Difference between revisions of "Terraform/Atlantis"
Jump to navigation
Jump to search
(Created page with "[https://www.runatlantis.io/ Atlantis] allows for Terraform executiuons from Git hosting systems like GitLab, GitHub or AzureDevops usilyzing their webhooks. [https://www.ru...") |
|||
Line 40: | Line 40: | ||
``` | ``` | ||
</source> | </source> | ||
= Resurces = | |||
* [https://tech.loveholidays.com/enforcing-best-practice-on-self-serve-infrastructure-with-terraform-atlantis-and-policy-as-code-911f4f8c3e00 terraform-atlantis-and-policy-as-code] |
Latest revision as of 17:54, 30 September 2021
Atlantis allows for Terraform executiuons from Git hosting systems like GitLab, GitHub or AzureDevops usilyzing their webhooks.
Local test run with Gitlab.com
```zsh # Download Atlantis wget https://github.com/runatlantis/atlantis/releases # Start ngrok, so the git hosting systems can send events to your Atlantis instance ngrok http 4141 ngrok by @inconshreveable (Ctrl+C to quit) Session Status online Session Expires 1 hour, 59 minutes Version 2.3.40 Region United States (us) Web Interface http://127.0.0.1:4040 Forwarding http://737f-84-64-12-17.ngrok.io -> http://localhost:4141 Forwarding https://737f-84-64-12-17.ngrok.io -> http://localhost:4141 Connections ttl opn rt1 rt5 p50 p90 0 0 0.00 0.00 0.00 0.00 export HOSTNAME=gitlab.com export ATLANTIS_URL=https://737f-84-64-12-17.ngrok.io # note ngrok has 2 hours time out export SECRET=AAAAAAAAAAAA # this is locally generated secret/salt export TOKEN=_1111111111111111111 # GitLab PAT (personal access token) User Settings > Access Tokens export USERNAME=mygitlabuser export REPOSITORY=myrepo export REPO_ALLOWLIST="gitlab.com/${USERNAME}/${REPOSITORY}" atlantis server \ --atlantis-url="$ATLANTIS_URL" \ --gitlab-user="$USERNAME" \ --gitlab-token="$TOKEN" \ --gitlab-webhook-secret="$SECRET" \ --gitlab-hostname="$HOSTNAME" \ --repo-allowlist="$REPO_ALLOWLIST" ```