Deploy to AWS with Terraform within a GitHub Action

Рет қаралды 38,129

Күн бұрын

How to deploy to AWS with Terraform within a GitHub Action.
My blog : cloudscalr.com
Project repo : github.com/KasteM34/github-oi...
GitHub Action : github.com/KasteM34/github-oi...
IAM trusted entity : github.com/KasteM34/github-oi...
IAM policy for terraform states : github.com/KasteM34/github-oi...
Don't forget to calculate how much solutions will cost you on AWS before creating resources.
mistakes can be expensive : calculator.aws/

Пікірлер: 59

@user-yj4xl9hq1k 4 ай бұрын

I have never followed a tutorial that went this smooth. Thanks

@pur3D3votion 3 ай бұрын

What a massive joy it was to go through the video and grasp the topics at hand, and great plus for showing us so many good practices which often are missed such as the use of GH-secrets.

@andythedishwasher1117 Жыл бұрын

Thanks so much for this! I'm currently trying to nail down this exact skill set on the big three platforms (AWS, GCP, and Azure) so that I can bake those pipelines into multi-platform deployments.

@cloudscalr Жыл бұрын

Wish you good luck mate!

@MadeinIndia-Vlogs Жыл бұрын

Great work Guilhem you made it so simple and make it very easy to understand the concept AWS , Terraform & GitHub Action hope you will make more videos on AWS/DevOps regards Sanjay from India

@cloudscalr Жыл бұрын

Thank you Sanjay, It’s the best part of doing video: when you hear it’s useful to someone! Cheers.

@orebelo 9 ай бұрын

Thank you for this tutorial. Its worked quite nice!!

@ojcorzog Жыл бұрын

Great video! clear and informative.

@Yahalomis Жыл бұрын

Nice one ! Thanks for the explanation

@01sasha66 Жыл бұрын

Congratulations again for the useful content!

@cloudscalr Жыл бұрын

Thanks!

@sunilchaudhari5248 Жыл бұрын

Awesome! thanks for nice explanation.

@fooked1 10 ай бұрын

Solid tutorial. Thank you.

@durbabanik3372 2 ай бұрын

Thank you so much , it was crystal clear

@nathanhadi876 9 ай бұрын

Great content. Thank you!

@Labandusette 8 ай бұрын

thanks Guilhem. great vid

@maximeaoustin7325 Жыл бұрын

41s - JWT = JSON Web Token Great explanation!

@cloudscalr 11 ай бұрын

You are right, that was a typo from my side. Thanks for pointing it.

@ToBi-xr2mg 9 ай бұрын

Thanks so much for the idea. I use Terraform Cloud and IAM Identity Center with AWS Organizations instead, so I got stuck after the OIDC config. I'd have to tweak a lot of things

@SRTMLops Ай бұрын

Excelente tutorial

@nekenlight 11 ай бұрын

Very clear !

@MisterDevilRo Жыл бұрын

Excelent !

@arjunpt9304 3 ай бұрын

Really worth

@Ishikab761 11 ай бұрын

Great content on terraform with GitHub action. Can you please make a video on how to pass environment specific values with terraform.tfvars file to the CI/CD pipeline

@kayoutube690 Жыл бұрын

amazing sir

@uviekugberetheo7262 Жыл бұрын

Bro.... thanks alot

@abhaysingh8896 Жыл бұрын

Goodone. nice content

@debprasad1059 6 ай бұрын

Thanks for the great video. Will you be able to add/explain how can we add a destroy job that can be triggered once tested?

@manojpunia7717 Жыл бұрын

great work, thanks for the efforts. where is the provider aws block ?

@jfaguile 5 ай бұрын

Great video; everything was well explained. Loved the demo :) I have a question about using the repository secrets vs variables. Wondering if when working a group of people, using variables instead of secrets for the non sensitive data would be more convenient so peers can know what value is being used (for example, what S3 bucket is used to host the terraform state).

