feature: deploy redis and postgresql in localstack #620
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
craigzour
force-pushed
the
feature/deploy-redis-and-postgresql-in-localstack
branch
4 times, most recently
from
dc48889
to
3200f0c
Compare
craigzour
force-pushed
the
feature/deploy-redis-and-postgresql-in-localstack
branch
2 times, most recently
from
91cb2d4
to
01882ec
Compare
craigzour
force-pushed
the
feature/deploy-redis-and-postgresql-in-localstack
branch
from
01882ec
to
3017ddd
Compare
craigzour
changed the title
craigzour
force-pushed
the
feature/deploy-redis-and-postgresql-in-localstack
branch
from
3017ddd
to
06fcb35
Compare
craigzour
force-pushed
the
feature/deploy-redis-and-postgresql-in-localstack
branch
from
06fcb35
to
d13af55
Compare
wmoussa-gc
previously approved these changes
Mar 28, 2024
craigzour
commented
Apr 3, 2024
|
|
||
| printf "${color}...Purging stale localstack related files${reset}\n" | ||
| find $basedir/env/cloud -type d -name .terragrunt-cache -prune -print -exec rm -rf {} \; | ||
| if [[ "${ACTION}" == "clean" ]] |
There was a problem hiding this comment.
Re added this parameter for now. The README file has been updated to explain when to use it.
Please note that a smarter version of this script is already being tested here. It will be able to detect whether it should run with or without the clean argument.
bryan-robitaille
previously approved these changes
Apr 9, 2024
craigzour
dismissed stale reviews from bryan-robitaille and wmoussa-gc
via
1c4a3cd
Co-authored-by: Bryan Robitaille <[email protected]>
⚠ Terrform update availableTerraform: 1.7.5 (using 1.6.6)
Terragrunt: 0.56.2 (using 0.54.8) |
Staging: secrets✅ Terraform Init: Plan: 1 to add, 0 to change, 1 to destroyShow summary
Show planResource actions are indicated with the following symbols:
-/+ destroy and then create replacement
Terraform will perform the following actions:
# aws_secretsmanager_secret_version.notify_callback_bearer_token must be replaced
-/+ resource "aws_secretsmanager_secret_version" "notify_callback_bearer_token" {
~ arn = "arn:aws:secretsmanager:ca-central-1:687401027353:secret:notify_callback_bearer_token-aXJPLs" -> (known after apply)
~ id = "arn:aws:secretsmanager:ca-central-1:687401027353:secret:notify_callback_bearer_token-aXJPLs|4A43D97C-2937-4E91-A924-ADF60955E459" -> (known after apply)
~ secret_string = (sensitive value) # forces replacement
~ version_id = "4A43D97C-2937-4E91-A924-ADF60955E459" -> (known after apply)
~ version_stages = [
- "AWSPREVIOUS",
] -> (known after apply)
# (1 unchanged attribute hidden)
}
Plan: 1 to add, 0 to change, 1 to destroy.
─────────────────────────────────────────────────────────────────────────────
Saved the plan to: plan.tfplan
To perform exactly these actions, run the following command to apply:
terraform apply "plan.tfplan"
Show Conftest resultsWARN - plan.json - main - Missing Common Tags: ["aws_secretsmanager_secret.freshdesk_api_key"]
WARN - plan.json - main - Missing Common Tags: ["aws_secretsmanager_secret.notify_api_key"]
WARN - plan.json - main - Missing Common Tags: ["aws_secretsmanager_secret.notify_callback_bearer_token"]
WARN - plan.json - main - Missing Common Tags: ["aws_secretsmanager_secret.recaptcha_secret"]
WARN - plan.json - main - Missing Common Tags: ["aws_secretsmanager_secret.token_secret"]
24 tests, 19 passed, 5 warnings, 0 failures, 0 exceptions
|
Staging: app✅ Terraform Init: Plan: 1 to add, 0 to change, 1 to destroyShow summary
Show planResource actions are indicated with the following symbols:
-/+ destroy and then create replacement
Terraform will perform the following actions:
# aws_ecs_task_definition.form_viewer must be replaced
-/+ resource "aws_ecs_task_definition" "form_viewer" {
~ arn = "arn:aws:ecs:ca-central-1:687401027353:task-definition/form-viewer:1503" -> (known after apply)
~ arn_without_revision = "arn:aws:ecs:ca-central-1:687401027353:task-definition/form-viewer" -> (known after apply)
~ container_definitions = jsonencode(
~ [
~ {
- cpu = 0
- essential = true
~ linuxParameters = {
~ capabilities = {
- add = []
# (1 unchanged attribute hidden)
}
}
- mountPoints = []
name = "form_viewer"
~ portMappings = [
~ {
- hostPort = 3000
- protocol = "tcp"
# (1 unchanged attribute hidden)
},
]
- systemControls = []
- volumesFrom = []
# (4 unchanged attributes hidden)
},
] # forces replacement
)
~ id = "form-viewer" -> (known after apply)
~ revision = 1503 -> (known after apply)
- tags = {} -> null
# (9 unchanged attributes hidden)
}
Plan: 1 to add, 0 to change, 1 to destroy.
