-
Notifications
You must be signed in to change notification settings - Fork 73
/
Copy pathjenkins.sh
executable file
·77 lines (59 loc) · 2.98 KB
/
jenkins.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
#!/bin/bash
#
# This script invokes the build-terraform-project.sh tool to deploy the code.
#
set -e
if [[ ! $(command -v sops) ]]; then
echo "sops not installed, exiting"
exit 1
fi
# Set the Terraform version to enable testing new versions.
if [[ $TERRAFORM_VERSION != '' ]]; then
BIN='tmp-bin'
echo "Creating temporary bin directory"
rm -rf $BIN && mkdir $BIN && cd $BIN
echo "Downloading Terraform ${TERRAFORM_VERSION}"
wget https://releases.hashicorp.com/terraform/${TERRAFORM_VERSION}/terraform_${TERRAFORM_VERSION}_linux_amd64.zip
wget https://releases.hashicorp.com/terraform/${TERRAFORM_VERSION}/terraform_${TERRAFORM_VERSION}_SHA256SUMS
SHASUM256=$(shasum -a 256 terraform_${TERRAFORM_VERSION}_linux_amd64.zip |cut -d ' ' -f1)
echo "Checking integrity of file"
grep -q $SHASUM256 terraform_${TERRAFORM_VERSION}_SHA256SUMS || (echo "SHASUM256 does not match, exiting"; exit 1)
echo "Checked, unpacking"
unzip terraform_${TERRAFORM_VERSION}_linux_amd64.zip
cd ..
echo "Setting path:"
PATH=$(pwd)/$BIN:$PATH
echo $PATH
echo "Terraform binary: $(command -v terraform)"
fi
rm -rf govuk-aws-data
if [[ "$GOVUK_AWS_DATA_BRANCH" == "" ]]; then
GOVUK_AWS_DATA_BRANCH="main"
fi
if [[ $COMMAND == "plan" && $GOVUK_AWS_BRANCH != "main" ]]; then
echo -e "\e[31m===============================================================\e[0m"
echo -e "\e[31mWARNING: you have run a 'plan' of a branch of govuk-aws that may be a number of commits behind 'main'.\nApplying this branch may lead to unintended infrastructural changes.\nYou should rebase your branch before proceeding.\e[0m"
echo -e "\e[31m===============================================================\e[0m"
fi
if [[ $COMMAND == "plan" && $GOVUK_AWS_DATA_BRANCH != "main" ]]; then
echo -e "\e[31m===============================================================\e[0m"
echo -e "\e[31mWARNING: you have run a 'plan' of a branch of govuk-aws-data that may be a number of commits behind 'main'.\nApplying this branch may lead to unintended infrastructural changes.\nYou should rebase your branch before proceeding.\e[0m"
echo -e "\e[31m===============================================================\e[0m"
fi
echo "Cloning govuk-aws-data $GOVUK_AWS_DATA_BRANCH"
git clone --single-branch --branch "$GOVUK_AWS_DATA_BRANCH" [email protected]:alphagov/govuk-aws-data.git
case $COMMAND in
'apply') EXTRA='-auto-approve';;
'plan (destroy)') COMMAND='plan'; EXTRA='-detailed-exitcode -destroy';;
# This flag must be -auto-approve for terraform v1.0+
# TODO: either also support -force for terraform v0.x, or update remaining
# projects that require terraform v0.x
'destroy') EXTRA='-auto-approve';;
'plan') EXTRA='-detailed-exitcode';;
esac
tools/build-terraform-project.sh -d './govuk-aws-data/data' \
-c $COMMAND \
-p $PROJECT \
-s $STACKNAME \
-e $ENVIRONMENT \
-- $EXTRA