aws-samples
diff --git a/‎.github/renovate.yml‎
Lines changed: 39 additions & 17 deletions b/‎.github/renovate.yml‎
Lines changed: 39 additions & 17 deletions
diff --git a/‎infra/cdk/src/main/java/sample/com/WorkshopApp.java‎
Lines changed: 1 addition & 3 deletions b/‎infra/cdk/src/main/java/sample/com/WorkshopApp.java‎
Lines changed: 1 addition & 3 deletions
diff --git a/‎infra/cdk/src/main/java/sample/com/WorkshopStack.java‎
Lines changed: 5 additions & 7 deletions b/‎infra/cdk/src/main/java/sample/com/WorkshopStack.java‎
Lines changed: 5 additions & 7 deletions
diff --git a/‎infra/cdk/src/main/java/sample/com/constructs/CodeBuild.java‎
Lines changed: 1 addition & 1 deletion b/‎infra/cdk/src/main/java/sample/com/constructs/CodeBuild.java‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎infra/cdk/src/main/java/sample/com/constructs/Ide.java‎
Lines changed: 28 additions & 34 deletions b/‎infra/cdk/src/main/java/sample/com/constructs/Ide.java‎
Lines changed: 28 additions & 34 deletions
diff --git a/‎infra/cdk/src/main/resources/ec2-userdata.sh‎
Lines changed: 0 additions & 99 deletions b/‎infra/cdk/src/main/resources/ec2-userdata.sh‎
Lines changed: 0 additions & 99 deletions
@@ -3,6 +3,7 @@ extends:
 schedule:
   - "before 6am on monday"
 regexManagers:
+  # Development tools
   - fileMatch:
       - "^infra/scripts/.*\\.sh$"
     matchStrings:
@@ -12,49 +13,70 @@ regexManagers:
   - fileMatch:
       - "^infra/scripts/.*\\.sh$"
     matchStrings:
-      - "MAVEN_VERSION=\"(?<currentValue>.*?)\""
-    datasourceTemplate: github-releases
-    depNameTemplate: apache/maven
+      - "NODE_VERSION=\"(?<currentValue>.*?)\""
+    datasourceTemplate: node-version
+    depNameTemplate: node
   - fileMatch:
       - "^infra/scripts/.*\\.sh$"
     matchStrings:
-      - "KUBECTL_VERSION=\"(?<currentValue>.*?)\""
+      - "MAVEN_VERSION=\"(?<currentValue>.*?)\""
     datasourceTemplate: github-releases
-    depNameTemplate: kubernetes/kubernetes
+    depNameTemplate: apache/maven
+
+  # VS Code tools
   - fileMatch:
       - "^infra/scripts/.*\\.sh$"
     matchStrings:
-      - "HELM_VERSION=\"(?<currentValue>.*?)\""
+      - "VSCODE_VERSION=\"(?<currentValue>.*?)\""
     datasourceTemplate: github-releases
-    depNameTemplate: helm/helm
+    depNameTemplate: coder/code-server
+
+  # Kubernetes tools
   - fileMatch:
       - "^infra/scripts/.*\\.sh$"
     matchStrings:
-      - "EKSCTL_VERSION=\"(?<currentValue>.*?)\""
+      - "KUBECTL_VERSION=\"(?<currentValue>.*?)\""
     datasourceTemplate: github-releases
-    depNameTemplate: weaveworks/eksctl
+    depNameTemplate: kubernetes/kubernetes
   - fileMatch:
       - "^infra/scripts/.*\\.sh$"
     matchStrings:
-      - "YQ_VERSION=\"(?<currentValue>.*?)\""
+      - "HELM_VERSION=\"(?<currentValue>.*?)\""
     datasourceTemplate: github-releases
-    depNameTemplate: mikefarah/yq
+    depNameTemplate: helm/helm
   - fileMatch:
       - "^infra/scripts/.*\\.sh$"
     matchStrings:
-      - "DOCKER_COMPOSE_VERSION=\"(?<currentValue>.*?)\""
+      - "EKS_NODE_VIEWER_VERSION=\"(?<currentValue>.*?)\""
     datasourceTemplate: github-releases
-    depNameTemplate: docker/compose
+    depNameTemplate: awslabs/eks-node-viewer
 
