File tree Expand file tree Collapse file tree 1 file changed +21
-1
lines changed
Expand file tree Collapse file tree 1 file changed +21
-1
lines changed Original file line number Diff line number Diff line change @@ -168,7 +168,7 @@ jobs:
168168 uses : hashicorp/setup-terraform@v2
169169 with :
170170 terraform_version : 1.6.6 # 👈 same version as init job
171-
171+
172172 - name : Terraform validate
173173 run : terraform validate
174174
@@ -189,13 +189,33 @@ jobs:
189189 run :
190190 working-directory : infra
191191 steps :
192+
193+ - name : Checkout
194+ uses : actions/checkout@v5.0.0
195+
196+ - name : Setup Terraform
197+ uses : hashicorp/setup-terraform@v2
198+ with :
199+ terraform_version : 1.6.6
200+
192201 - name : Azure Login (OIDC)
193202 uses : azure/login@v2
194203 with :
195204 client-id : ${{ secrets.AZURE_CLIENT_ID }}
196205 tenant-id : ${{ secrets.AZURE_TENANT_ID }}
197206 subscription-id : ${{ secrets.AZURE_SUBSCRIPTION_ID }}
198207
208+ # 👇 ADD THIS: Export OIDC vars so Terraform can use them
209+ - name : Export Azure OIDC Environment Variables
210+ run : |
211+ echo "ARM_CLIENT_ID=${{ secrets.AZURE_CLIENT_ID }}" >> $GITHUB_ENV
212+ echo "ARM_TENANT_ID=${{ secrets.AZURE_TENANT_ID }}" >> $GITHUB_ENV
213+ echo "ARM_SUBSCRIPTION_ID=${{ secrets.AZURE_SUBSCRIPTION_ID }}" >> $GITHUB_ENV
214+ echo "ARM_USE_OIDC=true" >> $GITHUB_ENV
215+
216+ name : Terraform Init (remote backend)
217+ run : terraform init -input=false -backend-config="resource_group_name=${{ inputs.rgname }}" -backend-config="storage_account_name=${{ inputs.saname }}" -backend-config="container_name=${{ inputs.scname }}" -backend-config="key=${{ inputs.key }}"
218+
199219 - name : Terraform plan
200220 run : terraform plan -var-file="../${{ inputs.tfvars_file }}" -out="plan-${{ inputs.environment }}.tfplan"
201221
You can’t perform that action at this time.
0 commit comments