Manual approval required for workflow run 6344865538: Terraform destroy -> company-product (alpha) - Githubissues

spencerr / tf-poc

0 stars 0 forks source link

Manual approval required for workflow run 6344865538: Terraform destroy -> company-product (alpha) #60

Closed github-actions[bot] closed 1 year ago

github-actions[bot] commented 1 year ago

Terraform Format and Style 🖌`failure`

Terraform Initialization ⚙️`success`

Terraform Validation 🤖`success`

Validation Output

``` [32m[1mSuccess![0m The configuration is valid. [0m ```

Terraform Plan 📖`success`

Show Plan

```diff module.cluster.module.aks_cluster.azurerm_resource_group.aks: Refreshing state... [id=/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/rg-alpha-tfpoc-cluster] module.cluster.module.aks_cluster.azurerm_kubernetes_cluster.aks: Refreshing state... [id=/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/rg-alpha-tfpoc-cluster/providers/Microsoft.ContainerService/managedClusters/aks-alpha-tfpoc] module.feature.module.feature.data.azurerm_key_vault_secret.test_secret: Reading... module.feature.module.feature.azurerm_resource_group.feature: Refreshing state... [id=/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/rg-alpha-tfpoc-feature] module.feature.module.feature.module.feature_key_vault.data.azurerm_client_config.current: Reading... module.feature.module.feature.module.feature_key_vault.data.azurerm_client_config.current: Read complete after 0s [id=Y2xpZW50Q29uZmlncy9jbGllbnRJZD1hNmFlYmEzMS03ODllLTRkZWMtYWEzMi01YmEyMDcyZTMwOWY7b2JqZWN0SWQ9YzU4YzRmNTMtNmViZS00NGQzLTgyMWItZDM3ZGVhYmI0YTFhO3N1YnNjcmlwdGlvbklkPThmMDlmN2Y0LTdiMjUtNGQ2Zi04OGE1LTg0N2IxNzUxYzRjZTt0ZW5hbnRJZD00ODc4ZTBjMS03MDE3LTQ2OGItODVmMy0zNjg2ZTEzMjZlNTM=] module.feature.module.feature.azurerm_redis_cache.feature[0]: Refreshing state... [id=/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/rg-alpha-tfpoc-feature/providers/Microsoft.Cache/redis/rc-alpha-tfpoc-feature] module.feature.module.feature.module.feature_key_vault.azurerm_key_vault.vault: Refreshing state... [id=/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/rg-alpha-tfpoc-feature/providers/Microsoft.KeyVault/vaults/kv-alpha-tfpoc-feature] module.feature.module.feature.module.feature_app_insights.azurerm_application_insights.ai: Refreshing state... [id=/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/rg-alpha-tfpoc-feature/providers/Microsoft.Insights/components/ai-alpha-tfpoc-feature] module.feature.module.feature.azurerm_storage_account.feature: Refreshing state... [id=/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/rg-alpha-tfpoc-feature/providers/Microsoft.Storage/storageAccounts/saalphafeature] module.feature.module.feature.kubernetes_namespace.secret_namespace: Refreshing state... [id=alpha] module.feature.module.feature.azurerm_storage_container.feature: Refreshing state... [id=https://saalphafeature.blob.core.windows.net/documents] module.feature.module.feature.data.azurerm_key_vault_secret.test_secret: Still reading... [10s elapsed] module.feature.module.feature.data.azurerm_key_vault_secret.test_secret: Still reading... [20s elapsed] module.feature.module.feature.data.azurerm_key_vault_secret.test_secret: Still reading... [30s elapsed] module.feature.module.feature.data.azurerm_key_vault_secret.test_secret: Read complete after 40s [id=https://kv-alpha-tfpoc-bootstrap.vault.azure.net/secrets/Test--Secret/0924064d0c8040b1a2ef7ef6ec69aabb] module.feature.module.feature.kubernetes_secret.cosmosdb-secret: Refreshing state... [id=alpha/feature-secrets] Terraform used the selected providers to generate the following execution plan. Resource actions are indicated with the following symbols: - destroy Terraform will perform the following actions: # module.cluster.module.aks_cluster.azurerm_kubernetes_cluster.aks will be destroyed - resource "azurerm_kubernetes_cluster" "aks" { - api_server_authorized_ip_ranges = [] -> null - custom_ca_trust_certificates_base64 = [] -> null - dns_prefix = "aks-alpha-tfpoc" -> null - enable_pod_security_policy = false -> null - fqdn = "aks-alpha-tfpoc-g535y6su.hcp.eastus.azmk8s.io" -> null - id = "/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/rg-alpha-tfpoc-cluster/providers/Microsoft.ContainerService/managedClusters/aks-alpha-tfpoc" -> null - image_cleaner_enabled = false -> null - image_cleaner_interval_hours = 48 -> null - kube_admin_config = (sensitive value) -> null - kube_config = (sensitive value) -> null - kube_config_raw = (sensitive value) -> null - kubernetes_version = "1.26.6" -> null - local_account_disabled = false -> null - location = "eastus" -> null - name = "aks-alpha-tfpoc" -> null - node_resource_group = "MC_rg-alpha-tfpoc-cluster_aks-alpha-tfpoc_eastus" -> null - node_resource_group_id = "/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/MC_rg-alpha-tfpoc-cluster_aks-alpha-tfpoc_eastus" -> null - oidc_issuer_enabled = false -> null - portal_fqdn = "aks-alpha-tfpoc-g535y6su.portal.hcp.eastus.azmk8s.io" -> null - private_cluster_enabled = false -> null - private_cluster_public_fqdn_enabled = false -> null - public_network_access_enabled = true -> null - resource_group_name = "rg-alpha-tfpoc-cluster" -> null - role_based_access_control_enabled = true -> null - run_command_enabled = true -> null - sku_tier = "Free" -> null - tags = {} -> null - workload_identity_enabled = false -> null - default_node_pool { - custom_ca_trust_enabled = false -> null - enable_auto_scaling = false -> null - enable_host_encryption = false -> null - enable_node_public_ip = false -> null - fips_enabled = false -> null - kubelet_disk_type = "OS" -> null - max_count = 0 -> null - max_pods = 110 -> null - min_count = 0 -> null - name = "default" -> null - node_count = 1 -> null - node_labels = {} -> null - node_taints = [] -> null - only_critical_addons_enabled = false -> null - orchestrator_version = "1.26.6" -> null - os_disk_size_gb = 128 -> null - os_disk_type = "Managed" -> null - os_sku = "Ubuntu" -> null - scale_down_mode = "Delete" -> null - tags = {} -> null - type = "VirtualMachineScaleSets" -> null - ultra_ssd_enabled = false -> null - vm_size = "Standard_D2_v2" -> null - zones = [] -> null } - identity { - identity_ids = [] -> null - principal_id = "d1da395d-bf5a-40c2-a0f0-9b28a3b43d34" -> null - tenant_id = "4878e0c1-7017-468b-85f3-3686e1326e53" -> null - type = "SystemAssigned" -> null } - kubelet_identity { - client_id = "8f2a2642-bd5d-4710-be89-397e62435ee1" -> null - object_id = "f3e5cd76-3f2f-4887-a81e-c6b6463037fe" -> null - user_assigned_identity_id = "/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/MC_rg-alpha-tfpoc-cluster_aks-alpha-tfpoc_eastus/providers/Microsoft.ManagedIdentity/userAssignedIdentities/aks-alpha-tfpoc-agentpool" -> null } - network_profile { - dns_service_ip = "10.0.0.10" -> null - ip_versions = [ - "IPv4", ] -> null - load_balancer_sku = "standard" -> null - network_plugin = "kubenet" -> null - outbound_type = "loadBalancer" -> null - pod_cidr = "10.244.0.0/16" -> null - pod_cidrs = [ - "10.244.0.0/16", ] -> null - service_cidr = "10.0.0.0/16" -> null - service_cidrs = [ - "10.0.0.0/16", ] -> null - load_balancer_profile { - effective_outbound_ips = [ - "/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/MC_rg-alpha-tfpoc-cluster_aks-alpha-tfpoc_eastus/providers/Microsoft.Network/publicIPAddresses/52af6f5c-2bd4-4728-a625-1c919f60d186", ] -> null - idle_timeout_in_minutes = 0 -> null - managed_outbound_ip_count = 1 -> null - managed_outbound_ipv6_count = 0 -> null - outbound_ip_address_ids = [] -> null - outbound_ip_prefix_ids = [] -> null - outbound_ports_allocated = 0 -> null } } } # module.cluster.module.aks_cluster.azurerm_resource_group.aks will be destroyed - resource "azurerm_resource_group" "aks" { - id = "/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/rg-alpha-tfpoc-cluster" -> null - location = "eastus" -> null - name = "rg-alpha-tfpoc-cluster" -> null - tags = {} -> null } # module.feature.module.feature.azurerm_redis_cache.feature[0] will be destroyed - resource "azurerm_redis_cache" "feature" { - capacity = 2 -> null - enable_non_ssl_port = false -> null - family = "C" -> null - hostname = "rc-alpha-tfpoc-feature.redis.cache.windows.net" -> null - id = "/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/rg-alpha-tfpoc-feature/providers/Microsoft.Cache/redis/rc-alpha-tfpoc-feature" -> null - location = "eastus" -> null - minimum_tls_version = "1.2" -> null - name = "rc-alpha-tfpoc-feature" -> null - port = 6379 -> null - primary_access_key = (sensitive value) -> null - primary_connection_string = (sensitive value) -> null - public_network_access_enabled = true -> null - redis_version = "6.0" -> null - replicas_per_master = 0 -> null - replicas_per_primary = 0 -> null - resource_group_name = "rg-alpha-tfpoc-feature" -> null - secondary_access_key = (sensitive value) -> null - secondary_connection_string = (sensitive