AWS + GitHub Actions β Automate Deployments Like a Pro
Build Seamless CI/CD Pipelines from GitHub to AWS for EC2, S3, Lambda & More
In modern cloud development, automation is non-negotiable. GitHub Actions allows you to automate build, test, and deployment pipelinesβand when combined with AWS, it enables powerful DevOps workflows.
This chapter shows you:
- How GitHub Actions works
- How to deploy to AWS EC2, S3, Lambda
- How to store secrets securely
- How to write YAML workflows
- Real-world CI/CD examples
What is GitHub Actions?
GitHub Actions is a built-in automation feature in GitHub that allows you to define workflows using YAML files in your repo.
You can trigger actions:
- On code push, pull request, merge
- On manual trigger (workflow_dispatch)
- On cron schedule
GitHub Workflow Structure
name: CI/CD to AWS
on:
push:
branches:
- main
jobs:
deploy:
runs-on: ubuntu-latest
steps:
- name: Checkout Repo
uses: actions/checkout@v3
- name: Run Deployment Script
run: ./deploy.sh
Step 1: Store AWS Credentials in GitHub Secrets
Go to your GitHub repo β Settings β Secrets β Actions
Add:
| Name | Value |
|---|---|
AWS_ACCESS_KEY_ID | Your IAM access key |
AWS_SECRET_ACCESS_KEY | Your IAM secret key |
(Optional) AWS_REGION | e.g., us-east-1 |
β οΈ Use an IAM user with least privilege access to required services.
Step 2: Deploy to AWS EC2 Using GitHub Actions
Sample Workflow: Upload Code to EC2 via SSH
name: Deploy to EC2
on:
push:
branches:
- main
jobs:
deploy:
runs-on: ubuntu-latest
steps:
- name: Checkout code
uses: actions/checkout@v3
- name: Copy files to EC2
uses: appleboy/scp-action@v0.1.7
with:
host: ${{ secrets.EC2_HOST }}
username: ec2-user
key: ${{ secrets.EC2_SSH_KEY }}
source: "."
target: "/home/ec2-user/app"
- name: Restart App
uses: appleboy/ssh-action@master
with:
host: ${{ secrets.EC2_HOST }}
username: ec2-user
key: ${{ secrets.EC2_SSH_KEY }}
script: |
cd /home/ec2-user/app
pm2 restart all
Make sure
EC2_SSH_KEYis your PEM file contents (no line breaks issues).
Step 3: Deploy Static Site to S3 with CloudFront Cache Invalidation
name: Deploy Static Site
on:
push:
branches:
- main
jobs:
deploy:
runs-on: ubuntu-latest
steps:
- name: Checkout code
uses: actions/checkout@v3
- name: Sync to S3
uses: jakejarvis/s3-sync-action@master
with:
args: --acl public-read --delete
env:
AWS_S3_BUCKET: my-site-bucket
AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }}
AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
AWS_REGION: "us-east-1"
SOURCE_DIR: "."
- name: Invalidate CloudFront Cache
run: |
aws cloudfront create-invalidation \
--distribution-id ${{ secrets.CF_DIST_ID }} \
--paths "/*"
Step 4: Deploy Lambda Function Using AWS CLI
Deploy zipped function to AWS Lambda
- name: Zip Function
run: zip -r function.zip .
- name: Deploy Lambda
run: |
aws lambda update-function-code \
--function-name MyLambdaFunction \
--zip-file fileb://function.zip
env:
AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }}
AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
AWS_REGION: us-east-1
π‘ Pro Tips for Using GitHub Actions with AWS
| Tip | Reason |
|---|---|
Use workflow_dispatch to test | Allows manual triggering |
Use matrix builds for multi-env | Deploy to staging & prod in parallel |
Add if: statements for env control | Prevent accidental prod deploy |
| Cache dependencies | Improve pipeline speed |
Use separate dev & prod workflows | Safer deployment process |
Useful GitHub Actions Marketplace Tools
| Tool | Use |
|---|---|
appleboy/scp-action | Upload files via SCP |
jakejarvis/s3-sync-action | Sync static files to S3 |
aws-actions/configure-aws-credentials | Authenticate AWS CLI |
docker/setup-buildx-action | Use Docker with AWS ECR |
actions/cache | Cache node_modules or Python deps |
Bonus: CI/CD for CloudFormation
- name: Deploy CloudFormation
run: |
aws cloudformation deploy \
--template-file template.yaml \
--stack-name my-app-stack \
--capabilities CAPABILITY_IAM
π‘ Explore More AWS Tools & Resources
Educational AI Tutor
Get instant AWS-related answers and explanations using AI.
Interview Question Generator
Generate AWS interview questions for practice and preparation.
AWS Practice Quiz
Test your AWS knowledge with timed quizzes and scoring.
AWS Interview Questions
Browse frequently asked AWS interview questions with answers.