debian-mirror-gitlab/lib/gitlab/ci/templates/Terraform/Base.latest.gitlab-ci.yml

Ignoring revisions in .git-blame-ignore-revs. Click here to bypass and see the normal blame view.

83 lines
2.7 KiB
YAML
Raw Normal View History

2021-01-03 14:25:43 +05:30
# Terraform/Base.latest
#
# The purpose of this template is to provide flexibility to the user so
# they are able to only include the jobs that they find interesting.
#
# Therefore, this template is not supposed to run any jobs. The idea is to only
# create hidden jobs. See: https://docs.gitlab.com/ee/ci/yaml/#hide-jobs
#
# There is a more opinionated template which we suggest the users to abide,
# which is the lib/gitlab/ci/templates/Terraform.latest.gitlab-ci.yml
image:
2022-08-27 11:52:29 +05:30
name: "$CI_TEMPLATE_REGISTRY_HOST/gitlab-org/terraform-images/stable:latest"
2021-01-03 14:25:43 +05:30
variables:
2021-10-27 15:23:28 +05:30
TF_ROOT: ${CI_PROJECT_DIR} # The relative path to the root directory of the Terraform project
2023-01-13 00:05:48 +05:30
TF_STATE_NAME: default # The name of the state file used by the GitLab Managed Terraform state backend
2021-01-03 14:25:43 +05:30
cache:
key: "${TF_ROOT}"
paths:
- ${TF_ROOT}/.terraform/
2021-11-11 11:23:49 +05:30
.terraform:fmt: &terraform_fmt
stage: validate
script:
2022-07-16 23:28:13 +05:30
- cd "${TF_ROOT}"
2021-12-11 22:18:48 +05:30
- gitlab-terraform fmt
2021-11-11 11:23:49 +05:30
allow_failure: true
2023-01-13 00:05:48 +05:30
rules:
- if: $CI_PIPELINE_SOURCE == "merge_request_event"
- if: $CI_OPEN_MERGE_REQUESTS # Don't add it to a *branch* pipeline if it's already in a merge request pipeline.
when: never
- if: $CI_COMMIT_BRANCH # If there's no open merge request, add it to a *branch* pipeline instead.
2021-11-11 11:23:49 +05:30
2021-10-27 15:23:28 +05:30
.terraform:validate: &terraform_validate
2021-01-03 14:25:43 +05:30
stage: validate
script:
2022-07-16 23:28:13 +05:30
- cd "${TF_ROOT}"
2021-01-03 14:25:43 +05:30
- gitlab-terraform validate
2023-01-13 00:05:48 +05:30
rules:
- if: $CI_PIPELINE_SOURCE == "merge_request_event"
- if: $CI_OPEN_MERGE_REQUESTS # Don't add it to a *branch* pipeline if it's already in a merge request pipeline.
when: never
- if: $CI_COMMIT_BRANCH # If there's no open merge request, add it to a *branch* pipeline instead.
2021-01-03 14:25:43 +05:30
2021-10-27 15:23:28 +05:30
.terraform:build: &terraform_build
2021-01-03 14:25:43 +05:30
stage: build
script:
2022-07-16 23:28:13 +05:30
- cd "${TF_ROOT}"
2021-01-03 14:25:43 +05:30
- gitlab-terraform plan
- gitlab-terraform plan-json
2021-10-27 15:23:28 +05:30
resource_group: ${TF_STATE_NAME}
2021-01-03 14:25:43 +05:30
artifacts:
paths:
- ${TF_ROOT}/plan.cache
reports:
terraform: ${TF_ROOT}/plan.json
2023-01-13 00:05:48 +05:30
rules:
- if: $CI_PIPELINE_SOURCE == "merge_request_event"
- if: $CI_OPEN_MERGE_REQUESTS # Don't add it to a *branch* pipeline if it's already in a merge request pipeline.
when: never
- if: $CI_COMMIT_BRANCH # If there's no open merge request, add it to a *branch* pipeline instead.
2021-01-03 14:25:43 +05:30
2021-10-27 15:23:28 +05:30
.terraform:deploy: &terraform_deploy
2021-01-03 14:25:43 +05:30
stage: deploy
script:
2022-07-16 23:28:13 +05:30
- cd "${TF_ROOT}"
2021-01-03 14:25:43 +05:30
- gitlab-terraform apply
2021-10-27 15:23:28 +05:30
resource_group: ${TF_STATE_NAME}
2021-12-11 22:18:48 +05:30
rules:
2023-04-23 21:23:45 +05:30
- if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH && $TF_AUTO_DEPLOY == "true"
2021-12-11 22:18:48 +05:30
- if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH
when: manual
2021-01-29 00:20:46 +05:30
2021-10-27 15:23:28 +05:30
.terraform:destroy: &terraform_destroy
2021-01-29 00:20:46 +05:30
stage: cleanup
script:
2022-07-16 23:28:13 +05:30
- cd "${TF_ROOT}"
2021-01-29 00:20:46 +05:30
- gitlab-terraform destroy
2021-10-27 15:23:28 +05:30
resource_group: ${TF_STATE_NAME}
2021-01-29 00:20:46 +05:30
when: manual