Manual approval required for workflow run 6293875530: Terraform destroy -> company-product (alpha) - Githubissues

spencerr / tf-poc

0 stars 0 forks source link

Manual approval required for workflow run 6293875530: Terraform destroy -> company-product (alpha) #17

Closed github-actions[bot] closed 1 year ago

github-actions[bot] commented 1 year ago

Terraform Format and Style 🖌`failure`

Terraform Initialization ⚙️`success`

Terraform Validation 🤖`success`

Validation Output

``` [32m[1mSuccess![0m The configuration is valid. [0m ```

Terraform Plan 📖`success`

Show Plan

```diff module.cluster.module.aks_cluster.azurerm_resource_group.aks: Refreshing state... [id=/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/rg-alpha-tfpoc-cluster] module.cluster.module.aks_cluster.azurerm_kubernetes_cluster.aks: Refreshing state... [id=/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/rg-alpha-tfpoc-cluster/providers/Microsoft.ContainerService/managedClusters/aks-alpha-tfpoc] module.feature.module.feature.data.azurerm_key_vault_secret.test_secret: Reading... module.feature.module.feature.azurerm_resource_group.feature: Refreshing state... [id=/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/rg-alpha-tfpoc-feature] module.feature.module.feature.azurerm_cosmosdb_account.feature: Refreshing state... [id=/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/rg-alpha-tfpoc-feature/providers/Microsoft.DocumentDB/databaseAccounts/cdb-alpha-tfpoc-feature] module.feature.module.feature.kubernetes_namespace.secret_namespace: Refreshing state... [id=alpha] module.feature.module.feature.data.azurerm_key_vault_secret.test_secret: Read complete after 1s [id=https://kv-alpha-tfpoc-bootstrap.vault.azure.net/secrets/Test--Secret/0924064d0c8040b1a2ef7ef6ec69aabb] module.feature.module.feature.kubernetes_secret.cosmosdb-secret: Refreshing state... [id=alpha/feature-secrets] Terraform used the selected providers to generate the following execution plan. Resource actions are indicated with the following symbols: - destroy Terraform will perform the following actions: # module.cluster.module.aks_cluster.azurerm_kubernetes_cluster.aks will be destroyed - resource "azurerm_kubernetes_cluster" "aks" { - api_server_authorized_ip_ranges = [] -> null - custom_ca_trust_certificates_base64 = [] -> null - dns_prefix = "aks-alpha-tfpoc" -> null - enable_pod_security_policy = false -> null - fqdn = "aks-alpha-tfpoc-i9czw75c.hcp.eastus.azmk8s.io" -> null - id = "/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/rg-alpha-tfpoc-cluster/providers/Microsoft.ContainerService/managedClusters/aks-alpha-tfpoc" -> null - image_cleaner_enabled = false -> null - image_cleaner_interval_hours = 48 -> null - kube_admin_config = (sensitive value) -> null - kube_config = (sensitive value) -> null - kube_config_raw = (sensitive value) -> null - kubernetes_version = "1.26.6" -> null - local_account_disabled = false -> null - location = "eastus" -> null - name = "aks-alpha-tfpoc" -> null - node_resource_group = "MC_rg-alpha-tfpoc-cluster_aks-alpha-tfpoc_eastus" -> null - node_resource_group_id = "/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/MC_rg-alpha-tfpoc-cluster_aks-alpha-tfpoc_eastus" -> null - oidc_issuer_enabled = false -> null - portal_fqdn = "aks-alpha-tfpoc-i9czw75c.portal.hcp.eastus.azmk8s.io" -> null - private_cluster_enabled = false -> null - private_cluster_public_fqdn_enabled = false -> null - public_network_access_enabled = true -> null - resource_group_name = "rg-alpha-tfpoc-cluster" -> null - role_based_access_control_enabled = true -> null - run_command_enabled = true -> null - sku_tier = "Free" -> null - tags = {} -> null - workload_identity_enabled = false -> null - default_node_pool { - custom_ca_trust_enabled = false -> null - enable_auto_scaling = false -> null - enable_host_encryption = false -> null - enable_node_public_ip = false -> null - fips_enabled = false -> null - kubelet_disk_type = "OS" -> null - max_count = 0 -> null - max_pods = 110 -> null - min_count = 0 -> null - name = "default" -> null - node_count = 1 -> null - node_labels = {} -> null - node_taints = [] -> null - only_critical_addons_enabled = false -> null - orchestrator_version = "1.26.6" -> null - os_disk_size_gb = 128 -> null - os_disk_type = "Managed" -> null - os_sku = "Ubuntu" -> null - scale_down_mode = "Delete" -> null - tags = {} -> null - type = "VirtualMachineScaleSets" -> null - ultra_ssd_enabled = false -> null - vm_size = "Standard_D2_v2" -> null - zones = [] -> null } - identity { - identity_ids = [] -> null - principal_id = "91e3ee5b-598a-4683-bb32-7488dcbfaddc" -> null - tenant_id = "4878e0c1-7017-468b-85f3-3686e1326e53" -> null - type = "SystemAssigned" -> null } - kubelet_identity { - client_id = "39623550-9e06-4426-8d66-b2a0429d9ca9" -> null - object_id = "0aff1e5b-c872-4181-867b-8c36e5bad7bc" -> null - user_assigned_identity_id = "/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/MC_rg-alpha-tfpoc-cluster_aks-alpha-tfpoc_eastus/providers/Microsoft.ManagedIdentity/userAssignedIdentities/aks-alpha-tfpoc-agentpool" -> null } - network_profile { - dns_service_ip = "10.0.0.10" -> null - ip_versions = [ - "IPv4", ] -> null - load_balancer_sku = "standard" -> null - network_plugin = "kubenet" -> null - outbound_type = "loadBalancer" -> null - pod_cidr = "10.244.0.0/16" -> null - pod_cidrs = [ - "10.244.0.0/16", ] -> null - service_cidr = "10.0.0.0/16" -> null - service_cidrs = [ - "10.0.0.0/16", ] -> null - load_balancer_profile { - effective_outbound_ips = [ - "/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/MC_rg-alpha-tfpoc-cluster_aks-alpha-tfpoc_eastus/providers/Microsoft.Network/publicIPAddresses/c9f95ea0-170f-4406-907f-1e7be8387c0c", ] -> null - idle_timeout_in_minutes = 0 -> null - managed_outbound_ip_count = 1 -> null - managed_outbound_ipv6_count = 0 -> null - outbound_ip_address_ids = [] -> null - outbound_ip_prefix_ids = [] -> null - outbound_ports_allocated = 0 -> null } } } # module.cluster.module.aks_cluster.azurerm_resource_group.aks will be destroyed - resource "azurerm_resource_group" "aks" { - id = "/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/rg-alpha-tfpoc-cluster" -> null - location = "eastus" -> null - name = "rg-alpha-tfpoc-cluster" -> null - tags = {} -> null } # module.feature.module.feature.azurerm_cosmosdb_account.feature will be destroyed - resource "azurerm_cosmosdb_account" "feature" { - access_key_metadata_writes_enabled = true -> null - analytical_storage_enabled = false -> null - connection_strings = (sensitive value) -> null - default_identity_type = "FirstPartyIdentity" -> null - enable_automatic_failover = false -> null - enable_free_tier = false -> null - enable_multiple_write_locations = false -> null - endpoint = "https://cdb-alpha-tfpoc-feature.documents.azure.com:443/" -> null - id = "/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/rg-alpha-tfpoc-feature/providers/Microsoft.DocumentDB/databaseAccounts/cdb-alpha-tfpoc-feature" -> null - is_virtual_network_filter_enabled = false -> null - kind = "GlobalDocumentDB" -> null - local_authentication_disabled = false -> null - location = "eastus" -> null - name = "cdb-alpha-tfpoc-feature" -> null - network_acl_bypass_for_azure_services = false -> null - network_acl_bypass_ids = [] -> null - offer_type = "Standard" -> null - primary_key = (sensitive value) -> null - primary_readonly_key = (sensitive value) -> null - primary_readonly_sql_connection_string = (sensitive value) -> null - primary_sql_connection_string = (sensitive value) -> null - public_network_access_enabled = true -> null - read_endpoints = [ - "https://cdb-alpha-tfpoc-feature-eastus.documents.azure.com:443/", ] -> null - resource_group_name = "rg-alpha-tfpoc-feature" -> null - secondary_key = (sensitive value) -> null - secondary_readonly_key = (sensitive value) -> null - secondary_readonly_sql_connection_string = (sensitive value) -> null - secondary_sql_connection_string = (sensitive value) -> null - tags = {} -> null - write_endpoints = [ - "https://cdb-alpha-tfpoc-feature-eastus.documents.azure.com:443/", ] -> null - analytical_storage { - schema_type = "WellDefined" -> null } - backup { - interval_in_minutes = 240 -> null - retention_in_hours = 8 -> null - storage_redundancy = "Geo" -> null - type = "Periodic" -> null } - consistency_policy { - consistency_level = "Session" -> null - max_interval_in_seconds = 5 -> null - max_staleness_prefix = 100 -> null } - geo_location { - failover_priority = 0 -> null - id = "cdb-alpha-tfpoc-feature-eastus" -> null - location = "eastus" -> null - zone_redundant = false -> null } } # module.feature.module.feature.azurerm_resource_group.feature will be destroyed - resource "azurerm_resource_group" "feature" { - id = "/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/rg-alpha-tfpoc-feature" -> null - location = "eastus" -> null - name = "rg-alpha-tfpoc-feature" -> null - tags = {} -> null } # module.feature.module.feature.kubernetes_namespace.secret_namespace will be destroyed - resource "kubernetes_namespace" "secret_namespace" { - id = "alpha" -> null - wait_for_default_service_account = false -> null - metadata { - annotations = {} -> null - generation = 0 -> null - labels = {} -> null - name = "alpha" -> null - resource_version = "1342" -> null - uid = "6ad93a8a-9b87-437e-9feb-44635739fd3d" -> null } } # module.feature.module.feature.kubernetes_secret.cosmosdb-secret will be destroyed - resource "kubernetes_secret" "cosmosdb-secret" { - data = (sensitive value) -> null - id = "alpha/feature-secrets" -> null - immutable = false -> null - type = "Opaque" -> null - wait_for_service_account_token = true -> null - metadata { - annotations = {} -> null - generation = 0 -> null - labels = {} -> null - name = "feature-secrets" -> null - namespace = "alpha" -> null - resource_version = "1991" -> null - uid = "eeff74a4-728f-4a7a-b1d2-e9512899616e" -> null } } Plan: 0 to add, 0 to change, 6 to destroy. ───────────────────────────────────────────────────────────────────────────── Saved the plan to: tf.plan To perform exactly these actions, run the following command to apply: terraform apply "tf.plan" ```

Pusher: @spencerr Action: workflow_dispatch Working Directory: /home/runner/work/tf-poc/tf-poc/company-product/environments/alpha Workflow: Company:Product -> Terraform

Workflow is pending manual review. URL: https://github.com/spencerr/tf-poc/actions/runs/6293875530

Required approvers: [spencerr]

Respond "approved", "approve", "lgtm", "yes" to continue workflow or "denied", "deny", "no" to cancel.

spencerr commented 1 year ago

yes

github-actions[bot] commented 1 year ago

All approvers have approved, continuing workflow and closing this issue.