By Syed Rizwan

deploying-a-secure-laravel-application-on-aws-with-cicd.html

Deploying a Secure Laravel Application on AWS with CI/CD

In today's fast-paced digital landscape, deploying a secure web application is crucial for businesses and developers alike. Laravel, a popular PHP framework, makes it easier to build robust applications. When combined with Amazon Web Services (AWS) and Continuous Integration/Continuous Deployment (CI/CD) practices, developers can streamline their deployment process while ensuring security and performance. In this article, we will explore how to deploy a secure Laravel application on AWS using CI/CD, complete with detailed instructions, code snippets, and best practices.

Why Choose Laravel and AWS?

Key Benefits of Laravel

  • Elegant Syntax: Laravel offers a clean and elegant syntax that simplifies complex tasks.
  • Built-in Features: It comes with features like routing, sessions, and caching, reducing development time.
  • Community Support: A strong community means plenty of resources and packages to extend functionality.

Advantages of AWS

  • Scalability: AWS allows your application to scale effortlessly based on user demand.
  • Global Reach: With data centers across the globe, you can serve your application closer to users.
  • Robust Security: AWS provides a range of security tools to protect your application and data.

Setting Up Your Environment

Step 1: Create an AWS Account

If you don’t already have an AWS account, go to AWS's website and sign up. You can start with the free tier to familiarize yourself with the platform.

Step 2: Launch an EC2 Instance

  1. Log in to the AWS Management Console.
  2. Navigate to the EC2 Dashboard.
  3. Click on Launch Instance.
  4. Choose an Amazon Machine Image (AMI). For Laravel, the Ubuntu Server is a great choice.
  5. Select an instance type (t2.micro is suitable for testing).
  6. Configure instance details, add storage, and configure security group settings to allow HTTP (port 80) and SSH (port 22).
  7. Review and launch the instance.

Step 3: Install Necessary Software

After launching your EC2 instance, SSH into it:

ssh -i "your-key.pem" ubuntu@your-ec2-public-dns

Once logged in, update your package manager and install the necessary software:

sudo apt update && sudo apt upgrade -y
sudo apt install php php-mbstring php-xml php-mysql composer nginx git -y

Step 4: Deploy Laravel Application

  1. Clone Your Laravel Application:

Navigate to the directory where you want to deploy your application and clone your repository:

bash git clone https://github.com/your-repo/your-laravel-app.git cd your-laravel-app

  1. Install Dependencies:

bash composer install

  1. Set Environment Variables:

Copy the .env.example to .env and configure your database and other settings:

bash cp .env.example .env php artisan key:generate

  1. Run Migrations:

Ensure your database is set up and run migrations:

bash php artisan migrate

  1. Configure Nginx:

Create a new Nginx server block for your Laravel application:

bash sudo nano /etc/nginx/sites-available/your-laravel-app

Add the following configuration:

```nginx server { listen 80; server_name your-domain.com;

   root /var/www/your-laravel-app/public;

   index index.php index.html index.htm;

   location / {
       try_files $uri $uri/ /index.php?$query_string;
   }

   location ~ \.php$ {
       include snippets/fastcgi-php.conf;
       fastcgi_pass unix:/var/run/php/php7.4-fpm.sock;
       fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
       include fastcgi_params;
   }

   location ~ /\.ht {
       deny all;
   }

} ```

Enable the configuration and restart Nginx:

bash sudo ln -s /etc/nginx/sites-available/your-laravel-app /etc/nginx/sites-enabled/ sudo systemctl restart nginx

Implementing CI/CD with GitHub Actions

Step 1: Create a GitHub Workflow

In your Laravel project, create a directory named .github/workflows and a file named ci-cd.yml:

name: CI/CD Pipeline

on:
  push:
    branches:
      - main

jobs:
  build:
    runs-on: ubuntu-latest

    steps:
      - name: Checkout Repository
        uses: actions/checkout@v2

      - name: Set up PHP
        uses: shivammathur/php-actions/setup@v2
        with:
          php-version: '8.0'

      - name: Install Composer Dependencies
        run: composer install --no-progress --no-suggest --prefer-dist

      - name: Run Tests
        run: php artisan test

      - name: Deploy to AWS
        run: |
          ssh -i "your-key.pem" ubuntu@your-ec2-public-dns "cd /var/www/your-laravel-app && git pull origin main && composer install && php artisan migrate"

Step 2: Secure Your Deployment

  • SSH Keys: Ensure that your deployment key has restricted access and is not publicly exposed.
  • Environment Variables: Use AWS Secrets Manager or Parameter Store to manage sensitive configurations securely.

Conclusion

Deploying a secure Laravel application on AWS using CI/CD can significantly enhance your development workflow. By following the steps outlined in this guide, you can set up a scalable and secure environment that allows for quick iterations and updates. With Laravel's powerful features and AWS's robust infrastructure, your application is well-positioned for success. Remember to follow best practices for security and performance, and keep your dependencies up-to-date for optimal results. Happy coding!

SR
Syed
Rizwan

About the Author

Syed Rizwan is a Machine Learning Engineer with 5 years of experience in AI, IoT, and Industrial Automation.