Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add AWS RDS configuration with PostgreSQL instance, security group #17

Merged
merged 1 commit into from
Jan 20, 2025
Merged

Add AWS RDS configuration with PostgreSQL instance, security group #17

merged 1 commit into from
Jan 20, 2025

Conversation

quang-ng
Copy link
Collaborator

No description provided.

@quang-ng quang-ng marked this pull request as ready for review December 23, 2024 09:34
@quang-ng quang-ng self-assigned this Dec 24, 2024
leej3
leej3 requested changes Jan 9, 2025
View reviewed changes
.github/workflows/terraform.yml Outdated
steps:
- name: Checkout code
uses: actions/checkout@v2

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Use OIDC here by adding this step:

      - name: Configure AWS credentials
        uses: aws-actions/configure-aws-credentials@v4
        with:
          aws-region: ${{ secrets.AWS_REGION }}
          role-to-assume: arn:aws:iam::${{ secrets.AWS_ACCOUNT_ID }}:role/github-actions-role-shared

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hello @leej3, where we store AWS_ACCOUNT_ID and AWS_REGION value?

.github/workflows/terraform.yml Outdated

on:
push:
branches:
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

change this to use manual dispatch. We may only deploy it once but we'll see how things go. No doubt we'll be running it a few times on this PR to make sure things are working well.

.github/workflows/terraform.yml Outdated Show resolved Hide resolved
.github/workflows/terraform.yml Outdated
working-directory: ./terraform/state

- name: Terraform Apply
if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/terraform-sharing-db'
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

remove this, so that manual dispatch will work.

terraform/modules/iam/policies/gha-policy.json
{
"Effect": "Allow",
"Action": [
"rds:CreateDBInstance",
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

we may have to modify the permissions here. Let me know if that is required.

@leej3 leej3 force-pushed the teraform-sharing-db branch from 910aa15 to 14a375e Compare January 20, 2025 09:52
@leej3 leej3 force-pushed the teraform-sharing-db branch from 14a375e to 654db63 Compare January 20, 2025 09:53
@leej3 leej3 self-requested a review January 20, 2025 09:58
leej3
leej3 approved these changes Jan 20, 2025
View reviewed changes
Copy link
Contributor

@leej3 leej3 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Abandoning deployment using GitHub Actions for now. This is available on branch add-github-workflow-for-postgres-deployment

@leej3 leej3 merged commit 02aec6a into main Jan 20, 2025
4 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@leej3 leej3 leej3 approved these changes

Assignees

@quang-ng quang-ng

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@quang-ng @leej3