Create service role for CodeBuild service

Create service role for CodeBuild service

  1. CodeBuild requires IAM roles to build docker, push images, and interact with the EKS cluster using the kubectl command.
  • Let’s create role eks-CodePipelineServiceRole and add inline policy from terminal Cloud9
wget https://raw.githubusercontent.com/First-Cloud-Journey/000062-EKSCICD/main/codebuild/cbAssumeRolePolicyDocument.json
aws iam create-role --role-name eks-CodeBuildServiceRole --assume-role-policy-document file://cbAssumeRolePolicyDocument.json
wget https://raw.githubusercontent.com/First-Cloud-Journey/000062-EKSCICD/main/codebuild/cbPolicyDocument.json
aws iam put-role-policy --role-name eks-CodeBuildServiceRole --policy-name codebuild-access --policy-document file://cbPolicyDocument.json

Create Code Build Service Role

  1. We check the created role, we do:

Create Code Build Service Role

  1. In the IAM interface
  • Select Role
  • Find eks-Code
  • View the 2 Roles just created

Create Code Build Service Role