1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
|
# == Schema Information
#
# Table name: terraform_aws_backends
#
# id :integer not null, primary key
# label :string
# aws_region :string
# aws_access_key_id :string
# aws_secret_access_key :string
# created_at :datetime not null
# updated_at :datetime not null
# domain :string
#
require 'ruby_terraform'
class Backends::TerraformAws < ApplicationRecord
include Backends::Terraform
has_many :mini_environments, as: :backend
self.table_name = 'terraform_aws_backends'
def self.label
'Amazon Web Services'
end
def type_and_id
"#{self.class.name}=#{id}"
end
def build(mini_environment)
slug = mini_environment.name.parameterize
GovukGuix::BuildJob.enqueue(
mini_environment.id,
%w(whitehall government-frontend),
type: 'container-start-script',
app_domain: "#{slug}.#{domain}",
web_domain: "www.#{slug}.#{domain}",
use_https: 'certbot'
)
end
def start(mini_environment)
logger.info "Setting up #{mini_environment.name}"
with_terraform(mini_environment, 'terraform/aws') do
RubyTerraform.apply(
vars: terraform_variables(mini_environment),
auto_approve: true
)
end
end
def destroy(mini_environment)
with_terraform(mini_environment, 'terraform/aws') do
RubyTerraform.destroy(
vars: terraform_variables(mini_environment),
force: true
)
end
end
def signon_url(mini_environment)
"https://signon.#{mini_environment.name.parameterize}.#{domain}"
end
def terraform_variables(mini_environment)
{
aws_region: aws_region,
slug: mini_environment.name.parameterize,
ssh_public_key: ssh_public_key,
start_command: mini_environment.backend_data['build_output']
}
end
def ssh_public_key
File.open("#{ENV['HOME']}/.ssh/id_rsa.pub", &:readline)
end
end
|