add hubble-ui route (#650) #92
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Terragrunt | |
on: | |
pull_request: | |
paths: | |
- 'infrastructure/**' | |
push: | |
branches: | |
- master | |
paths: | |
- 'infrastructure/**' | |
env: | |
tofu_version: '1.7.2' | |
tg_version: '0.58.15' | |
working_dir: 'infrastructure/cloud' | |
aws_region: 'eu-west-1' | |
jobs: | |
checks: | |
runs-on: ubuntu-latest | |
steps: | |
- name: Checkout | |
uses: actions/checkout@v4 | |
- name: Configure AWS Credentials | |
uses: aws-actions/configure-aws-credentials@v4 | |
with: | |
aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} | |
aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} | |
aws-region: ${{ env.aws_region }} | |
- name: Check terragrunt HCL | |
uses: gruntwork-io/terragrunt-action@v2 | |
with: | |
tofu_version: ${{ env.tofu_version }} | |
tg_version: ${{ env.tg_version }} | |
tg_dir: ${{ env.working_dir }} | |
tg_command: 'hclfmt --terragrunt-check --terragrunt-diff' | |
plan: | |
runs-on: ubuntu-latest | |
needs: [ checks ] | |
steps: | |
- name: Checkout | |
uses: actions/checkout@v4 | |
- name: Configure AWS Credentials | |
uses: aws-actions/configure-aws-credentials@v4 | |
with: | |
aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} | |
aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} | |
aws-region: ${{ env.aws_region }} | |
- name: Plan | |
uses: gruntwork-io/terragrunt-action@v2 | |
env: | |
B2_APPLICATION_KEY: ${{ secrets.B2_APPLICATION_KEY }} | |
B2_APPLICATION_KEY_ID: ${{ secrets.B2_APPLICATION_KEY_ID }} | |
CLOUDFLARE_ACCOUNT_ID: ${{ secrets.CLOUDFLARE_ACCOUNT_ID }} | |
CLOUDFLARE_API_TOKEN: ${{ secrets.CLOUDFLARE_API_TOKEN }} | |
CLOUDFLARE_TUNNEL_SECRET: ${{ secrets.CLOUDFLARE_TUNNEL_SECRET }} | |
CLOUDFLARE_ZONE: ${{ secrets.CLOUDFLARE_ZONE }} | |
CLOUDFLARE_ZONE_ID: ${{ secrets.CLOUDFLARE_ZONE_ID }} | |
CLOUDFLARE_ZONE_SUBDOMAIN: ${{ secrets.CLOUDFLARE_ZONE_SUBDOMAIN }} | |
CLOUDFLARE_ZONE_TUNNEL_IP_LIST: ${{ secrets.CLOUDFLARE_ZONE_TUNNEL_IP_LIST }} | |
GITHUB_TOKEN: ${{ secrets.GH_ADD_COMMENT_TOKEN }} | |
UPTIME_ROBOT_API_KEY: ${{ secrets.UPTIME_ROBOT_API_KEY }} | |
with: | |
tofu_version: ${{ env.tofu_version }} | |
tg_version: ${{ env.tg_version }} | |
tg_dir: ${{ env.working_dir }} | |
tg_command: 'run-all plan' | |
tg_comment: "1" | |
apply: | |
runs-on: ubuntu-latest | |
needs: [ plan ] | |
if: github.ref == 'refs/heads/master' | |
steps: | |
- name: Checkout | |
uses: actions/checkout@v4 | |
- name: Configure AWS Credentials | |
uses: aws-actions/configure-aws-credentials@v4 | |
with: | |
aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} | |
aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} | |
aws-region: ${{ env.aws_region }} | |
- name: Apply | |
uses: gruntwork-io/terragrunt-action@v2 | |
env: | |
B2_APPLICATION_KEY: ${{ secrets.B2_APPLICATION_KEY }} | |
B2_APPLICATION_KEY_ID: ${{ secrets.B2_APPLICATION_KEY_ID }} | |
CLOUDFLARE_ACCOUNT_ID: ${{ secrets.CLOUDFLARE_ACCOUNT_ID }} | |
CLOUDFLARE_API_TOKEN: ${{ secrets.CLOUDFLARE_API_TOKEN }} | |
CLOUDFLARE_TUNNEL_SECRET: ${{ secrets.CLOUDFLARE_TUNNEL_SECRET }} | |
CLOUDFLARE_ZONE: ${{ secrets.CLOUDFLARE_ZONE }} | |
CLOUDFLARE_ZONE_ID: ${{ secrets.CLOUDFLARE_ZONE_ID }} | |
CLOUDFLARE_ZONE_SUBDOMAIN: ${{ secrets.CLOUDFLARE_ZONE_SUBDOMAIN }} | |
CLOUDFLARE_ZONE_TUNNEL_IP_LIST: ${{ secrets.CLOUDFLARE_ZONE_TUNNEL_IP_LIST }} | |
GITHUB_TOKEN: ${{ secrets.GH_ADD_COMMENT_TOKEN }} | |
UPTIME_ROBOT_API_KEY: ${{ secrets.UPTIME_ROBOT_API_KEY }} | |
with: | |
tofu_version: ${{ env.tofu_version }} | |
tg_version: ${{ env.tg_version }} | |
tg_dir: ${{ env.working_dir }} | |
tg_command: 'run-all apply' |