-
Notifications
You must be signed in to change notification settings - Fork 207
100 lines (88 loc) · 3.14 KB
/
start-localstack.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
# Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
# SPDX-License-Identifier: MIT
name: Start Localstack
env:
PRIVATE_KEY: ${{ secrets.AWS_PRIVATE_KEY }}
KEY_NAME: ${{ secrets.KEY_NAME }}
on:
workflow_call:
inputs:
region:
type: string
test_repo_name:
required: true
type: string
test_repo_branch:
required: true
type: string
terraform_assume_role:
type: string
test_repo_url:
required: true
type: string
github_sha:
required: true
type: string
s3_integration_bucket:
type: string
connection_port:
type: string
required: true
outputs:
local_stack_host_name:
value: ${{ jobs.StartLocalStack.outputs.local_stack_host_name }}
jobs:
StartLocalStack:
name: 'StartLocalStack'
runs-on: ubuntu-latest
defaults:
run:
working-directory: terraform/ec2/localstack
outputs:
local_stack_host_name: ${{ steps.localstack.outputs.local_stack_host_name }}
permissions:
id-token: write
contents: read
steps:
- name: Configure AWS Credentials
uses: aws-actions/configure-aws-credentials@v2
with:
role-to-assume: ${{ inputs.terraform_assume_role }}
aws-region: ${{ inputs.region }}
- name: Add IP to Security Group
id: add_ip
uses: aws/amazon-cloudwatch-agent/.github/workflows/add_ip_to_sg.yml@dynamic-ssh
with:
port: ${{inputs.connection_port}}
- uses: actions/checkout@v3
with:
repository: ${{ inputs.test_repo_name }}
ref: ${{ inputs.test_repo_branch }}
- name: Echo Localstack Config
run: echo repo name ${{inputs.test_repo_name}} repo branch ${{ inputs.test_repo_branch }} region ${{ inputs.region }}
- name: Verify Terraform version
run: terraform --version
- name: Terraform init
run: terraform init
- name: Terraform apply
id: localstack
run: >
echo run terraform and execute test code &&
terraform apply --auto-approve
-var="ssh_key_value=${{env.PRIVATE_KEY}}"
-var="github_test_repo=${{inputs.test_repo_url}}"
-var="github_test_repo_branch=${{inputs.test_repo_branch}}"
-var="cwa_github_sha=${{inputs.github_sha}}"
-var="s3_bucket=${{inputs.s3_integration_bucket}}"
-var="region=${{inputs.region}}"
-var="ssh_key_name=${{env.KEY_NAME}}" &&
LOCAL_STACK_HOST_NAME=$(terraform output -raw public_dns) &&
echo $LOCAL_STACK_HOST_NAME &&
echo "::set-output name=local_stack_host_name::$LOCAL_STACK_HOST_NAME" &&
aws s3 cp terraform.tfstate s3://${{inputs.s3_integration_bucket}}/integration-test/local-stack-terraform-state/${{inputs.github_sha}}/terraform.tfstate
- name: Remove IP from Security Group
if: steps.add_ip.outcome == 'success'
uses: aws/amazon-cloudwatch-agent/.github/workflows/remove_ip_from_sg.yml
with:
ip: ${{ steps.add_ip.outputs.runner_ip }}
port: ${{inputs.connection_port}}