DeveloperDurp/linode
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
a7ff14a792f71a70a1dcc81c6e1b403723bef83c
linode/.gitlab-ci.yml

142 lines
3.9 KiB
YAML
Raw Blame History

stages:
- plan
- apply
- destroy
before_script:
- echo "token = \"$token\"" >> terraform.tfvars
- apk add --update curl jq
- alias convert_report="jq -r '([.resource_changes[].change.actions?]|flatten)|{\"create\":(map(select(.==\"create\"))|length),\"update\":(map(select(.==\"update\"))|length),\"delete\":(map(select(.==\"delete\"))|length)}'"
- terraform --version
- terraform init -reconfigure -backend-config="address=${GITLAB_TF_ADDRESS}" -backend-config="lock_address=${GITLAB_TF_ADDRESS}/lock" -backend-config="unlock_address=${GITLAB_TF_ADDRESS}/lock" -backend-config="username=gitlab-ci-token" -backend-config="password=${CI_JOB_TOKEN}" -backend-config="lock_method=POST" -backend-config="unlock_method=DELETE" -backend-config="retry_wait_min=5"
plan:
stage: plan
allow_failure: true
image:
name: hashicorp/terraform:light
entrypoint:
- '/usr/bin/env'
- 'PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin'
variables:
PLAN: plan.tfplan
JSON_PLAN_FILE: tfplan.json
TF_IN_AUTOMATION: "true"
GITLAB_TF_ADDRESS: ${CI_API_V4_URL}/projects/${CI_PROJECT_ID}/terraform/state/${CI_PROJECT_NAME}
cache:
key: "$CI_COMMIT_SHA"
paths:
- .terraform
script:
- terraform plan -var-file=terraform.tfvars
only:
changes:
- terraform.tf
- terraform.tfvars
- main.yml
apply:
stage: apply
image:
name: hashicorp/terraform:light
entrypoint:
- '/usr/bin/env'
- 'PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin'
variables:
PLAN: plan.tfplan
JSON_PLAN_FILE: tfplan.json
TF_IN_AUTOMATION: "true"
GITLAB_TF_ADDRESS: ${CI_API_V4_URL}/projects/${CI_PROJECT_ID}/terraform/state/${CI_PROJECT_NAME}
cache:
key: "$CI_COMMIT_SHA"
paths:
- .terraform
script:
- terraform apply -auto-approve -var-file=terraform.tfvars
after_script:
- curl --request PUT --header "PRIVATE-TOKEN:${jobtoken}" "${CI_API_V4_URL}/projects/${CI_PROJECT_ID}/variables/kubeconfig" --form "value=$(cat config)" > null
dependencies:
- plan
only:
changes:
- terraform.tf
- terraform.tfvars
- main.yml
when: manual
ansible-apply:
stage: apply
variables:
DEBIAN_FRONTEND: noninteractive
K8S_AUTH_KUBECONFIG: config
image:
name: ubuntu:latest
before_script:
- apt update && apt install tzdata ansible python3-pip -y
- pip install kubernetes
- ansible-galaxy collection install kubernetes.core
- cat $kubeconfig > config
- cat $kubeseal > kubeseal.key
script:
- ansible-playbook $CI_PROJECT_DIR/apply.yml
needs:
- apply
only:
changes:
- terraform.tf
- terraform.tfvars
- main.yml
destroy:
stage: destroy
image:
name: hashicorp/terraform:light
entrypoint:
- '/usr/bin/env'
- 'PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin'
variables:
PLAN: plan.tfplan
JSON_PLAN_FILE: tfplan.json
TF_IN_AUTOMATION: "true"
GITLAB_TF_ADDRESS: ${CI_API_V4_URL}/projects/${CI_PROJECT_ID}/terraform/state/${CI_PROJECT_NAME}
cache:
key: "$CI_COMMIT_SHA"
paths:
- .terraform
script:
- terraform destroy -auto-approve -var-file=terraform.tfvars
dependencies:
- apply
needs:
- ansible-destroy
only:
changes:
- terraform.tf
- terraform.tfvars
- main.yml
ansible-destroy:
stage: destroy
variables:
DEBIAN_FRONTEND: noninteractive
K8S_AUTH_KUBECONFIG: config
image:
name: ubuntu:latest
before_script:
- apt update && apt install tzdata ansible python3-pip -y
- pip install kubernetes
- ansible-galaxy collection install kubernetes.core
- cat $kubeconfig > config
script:
- ansible-playbook $CI_PROJECT_DIR/destroy.yml
needs:
- apply
dependencies:
- apply
only:
changes:
- terraform.tf
- terraform.tfvars
- main.yml
when: manual
Reference in New Issue View Git Blame Copy Permalink