github.com/spirius/terraform@v0.10.0-beta2.0.20170714185654-87b2c0cf8fea/examples/azure-encrypt-running-linux-vm/deploy.ci.sh

github.com/spirius/terraform@v0.10.0-beta2.0.20170714185654-87b2c0cf8fea/examples/azure-encrypt-running-linux-vm/deploy.ci.sh (about)

     1  #!/bin/bash
     2  
     3  set -o errexit -o nounset
     4  
     5  docker run --rm -it \
     6    -e ARM_CLIENT_ID \
     7    -e ARM_CLIENT_SECRET \
     8    -e ARM_SUBSCRIPTION_ID \
     9    -e ARM_TENANT_ID \
    10    -e KEY_ENCRYPTION_KEY_URL \
    11    -e KEY_VAULT_RESOURCE_ID \
    12    -v $(pwd):/data \
    13    --workdir=/data \
    14    --entrypoint "/bin/sh" \
    15    hashicorp/terraform:light \
    16    -c "/bin/terraform get; \
    17        /bin/terraform validate; \
    18        /bin/terraform plan -out=out.tfplan \
    19          -var resource_group=$KEY \
    20          -var hostname=$KEY \
    21          -var admin_username=$KEY \
    22          -var admin_password=$PASSWORD \
    23          -var passphrase=$PASSWORD \
    24          -var key_vault_name=$KEY_VAULT_NAME \
    25          -var aad_client_id=$ARM_CLIENT_ID \
    26          -var aad_client_secret=$ARM_CLIENT_SECRET \
    27          -var key_encryption_key_url=$KEY_ENCRYPTION_KEY_URL \
    28          -var key_vault_resource_id=$KEY_VAULT_RESOURCE_ID; \
    29        /bin/terraform apply out.tfplan"
    30  
    31  # cleanup deployed azure resources via azure-cli
    32  docker run --rm -it \
    33    azuresdk/azure-cli-python:0.2.10 \
    34    sh -c "az login --service-principal -u $ARM_CLIENT_ID -p $ARM_CLIENT_SECRET --tenant $ARM_TENANT_ID > /dev/null; \
    35           az vm show -g $KEY -n $KEY; \
    36           az vm encryption show -g $KEY -n $KEY"
    37  
    38  # cleanup deployed azure resources via terraform
    39  docker run --rm -it \
    40    -e ARM_CLIENT_ID \
    41    -e ARM_CLIENT_SECRET \
    42    -e ARM_SUBSCRIPTION_ID \
    43    -e ARM_TENANT_ID \
    44    -e KEY_ENCRYPTION_KEY_URL \
    45    -e KEY_VAULT_RESOURCE_ID \
    46    -v $(pwd):/data \
    47    --workdir=/data \
    48    --entrypoint "/bin/sh" \
    49    hashicorp/terraform:light \
    50    -c "/bin/terraform destroy -force \
    51      -var resource_group=$KEY \
    52      -var hostname=$KEY \
    53      -var admin_username=$KEY \
    54      -var admin_password=$PASSWORD \
    55      -var passphrase=$PASSWORD \
    56      -var key_vault_name=$KEY_VAULT_NAME \
    57      -var aad_client_id=$ARM_CLIENT_ID \
    58      -var aad_client_secret=$ARM_CLIENT_SECRET \
    59      -var key_encryption_key_url=$KEY_ENCRYPTION_KEY_URL \
    60      -var key_vault_resource_id=$KEY_VAULT_RESOURCE_ID;"