From a2d9f41324b41bc4fa1b0a2691c1135552775cd5 Mon Sep 17 00:00:00 2001
From: Gabriel Simmer <gabriel@gitgalaxy.com>
Date: Sat, 29 Oct 2022 22:00:34 +0100
Subject: [PATCH] Add basic terraform plan for ci/cd

---
 .build.yml        | 18 ++++++++++++++++++
 flake.nix         |  1 +
 terraform/main.tf |  4 +++-
 3 files changed, 22 insertions(+), 1 deletion(-)
 create mode 100644 .build.yml

diff --git a/.build.yml b/.build.yml
new file mode 100644
index 0000000..2067118
--- /dev/null
+++ b/.build.yml
@@ -0,0 +1,18 @@
+image: nixos
+secrets:
+  - b0e58bfc-64c4-4b93-9054-b5db47d96a49
+  - a3f6aa54-9243-4808-b5a5-414644732c02
+  - 9972d0f8-7159-4057-bb0c-648d8deac791
+  - 4414726b-9472-4dcf-bd57-56af00ee1129
+packages:
+  - terraform
+  - awscli
+sources:
+  git@git.sr.ht:~gmem/infra
+tasks:
+  - terraform-plan: |
+      aws configure import --csv file://.aws.csv
+      export VERCEL_API_TOKEN=$(cat ~/.vercel)
+      cd infra
+      terraform init
+      terraform -chdir=terraform plan
diff --git a/flake.nix b/flake.nix
index b6094c8..b25dac8 100644
--- a/flake.nix
+++ b/flake.nix
@@ -12,6 +12,7 @@
           pkgs.terraform
           pkgs.ansible
           pkgs.kubectl
+          pkgs.awscli
           pkgs.nodePackages.yaml-language-server
           pkgs.k9s
         ];
diff --git a/terraform/main.tf b/terraform/main.tf
index 020e94f..9127020 100644
--- a/terraform/main.tf
+++ b/terraform/main.tf
@@ -17,6 +17,8 @@ terraform {
     bucket = "gsimmer-terraform-state"
     key    = "state/personal.tfstate"
     region = "eu-west-2"
+
+    dynamodb_table = "gsimmer-terraform-lock"
   }
 }
 
@@ -25,4 +27,4 @@ provider "fly" {}
 provider "aws" {
   alias  = "virginia"
   region = "us-east-1"
-}
\ No newline at end of file
+}