first commit

devops-workflow · Mar 27, 2018 · 63198a2 · 63198a2
commit 63198a2
Show file tree

Hide file tree

Showing 17 changed files with 224 additions and 0 deletions.
diff --git a/.circleci/config.yml b/.circleci/config.yml
@@ -0,0 +1,69 @@
+version: 2
+
+jobs:
+  build:
+    docker:
+      - image: hashicorp/terraform:0.11.3
+        entrypoint: /bin/sh
+    steps:
+      - checkout
+      - run:
+          name: "Validate tf files (terraform validate)"
+          command: |
+              find . -type f -name "*.tf" -exec dirname {} \;|sort -u | while read m; do (terraform validate -check-variables=false "$m" && echo "√ $m") || exit 1 ; done
+      - run:
+          name: "Check: Terraform formatting (terraform fmt)"
+          command: |
+              if [ `terraform fmt --list=true -diff=true -write=false | tee format-issues | wc -c` -ne 0 ]; then
+                echo "Some terraform files need be formatted, run 'terraform fmt' to fix"
+                echo "Formatting issues:"
+                cat format-issues
+                exit 1
+              fi
+      - run:
+          name: "Install: tflint"
+          command: |
+              apk add jq wget
+              # Get latest version of tflint
+              pkg_arch=linux_amd64
+              dl_url=$(curl -s https://api.github.com/repos/wata727/tflint/releases/latest | jq -r ".assets[] | select(.name | test(\"${pkg_arch}\")) | .browser_download_url")
+              wget ${dl_url}
+              unzip tflint_linux_amd64.zip
+              mkdir -p /usr/local/tflint/bin
+              # Setup PATH for later run steps - ONLY for Bash and not in Bash
+              #echo 'export PATH=/usr/local/tflint/bin:$PATH' >> $BASH_ENV
+              echo "Installing tflint..."
+              install tflint /usr/local/tflint/bin
+              echo "Configuring tflint..."
+              tf_ver=$(terraform version | awk 'FNR <= 1' | cut -dv -f2)
+              echo -e "\tConfig for terraform version: ${tf_ver}"
+              if [ -f '.tflint.hcl' ]; then
+                sed -i "/terraform_version =/s/\".*\"/\"${tf_ver}\"/" .tflint.hcl
+              else
+                {
+                echo -e "config {\nterraform_version = \"${tf_ver}\"\ndeep_check = true\nignore_module = {"
+                for module in $(grep -h '[^a-zA-Z]source[ =]' *.tf | sed -r 's/.*=\s+//' | sort -u); do
+                  # if not ^"../
+                  echo "${module} = true"
+                done
+                echo "}}"
+                } > .tflint.hcl
+                fi
+              echo "tflint configuration:"
+              cat .tflint.hcl
+      - run:
+          # Not supporting modules from registry ?? v0.5.4
+          # For now, must ignore in config file
+          name: "Check: tflint"
+          command: |
+              #echo "Initializing terraform..."
+              #terraform init -input=false
+              echo "Running tflint..."
+              /usr/local/tflint/bin/tflint --version
+              /usr/local/tflint/bin/tflint
+
+workflows:
+  version: 2
+  build:
+    jobs:
+      - build
diff --git a/.gitignore b/.gitignore
@@ -0,0 +1,4 @@
+*.tfstate
+*.tfstate.backup
+.terraform
+terraform.tfvars
diff --git a/README.md b/README.md
@@ -0,0 +1,28 @@
+[![CircleCI](https://circleci.com/gh/devops-workflow/terraform-github-teams.svg?style=svg)](https://circleci.com/gh/devops-workflow/terraform-github-teams)
+
+terraform-github-teams
+=======================
+
+Terraform module for managing Github teams
+
+```hcl
+module "github-teams" {
+  source  = "devops-workflow/teams/github"
+  version = "0.0.1"
+
+  teams = [
+    {
+      name = "team1"
+    },
+    {
+      name        = "team-d"
+      description = "Team with description"
+    },
+    {
+      name        = "team-closed"
+      description = "Closed team"
+      privacy     = "closed"
+    },
+  ]
+}
+```
diff --git a/examples/README.md b/examples/README.md
@@ -0,0 +1,4 @@
+
+# Example and manual test cases
+
+Each directory contains a configuration that serves as a manual test case and an example