─────────────────────────────────────────────────────────────────────────────
Saved the plan to: plan.tfplan
To perform exactly these actions, run the following command to apply:
terraform apply "plan.tfplan"
Show Conftest resultsWARN - plan.json - main - Missing Common Tags: ["aws_appautoscaling_target.forms[0]"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_log_group.forms"]
WARN - plan.json - main - Missing Common Tags: ["aws_codedeploy_app.app"]
WARN - plan.json - main - Missing Common Tags: ["aws_codedeploy_deployment_group.app"]
WARN - plan.json - main - Missing Common Tags: ["aws_ecs_cluster.forms"]
WARN - plan.json - main - Missing Common Tags: ["aws_ecs_service.form_viewer"]
WARN - plan.json - main - Missing Common Tags: ["aws_ecs_task_definition.form_viewer"]
WARN - plan.json - main - Missing Common Tags: ["aws_iam_policy.cognito"]
WARN - plan.json - main - Missing Common Tags: ["aws_iam_policy.forms_dynamodb"]
WARN - plan.json - main - Missing Common Tags: ["aws_iam_policy.forms_kms"]
WARN - plan.json - main - Missing Common Tags: ["aws_iam_policy.forms_s3"]
WARN - plan.json - main - Missing Common Tags: ["aws_iam_policy.forms_secrets_manager"]
WARN - plan.json - main - Missing Common Tags: ["aws_iam_policy.forms_sqs"]
WARN - plan.json - main - Missing Common Tags: ["aws_iam_role.codedeploy"]
WARN - plan.json - main - Missing Common Tags: ["aws_iam_role.forms"]
34 tests, 19 passed, 15 warnings, 0 failures, 0 exceptions
|
Staging: lambdas✅ Terraform Init: Plan: 0 to add, 7 to change, 0 to destroyShow summary
Show planResource actions are indicated with the following symbols:
~ update in-place
Terraform will perform the following actions:
# aws_lambda_function.form_archiver will be updated in-place
~ resource "aws_lambda_function" "form_archiver" {
id = "Archive_Form_Templates"
~ last_modified = "2024-02-08T18:31:43.542+0000" -> (known after apply)
~ s3_object_version = "79XIc6VR2aQuYzaduPsoOatLGFISakMg" -> (known after apply)
~ source_code_hash = "Az0liG599yfRg7cqDAtpcwSYHtgtsQI2m7K2x/krsxY=" -> "tZom8NvYkLTCiFBHAx0p97qloJ1ZcMMumoKxxhc4SWc="
tags = {}
# (21 unchanged attributes hidden)
~ environment {
~ variables = {
- "ENVIRONMENT" = "staging" -> null
- "LOCALSTACK" = "false" -> null
# (4 unchanged elements hidden)
}
}
# (2 unchanged blocks hidden)
}
# aws_lambda_function.nagware will be updated in-place
~ resource "aws_lambda_function" "nagware" {
