Головна сторінка Огляд Довідка
Реєстрація Увійти
AFS
/
xdr-terraform-modules
2
0
Відгалуження 0
Файли Проблеми 0 Запити на злиття 0 Wiki
Дерево: 4e2cfe2ba7
Гілки Теги
xdr-terraform-m...
/
thirdparty
/
terraform-aws-github-runner
/
examples
/
default
/
main.tf

main.tf 2.3 KB
Історія Запис

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384 
  1. locals {
    2. 

  2.   environment = "default"
    3. 

  3.   aws_region  = "eu-west-1"
    4. 

  4. }
    5. 

  5. 

  6. resource "random_id" "random" {
    7. 

  7.   byte_length = 20
    8. 

  8. }
    9. 

  9. 

  10. 

  11. ################################################################################
    12. 

  12. ### Hybrid account
    13. 

  13. ################################################################################
    14. 

  14. 

  15. module "runners" {
    16. 

  16.   source                          = "../../"
    17. 

  17.   create_service_linked_role_spot = true
    18. 

  18.   aws_region                      = local.aws_region
    19. 

  19.   vpc_id                          = module.vpc.vpc_id
    20. 

  20.   subnet_ids                      = module.vpc.private_subnets
    21. 

  21. 

  22.   prefix = local.environment
    23. 

  23.   tags = {
    24. 

  24.     Project = "ProjectX"
    25. 

  25.   }
    26. 

  26. 

  27.   github_app = {
    28. 

  28.     key_base64     = var.github_app_key_base64
    29. 

  29.     id             = var.github_app_id
    30. 

  30.     webhook_secret = random_id.random.hex
    31. 

  31.   }
    32. 

  32. 

  33.   # configure the block device mappings, default for Amazon Linux2
    34. 

  34.   # block_device_mappings = [{
    35. 

  35.   #   device_name           = "/dev/xvda"
    36. 

  36.   #   delete_on_termination = true
    37. 

  37.   #   volume_type           = "gp3"
    38. 

  38.   #   volume_size           = 10
    39. 

  39.   #   encrypted             = true
    40. 

  40.   #   iops                  = null
    41. 

  41.   # }]
    42. 

  42. 

  43.   # Grab zip files via lambda_download
    44. 

  44.   webhook_lambda_zip                = "lambdas-download/webhook.zip"
    45. 

  45.   runner_binaries_syncer_lambda_zip = "lambdas-download/runner-binaries-syncer.zip"
    46. 

  46.   runners_lambda_zip                = "lambdas-download/runners.zip"
    47. 

  47. 

  48.   enable_organization_runners = false
    49. 

  49.   runner_extra_labels         = "default,example"
    50. 

  50. 

  51.   # enable access to the runners via SSM
    52. 

  52.   enable_ssm_on_runners = true
    53. 

  53. 

  54.   # use S3 or KMS SSE to runners S3 bucket
    55. 

  55.   # runner_binaries_s3_sse_configuration = {
    56. 

  56.   #   rule = {
    57. 

  57.   #     apply_server_side_encryption_by_default = {
    58. 

  58.   #       sse_algorithm = "AES256"
    59. 

  59.   #     }
    60. 

  60.   #   }
    61. 

  61.   # }
    62. 

  62. 

  63.   # Uncommet idle config to have idle runners from 9 to 5 in time zone Amsterdam
    64. 

  64.   # idle_config = [{
    65. 

  65.   #   cron      = "* * 9-17 * * *"
    66. 

  66.   #   timeZone  = "Europe/Amsterdam"
    67. 

  67.   #   idleCount = 1
    68. 

  68.   # }]
    69. 

  69. 

  70.   # Let the module manage the service linked role
    71. 

  71.   # create_service_linked_role_spot = true
    72. 

  72. 

  73.   instance_types = ["m5.large", "c5.large"]
    74. 

  74. 

  75.   # override delay of events in seconds
    76. 

  76.   delay_webhook_event   = 5
    77. 

  77.   runners_maximum_count = 1
    78. 

  78. 

  79.   # set up a fifo queue to remain order
    80. 

  80.   fifo_build_queue = true
    81. 

  81. 

  82.   # override scaling down
    83. 

  83.   scale_down_schedule_expression = "cron(* * * * ? *)"
    84. 

  84. }
    85.