This is a Terraform module implements the necessary moving parts to take a path that contains a Python or Node project and into a .zip
payload for deployment to AWS Lambda.
It requires that you have the following packages installed:
jq
pyenv
openssl
- BSD
md5
or Linuxmd5sum
python2.7
,python3.6
andpython3.7
, selectable viapyenv
node
andnpm
virtualenv
, in the selected python runtime, installed viapip
terraform
v0.11.2 or higher. This project may be usable with lower, but it is untested. It is currently untested with v0.12.x.
This module exists to make it easier to construct stable, long-lived zipped payloads for AWS Lambda functions, allowing for the Python or NodeJS Lambda functions to live in the same repository as the rest of the infracode.
This module makes extensive use of null_resource
s and temporary directories (from $TMPDIR
) to construct a project directory that is zipped according to the AWS documentation.
Because it uses temporary directories extensively, it requires a user-provided output path to ensure that the written zip is not cleaned up during normal system maintenance.
For Python, this project directory will include building a private virtualenv and running python -m compileall
, in order to create the appropriate .pyc
files. This is done to ensure faster startup time for the Lambda function.
Installing node_modules
is handled in a temporary work directory, to avoid cluttering the repository.
Payload zip files are written in the form of ${var.name}_{epoch}_payload.zip
. This is done to provide a stable indicator of whether or not a file has been deleted, and if it needs to be re-created.
module "zip_test" {
source = "github.com/Eiara/terraform_lambda_zip"
name = "test"
project_path = "${path.module}/lambda"
output_path = "${path.module}/output_path"
runtime = "python3.6"
dependencies_file = "${path.module}/lambda/requirements.txt"
}
name
: the name of this zip. used to construct the payload zip filename.project_path
: The path to your Python lambda project, not the.py
file.output_path
: Where to write the final zip.runtime
: supports nodejs6.10, nodejs8.10, nodejs10.x, python2.7, python3.6, python3.7dependencies_file
: Optional. Not providing a dependency file will otherwise work normally. This largely exists to support Python projects that update the requirements file out of band.
path
: The path to the final zip. This will be in the form of${var.name}_{epoch}_payload.zip
, to allow for multiple uses of this module in a projectsha256
: abase64sha256()
-compatible sha256 representing the archive, for use in source_code_hash.filename
: The filename being exported.md5
: Suitable for using in the S3 bucket object etag.
This project does not use the Terraform data source archive_file
, even though it looks like it should.
The reason it doesn't is that it uses a shasum of the lambda source to build a temporary directory to install packages and compile source.
When the project sha changes, archive_file
will error because it can't find the original source directory, which prevents Terraform from running.
As a result, we use custom per-language archival scripts to mimic the archive_file
functionality.
This project is Copyright 2018-2019 Eiara Limited, and licensed under the terms of the MIT license.