junte/Model
1
0
Fork 0
mirror of https://github.com/Hestia-Homes/Model.git synced 2026-06-08 11:17:27 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

check plan

Browse source
This commit is contained in:
Jun-te Kim 2026-02-03 13:36:55 +00:00
parent 19872bf451
commit f6255c105b
8 changed files with 34 additions and 44 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

58
.github/workflows/deploy_terraform.yml vendored
View file

@ -68,33 +68,33 @@ jobs:
# working-directory: infrastructure/terraform/shared
# run: terraform apply -auto-approve -var-file=${STAGE}.tfvars tfplan
# ============================================================
# 2⃣ Build Docker image (tag = GitHub SHA, digest resolved)
# ============================================================
address2uprn_image:
needs: determine_stage
uses: ./.github/workflows/_build_image.yml
with:
ecr_repo: address2uprn-${{ needs.determine_stage.outputs.stage }}
dockerfile_path: backend/address2UPRN/Dockerfile
build_context: backend/address2UPRN
secrets:
AWS_ACCESS_KEY_ID: ${{ secrets.DEV_AWS_ACCESS_KEY_ID }}
AWS_SECRET_ACCESS_KEY: ${{ secrets.DEV_AWS_SECRET_ACCESS_KEY }}
AWS_REGION: ${{ secrets.DEV_AWS_REGION }}
# # ============================================================
# # 2⃣ Build Docker image (tag = GitHub SHA, digest resolved)
# # ============================================================
# address2uprn_image:
# needs: determine_stage
# uses: ./.github/workflows/_build_image.yml
# with:
# ecr_repo: address2uprn-${{ needs.determine_stage.outputs.stage }}
# dockerfile_path: backend/address2UPRN/Dockerfile
# build_context: backend/address2UPRN
# secrets:
# AWS_ACCESS_KEY_ID: ${{ secrets.DEV_AWS_ACCESS_KEY_ID }}
# AWS_SECRET_ACCESS_KEY: ${{ secrets.DEV_AWS_SECRET_ACCESS_KEY }}
# AWS_REGION: ${{ secrets.DEV_AWS_REGION }}
# # ============================================================
# # 3⃣ Deploy Lambda (Terraform, immutable digest)
# # ============================================================
deploy_address2uprn_lambda:
needs: [address2uprn_image, determine_stage]
uses: ./.github/workflows/_deploy_lambda.yml
with:
lambda_name: address2UPRN
lambda_path: infrastructure/terraform/lambda/address2UPRN
stage: ${{ needs.determine_stage.outputs.stage }}
image_digest: ${{ needs.image.outputs.image_digest }}
secrets:
AWS_ACCESS_KEY_ID: ${{ secrets.DEV_AWS_ACCESS_KEY_ID }}
AWS_SECRET_ACCESS_KEY: ${{ secrets.DEV_AWS_SECRET_ACCESS_KEY }}
AWS_REGION: ${{ secrets.DEV_AWS_REGION }}
# # # ============================================================
# # # 3⃣ Deploy Lambda (Terraform, immutable digest)
# # # ============================================================
# deploy_address2uprn_lambda:
# needs: [address2uprn_image, determine_stage]
# uses: ./.github/workflows/_deploy_lambda.yml
# with:
# lambda_name: address2UPRN
# lambda_path: infrastructure/terraform/lambda/address2UPRN
# stage: ${{ needs.determine_stage.outputs.stage }}
# image_digest: ${{ needs.image.outputs.image_digest }}
# secrets:
# AWS_ACCESS_KEY_ID: ${{ secrets.DEV_AWS_ACCESS_KEY_ID }}
# AWS_SECRET_ACCESS_KEY: ${{ secrets.DEV_AWS_SECRET_ACCESS_KEY }}
# AWS_REGION: ${{ secrets.DEV_AWS_REGION }}

2
infrastructure/terraform/lambda/_template/README.md
View file

@ -1,8 +1,8 @@
### Checklist for a new lambda
- [ ] Copy cp -r lambda/_template lambda/<name>
- [ ] Set `state_bucket_name`
- [ ] Add ECR repo in shared/main.tf
- [ ] Set bucket name in provider.tf
- [ ] Add shared output for repo name/url
- [ ] Push to GitHub (CI will deploy)

2
infrastructure/terraform/lambda/_template/main.tf
View file

@ -10,7 +10,7 @@ data "terraform_remote_state" "shared" {
module "lambda" {
source = "../modules/lambda_with_sqs"
name = "REPLACE_ME"
name = REPLACE ME #"address2uprn" for example
stage = var.stage
image_uri = "${data.terraform_remote_state.shared.outputs.REPLACE_ME_repository_url}@${var.image_digest}"

2
infrastructure/terraform/lambda/_template/provider.tf
View file

@ -7,7 +7,7 @@ terraform {
}
backend "s3" {
bucket = var.state_bucket_name
bucket = REPLACE_ME
key = "terraform.tfstate"
region = "eu-west-2"
}

5
infrastructure/terraform/lambda/_template/variables.tf
View file

@ -9,9 +9,4 @@ variable "stage" {
variable "image_digest" {
type = string
}
variable "state_bucket_name" {
type = string
description = "S3 bucket name used for this lambda's Terraform state"
}

2
infrastructure/terraform/lambda/address2UPRN/provider.tf
View file

@ -7,7 +7,7 @@ terraform {
}
backend "s3" {
bucket = var.state_bucket_name
bucket = "address2uprn-terraform-state"
key = "terraform.tfstate"
region = "eu-west-2"
}

5
infrastructure/terraform/lambda/address2UPRN/variables.tf
View file

@ -10,8 +10,3 @@ variable "stage" {
variable "image_digest" {
type = string
}
variable "state_bucket_name" {
type = string
description = "S3 bucket name used for this lambda's Terraform state"
}

2
infrastructure/terraform/shared/main.tf
View file

@ -294,7 +294,7 @@ output "ses_dns_records" {
################################################
module "address2uprn_state_bucket" {
source = "../modules/tf_state_bucket"
bucket_name = "address2uprn-terraform-state-${var.stage}"
bucket_name = "address2uprn-terraform-state"
}