@shankarmishra124 6 ай бұрын

Thanks for this informative video . How to destroy the stack ,can you pls elaborate ??

@ToTheTMAX Жыл бұрын

You need to do more videos

@Airbo71 Жыл бұрын

Could you do the teardown pipeline video also? Thanks

@egokick 8 ай бұрын

clean

@shreyojitdas9333 3 ай бұрын

can you please make a playlist on devops and aws...we want to learn from u

@mehmetnuricetin4104 Жыл бұрын

Thanks for sharing this video. I am working with eks and really junior :) how can I create github action for my need? Which aim permission should I give?

@malicksylla886 Жыл бұрын

Great Job! You KISS ;)

@sprour Жыл бұрын

Can you use Terraform itself to do all the steps both for GitHub and AWS?

@madeleinehenry3261 Жыл бұрын

Killer🔪work 🙏

@cloudscalr Жыл бұрын

Thanks!

@mareksottl5117 Жыл бұрын

Do you have any recommendation for other github actions for TF?

@margred2912 11 ай бұрын

10:20 I’m wondering about the aws provider block. Why didn’t you include it? Maybe the Terrafom action uses doesn’t require it?

@danielt5542 9 ай бұрын

What if the plan is successful, but the apply command fails because of some misconfiguration? what is the next step with the current way of working. Opening again a PR?

@MaskedProgrammer 3 ай бұрын

you have the terraform validate. So there shouldn't be an error on the apply. Please someone correct me if i'm wrong

@marg8880 11 ай бұрын

Where exactly actions gng to run the gi mean the Ubuntu its in git or in aws ?

@martinsebastianperezquinon1478 3 ай бұрын

if i want to delete the infra using tf ?

@rishawsingh Жыл бұрын

Hey Nice Work, I am struggling with creating flow diagram for my Devops related projects, I have tried AWS cloudformation, but can you suggest some alternate options for the same. Thanks

@cloudscalr Жыл бұрын

Hi, Take a look at draw.io !

@GoalRushCR7 5 ай бұрын

at 8:10, I cannot access the policies in the roles tab??

@aminejawadi6293 Жыл бұрын

merci Great work keep going😅 just one question how can i destroy the same infrastructure later

@alibaba888 Жыл бұрын

- remove everything in `main.tf` and save the file - stage files, then commit, and lastly push to the origin - merge the PR we created now

@amalviswanathan3254 Жыл бұрын

hey thanks for the video and it helped me a lot , a quick question I've a scenario where I want to get the secrets from the parameter store and use that value in a config file eg: rds - endpoint and secrets i need to get the value to a config file how can I achieve that , if anyone could help me achieve this . and a suggestion can you do some zero to hero sessions on cloud and devops tools it would helpful a beginner like me

@cloudscalr Жыл бұрын

Thanks Amal for your suggestions :) Look in google for : Data Source: aws_ssm_parameter, you will find the webpage from Terraform. From the data you will do in your code, you can then interpolate the value of the data inside your rds block.

@amalviswanathan3254 Жыл бұрын

@@cloudscalr hey , in the open id connection part you have mentioned a username and repo name for setting an IAM policy, so what if it 's in an organization level repo the user name will be the organization name right ?? or do i need to give my id in the organization

@KingkorAtMaxint Ай бұрын

0:46 The correct abbreviation of JWT is JSON Web Token not Java Web Token lol

@karam3375 Жыл бұрын

Not gonna lie I was following along fine until "Create AWS Policy". What exactly did you make here, and why? And what do you mean for us to do the same for our specific use-case? I'm kinda confused.

@margred2912 11 ай бұрын

For the first one, you need to create a policy to allow the IAM Role assumes for Github permissions to access the AWS S3 bucket to read and overwrite the tfsate. The second one, is because dependes of the infrastructure and aws resources you want to deploy. For most cases, maybe, just with a PowerAccess o AdministratorAccess allow enough permissions to deploy all need resources.