-
Notifications
You must be signed in to change notification settings - Fork 2
45 lines (40 loc) · 2.15 KB
/
prod_destruction.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
name: Caution!! DESTROY Production Backend
on:
workflow_dispatch:
# permission can be added at job level or workflow level
# Enable this if you really consider to destory prod!!
# permissions:
# id-token: write # This is required for requesting the JWT
# contents: read # This is required for actions/checkout
jobs:
aws-prod-destruction-server:
uses: ./.github/workflows/reusable_terraform_server.yml
with:
environment_name: prod
tf_subcommand: destroy
secrets:
licenceplate: ${{ secrets.LICENCEPLATE}}
dev_oidc_idir_idp_client_secret: "${{ secrets.DEV_OIDC_IDIR_IDP_CLIENT_SECRET }}"
test_oidc_idir_idp_client_secret: "${{ secrets.TEST_OIDC_IDIR_IDP_CLIENT_SECRET }}"
prod_oidc_idir_idp_client_secret: "${{ secrets.PROD_OIDC_IDIR_IDP_CLIENT_SECRET }}"
dev_oidc_bceid_business_idp_client_secret: "${{ secrets.DEV_OIDC_BCEID_BUSINESS_IDP_CLIENT_SECRET }}"
test_oidc_bceid_business_idp_client_secret: "${{ secrets.TEST_OIDC_BCEID_BUSINESS_IDP_CLIENT_SECRET }}"
prod_oidc_bceid_business_idp_client_secret: "${{ secrets.PROD_OIDC_BCEID_BUSINESS_IDP_CLIENT_SECRET }}"
forest_client_api_api_key_test: "${{ secrets.FOREST_CLIENT_API_API_KEY_TEST }}"
forest_client_api_api_key_prod: "${{ secrets.FOREST_CLIENT_API_API_KEY_PROD }}"
dev_oidc_bcsc_idp_client_secret: "${{ secrets.DEV_OIDC_BCSC_IDP_CLIENT_SECRET }}"
test_oidc_bcsc_idp_client_secret: "${{ secrets.TEST_OIDC_BCSC_IDP_CLIENT_SECRET }}"
prod_oidc_bcsc_idp_client_secret: "${{ secrets.PROD_OIDC_BCSC_IDP_CLIENT_SECRET }}"
idim_proxy_api_api_key: "${{ secrets.IDIM_PROXY_API_API_KEY }}"
gc_notify_email_api_key: "${{ secrets.GC_NOTIFY_EMAIL_API_KEY }}"
fam_update_user_info_api_key: "${{ secrets.FAM_UPDATE_USER_INFO_API_KEY }}"
# Commenting out the destroy because we want cloudfront domain to be persistent
# for DNS configuration reasons
# aws-prod-destruction-frontend:
# needs: aws-prod-destruction-server
# uses: ./.github/workflows/reusable_terraform_frontend.yml
# with:
# environment_name: prod
# tf_subcommand: destroy
# secrets:
# licenceplate: ${{ secrets.LICENCEPLATE}}