tchivert/terraform-bunnynet
1
Fork 0
Code Actions Activity
Files
e4f6dbabe1d90e28b1be8112d26789b3000b1325
terraform-bunnynet/.gitea/workflows/deploy.yml
tom.chivert 5055e9ba92 tidying up and using s3 remote for tfstate
2026-01-28 17:23:47 +01:00

99 lines
2.8 KiB
YAML
Raw Blame History

name: Deploy Configuration
on:
push:
branches: [main]
pull_request:
branches: [main]
env:
TERRAFORM_VERSION: "1.10.5"
jobs:
plan:
runs-on: ubuntu-latest
strategy:
matrix:
environment: ["git.rznet.fr", "mirror.rznet.fr"]
steps:
- name: Checkout code
uses: actions/checkout@v4
- name: Setup Terraform
uses: hashicorp/setup-terraform@v3
with:
terraform_version: ${{ env.TERRAFORM_VERSION }}
- name: Terraform init
working-directory: ${{ matrix.environment }}
env:
AWS_ACCESS_KEY_ID: ${{ secrets.S3_ACCESS_KEY }}
AWS_SECRET_ACCESS_KEY: ${{ secrets.S3_SECRET_KEY }}
run: terraform init -upgrade
- name: Terraform format check
working-directory: ${{ matrix.environment }}
run: terraform fmt -check
- name: Terraform validate
working-directory: ${{ matrix.environment }}
run: terraform validate
- name: Terraform plan
working-directory: ${{ matrix.environment }}
env:
AWS_ACCESS_KEY_ID: ${{ secrets.S3_ACCESS_KEY }}
AWS_SECRET_ACCESS_KEY: ${{ secrets.S3_SECRET_KEY }}
BUNNYNET_API_KEY: ${{ secrets.BUNNYNET_API_KEY }}
VAULT_ADDR: ${{ secrets.VAULT_ADDR }}
VAULT_TOKEN: ${{ secrets.VAULT_TOKEN }}
run: terraform plan -out=tfplan
- name: Upload plan artifact
uses: actions/upload-artifact@v4
with:
name: tfplan-${{ matrix.environment }}
path: ${{ matrix.environment }}/tfplan
retention-days: 1
apply:
needs: plan
if: github.ref == 'refs/heads/main' && github.event_name == 'push'
runs-on: ubuntu-latest
strategy:
matrix:
environment: ["git.rznet.fr", "mirror.rznet.fr"]
steps:
- name: Checkout code
uses: actions/checkout@v4
- name: Setup Terraform
uses: hashicorp/setup-terraform@v3
with:
terraform_version: ${{ env.TERRAFORM_VERSION }}
- name: Download plan artifact
uses: actions/download-artifact@v4
with:
name: tfplan-${{ matrix.environment }}
path: ${{ matrix.environment }}
- name: Terraform init
working-directory: ${{ matrix.environment }}
env:
AWS_ACCESS_KEY_ID: ${{ secrets.S3_ACCESS_KEY }}
AWS_SECRET_ACCESS_KEY: ${{ secrets.S3_SECRET_KEY }}
run: terraform init -upgrade
- name: Terraform apply
working-directory: ${{ matrix.environment }}
env:
AWS_ACCESS_KEY_ID: ${{ secrets.S3_ACCESS_KEY }}
AWS_SECRET_ACCESS_KEY: ${{ secrets.S3_SECRET_KEY }}
BUNNYNET_API_KEY: ${{ secrets.BUNNYNET_API_KEY }}
VAULT_ADDR: ${{ secrets.VAULT_ADDR }}
VAULT_TOKEN: ${{ secrets.VAULT_TOKEN }}
run: terraform apply -auto-approve tfplan
View Git Blame Copy Permalink