Hi everyone, I’ve come across a design question and would like to ask for your opinions.
My project consists of three stacks (dev, qa, prod) and each stack should have its own AWS account to ensure a strict separation of resources. The team want’s to use GitHub Actions, how would you do application deployments or a central resource like a elastic container registry. Put them in a fourth CI/CD/Management account or have them just in the development account and wrap the resource in something like:
if pulumi.getStack() == "dev" ...
How do you do multi-stage setups like these?
06/21/2023, 1:18 PM
i personally advocate for creating a “shared services” account for situations like this