This deploys listmonk to AWS and contains configuration files to make it look good.
The app itself is deployed to AWS Lambda using a Docker Container.
The container communicates over HTTP, and this is translated to a Lambda
handler using aws-lambda-adapter
AWS SAM is used to wrap everything up and deploy it.
The application frontend is styled to look like DC's other products.
This is done according to the listmonk templating docs.
The design system is implemented using a Makefile to write to the static directory.
To make the design system and update the CSS, run make static from the
root folder. sass needs to be on your PATH for this to work, best
installed with npm install -g sass.
Listmonk manages the email templates via the frontend / database.
In order to keep these templates in source control, we have checked them in to
app_assets.
You need to login to the admin interface and copy/paste the contents of these files into the 'templates' section under campaigns.
Of course, it's possible to just update the templates in the admin interface, however it's much better to do the work locally first and copy the finished template to the production environment.
You should only need to run locally to change the templates / theme.
If this is the first time running locally:
Download listmonk as per https://listmonk.app/#download
Run listmonk --new-config
Edit config.yaml with your DB setting.
Run listmonk --install
Run listmonk --static-dir=app/static
Visit http://localhost:3000
- Log in to the AWS SSO account you want to deploy to
export DC_ENVIRONMENT=according to the environment you're deploying to- run
make deploy
- Make sure you have a hosted one for your domain name in the account you're using and the hosted zone is 'live' (the DNS is pointed to it).
- Create an ACM cert in the us-west-1 location and verify it
- Grab the ARN of the cert and add it to the parameter store (see below)
We need to give ListMonk an IAM user for uploading media (it doesn't support role based authentication).
In the S3 console, make a new bucket [bucket_name] and ensure that public access _is not blocked. Also allow ACLs under object ownership.
In the AWS account you're using, create a new IAM user (the name doesn't matter) and give it the following inline policy:
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "Statement1",
"Effect": "Allow",
"Action": ["s3:*"],
"Resource": [
"arn:aws:s3:::[bucket_name]",
"arn:aws:s3:::[bucket_name]/*"
]
}
]
}Create new access keys for the user, ignoring the wanings about using role based auth.
Make a note of the Access key and Secret access key for later.
/MailingList/S3MediaBucketNameMedia bucket name (as above)/MailingList/ListMonkFQDNDomain name/MailingList/CertificateArnACM ARN (as above)/MailingList/CloudFrontOriginTokenA private token to prevent direct access to API Gateway. Set to something long and unguessable/MailingList/ListMonkApiKeyThe API key that ListMonk API Clients must use to authenticate againsthttps://{ListMonkFQDN}/api/via theAuthorizationheader/MailingList/userPoolAppIdThe Cognito app ID to use/MailingList/userPoolAppSecretThe Cognito app secret/MailingList/userPoolDomainThe Cognito user pool domain/MailingList/userPoolIdThe Cognito user pool ID/MailingList/LISTMONK_db__hostThe RDS host/MailingList/LISTMONK_db__userThe RDS user/MailingList/LISTMONK_db__passwordThe RDS password