id = "Nagware"
~ last_modified = "2024-02-08T19:33:25.528+0000" -> (known after apply)
~ s3_object_version = "fuG43TeGDVNjxXr9SBeF7II5Kv7lVBoZ" -> (known after apply)
~ source_code_hash = "2ZP5o8tCbep27P53xhm8tjX9DytomL5qhN8DZAlAVhQ=" -> "ewsERJHdgUqXPuAunXW9Djvue3VCJbRmdbJySbEUXMY="
tags = {}
# (21 unchanged attributes hidden)
# (3 unchanged blocks hidden)
}
# aws_lambda_function.reliability will be updated in-place
~ resource "aws_lambda_function" "reliability" {
id = "Reliability"
~ last_modified = "2024-03-26T18:42:41.000+0000" -> (known after apply)
~ s3_object_version = "sGP63Ns5_df6wtyOh_.FvquFgx50U2A9" -> (known after apply)
~ source_code_hash = "qdwZPGA+SOTsb3f31K4JE0IjD5jxYL3sUPXLUXdU1c8=" -> "VfnhFxgRiQhRaOOzhvqorDCLZ95Numn4J8eGPARS0uk="
tags = {}
# (21 unchanged attributes hidden)
# (3 unchanged blocks hidden)
}
# aws_lambda_function.vault_integrity will be updated in-place
~ resource "aws_lambda_function" "vault_integrity" {
id = "Vault_Data_Integrity_Check"
~ last_modified = "2024-03-26T18:42:41.000+0000" -> (known after apply)
~ source_code_hash = "PD5RmSEVjAYMZc1lvfSSn6O3RadR+J09hCPKVbQS/+g=" -> "TowbMcppnki+0a5fq50Oral3CqleiwGw7U1igvFz0Ws="
tags = {}
# (24 unchanged attributes hidden)
# (3 unchanged blocks hidden)
}
# aws_s3_object.form_archiver_code will be updated in-place
~ resource "aws_s3_object" "form_archiver_code" {
id = "form_archiver_code"
~ source_hash = "Az0liG599yfRg7cqDAtpcwSYHtgtsQI2m7K2x/krsxY=" -> "tZom8NvYkLTCiFBHAx0p97qloJ1ZcMMumoKxxhc4SWc="
tags = {}
~ version_id = "79XIc6VR2aQuYzaduPsoOatLGFISakMg" -> (known after apply)
# (11 unchanged attributes hidden)
}
# aws_s3_object.nagware_code will be updated in-place
~ resource "aws_s3_object" "nagware_code" {
id = "nagware_code"
~ source_hash = "2ZP5o8tCbep27P53xhm8tjX9DytomL5qhN8DZAlAVhQ=" -> "ewsERJHdgUqXPuAunXW9Djvue3VCJbRmdbJySbEUXMY="
tags = {}
~ version_id = "fuG43TeGDVNjxXr9SBeF7II5Kv7lVBoZ" -> (known after apply)
# (11 unchanged attributes hidden)
}
# aws_s3_object.reliability_code will be updated in-place
~ resource "aws_s3_object" "reliability_code" {
id = "reliability_code"
~ source_hash = "qdwZPGA+SOTsb3f31K4JE0IjD5jxYL3sUPXLUXdU1c8=" -> "VfnhFxgRiQhRaOOzhvqorDCLZ95Numn4J8eGPARS0uk="
tags = {}
~ version_id = "sGP63Ns5_df6wtyOh_.FvquFgx50U2A9" -> (known after apply)
# (11 unchanged attributes hidden)
}
Plan: 0 to add, 7 to change, 0 to destroy.
