A developer asks you to help on setting up AWS CodeBuild for a new Java project.
The project is built by Maven.
In its buildspec.yml file,there are several phases such as install, pre_build and build.
There is a requirement that if a command in a phase has failed, CodeBuild still has a chance to run some shell commands to do custom operations such as log collection.
How should you configure the CodeBuild project to meet the need?
Click on the arrows to vote for the correct answer
A. B. C. D.Correct Answer - B.
To deal with the situation mentioned in the question, the buildspec.yml file has provided the optional finally block to execute commands even if a command in the commands block fails.
The reference is in.
https://docs.aws.amazon.com/codebuild/latest/userguide/build-spec-ref.html.Option A is incorrect: The post_build phase can run if the build phase fails.
However, if the install or pre-build phase fails, the project is finalized without the post_build phase being executed.
Option B is CORRECT: For example:
install:
commands:
- apt-get install -y maven.
finally:
- echo The shell commands here always run even if the above command fails.
Option C is incorrect: Because the rule is created for any CodeBuild project failure.
That means other projects may trigger this CloudWatch Event rule as well.
Option D is incorrect: Because this is not a straightforward approach since the buildspec.yml file already provides a block to execute the required commands.
The correct answer for this question is B. Add a finally block after the commands block in each phase. Put the custom shell commands in the finally block.
Explanation: AWS CodeBuild is a fully managed continuous integration service that can compile, test, and package your code in response to code changes. CodeBuild is highly customizable and can work with various build tools, including Maven, Gradle, and Ant. The buildspec.yml file defines the build process for CodeBuild, which includes a series of phases and commands.
In this scenario, the developer has asked for help in setting up CodeBuild for a new Java project built by Maven. The buildspec.yml file has several phases, and there is a requirement that if a command in a phase fails, CodeBuild should still have a chance to run some shell commands for custom operations like log collection.
Option A suggests putting the custom operation commands in the post_build phase so that they can still run when the build fails. This option is incorrect because the post_build phase only runs after a successful build. Therefore, the custom operations will not be executed if the build fails.
Option B is the correct answer. It suggests adding a finally block after the commands block in each phase and putting the custom shell commands in the finally block. The finally block always runs, regardless of whether the preceding commands were successful or not. This approach ensures that the custom operations will be executed even if a command in a phase fails.
Option C suggests creating a CloudWatch Events rule for any CodeBuild failure event and adding a Lambda Function as the target to do custom operations. This approach is feasible but overly complicated compared to Option B. Additionally, the Lambda Function will have to parse the CodeBuild log to determine which phase or command failed before executing the custom operations.
Option D suggests triggering an SNS notification if a build fails in the CodeBuild project and using a Lambda Function to subscribe to the SNS topic and handle the required custom operations. This option is also feasible but overly complicated compared to Option B. Additionally, it requires setting up an SNS topic and a Lambda Function, which may not be necessary for this use case.
In summary, adding a finally block after the commands block in each phase and putting the custom shell commands in the finally block is the best approach to meet the requirement of executing custom operations even if a command in a phase fails.