-
Notifications
You must be signed in to change notification settings - Fork 0
/
azure-pipeline.yml
88 lines (78 loc) · 3.71 KB
/
azure-pipeline.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
# azure-pipelines
trigger:
- none
pool: Default
parameters:
- name: operation
type: string
default: create
values:
- create
- destroy
- name: access_allowed_source_ips_cidr
displayName: Comma separated (string) Ips allowed Source to access on server
type: string
default: ""
- name: deploymentDir
displayName: Deployment Directory
type: string
variables:
- template: vars/global.yml
parameters:
deploymentDir: ${{ parameters.deploymentDir }}
resources:
repositories:
- repository: terraform-modules
type: git
name: terraform-modules
ref: bug/conditional-output
stages:
- stage: BuildStage
jobs:
- job: BuildJob
steps:
- checkout: self
displayName: Checkout this repo
- checkout: terraform-modules
displayName: Checkout terraform-modules
- task: Bash@3
name: replace_tokens
displayName: Replace tokens in main.tf
inputs:
targetType: inline
script: |
# tfvars substitutions
sed -i 's/__tenantId__/$(tenant_id)/g' ${{ variables.tfVarsFile }}
sed -i 's/__subscription_id__/$(subscription_id)/g' ${{ variables.tfVarsFile }}
sed -i 's/__location__/$(resource_location)/g' ${{ variables.tfVarsFile }}
sed -i 's/__deployment_prefix/$(deployment_prefix)/g' ${{ variables.tfVarsFile }}
sed -i 's/__keyvault_access_aad_group_id__/null/g' ${{ variables.tfVarsFile }}
sed -i 's/__admin_username__/$(admin_username)/g' ${{ variables.tfVarsFile }}
sed -i 's/__admin_ssh_key__/$(admin_ssh_key)/g' ${{ variables.tfVarsFile }}
sed -i 's/__allowed_public_cidr__/${{ parameters.access_allowed_source_ips_cidr }}/g' ${{ variables.tfVarsFile }}
# Terraform state
sed -i 's/__tfStateResourceGroup__/$(tsStateResourceGroup)/g' ${{ variables.tfConfigBackendPath }}
sed -i 's/__tfStateStorageAccName__/$(tsStateStorageAccName)/g' ${{ variables.tfConfigBackendPath }}
sed -i 's/__tfStateContainer__/$(tsStateContainerName)/g' ${{ variables.tfConfigBackendPath }}
sed -i 's/__tfStateKey__/$(tsStateKeyName)/g' ${{ variables.tfConfigBackendPath }}
sed -i 's/__tfStateSubscriptionId__/$(subscription_id)/g' ${{ variables.tfConfigBackendPath }}
# # Tags
# sed -i 's/__projectCode__/$(tagsProjectCode)/g' ${{ variables.tfConfigPath }}
# sed -i 's/__invoiceCode__/$(tagsInvoiceCode)/g' ${{ variables.tfConfigPath }}
- template: templates/pipelines/azure/build-publish-jobs.yml
parameters:
azureSubscription: $(azureSubscription)
environment: $(environment)
tfBuildRepoPath: $(tfBuildRepoPath)
tfConfigRootPath: $(tfConfigRootPath)
operation: ${{ parameters.operation }}
- stage: DeployStage
condition: succeeded()
jobs:
- template: templates/pipelines/azure/deployment-jobs.yml
parameters:
azureSubscription: $(azureSubscription)
artifactPath: $(artifactUploadPath)
artifactExtractPath: $(artifactExtractPath)
deploymentAzDoEnvironment: $(azureDeploymentEnvironment)
environment: $(environment)