-
Notifications
You must be signed in to change notification settings - Fork 1
66 lines (55 loc) · 1.94 KB
/
teleport.yml
File metadata and controls
66 lines (55 loc) · 1.94 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
name: Teleport Workflow
on:
workflow_call:
secrets:
TF_TOKEN_APP_TERRAFORM_IO:
required: true
ARM_CLIENT_ID:
required: true
ARM_CLIENT_SECRET:
required: true
ARM_SUBSCRIPTION_ID:
required: true
ARM_TENANT_ID:
required: true
SLACK_WEBHOOK:
required: true
ANSIBLE_VAULT_PASSWORD:
required: true
EA_GITHUB_CLIENT_SECRET:
required: true
EA_GITHUB_CLIENT_ID:
required: true
workflow_dispatch:
jobs:
teleport:
name: Install and setup Teleport with github
runs-on: ubuntu-latest
env:
TF_TOKEN_app_terraform_io: ${{ secrets.TF_TOKEN_APP_TERRAFORM_IO }}
ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }}
ARM_CLIENT_SECRET: ${{ secrets.ARM_CLIENT_SECRET }}
ARM_SUBSCRIPTION_ID: ${{ secrets.ARM_SUBSCRIPTION_ID }}
ARM_TENANT_ID: ${{ secrets.ARM_TENANT_ID }}
EA_GITHUB_CLIENT_ID: ${{ secrets.EA_GITHUB_CLIENT_ID }}
EA_GITHUB_CLIENT_SECRET: ${{ secrets.EA_GITHUB_CLIENT_SECRET }}
ANSIBLE_VAULT_PASSWORD: ${{ secrets.ANSIBLE_VAULT_PASSWORD }}
SLACK_WEBHOOK: ${{ secrets.SLACK_WEBHOOK}}
defaults:
run:
working-directory: .
steps:
- name: Checkout repo
uses: actions/checkout@v2
- uses: hashicorp/setup-terraform@v3
with:
terraform_version: latest
- run: terraform init -reconfigure
working-directory: ./terraform
- name: Generate ansible inventory
run: bash ./scripts/generate_ansible_inv.sh
- name: Run Ansible Inventory
run: bash ./scripts/setup_teleport.sh
- name: Send Slack alert
run: |
curl -X POST -H 'Content-type: application/json' --data '{"text":"Teleport has been installed and configured on the master VM https://teleport.exploravis.mywire.org"}' ${{ secrets.SLACK_WEBHOOK }}