diff --git a/examples/disabled/README.md b/examples/disabled/README.md
@@ -0,0 +1 @@
+# Example: Module disabled
diff --git a/examples/disabled/main.tf b/examples/disabled/main.tf
@@ -0,0 +1,9 @@
+module "disabled" {
+  source  = "../../"
+  enabled = false
+  teams   = []
+
+  providers = {
+    github = "github.devops"
+  }
+}
diff --git a/examples/disabled/outputs.tf b/examples/disabled/outputs.tf
@@ -0,0 +1,9 @@
+output "ids" {
+  description = "List of team IDs"
+  value       = "${module.disabled.ids}"
+}
+
+output "names" {
+  description = "List of team names"
+  value       = "${module.disabled.names}"
+}
diff --git a/examples/disabled/providers.tf b/examples/disabled/providers.tf
@@ -0,0 +1,5 @@
+provider "github" {
+  alias        = "devops"
+  organization = "devops-workflow"
+  token        = "${var.devops_token}"
+}
diff --git a/examples/disabled/variables.tf b/examples/disabled/variables.tf
@@ -0,0 +1,3 @@
+variable "devops_token" {
+  description = "Github token for organization devops-workflow"
+}
diff --git a/examples/teams/README.md b/examples/teams/README.md
@@ -0,0 +1 @@
+# Example: teams
diff --git a/examples/teams/main.tf b/examples/teams/main.tf
@@ -0,0 +1,27 @@
+module "teams" {
+  source = "../../"
+
+  providers = {
+    github = "github.devops"
+  }
+
+  teams = [
+    {
+      name = "team1"
+    },
+    {
+      name        = "team-d"
+      description = "Team with description"
+    },
+    {
+      name        = "team-closed"
+      description = "Closed team"
+      privacy     = "closed"
+    },
+    {
+      name        = "team-secret"
+      description = "Secret team"
+      privacy     = "secret"
+    },
+  ]
+}
diff --git a/examples/teams/outputs.tf b/examples/teams/outputs.tf
@@ -0,0 +1,9 @@
+output "ids" {
+  description = "List of team IDs"
+  value       = "${module.teams.ids}"
+}
+
+output "names" {
+  description = "List of team names"
+  value       = "${module.teams.names}"
+}
diff --git a/examples/teams/providers.tf b/examples/teams/providers.tf
@@ -0,0 +1,5 @@
+provider "github" {
+  alias        = "devops"
+  organization = "devops-workflow"
+  token        = "${var.devops_token}"
+}
diff --git a/examples/teams/variables.tf b/examples/teams/variables.tf
@@ -0,0 +1,3 @@
+variable "devops_token" {
+  description = "Github personal access token with owner rights for organization devops-workflow"
+}
diff --git a/main.tf b/main.tf
@@ -0,0 +1,29 @@
+# terraform-datadog-teams
+
+# https://www.terraform.io/docs/providers/datadog/r/user.html
+
+module "enabled" {
+  source  = "devops-workflow/boolean/local"
+  version = "0.1.1"
+  value   = "${var.enabled}"
+}
+
+data "null_data_source" "this" {
+  count = "${module.enabled.value ? length(var.teams) : 0}"
+
+  inputs {
+    name = "${lookup(var.teams[count.index], "name")}"
+  }
+}
+
+resource "github_team" "this" {
+  count       = "${module.enabled.value ? length(var.teams) : 0}"
+  name        = "${lookup(var.teams[count.index], "name")}"
+  description = "${lookup(var.teams[count.index], "description", "Managed by Terraform")}"
+  privacy     = "${lookup(var.teams[count.index], "privacy", "secret")}"
+
+  # secret or closed
+}
+
+# output: id
+
diff --git a/outputs.tf b/outputs.tf
@@ -0,0 +1,9 @@
+output "ids" {
+  description = "List of team IDs"
+  value       = "${compact(concat(github_team.this.*.id, list("")))}"
+}
+
+output "names" {
+  description = "List of team names"
+  value       = "${compact(concat(data.null_data_source.this.*.outputs.name, list("")))}"
+}
diff --git a/variables.tf b/variables.tf
@@ -0,0 +1,9 @@
+variable "enabled" {
+  description = "Set to false to prevent the module from creating anything"
+  default     = true
+}
+
+variable "teams" {
+  description = "List of Github team maps to manage"
+  type        = "list"
+}
Original file line number	Diff line number	Diff line change
		@@ -0,0 +1,4 @@

		# Example and manual test cases

		Each directory contains a configuration that serves as a manual test case and an example