value) -> null - shard_count = 0 -> null - sku_name = "Standard" -> null - ssl_port = 6380 -> null - tags = {} -> null - tenant_settings = {} -> null - zones = [] -> null - redis_configuration { - aof_backup_enabled = false -> null - enable_authentication = true -> null - maxclients = 2000 -> null - maxfragmentationmemory_reserved = 299 -> null - maxmemory_delta = 299 -> null - maxmemory_policy = "volatile-lru" -> null - maxmemory_reserved = 299 -> null - rdb_backup_enabled = false -> null - rdb_backup_frequency = 0 -> null - rdb_backup_max_snapshot_count = 0 -> null } } # module.feature.module.feature.azurerm_resource_group.feature will be destroyed - resource "azurerm_resource_group" "feature" { - id = "/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/rg-alpha-tfpoc-feature" -> null - location = "eastus" -> null - name = "rg-alpha-tfpoc-feature" -> null - tags = {} -> null } # module.feature.module.feature.azurerm_storage_account.feature will be destroyed - resource "azurerm_storage_account" "feature" { - access_tier = "Hot" -> null - account_kind = "StorageV2" -> null - account_replication_type = "GRS" -> null - account_tier = "Standard" -> null - allow_nested_items_to_be_public = true -> null - cross_tenant_replication_enabled = true -> null - default_to_oauth_authentication = false -> null - enable_https_traffic_only = true -> null - id = "/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/rg-alpha-tfpoc-feature/providers/Microsoft.Storage/storageAccounts/saalphafeature" -> null - infrastructure_encryption_enabled = false -> null - is_hns_enabled = false -> null - location = "eastus" -> null - min_tls_version = "TLS1_2" -> null - name = "saalphafeature" -> null - nfsv3_enabled = false -> null - primary_access_key = (sensitive value) -> null - primary_blob_connection_string = (sensitive value) -> null - primary_blob_endpoint = "https://saalphafeature.blob.core.windows.net/" -> null - primary_blob_host = "saalphafeature.blob.core.windows.net" -> null - primary_connection_string = (sensitive value) -> null - primary_dfs_endpoint = "https://saalphafeature.dfs.core.windows.net/" -> null - primary_dfs_host = "saalphafeature.dfs.core.windows.net" -> null - primary_file_endpoint = "https://saalphafeature.file.core.windows.net/" -> null - primary_file_host = "saalphafeature.file.core.windows.net" -> null - primary_location = "eastus" -> null - primary_queue_endpoint = "https://saalphafeature.queue.core.windows.net/" -> null - primary_queue_host = "saalphafeature.queue.core.windows.net" -> null - primary_table_endpoint = "https://saalphafeature.table.core.windows.net/" -> null - primary_table_host = "saalphafeature.table.core.windows.net" -> null - primary_web_endpoint = "https://saalphafeature.z13.web.core.windows.net/" -> null - primary_web_host = "saalphafeature.z13.web.core.windows.net" -> null - public_network_access_enabled = true -> null - queue_encryption_key_type = "Service" -> null - resource_group_name = "rg-alpha-tfpoc-feature" -> null - secondary_access_key = (sensitive value) -> null - secondary_connection_string = (sensitive value) -> null - secondary_location = "westus" -> null - sftp_enabled = false -> null - shared_access_key_enabled = true -> null - table_encryption_key_type = "Service" -> null - tags = {} -> null - blob_properties { - change_feed_enabled = false -> null - change_feed_retention_in_days = 0 -> null - last_access_time_enabled = false -> null - versioning_enabled = false -> null } - network_rules { - bypass = [ - "AzureServices", ] -> null - default_action = "Allow" -> null - ip_rules = [] -> null - virtual_network_subnet_ids = [] -> null } - queue_properties { - hour_metrics { - enabled = true -> null - include_apis = true -> null - retention_policy_days = 7 -> null - version = "1.0" -> null } - logging { - delete = false -> null - read = false -> null - retention_policy_days = 0 -> null - version = "1.0" -> null - write = false -> null } - minute_metrics { - enabled = false -> null - include_apis = false -> null - retention_policy_days = 0 -> null - version = "1.0" -> null } } - share_properties { - retention_policy { - days = 7 -> null } } } # module.feature.module.feature.azurerm_storage_container.feature will be destroyed - resource "azurerm_storage_container" "feature" { - container_access_type = "private" -> null - has_immutability_policy = false -> null - has_legal_hold = false -> null - id = "https://saalphafeature.blob.core.windows.net/documents" -> null - metadata = {} -> null - name = "documents" -> null - resource_manager_id = "/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/rg-alpha-tfpoc-feature/providers/Microsoft.Storage/storageAccounts/saalphafeature/blobServices/default/containers/documents" -> null - storage_account_name = "saalphafeature" -> null } # module.feature.module.feature.kubernetes_namespace.secret_namespace will be destroyed - resource "kubernetes_namespace" "secret_namespace" { - id = "alpha" -> null - wait_for_default_service_account = false -> null - metadata { - annotations = {} -> null - generation = 0 -> null - labels = {} -> null - name = "alpha" -> null - resource_version = "1172" -> null - uid = "c5d22b30-4d6b-4448-add1-840fd570c3fe" -> null } } # module.feature.module.feature.kubernetes_secret.cosmosdb-secret will be destroyed - resource "kubernetes_secret" "cosmosdb-secret" { - data = (sensitive value) -> null - id = "alpha/feature-secrets" -> null - immutable = false -> null - type = "Opaque" -> null - wait_for_service_account_token = true -> null - metadata { - annotations = {} -> null - generation = 0 -> null - labels = {} -> null - name = "feature-secrets" -> null - namespace = "alpha" -> null - resource_version = "4897" -> null - uid = "f48cd734-aa4a-4c68-afa8-c5b5d913a815" -> null } } # module.feature.module.feature.module.feature_app_insights.azurerm_application_insights.ai will be destroyed - resource "azurerm_application_insights" "ai" { - app_id = "64b38c75-b928-410c-9067-5c2f8dc894ab" -> null - application_type = "web" -> null - connection_string = (sensitive value) -> null - daily_data_cap_in_gb = 100 -> null - daily_data_cap_notifications_disabled = false -> null - disable_ip_masking = false -> null - force_customer_storage_for_profiler = false -> null - id = "/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/rg-alpha-tfpoc-feature/providers/Microsoft.Insights/components/ai-alpha-tfpoc-feature" -> null - instrumentation_key = (sensitive value) -> null - internet_ingestion_enabled = true -> null - internet_query_enabled = true -> null - local_authentication_disabled = false -> null - location = "eastus" -> null - name = "ai-alpha-tfpoc-feature" -> null - resource_group_name = "rg-alpha-tfpoc-feature" -> null - retention_in_days = 90 -> null - sampling_percentage = 100 -> null - tags = {} -> null - workspace_id = "/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/rg-sandbox-tfpoc-bootstrap/providers/Microsoft.OperationalInsights/workspaces/la-sandbox-tfpoc" -> null } # module.feature.module.feature.module.feature_key_vault.azurerm_key_vault.vault will be destroyed - resource "azurerm_key_vault" "vault" { - access_policy = [] -> null - enable_rbac_authorization = false -> null - enabled_for_deployment = true -> null - enabled_for_disk_encryption = true -> null - enabled_for_template_deployment = true -> null - id = "/subscriptions/8f09f7f4-7b25-4d6f-88a5-847b1751c4ce/resourceGroups/rg-alpha-tfpoc-feature/providers/Microsoft.KeyVault/vaults/kv-alpha-tfpoc-feature" -> null - location = "eastus" -> null - name = "kv-alpha-tfpoc-feature" -> null - public_network_access_enabled = true -> null - purge_protection_enabled = true -> null - resource_group_name = "rg-alpha-tfpoc-feature" -> null - sku_name = "standard" -> null - soft_delete_retention_days = 7 -> null - tags = {} -> null - tenant_id = "4878e0c1-7017-468b-85f3-3686e1326e53" -> null - vault_uri = "https://kv-alpha-tfpoc-feature.vault.azure.net/" -> null - network_acls { - bypass = "AzureServices" -> null - default_action = "Allow" -> null - ip_rules = [] -> null - virtual_network_subnet_ids = [] -> null } } Plan: 0 to add, 0 to change, 10 to destroy. ───────────────────────────────────────────────────────────────────────────── Saved the plan to: tf.plan To perform exactly these actions, run the following command to apply: terraform apply "tf.plan" ```

Pusher: @spencerr Action: workflow_dispatch Working Directory: /home/runner/work/tf-poc/tf-poc/company-product/environments/alpha Workflow: Company:Product -> Terraform

Workflow is pending manual review. URL: https://github.com/spencerr/tf-poc/actions/runs/6344865538

Required approvers: [spencerr]

Respond "approved", "approve", "lgtm", "yes" to continue workflow or "denied", "deny", "no" to cancel.

spencerr commented 1 year ago

yes

github-actions[bot] commented 1 year ago

All approvers have approved, continuing workflow and closing this issue.