github.com/spirius/terraform@v0.10.0-beta2.0.20170714185654-87b2c0cf8fea/examples/azure-encrypt-running-linux-vm/deploy.ci.sh (about) 1 #!/bin/bash 2 3 set -o errexit -o nounset 4 5 docker run --rm -it \ 6 -e ARM_CLIENT_ID \ 7 -e ARM_CLIENT_SECRET \ 8 -e ARM_SUBSCRIPTION_ID \ 9 -e ARM_TENANT_ID \ 10 -e KEY_ENCRYPTION_KEY_URL \ 11 -e KEY_VAULT_RESOURCE_ID \ 12 -v $(pwd):/data \ 13 --workdir=/data \ 14 --entrypoint "/bin/sh" \ 15 hashicorp/terraform:light \ 16 -c "/bin/terraform get; \ 17 /bin/terraform validate; \ 18 /bin/terraform plan -out=out.tfplan \ 19 -var resource_group=$KEY \ 20 -var hostname=$KEY \ 21 -var admin_username=$KEY \ 22 -var admin_password=$PASSWORD \ 23 -var passphrase=$PASSWORD \ 24 -var key_vault_name=$KEY_VAULT_NAME \ 25 -var aad_client_id=$ARM_CLIENT_ID \ 26 -var aad_client_secret=$ARM_CLIENT_SECRET \ 27 -var key_encryption_key_url=$KEY_ENCRYPTION_KEY_URL \ 28 -var key_vault_resource_id=$KEY_VAULT_RESOURCE_ID; \ 29 /bin/terraform apply out.tfplan" 30 31 # cleanup deployed azure resources via azure-cli 32 docker run --rm -it \ 33 azuresdk/azure-cli-python:0.2.10 \ 34 sh -c "az login --service-principal -u $ARM_CLIENT_ID -p $ARM_CLIENT_SECRET --tenant $ARM_TENANT_ID > /dev/null; \ 35 az vm show -g $KEY -n $KEY; \ 36 az vm encryption show -g $KEY -n $KEY" 37 38 # cleanup deployed azure resources via terraform 39 docker run --rm -it \ 40 -e ARM_CLIENT_ID \ 41 -e ARM_CLIENT_SECRET \ 42 -e ARM_SUBSCRIPTION_ID \ 43 -e ARM_TENANT_ID \ 44 -e KEY_ENCRYPTION_KEY_URL \ 45 -e KEY_VAULT_RESOURCE_ID \ 46 -v $(pwd):/data \ 47 --workdir=/data \ 48 --entrypoint "/bin/sh" \ 49 hashicorp/terraform:light \ 50 -c "/bin/terraform destroy -force \ 51 -var resource_group=$KEY \ 52 -var hostname=$KEY \ 53 -var admin_username=$KEY \ 54 -var admin_password=$PASSWORD \ 55 -var passphrase=$PASSWORD \ 56 -var key_vault_name=$KEY_VAULT_NAME \ 57 -var aad_client_id=$ARM_CLIENT_ID \ 58 -var aad_client_secret=$ARM_CLIENT_SECRET \ 59 -var key_encryption_key_url=$KEY_ENCRYPTION_KEY_URL \ 60 -var key_vault_resource_id=$KEY_VAULT_RESOURCE_ID;"