": {
"awslogs-group": "/ecs/myfit-backend",
"awslogs-region": "us-east-1",
"awslogs-stream-prefix": "backend",
"awslogs-create-group": "true"
}
}
}
]
}
Click
Create.
Confirm task definition status:
ACTIVE.
4. Phase completion checklist
- Confirm ECR repository
myfit-backendexists. - Confirm image tag
latestis pushed. - Confirm ECS cluster status is
ACTIVE. - Confirm task definition status is
ACTIVE. - Confirm task definition uses
FARGATE,awsvpc, CPU256, memory512. - Confirm container
webuses image<your-account-id>.dkr.ecr.us-east-1.amazonaws.com/myfit-backend:latestand port8080/tcp. - Confirm environment variables, secrets, and awslogs values match section 3.