GitHub Actions are a great way to automate the build and deploy process for your repos.
Last updated
Was this helpful?
In this tutorial, I will show you how to build and deploy a Jekyll static site to AWS S3 + Cloudfront using GitHub Actions. At PagerTree we use GitHub Actions to automate the building and deploying of our marketing site .
These days, if you have to do anything manually more than a couple of times, you should probably be automating it. make it easy to automate software workflows. At PagerTree, we use GitHub Actions to deploy our marketing site in a continuous and reliable way.
For this tutorial, I’ll make the assumption that you are fairly familiar with git and and already have a setup.
Below I’ve listed what you’ll need for this tutorial. I’ll assume you are dangerous enough to create the following on your own and won’t cover how to create these, as it’s out of the scope of this post.
Jekyll static site
GitHub Account and Repo
AWS
Account
S3 Bucket with static hosting enabled
Bucket Permissions - Block all public access - Off -
Bucket Policy - Public Access Policy -
Static Website Hosting - Enabled -
Cloudfront distribution -
Access to create IAM User and Policy
Our desired workflow should look something like the following:
On push to our repo’s main branch or when manually clicked in GitHub:
Build the main branch.
Deploy the generated static site files to AWS S3.
Create an AWS Cloudfront invalidation.
This is pretty minimal, and you can get waaay fancier, but for the purpose of this tutorial it should help us understand how to use GitHub Actions.
Your GitHub Actions definitions live in a special directory in your repo (<repo>/.github/workflows/). Inside this directory, you’ll have all your workflow files (yml format).
In your <repo>/.github/workflows/ directory, create a new file called build_and_deploy.yml. Copy and paste the following into your newly created GitHub Action workflow:
This workflow file is responsible for building and deploying the site. We’ve named it “CI / CD”. It’s pretty self explanatory, but I’ll explain the process:
When a push is made into the main branch (or manual button click in GitHub), run this workflow.
Checkout our main branch.
Build the site (with the production environment).
Uploads output files from our _site directory to our S3 bucket.
Creates a Cloudfront invalidation (so we can see our new site immediately).
Pretty straight forward, but we still need to create a few resources in AWS and configure secrets in our GitHub repository.
We’ll need to create 2 AWS resources, namely an IAM Policy and User.
IAM Policy - will grant restricted access to deploy to our S3 bucket and create an invalidation on our Cloudfront distribution. You’ll attach this policy to the IAM User.
IAM User - will be the credentials the GitHub Action uses to run its aws-cli commands.
Below is the AWS IAM Policy you’ll need to create. You must modify it by replacing a couple of the items below (make sure to replace the ‘<’ and ‘>’ too).
<your-bucket-name> - Your S3 bucket name (ex: www.acme.com)
<your-aws-account-number> - The 12 numeric characters of your AWS account.
<your-distribution-id> - The alpha numeric 14 characters of your associated Cloudfront distribution
Copy the AWS access key ID and Secret access key to somewhere safe, as we will need these in our next step
In order to use the special variables like ${{ secrets.AWS_ACCESS_KEY_ID }} we’ll need to configure them in the GitHub Actions Secrets. To do this:
In GitHub, navigate to Your Repo > Settings > Secrets > Actions
For each secret below, click the New repository secret button, fill out the form, and click Add Secret
AWS_ACCESS_KEY_ID - What you copied in the previous step as AWS access key ID.
AWS_SECRET_ACCESS_KEY - What you copied in the previous step as Secret access key.
AWS_S3_BUCKET_NAME - The bucket name you set previously in your IAM Policy (ex: www.acme.com).
AWS_CLOUDFRONT_DISTRIBUTION_ID - The Cloudfront distribution id you set previously in your IAM Policy.
The easiest way to test your new GitHub action, is to:
Make a small change to your Jekyll site
Commit the change, and push to main.
Navigate to your website (https://www.acme.com), do a hard refresh (Ctrl + F5) and then you should see the changes you just made.
What you should see in the GitHub Actions panel, is a workflow that was created, and the output of the commands that were run.
Note: The first time this runs it could take ~5 minutes. The ‘bundle install’ command for our project took a while, but don’t worry, subsequent builds should use the bundle cache.
Workflows will trigger off events (aka specific activities) that happen in GitHub. There’s , but for this tutorial we will focus on the push and workflow_dispatch events.
The job - Use the Ubuntu latest virtual environment (see )
Setup our Ruby environment () - Installs Ruby (with specified Ruby version if you have a .ruby-version file) and runs ‘bundle install’.
In AWS,
and attach the IAM Policy you just created above.
That’s it, you’ve now successfully created a GitHub Action to build and deploy your Jekyll static site to S3 and Cloudfront. I hope you found some value in this tutorial, it’s pretty basic, but if your new to GitHub Actions it should provide a valuable launching pad. Make sure to follow me on , and if you haven’t yet, make sure to checkout PagerTree :)
