Next.js App Runner Deployment with CloudFront
This project demonstrates how to deploy a Next.js application using AWS App Runner and CloudFront. It uses the AWS CDK to define and deploy the infrastructure. The project is managed with projen and includes several custom tasks to support the development process.
Architecture
The architecture consists of the following components:
- A Next.js application
- AWS App Runner to host and run the Next.js application
- Amazon CloudFront as a content delivery network (CDN) in front of App Runner
- AWS CDK to define and deploy the infrastructure
Key Features
- Serverless deployment of a Next.js application using AWS App Runner
- CloudFront distribution with custom origin request policy
- Automated CI/CD pipeline using GitHub Actions
- Infrastructure as Code using AWS CDK
Prerequisites
- AWS Account
- Node.js (version 18 or later)
- AWS CDK CLI
- Docker (for local development and testing)
Getting Started
-
Clone the repository:
git clone https://github.com/schuettc/next-js-app-runner-deployment.git cd next-js-app-runner-deployment -
Install dependencies:
yarn -
Deploy the stack:
yarn launch
Project Structure
src/: Contains the CDK infrastructure codeappRunner.ts: Defines the App Runner servicecloudfront.ts: Sets up the CloudFront distributionnext-js-app-runner-deployment.ts: Main stack definition
src/resources/app/: Contains the Next.js application code
Custom Origin Request Policy
This project implements a custom origin request policy for CloudFront, which is required when using App Runner as the origin. The policy allows specific headers to be forwarded to the origin:
const customOriginRequestPolicy = new OriginRequestPolicy( this, 'UserAgentRefererHeadersPolicy', { headerBehavior: OriginRequestHeaderBehavior.allowList( 'User-Agent', 'Referer', ), }, );
This custom policy ensures that the User-Agent and Referer headers are forwarded to the App Runner service, which solves the 404 error that occurs when using AppRunner as the origin for a CloudFront distribution.
https://docs.aws.amazon.com/apprunner/latest/dg/request-route-404-troubleshoot.html
Deployment
The project includes a GitHub Actions workflow for automated deployments. When you push changes to the main branch, it will automatically deploy the updated stack to AWS.
To deploy manually:
- Configure your AWS credentials
- Run
yarn deploy
projen configuration
const deploy = project.github?.addWorkflow('deploy'); deploy?.on({ push: { branches: ['main'], }, workflow_dispatch: {}, }); deploy?.addJobs({ deploy: { runsOn: ['ubuntu-latest'], permissions: { contents: JobPermission.READ, id_token: JobPermission.WRITE, }, steps: [ { uses: 'actions/checkout@v4' }, { uses: 'actions/setup-node@v4', with: { 'node-version': '18', }, }, { run: 'yarn install --frozen-lockfile' }, { uses: 'aws-actions/configure-aws-credentials@v4', with: { 'aws-access-key-id': '${{ secrets.AWS_ACCESS_KEY_ID }}', 'aws-secret-access-key': '${{ secrets.AWS_SECRET_ACCESS_KEY }}', 'aws-region': '${{ secrets.AWS_REGION }}', }, }, { run: 'npx cdk deploy --require-approval never' }, ], }, });
Local Development
To run the Next.js application locally:
-
Navigate to the app directory:
cd src/resources/app -
Install dependencies:
yarn -
Start the development server:
yarn dev -
Open http://localhost:3000 in your browser
GitHub Updates with Projen
The project uses projen to manage the project and the Next.js application. We have replaced the default projen upgrade with a custom upgrade. This allows us to upgrade the dependencies for both the main project and the Next.js application in a single step.
const upgradeWorkflow = project.github?.addWorkflow('upgrade'); upgradeWorkflow?.on({ schedule: [{ cron: '0 0 * * 1' }], workflow_dispatch: {}, }); upgradeWorkflow?.addJobs({ upgrade: { runsOn: ['ubuntu-latest'], permissions: { contents: JobPermission.WRITE, pullRequests: JobPermission.WRITE, }, steps: [ { uses: 'actions/checkout@v4' }, { uses: 'actions/setup-node@v4', with: { 'node-version': '18' } }, { run: 'yarn install' }, { run: 'npx projen upgrade:projen' }, { run: 'npx projen upgrade:nextjs' }, { name: 'Create Pull Request', uses: 'peter-evans/create-pull-request@v6', with: { 'token': '${{ secrets.PROJEN_GITHUB_TOKEN }}', 'commit-message': 'chore: upgrade dependencies', 'branch': 'projen-upgrade', 'title': 'chore: upgrade dependencies', 'body': 'This PR upgrades project dependencies, including projen and Next.js. Auto-generated by projen upgrade workflow.', }, }, ], }, }); project.addTask('upgrade:nextjs', { exec: ['cd src/resources/app', 'yarn upgrade --latest', 'cd ../../..'].join( ' && ', ), }); project.addTask('upgrade:projen', { description: 'Upgrade projen dependencies', steps: [ { exec: 'yarn upgrade projen @projen/awscdk-app-ts' }, { exec: 'npx projen' }, ], });