─────────────────────────────────────────────────────────────────────────────
Saved the plan to: plan.tfplan
To perform exactly these actions, run the following command to apply:
terraform apply "plan.tfplan"
Show Conftest resultsWARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_event_rule.audit_logs_archiver_lambda_trigger"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_event_rule.form_archiver_lambda_trigger"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_event_rule.nagware_lambda_trigger"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_event_rule.reliability_dlq_lambda_trigger"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_event_rule.response_archiver_lambda_trigger"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_log_group.archive_form_templates"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_log_group.audit_logs"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_log_group.audit_logs_archiver"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_log_group.dead_letter_queue_consumer"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_log_group.nagware"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_log_group.reliability"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_log_group.response_archiver"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_log_group.submission"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_log_group.vault_integrity"]
WARN - plan.json - main - Missing Common Tags: ["aws_iam_policy.lambda_dynamodb"]
WARN - plan.json - main - Missing Common Tags: ["aws_iam_policy.lambda_kms"]
WARN - plan.json - main - Missing Common Tags: ["aws_iam_policy.lambda_logging"]
WARN - plan.json - main - Missing Common Tags: ["aws_iam_policy.lambda_rds"]
WARN - plan.json - main - Missing Common Tags: ["aws_iam_policy.lambda_s3"]
WARN - plan.json - main - Missing Common Tags: ["aws_iam_policy.lambda_secrets"]
WARN - plan.json - main - Missing Common Tags: ["aws_iam_policy.lambda_sns"]
WARN - plan.json - main - Missing Common Tags: ["aws_iam_policy.lambda_sqs"]
WARN -... |
Staging: alarms✅ Terraform Init: Plan: 0 to add, 2 to change, 0 to destroyShow summary
Show planResource actions are indicated with the following symbols:
~ update in-place
Terraform will perform the following actions:
# aws_lambda_function.notify_slack will be updated in-place
~ resource "aws_lambda_function" "notify_slack" {
id = "NotifySlack"
~ last_modified = "2024-03-12T18:32:06.000+0000" -> (known after apply)
~ s3_object_version = "PyMgtr32ws4WaGmnW8_J5v3xgSYhPXsD" -> (known after apply)
~ source_code_hash = "OsJd8gBcFfPfRrCQT1iq3mOwD/HVbtvStHmskpExTvk=" -> "kbHJgDNOQodqCMI271CAcgHrZGTvsoUmV5UoyA6F7k8="
tags = {}
# (21 unchanged attributes hidden)
~ environment {
~ variables = {
~ "ENVIRONMENT" = "Staging" -> "staging"
# (2 unchanged elements hidden)
}
}
# (2 unchanged blocks hidden)
}
# aws_s3_object.notify_slack_code will be updated in-place
~ resource "aws_s3_object" "notify_slack_code" {
id = "notify_slack_code"
~ source_hash = "OsJd8gBcFfPfRrCQT1iq3mOwD/HVbtvStHmskpExTvk=" -> "kbHJgDNOQodqCMI271CAcgHrZGTvsoUmV5UoyA6F7k8="
tags = {}
~ version_id = "PyMgtr32ws4WaGmnW8_J5v3xgSYhPXsD" -> (known after apply)
# (11 unchanged attributes hidden)
}
Plan: 0 to add, 2 to change, 0 to destroy.
Warning: Argument is deprecated
with module.athena_bucket.aws_s3_bucket.this,
on .terraform/modules/athena_bucket/S3/main.tf line 8, in resource "aws_s3_bucket" "this":
8: resource "aws_s3_bucket" "this" {
Use the aws_s3_bucket_lifecycle_configuration resource instead
(and 3 more similar warnings elsewhere)
─────────────────────────────────────────────────────────────────────────────
Saved the plan to: plan.tfplan
To perform exactly these actions, run the following command to apply:
terraform apply "plan.tfplan"
Show Conftest resultsWARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_event_rule.codedeploy_sns"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_log_group.notify_slack"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_metric_alarm.ELB_5xx_error_warn"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_metric_alarm.UnHealthyHostCount-TargetGroup1"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_metric_alarm.UnHealthyHostCount-TargetGroup2"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_metric_alarm.alb_ddos"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_metric_alarm.audit_log_dead_letter_queue_warn"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_metric_alarm.cognito_login_outside_canada_warn"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_metric_alarm.cognito_signin_exceeded"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_metric_alarm.ddos_detected_forms_warn"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_metric_alarm.ddos_detected_route53_warn[0]"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_metric_alarm.forms_cpu_utilization_high_warn"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_metric_alarm.forms_memory_utilization_high_warn"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_metric_alarm.reliability_dead_letter_queue_warn"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_metric_alarm.response_time_warn"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_metric_alarm.route53_ddos[0]"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_metric_alarm.twoFa_verification_exceeded"]
WARN - plan.json - main - Missing Common Tags: ["aws_cloudwatch_metric_alarm.vault_data_integrity_check_lambda_iterator_age"]
WARN - plan.json - main - Missing Common Tags: ["aws_iam_role.notify_slack_lambda"]
WARN - plan.json -... |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Summary | Résumé
Goes with cds-snc/platform-forms-client#3421
localstack_services.shscript to prevent Terraform state files from being deleted every time. This was causing deployment issues when running the script against an existing instance of Localstack where everything was already deployed.Testing
.envfile to make sure it is in sync with the latest.env.example.