+  # Container tools
   - fileMatch:
       - "^infra/scripts/.*\\.sh$"
     matchStrings:
-      - "EKS_NODE_VIEWER_VERSION=\"(?<currentValue>.*?)\""
+      - "SOCI_VERSION=\"(?<currentValue>.*?)\""
     datasourceTemplate: github-releases
-    depNameTemplate: awslabs/eks-node-viewer
+    depNameTemplate: awslabs/soci-snapshotter
+
+  # Utilities
   - fileMatch:
       - "^infra/scripts/.*\\.sh$"
     matchStrings:
-      - "SOCI_VERSION=\"(?<currentValue>.*?)\""
+      - "YQ_VERSION=\"(?<currentValue>.*?)\""
     datasourceTemplate: github-releases
-    depNameTemplate: awslabs/soci-snapshotter
+    depNameTemplate: mikefarah/yq
+
+  # Commented out tools (disabled for now)
+  # - fileMatch:
+  #     - "^infra/scripts/.*\\.sh$"
+  #   matchStrings:
+  #     - "# EKSCTL_VERSION=\"(?<currentValue>.*?)\""
+  #   datasourceTemplate: github-releases
+  #   depNameTemplate: weaveworks/eksctl
+  # - fileMatch:
+  #     - "^infra/scripts/.*\\.sh$"
+  #   matchStrings:
+  #     - "# DOCKER_COMPOSE_VERSION=\"(?<currentValue>.*?)\""
+  #   datasourceTemplate: github-releases
+  #   depNameTemplate: docker/compose
@@ -14,9 +14,7 @@ public static void main(final String[] args) {
 
         new WorkshopStack(app, "WorkshopStack", StackProps.builder()
             .synthesizer(new DefaultStackSynthesizer(DefaultStackSynthesizerProps.builder()
-                .generateBootstrapVersionRule(false)
-                .fileAssetsBucketName("unused-bucket")  // Force inline assets
-                .bucketPrefix("unused-prefix")
+                .generateBootstrapVersionRule(false) // This disables the bootstrap version parameter
                 .build()))
             .build());
 
 
@@ -2,8 +2,6 @@
 
 import software.amazon.awscdk.Stack;
 import software.amazon.awscdk.StackProps;
-import software.amazon.awscdk.CfnOutput;
-import software.amazon.awscdk.CfnParameter;
 import software.amazon.awscdk.Aws;
 import software.constructs.Construct;
 import sample.com.constructs.*;
@@ -57,11 +55,6 @@ public WorkshopStack(final Construct scope, final String id, final StackProps pr
             .templateType(templateType)
             .build());
 
-        // Custom roles only for non-base templates
-        if (!"base".equals(templateType)) {
-            Roles roles = new Roles(this, "Roles");
-        }
-
         // CodeBuild for workshop setup
         CodeBuild codeBuild = new CodeBuild(this, "CodeBuild",
             CodeBuild.CodeBuildProps.builder()
@@ -73,5 +66,10 @@ public WorkshopStack(final Construct scope, final String id, final StackProps pr
                     "GIT_BRANCH", gitBranch))
                 .buildSpec(buildSpec)
                 .build());
+
+        // Custom roles only for non-base templates
+        if (!"base".equals(templateType)) {
+            Roles roles = new Roles(this, "Roles");
+        }
     }
 }
@@ -30,7 +30,7 @@ public static class CodeBuildProps {
         private String projectName = "workshop-setup";
         private IBuildImage buildImage = LinuxBuildImage.AMAZON_LINUX_2_5;
         private ComputeType computeType = ComputeType.MEDIUM;
-        private Duration timeout = Duration.minutes(60);
+        private Duration timeout = Duration.minutes(30);
         private Boolean privilegedMode = false;
         private IVpc vpc;
         private Map<String, String> environmentVariables;
 
