You've already forked terraform-bunnynet
63 lines
1.8 KiB
YAML
63 lines
1.8 KiB
YAML
name: Deploy Configuration
|
|
|
|
on:
|
|
push:
|
|
branches: [main]
|
|
pull_request:
|
|
branches: [main]
|
|
|
|
env:
|
|
TERRAFORM_VERSION: "1.10.5"
|
|
|
|
jobs:
|
|
terraform:
|
|
runs-on: ubuntu-latest
|
|
strategy:
|
|
matrix:
|
|
environment: ["git.rznet.fr", "mirror.rznet.fr"]
|
|
|
|
steps:
|
|
- name: Checkout code
|
|
uses: actions/checkout@v4
|
|
|
|
- name: Setup Terraform
|
|
uses: hashicorp/setup-terraform@v3
|
|
with:
|
|
terraform_version: ${{ env.TERRAFORM_VERSION }}
|
|
|
|
- name: Terraform init
|
|
working-directory: ${{ matrix.environment }}
|
|
env:
|
|
AWS_ACCESS_KEY_ID: ${{ secrets.S3_ACCESS_KEY }}
|
|
AWS_SECRET_ACCESS_KEY: ${{ secrets.S3_SECRET_KEY }}
|
|
run: terraform init -upgrade
|
|
|
|
- name: Terraform format check
|
|
working-directory: ${{ matrix.environment }}
|
|
run: terraform fmt -check
|
|
|
|
- name: Terraform validate
|
|
working-directory: ${{ matrix.environment }}
|
|
run: terraform validate
|
|
|
|
- name: Terraform plan
|
|
working-directory: ${{ matrix.environment }}
|
|
env:
|
|
AWS_ACCESS_KEY_ID: ${{ secrets.S3_ACCESS_KEY }}
|
|
AWS_SECRET_ACCESS_KEY: ${{ secrets.S3_SECRET_KEY }}
|
|
BUNNYNET_API_KEY: ${{ secrets.BUNNYNET_API_KEY }}
|
|
VAULT_ADDR: ${{ secrets.VAULT_ADDR }}
|
|
VAULT_TOKEN: ${{ secrets.VAULT_TOKEN }}
|
|
run: terraform plan
|
|
|
|
- name: Terraform apply
|
|
if: github.ref == 'refs/heads/main' && github.event_name == 'push'
|
|
working-directory: ${{ matrix.environment }}
|
|
env:
|
|
AWS_ACCESS_KEY_ID: ${{ secrets.S3_ACCESS_KEY }}
|
|
AWS_SECRET_ACCESS_KEY: ${{ secrets.S3_SECRET_KEY }}
|
|
BUNNYNET_API_KEY: ${{ secrets.BUNNYNET_API_KEY }}
|
|
VAULT_ADDR: ${{ secrets.VAULT_ADDR }}
|
|
VAULT_TOKEN: ${{ secrets.VAULT_TOKEN }}
|
|
run: terraform apply -auto-approve
|