Infrastructure release: 1.2.26 #324
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: "Terragrunt deploy STAGING container" | |
| on: | |
| push: | |
| branches: | |
| - main | |
| paths: | |
| - "infrastructure/environments.yml" | |
| pull_request: | |
| branches: | |
| - main | |
| paths: | |
| - "infrastructure/environments.yml" | |
| env: | |
| AWS_REGION: ca-central-1 | |
| AWS_ACCESS_KEY_ID: ${{ secrets.STAGING_AWS_ACCESS_KEY_ID }} | |
| AWS_SECRET_ACCESS_KEY: ${{ secrets.STAGING_AWS_SECRET_ACCESS_KEY }} | |
| TERRAFORM_VERSION: 1.5.2 | |
| TERRAGRUNT_VERSION: 0.35.6 | |
| TF_INPUT: false | |
| TF_VAR_database_name: ${{ secrets.STAGING_DATABASE_NAME }} | |
| TF_VAR_database_username: ${{ secrets.STAGING_DATABASE_USERNAME }} | |
| TF_VAR_database_password: ${{ secrets.STAGING_DATABASE_PASSWORD }} | |
| TF_VAR_cloudfront_custom_header_name: ${{ secrets.STAGING_CLOUDFRONT_CUSTOM_HEADER_NAME }} | |
| TF_VAR_cloudfront_custom_header_value: ${{ secrets.STAGING_CLOUDFRONT_CUSTOM_HEADER_VALUE }} | |
| TF_VAR_list_manager_endpoint: ${{ secrets.STAGING_LIST_MANAGER_ENDPOINT }} | |
| TF_VAR_default_list_manager_api_key: ${{ secrets.STAGING_DEFAULT_LIST_MANAGER_API_KEY }} | |
| TF_VAR_default_notify_api_key: ${{ secrets.STAGING_DEFAULT_NOTIFY_API_KEY }} | |
| TF_VAR_encryption_key: ${{ secrets.STAGING_ENCRYPTION_KEY }} | |
| TF_VAR_s3_uploads_bucket: ${{ secrets.STAGING_S3_UPLOADS_BUCKET }} | |
| TF_VAR_s3_uploads_key: ${{ secrets.STAGING_S3_UPLOADS_KEY }} | |
| TF_VAR_s3_uploads_secret: ${{ secrets.STAGING_S3_UPLOADS_SECRET }} | |
| TF_VAR_c3_aws_access_key_id: ${{ secrets.STAGING_C3_AWS_ACCESS_KEY_ID }} | |
| TF_VAR_c3_aws_secret_access_key: ${{ secrets.STAGING_C3_AWS_SECRET_ACCESS_KEY }} | |
| TF_VAR_sentinel_customer_id: ${{ secrets.LOG_ANALYTICS_WORKSPACE_ID }} | |
| TF_VAR_sentinel_shared_key: ${{ secrets.LOG_ANALYTICS_WORKSPACE_KEY }} | |
| TF_VAR_slack_webhook_url: ${{ secrets.STAGING_SLACK_WEBHOOK_URL }} | |
| TF_VAR_wordpress_auth_key: ${{ secrets.STAGING_WORDPRESS_AUTH_KEY }} | |
| TF_VAR_wordpress_secure_auth_key: ${{ secrets.STAGING_WORDPRESS_SECURE_AUTH_KEY }} | |
| TF_VAR_wordpress_logged_in_key: ${{ secrets.STAGING_WORDPRESS_LOGGED_IN_KEY }} | |
| TF_VAR_wordpress_nonce_key: ${{ secrets.STAGING_WORDPRESS_NONCE_KEY }} | |
| TF_VAR_wordpress_auth_salt: ${{ secrets.STAGING_WORDPRESS_AUTH_SALT }} | |
| TF_VAR_wordpress_secure_auth_salt: ${{ secrets.STAGING_WORDPRESS_SECURE_AUTH_SALT }} | |
| TF_VAR_wordpress_logged_in_salt: ${{ secrets.STAGING_WORDPRESS_LOGGED_IN_SALT }} | |
| TF_VAR_wordpress_nonce_salt: ${{ secrets.STAGING_WORDPRESS_NONCE_SALT }} | |
| TF_VAR_jwt_auth_secret_key: ${{ secrets.STAGING_JWT_AUTH_SECRET_KEY }} | |
| TF_VAR_wpml_site_key: ${{ secrets.STAGING_WPML_SITE_KEY }} | |
| TF_VAR_zendesk_api_url: ${{ secrets.ZENDESK_API_URL }} | |
| jobs: | |
| environments-manifest: | |
| uses: cds-snc/gc-articles/.github/workflows/environments-manifest.yml@main | |
| terragrunt-plan-staging: | |
| needs: environments-manifest | |
| runs-on: ubuntu-latest | |
| if: | | |
| github.ref != 'refs/heads/main' && | |
| github.event_name == 'pull_request' && | |
| needs.environments-manifest.outputs.CONTAINER_DEPLOYMENT == 'staging' | |
| steps: | |
| - name: Checkout | |
| uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3 | |
| - name: Setup terraform tools | |
| uses: cds-snc/terraform-tools-setup@v1 | |
| - name: Terragrunt plan ecs | |
| uses: cds-snc/terraform-plan@7f4ce4a4bdffaba639d32a45272804e37a569408 # v3.0.6 | |
| with: | |
| directory: "infrastructure/terragrunt/env/staging/ecs" | |
| comment-delete: "true" | |
| comment-title: "Staging: ecs" | |
| github-token: "${{ secrets.GITHUB_TOKEN }}" | |
| terragrunt: "true" | |
| terragrunt-apply-staging: | |
| needs: environments-manifest | |
| runs-on: ubuntu-latest | |
| if: | | |
| github.ref == 'refs/heads/main' && | |
| github.event_name == 'push' && | |
| needs.environments-manifest.outputs.CONTAINER_DEPLOYMENT == 'staging' | |
| steps: | |
| - name: Checkout | |
| uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3 | |
| - name: Setup terraform tools | |
| uses: cds-snc/terraform-tools-setup@v1 | |
| - name: Terragrunt apply ecs | |
| working-directory: infrastructure/terragrunt/env/staging/ecs | |
| run: terragrunt apply --terragrunt-non-interactive -auto-approve |