@@ -49,12 +49,7 @@ public static class IdeProps {
         private IMachineImage machineImage = MachineImage.latestAmazonLinux2023();
         private List<String> instanceTypes = Arrays.asList("m5.xlarge", "m6i.xlarge", "t3.xlarge");
         private List<ISecurityGroup> additionalSecurityGroups = new ArrayList<>();
-        private int bootstrapTimeoutMinutes = 10;
-        private List<String> vscodeExtensions = Arrays.asList(
-            "shardulm94.trailing-spaces",
-            "ms-kubernetes-tools.vscode-kubernetes-tools",
-            "ms-azuretools.vscode-docker"
-        );
+        private int bootstrapTimeoutMinutes = 30;
         private String gitBranch = "main";
         private String templateType = "base";
 
@@ -70,10 +65,8 @@ public static class Builder {
             public Builder instanceTypes(List<String> instanceTypes) { props.instanceTypes = instanceTypes; return this; }
             public Builder additionalSecurityGroups(List<ISecurityGroup> additionalSecurityGroups) { props.additionalSecurityGroups = additionalSecurityGroups; return this; }
             public Builder bootstrapTimeoutMinutes(int bootstrapTimeoutMinutes) { props.bootstrapTimeoutMinutes = bootstrapTimeoutMinutes; return this; }
-            public Builder vscodeExtensions(List<String> vscodeExtensions) { props.vscodeExtensions = vscodeExtensions; return this; }
             public Builder gitBranch(String gitBranch) { props.gitBranch = gitBranch; return this; }
             public Builder templateType(String templateType) { props.templateType = templateType; return this; }
-
             public IdeProps build() { return props; }
         }
 
@@ -85,7 +78,6 @@ public static class Builder {
         public List<String> getInstanceTypes() { return instanceTypes; }
         public List<ISecurityGroup> getAdditionalSecurityGroups() { return additionalSecurityGroups; }
         public int getBootstrapTimeoutMinutes() { return bootstrapTimeoutMinutes; }
-        public List<String> getVscodeExtensions() { return vscodeExtensions; }
         public String getGitBranch() { return gitBranch; }
         public String getTemplateType() { return templateType; }
     }
@@ -243,11 +235,10 @@ public Ide(final Construct scope, final String id, final IdeProps props) {
 
         // Create User Data for bootstrap with CloudWatch logging
         var userData = UserData.forLinux();
-        String extensionsString = String.join(",", props.getVscodeExtensions());
         String gitBranch = props.getGitBranch();
         String templateType = props.getTemplateType();
 
-        // Build UserData content with proper substitutions
+        // Build UserData content with substitutions
         String userDataContent = String.format("""
             #!/bin/bash
             set -e
@@ -261,7 +252,6 @@ public Ide(final Construct scope, final String id, final IdeProps props) {
             STACK_NAME="%s"
             AWS_REGION="%s"
             TEMPLATE_TYPE="%s"
-            VSCODE_EXTENSIONS="%s"
 
             # Setup logging
             LOG_GROUP_NAME="ide-bootstrap-$(date +%%Y%%m%%d-%%H%%M%%S)"
@@ -300,42 +290,47 @@ public Ide(final Construct scope, final String id, final IdeProps props) {
 
             echo "UserData started at $(date) - Logging to $LOG_GROUP_NAME"
 
