1. Answers
  2. How To Deploy Lambda With Docker Image From ECR?

How to Deploy Lambda With Docker Image From ECR?

Introduction

In this guide, we will deploy an AWS Lambda function using a Docker image stored in Amazon Elastic Container Registry (ECR) with Pulumi in TypeScript. This solution leverages AWS Lambda for serverless compute, Amazon ECR for container image storage, and Pulumi for infrastructure as code (IaC) to manage and deploy the resources.

Step-by-Step Explanation

Step 1: Set Up Pulumi Project

  1. Initialize a new Pulumi project.
  2. Install the necessary Pulumi packages for AWS.

Step 2: Create an ECR Repository

  1. Define an ECR repository in your Pulumi program.
  2. Push your Docker image to the ECR repository.

Step 3: Create an IAM Role for Lambda

  1. Define an IAM role with the necessary permissions for the Lambda function.

Step 4: Create the Lambda Function

  1. Define the Lambda function resource, specifying the Docker image from ECR.
  2. Configure the Lambda function settings such as memory, timeout, and environment variables.

Step 5: Deploy the Stack

  1. Run pulumi up to deploy the stack.
  2. Verify the Lambda function is created and configured correctly.

Key Points

  • AWS Lambda allows you to run code without provisioning or managing servers.
  • Amazon ECR is a fully managed container registry that makes it easy to store, manage, and deploy Docker container images.
  • Pulumi enables you to define and deploy cloud infrastructure using familiar programming languages.
  • Ensure that the IAM role has the necessary permissions for the Lambda function to access other AWS services if needed.

Conclusion

By following this guide, you have successfully deployed an AWS Lambda function using a Docker image from Amazon ECR with Pulumi in TypeScript. This approach provides a scalable and efficient way to manage serverless applications using container images and infrastructure as code.

Full Code Example

import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";

// Create an ECR repository
const ecrRepository = new aws.ecr.Repository("my-ecr-repo");

// Create an IAM role for the Lambda function
const lambdaRole = new aws.iam.Role("lambda-role", {
    assumeRolePolicy: {
        Version: "2012-10-17",
        Statement: [
            {
                Action: "sts:AssumeRole",
                Principal: {
                    Service: "lambda.amazonaws.com",
                },
                Effect: "Allow",
                Sid: ""
            }
        ]
    }
});

// Attach the AWSLambdaBasicExecutionRole policy to the role
new aws.iam.RolePolicyAttachment("lambda-role-attachment", {
    role: lambdaRole.name,
    policyArn: "arn:aws:iam::aws:policy/service-role/AWSLambdaBasicExecutionRole"
});

// Define the Lambda function
const lambdaFunction = new aws.lambda.Function("my-lambda-function", {
    packageType: "Image",
    imageUri: pulumi.interpolate`${ecrRepository.repositoryUrl}:latest`,
    role: lambdaRole.arn,
    timeout: 300,
    memorySize: 512,
    environment: {
        variables: {
            "ENV_VAR": "value"
        }
    }
});

// Export the Lambda function ARN and ECR repository URI
export const lambdaFunctionArn = lambdaFunction.arn;
export const ecrRepositoryUri = ecrRepository.repositoryUrl;

Deploy this code

Want to deploy this code? Sign up for a free Pulumi account to deploy in a few clicks.

Sign up

New to Pulumi?

Want to deploy this code? Sign up with Pulumi to deploy in a few clicks.

Sign up