Uploaded image for project: 'Bitbucket Cloud'
  1. Bitbucket Cloud
  2. BCLOUD-12748

Run build on customer's ECS/Kube/VPC

    XMLWordPrintable

    Details

    • Feedback Policy:

      Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

      Description

      It would be powerful if Bitbucket would allow Pipelines to be executed as a task in a customer's EC2 Container Service (ECS) cluster. This would allow customers to:

      • Access private resources in their VPC such as a private package repository.
      • Use IAM roles (e.g. not disclose their AWS secret keys to you).
      • Scale their own build fleets.

      I would imagine the flow would go something like this:

      • The customer creates a predefined IAM role (copy and paste from the documentation) that allows the following permissions: RegisterTaskDefinition, RunTask, StopTask, and ListTasks (possibly more).
      • The Customer than grants the Bitbucket AWS account the STS AssumeRole permission.
      • The Customer configures their ECS Integration by specifying the cluster name, CPU/memory limits, etc...
      • When starting a pipeline you would call the RegisterTaskDefinition API (if the TaskDefinition doesn't already exist) and run the task.

      Thanks,
      Adam

        Attachments

          Activity

            People

            Assignee:
            Unassigned
            Reporter:
            ba699990067b adam_w-innovations
            Votes:
            5 Vote for this issue
            Watchers:
            4 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: