Fred Damstra [afs macbook]
4e2cfe2ba7
Adds module for github runners using philips labs 3rd party module
|
3 년 전 | |
|---|---|---|
| .. | ||
| lambdas-download | 3 년 전 | |
| setup | 3 년 전 | |
| .terraform.lock.hcl | 3 년 전 | |
| README.md | 3 년 전 | |
| main.tf | 3 년 전 | |
| outputs.tf | 3 년 전 | |
| providers.tf | 3 년 전 | |
| variables.tf | 3 년 전 | |
| versions.tf | 3 년 전 | |
| vpc.tf | 3 년 전 | |
README.md
Action runners deployed with permissions boundary
This module shows how to create GitHub action runners with permissions boundaries and paths used in role, policies, and instance profiles.
Usages
Steps for the full setup, such as creating a GitHub app can be find the module README. First create the deploy role and boundary policies. These steps require an admin user.
Ensure you have set the version in
lambdas-download/main.tffor running the example. The version needs to be set to a GitHub release version, see https://github.com/philips-labs/terraform-aws-github-runner/releases
cd setup
terraform init
terraform apply
cd ..
Now a new role and policies should be created. The output of the previous step is imported in this workspace to load the role and policy. The deployment of the runner module assumes the new role before creating all resources (https://www.terraform.io/docs/providers/aws/index.html#assume-role). Before running Terraform, ensure the GitHub app is configured.
Download the lambda releases.
cd lambdas-download
terraform init
terraform apply
cd ..
Now you can deploy the module.
terraform init
terraform apply