-            # Download and run full bootstrap script with retry logic
-            download_bootstrap() {
-                local urls=(
-                    "https://raw.githubusercontent.com/aws-samples/java-on-aws/${GIT_BRANCH}/infra/scripts/ide/bootstrap.sh"
-                    "https://github.com/aws-samples/java-on-aws/raw/${GIT_BRANCH}/infra/scripts/ide/bootstrap.sh"
-                )
+            # Clone repository to ec2-user home directory
+            clone_repository() {
                 local max_attempts=5
                 local delay=5
 
                 for attempt in $(seq 1 $max_attempts); do
-                    echo "Download attempt $attempt of $max_attempts"
+                    echo "Clone attempt $attempt of $max_attempts"
+
+                    # Remove existing directory if it exists
+                    sudo -u ec2-user rm -rf /home/ec2-user/java-on-aws
 
-                    for url in "${urls[@]}"; do
-                        echo "Trying to download bootstrap from: $url"
-                        if curl -fsSL --connect-timeout 30 --max-time 60 "$url" -o /tmp/bootstrap.sh; then
-                            echo "Successfully downloaded bootstrap script on attempt $attempt"
+                    # Clone as ec2-user to their home directory
+                    if sudo -u ec2-user git clone https://github.com/aws-samples/java-on-aws.git /home/ec2-user/java-on-aws; then
+                        # Checkout the correct branch as ec2-user
+                        if sudo -u ec2-user bash -c "cd /home/ec2-user/java-on-aws && git checkout $GIT_BRANCH"; then
+                            echo "Successfully cloned repository and checked out branch $GIT_BRANCH on attempt $attempt"
                             return 0
+                        else
+                            echo "Failed to checkout branch $GIT_BRANCH on attempt $attempt"
                         fi
-                        echo "Failed to download from: $url"
-                    done
+                    else
+                        echo "Failed to clone repository on attempt $attempt"
+                    fi
 
                     if [ $attempt -lt $max_attempts ]; then
-                        echo "All URLs failed on attempt $attempt, waiting ${delay}s before retry..."
+                        echo "Clone failed on attempt $attempt, waiting ${delay}s before retry..."
                         sleep $delay
                     fi
                 done
 
-                echo "All download attempts failed after $max_attempts tries"
+                echo "All clone attempts failed after $max_attempts tries"
                 return 1
             }
 
-            if download_bootstrap; then
-                chmod +x /tmp/bootstrap.sh
+            if clone_repository; then
+                # Make scripts executable
+                sudo -u ec2-user chmod +x /home/ec2-user/java-on-aws/infra/scripts/ide/*.sh
+
                 echo "Executing full bootstrap script..."
-                export VSCODE_EXTENSIONS="$VSCODE_EXTENSIONS"
-                if /tmp/bootstrap.sh "$IDE_PASSWORD" "$GIT_BRANCH" "$STACK_NAME" "$AWS_REGION" "$TEMPLATE_TYPE"; then
+                # Run bootstrap script as ec2-user from their home directory
+                if sudo -u ec2-user bash -c "cd /home/ec2-user/java-on-aws && infra/scripts/ide/bootstrap.sh '$IDE_PASSWORD' '$GIT_BRANCH' '$STACK_NAME' '$TEMPLATE_TYPE'"; then
                     echo "Bootstrap completed successfully"
                     /opt/aws/bin/cfn-signal -e 0 --stack "$STACK_NAME" --resource IdeBootstrapWaitCondition --region "$AWS_REGION"
                 else
@@ -344,7 +339,7 @@ public Ide(final Construct scope, final String id, final IdeProps props) {
                     exit 1
                 fi
             else
-                echo "FATAL: Could not download bootstrap script from any source"
+                echo "FATAL: Could not clone repository"
                 /opt/aws/bin/cfn-signal -e 1 --stack "$STACK_NAME" --resource IdeBootstrapWaitCondition --region "$AWS_REGION"
                 exit 1
             fi
@@ -353,8 +348,7 @@ public Ide(final Construct scope, final String id, final IdeProps props) {
             ideSecretsManagerPassword.secretValueFromJson("password").unsafeUnwrap(),
             Aws.STACK_NAME,
             Aws.REGION,
-            templateType,
-            extensionsString
+            templateType
         );
 
         userData.addCommands(userDataContent);