This message was deleted.
# generalb
broad-zoo-34077
12/14/2021, 9:13 AMThis message was deleted.
l
little-author-61621
12/14/2021, 9:17 AM
Hi, if you pass the exact plan path in like
--path=/path/to/tf.planp
plain-ocean-92335
12/14/2021, 9:19 AMSince we use terragrunt we have a multiple projects folder design. I see that we could create a config file for this structure, but I would love to skip this management overhead.
l
little-author-61621
12/14/2021, 9:20 AM
Are you running this in GitHub actions/GitLab CI or anything else?
p
plain-ocean-92335
12/14/2021, 9:20 AMGithub Actions
plain-ocean-92335
12/14/2021, 9:22 AMI guess this is a feature request to autodetect terragrunt and if there is a tfplan file next to the terragrunt.hcl?
s
stocky-salesmen-15167
12/14/2021, 9:23 AM@plain-ocean-92335 So you have multiple folders which do each have a
terraform.tfplanp
plain-ocean-92335
12/14/2021, 9:24 AM@stocky-salesmen-15167 yes. AFAIK this is the only way to pass in multiple tfplan files.
s
stocky-salesmen-15167
12/14/2021, 9:25 AMYou could probably work around with some intermediate step and a little bash script to โauto-generateโ the config file.
p
plain-ocean-92335
12/14/2021, 9:26 AMSimply put, I would like to skip the
terragrunt run-all planinfracost breakdownl
little-author-61621
12/14/2021, 9:26 AM
The other option just now might be to do something like we used to do before we had native Terragrunt support: https://github.com/infracost/infracost/blob/master/scripts/terragrunt/breakdown_all.sh
Basically, the idea is to find the plan files, and run
infracost breakdowninfracost outputlittle-author-61621
12/14/2021, 9:27 AM
What does your existing GitHub action look like?
p
plain-ocean-92335
12/14/2021, 9:32 AM Copy code
name: Terraform Validate dev
on:
pull_request:
paths:
- ".terra*-version"
- "terraform/**"
- ".github/workflows/*-dev.yml"
- "scoma/**"
branches:
- develop
defaults:
run:
shell: bash
env:
AWS_REGION: "eu-central-1"
ACCOUNT: scoma-dev
CONFIG_PATH: terraform/scoma
AWS_ROLE_TO_ASSUME: ${{ secrets.AWS_ROLE_TERRAFORM_DEV }}
XRAY_ENABLED: ${{ github.event.inputs.x-ray }}
TERRAGRUNT_PARALLELISM: 4 # limit CPU usage
jobs:
terraform-validate:
name: TF code in scoma-dev
runs-on: ubuntu-18.04
steps:
- uses: actions/checkout@v2
- name: Set variables
run: |
TF_VER=$(cat .terraform-version)
TG_VER=$(cat .terragrunt-version)
echo "TERRAFORM_VERSION=$TF_VER" >> $GITHUB_ENV
echo "TERRAGRUNT_VERSION=$TG_VER" >> $GITHUB_ENV
# Setup terraform
- name: Setup Terraform
uses: hashicorp/setup-terraform@v1.3.2
with:
terraform_version: ${{ env.TERRAFORM_VERSION }}
terraform_wrapper: false
- name: Terragrunt Binary Installer Action
uses: autero1/action-terragrunt@v1.0.1
with:
terragrunt_version: ${{ env.TERRAGRUNT_VERSION }}
- name: Config Terraform plugin cache
run: |
TF_PLUGIN_CACHE_DIR="$HOME/.terraform.d/plugin-cache"
echo "TF_PLUGIN_CACHE_DIR=$TF_PLUGIN_CACHE_DIR" >> $GITHUB_ENV
mkdir --parents $TF_PLUGIN_CACHE_DIR
TERRAGRUNT_DOWNLOAD="$HOME/.terragrunt-cache/${{ env.ACCOUNT }}/$(date +%F)"
echo "TERRAGRUNT_DOWNLOAD=$TERRAGRUNT_DOWNLOAD" >> $GITHUB_ENV
mkdir --parents $TERRAGRUNT_DOWNLOAD
- name: Cache Terraform
uses: actions/cache@v2
with:
path: |
~/.terraform.d/plugin-cache
key: ${{ runner.os }}-terraform-${{ hashFiles('**/.terraform.lock.hcl') }}
- name: Cache Terragrunt
uses: actions/cache@v2
with:
path: |
~/.terragrunt-cache/
key: ${{ runner.os }}-${{ env.TERRAGRUNT_DOWNLOAD }}-${{ hashFiles('**/project.hcl', '**/.terraform.lock.hcl') }}
- name: Configure AWS Credentials
uses: aws-actions/configure-aws-credentials@v1
with:
aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
aws-region: ${{ env.AWS_REGION }}
role-to-assume: ${{ env.AWS_ROLE_TO_ASSUME }}
role-duration-seconds: 1800
role-session-name: scoma-${{ github.run_id }}
- name: Plan and validate for ${{ env.ACCOUNT }}
run: |
scripts/terragrunt/init_terraform_plugins.sh
source scripts/terragrunt/ssh-agent.source
scripts/terragrunt/run_terragrunt run-all validate
scripts/terragrunt/run_terragrunt run-all plan -out terraform.tfplan
env:
SSH_PRIVATE_KEY: ${{ secrets.GIT_SSH_PRIVATE_KEY }}
- name: Setup Infracost
uses: infracost/actions/setup@v1
with:
api-key: ${{ secrets.INFRACOST_API_KEY }}
- name: Run Infracost
run: infracost breakdown --path=${{ env.CONFIG_PATH}} --format=json --out-file=/tmp/infracost.json
- name: Post Infracost comment
uses: infracost/actions/comment@v1
with:
path: /tmp/infracost.json
behavior: update # Create a single comment and update it.s
stocky-salesmen-15167
12/14/2021, 9:35 AMJust as an idea to generate the config file on the fly with a script like this.
Copy code
#!/usr/bin/env bash
cfgfile="/tmp/infracost.yml"
# write the infracost config file header
echo -e "version: 0.1\n\nprojects:\n" > $cfgfile
# Loop through plans and create Infracost config file
planfiles=($(find . -name "terraform.tfplan" | tr '\n' ' '))
for planfile in "${planfiles[@]}"; do
echo "Adding $planfile to infracost config";
echo " - path: $planfile" >> $cfgfile
done
# export config file name to Github env
# use it in the next step as env.infracost_configfile
echo "infracost_configfile=$cfgfile" >> $GITHUB_ENV๐ 1
p
plain-ocean-92335
12/14/2021, 9:38 AMYeah, that would work.
s
stocky-salesmen-15167
12/14/2021, 9:39 AM(no warranty , not tested ๐ )
p
plain-ocean-92335
12/14/2021, 9:41 AMBut would be nicer if I could tell infracosts the name of the plan files and it auto generates this config under the hood :d
๐ 2
l
little-author-61621
12/14/2021, 9:44 AM
Yeah I think this is worthy of opening a GitHub issue for. I wonder if the
--path๐ 2
little-author-61621
12/14/2021, 12:02 PM
@plain-ocean-92335 once you've opened the issue ping the link here please. Or if you want me to open it let me know.
p
plain-ocean-92335
12/14/2021, 12:02 PMI would appreciate if you could open it please ๐
๐ 1
l
little-author-61621
12/14/2021, 12:33 PM
๐ Added here: https://github.com/infracost/infracost/issues/1201
๐ 1
33 Views