Skip to content
prod_CI

feat: stage 구축 및 OpenSearch logs to CloudWatch #18

# to view logs

feat: stage 구축 및 OpenSearch logs to CloudWatch

feat: stage 구축 및 OpenSearch logs to CloudWatch #18

Workflow file for this run

.github/workflows/prod_CI.yaml at b11d72c
name: prod_CI
on:
pull_request:
branches:
- main
paths:
- 'modules/**'
- 'root/prod/**'
- '!modules/READMD.md'
- '!root/prod/READMD.md'
workflow_dispatch:
env:
AWS_REGION: ap-northeast-2
permissions:
id-token: write
contents: read
jobs:
terraform-validate:
runs-on: ubuntu-latest
defaults:
run:
working-directory: root/prod
steps:
- name: Checkout
uses: actions/checkout@v4
- name: Configure AWS Credentials
uses: aws-actions/configure-aws-credentials@v2
with:
role-to-assume: ${{ secrets.PRD_AWS_GITHUB_ACTION_ROLE }}
aws-region: ${{ env.AWS_REGION }}
- name: Setup Terraform
uses: hashicorp/setup-terraform@v3
with:
terraform_version: 1.7.3
- name: Terraform fmt
id: fmt
run: terraform fmt -recursive -check
continue-on-error: true
- name: Terraform init
id: init
run: terraform init
- name: Terraform Validate
id: validate
run: terraform validate -no-color
- name: Terraform plan
env:
RDS_PASSWORD: ${{ secrets.PRD_RDS_PASSWORD }}
JWT_KEY: ${{ secrets.PRD_JWT_KEY }}
JWT_ADMIN_KEY: ${{ secrets.PRD_JWT_ADMIN_KEY }}
OPEN_SEARCH_USERNAME: ${{ secrets.PRD_OPEN_SEARCH_USERNAME }}
OPEN_SEARCH_PASSWORD: ${{ secrets.PRD_OPEN_SEARCH_PASSWORD }}
SGIS_KEY: ${{ secrets.SGIS_KEY }}
SGIS_SECRET: ${{ secrets.SGIS_SECRET }}
FIREBASE_PROJECTID: ${{ secrets.PRD_FIREBASE_PROJECTID }}
FIREBASE_CREDENTIALS: ${{ secrets.PRD_FIREBASE_CREDENTIALS }}
run: |
terraform plan -lock-timeout=3m --var-file=prod.tfvars -no-color \
-var rds_password=$RDS_PASSWORD \
-var jwt_key=$JWT_KEY \
-var jwt_admin_key=$JWT_ADMIN_KEY \
-var search_master_user_name=$OPEN_SEARCH_USERNAME \
-var search_master_user_password=$OPEN_SEARCH_PASSWORD \
-var sgis_key=$SGIS_KEY \
-var sgis_secret=$SGIS_SECRET \
-var firebase_projectid=$FIREBASE_PROJECTID \
-var firebase_credentials="$FIREBASE_CREDENTIALS"