This repository contains all the code for defining EPP's external infrastructure on AWS
- S3 Bucket
- policy granting access read/write to S3 Bucket
- Role with read/write policy applied and granted to EKS cluster service account via IRSA
This repo uses:
- terraform
- tflint
- task
You can get the correct versions by installing mise and running mise install. See .tool-versions.
- Create a branch for your changes
- Make your changes
- Run the lint task to check your changes
- Run the fmt task to format your changes
- Push your changes to the branch
- Open a pull request
- if the digger plan looks right, comment "digger apply"
Use terraform plan within an environment, or use the helpful makefile tasks:
task staging-plan
task prod-planThe easiest way to check and apply changes is using the taskfile:
task staging-plan
task staging-plan-applyagainst staging, then
task prod-plan
task prod-plan-applyfor prod.
The exact output shown in the plan phase is what is applied (via a plan.plan output file). Alternative, you can just apply all outstanding changes using: