From ee62c1920d7ee5fbc6cfc0092a67764af04304f4 Mon Sep 17 00:00:00 2001 From: Jun-te Kim Date: Fri, 18 Jul 2025 12:56:02 +0000 Subject: [PATCH] terraform mirrors deployment and aws secrets in github --- .devcontainer/Dockerfile | 6 ++++++ .devcontainer/devcontainer.json | 5 ++--- deployment/database/provider.tf | 1 - deployment/lambda/extractor_and_loader/docker/provider.tf | 1 - deployment/lambda/extractor_and_loader/provider.tf | 1 - deployment/lambda/lambda_example/docker/provider.tf | 1 - deployment/lambda/lambda_example/provider.tf | 1 - deployment/lambda/lambda_shared/provider.tf | 1 - 8 files changed, 8 insertions(+), 9 deletions(-) diff --git a/.devcontainer/Dockerfile b/.devcontainer/Dockerfile index fbf7e21..927b1ca 100644 --- a/.devcontainer/Dockerfile +++ b/.devcontainer/Dockerfile @@ -3,6 +3,12 @@ FROM library/python:3.12-bullseye ARG USER=vscode ARG DEBIAN_FRONTEND=noninteractive +# DO NOT PUSH IMAGE TO ECR!!! as anyone with access to image can log on to our aws +# Will log on as aws Jun-te account, change in the future to development account +ENV AWS_ACCESS_KEY_ID=AKIAU5A36PPNK7RXX52V +ENV AWS_SECRET_ACCESS_KEY=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 +ENV AWS_DEFAULT_REGION=eu-west-2 + # Install system dependencies in a single layer RUN apt update && apt install -y --no-install-recommends \ sudo jq vim curl\ diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json index d050974..dac0087 100644 --- a/.devcontainer/devcontainer.json +++ b/.devcontainer/devcontainer.json @@ -6,9 +6,8 @@ "workspaceFolder": "/workspaces/survey-extractor", "postStartCommand": "bash .devcontainer/post-install.sh", "mounts": [ - "source=${localEnv:HOME},target=/workspaces/home,type=bind", - // Make sure you aws credentials are saved at ~/.aws - "source=${localEnv:HOME}/.aws/,target=/home/vscode/.aws/,type=bind" + // Optional, just makes getting from Downloads (local env) easier + "source=${localEnv:HOME},target=/workspaces/home,type=bind" ], "customizations": { "vscode": { diff --git a/deployment/database/provider.tf b/deployment/database/provider.tf index 009e591..8f8274a 100644 --- a/deployment/database/provider.tf +++ b/deployment/database/provider.tf @@ -8,7 +8,6 @@ terraform { backend "s3" { bucket = "survey-extractor-tf-state" region = "eu-west-2" - profile = "domna.dev" # /home/vscode/aws/credentials key = "env:/dev/terraform.tfstate" } diff --git a/deployment/lambda/extractor_and_loader/docker/provider.tf b/deployment/lambda/extractor_and_loader/docker/provider.tf index d8a8f1f..2d361d4 100644 --- a/deployment/lambda/extractor_and_loader/docker/provider.tf +++ b/deployment/lambda/extractor_and_loader/docker/provider.tf @@ -8,7 +8,6 @@ terraform { backend "s3" { bucket = "survey-extractor-tf-state" region = "eu-west-2" - profile = "domna.dev" # /home/vscode/aws/credentials key = "env:/dev/lambda/ecr/extractor_and_loader.tfstate" } diff --git a/deployment/lambda/extractor_and_loader/provider.tf b/deployment/lambda/extractor_and_loader/provider.tf index c5008c4..51eca0c 100644 --- a/deployment/lambda/extractor_and_loader/provider.tf +++ b/deployment/lambda/extractor_and_loader/provider.tf @@ -8,7 +8,6 @@ terraform { backend "s3" { bucket = "survey-extractor-tf-state" region = "eu-west-2" - profile = "domna.dev" # /home/vscode/aws/credentials key = "env:/dev/lambda/eachlambda/extractor_and_loader_lambda.tfstate" } diff --git a/deployment/lambda/lambda_example/docker/provider.tf b/deployment/lambda/lambda_example/docker/provider.tf index fca37f7..f210110 100644 --- a/deployment/lambda/lambda_example/docker/provider.tf +++ b/deployment/lambda/lambda_example/docker/provider.tf @@ -8,7 +8,6 @@ terraform { backend "s3" { bucket = "survey-extractor-tf-state" region = "eu-west-2" - profile = "domna.dev" # /home/vscode/aws/credentials key = "env:/dev/lambda/ecr/lambda_example_ecr.tfstate" } diff --git a/deployment/lambda/lambda_example/provider.tf b/deployment/lambda/lambda_example/provider.tf index bac0dad..7aa8df6 100644 --- a/deployment/lambda/lambda_example/provider.tf +++ b/deployment/lambda/lambda_example/provider.tf @@ -8,7 +8,6 @@ terraform { backend "s3" { bucket = "survey-extractor-tf-state" region = "eu-west-2" - profile = "domna.dev" # /home/vscode/aws/credentials key = "env:/dev/lambda/eachlambda/lambda_example.tfstate" } diff --git a/deployment/lambda/lambda_shared/provider.tf b/deployment/lambda/lambda_shared/provider.tf index fa6a5d4..521355b 100644 --- a/deployment/lambda/lambda_shared/provider.tf +++ b/deployment/lambda/lambda_shared/provider.tf @@ -8,7 +8,6 @@ terraform { backend "s3" { bucket = "survey-extractor-tf-state" region = "eu-west-2" - profile = "domna.dev" # /home/vscode/aws/credentials key = "env:/dev/lambda/lambda_share_configuration.tfstate" }