feat: get github token from bjerk-bot stack reference #81

braaar · 2023-08-11T13:58:26Z

awaiting bjerkio/bot#30

projects/bjerk-conf/resources/github/providers.ts

projects/core-infra/src/components/identity-pool-github.ts

projects/core-infra/src/index.ts

* main: fix: remove unused github token reference (#80)

bjerk-bot · 2023-08-29T12:09:58Z

🍹 `preview` on bjerk-io-infra/bjerk/prod

Pulumi report

Previewing update (Bjerk/prod)

View Live: https://app.pulumi.com/Bjerk/bjerk-io-infra/prod/previews/4e20f0ed-841e-4922-8abf-848d5ad08d17

@ Previewing update.........

@ Previewing update....
pulumi:pulumi:Stack bjerk-io-infra-prod running 
@ Previewing update........
pulumi:pulumi:Stack bjerk-io-infra-prod running read pulumi:pulumi:StackReference Bjerk/bjerk-bot/prod
@ Previewing update....
pulumi:pulumi:Stack bjerk-io-infra-prod running read pulumi:pulumi:StackReference Bjerk/bjerk-bot/prod
gcp:serviceAccount:Account deploy-sa  
gcp:dns:ManagedZone bjerk-dev-zone  
gcp:dns:ManagedZone bjerk-io-zone  
~  pulumi:providers:github gh-provider update 
gcp:serviceAccount:Key sa-key  
gcp:projects:IAMMember deploy-firebase-iam  
gcp:dns:RecordSet bjerk-dev-ml-newsletter  
gcp:dns:RecordSet bjerk-io-dmarc  
gcp:dns:RecordSet bjerk-io-txt  
gcp:dns:RecordSet bjerk-io-mx  
gcp:dns:RecordSet bjerk-io-domainkey  
gcp:dns:RecordSet bjerk-io-reporting  
gcp:dns:RecordSet bjerk-io-studio  
gcp:dns:RecordSet bjerk-io-github  
gcp:dns:RecordSet bjerk-io-gate  
gcp:dns:RecordSet bjerk-io-vault  
gcp:dns:RecordSet bjerk-io-a  
gcp:dns:RecordSet bjerk-io-www  
@ Previewing update....
github:index:ActionsSecret deploy-url  
pulumi:pulumi:Stack bjerk-io-infra-prod  

Resources:
~ 1 to update
19 unchanged

bjerk-bot · 2023-08-29T12:16:20Z

🍹 `preview` on bjerk-core-infra/bjerk/prod

Pulumi report

Previewing update (Bjerk/prod)

View Live: https://app.pulumi.com/Bjerk/bjerk-core-infra/prod/previews/b34ba51b-7b6c-4340-81d2-0151d6d528e8

@ Previewing update............

@ Previewing update.....
pulumi:pulumi:Stack bjerk-core-infra-prod running 
@ Previewing update............
bjerk:project abax-vwfs  
pulumi:providers:gcp bjerk-core-google  
@ Previewing update....
gcp:organizations:Folder branches-folder  
gcp:iam:WorkloadIdentityPool core-github  
gcp:serviceAccount:Account conf-deployer  
gcp:projects:Service bjerk-gaming-cloudfunctions.googleapis.com  
gcp:projects:Service cloudbuild.googleapis.com  
gcp:projects:Service run.googleapis.com  
gcp:projects:Service iam.googleapis.com  
gcp:projects:Service cloudbilling.googleapis.com  
gcp:projects:Service dns.googleapis.com  
pulumi:pulumi:Stack bjerk-core-infra-prod running read pulumi:pulumi:StackReference bjerk/bjerk-bot/prod
gcp:iam:WorkloadIdentityPoolProvider core-github  
gcp:folder:IAMMember branches-project-creator  
gcp:folder:IAMMember branches-owner  
gcp:projects:Service bjerk-gaming-run.googleapis.com  
@ Previewing update....
gcp:projects:Service bjerk-gaming-cloudbuild.googleapis.com  
gcp:projects:Service bjerk-gaming-iam.googleapis.com  
pulumi:pulumi:Stack bjerk-core-infra-prod running read pulumi:pulumi:StackReference bjerk/bjerk-bot/prod
~  pulumi:providers:github flexi-soft-provider update 
~  pulumi:providers:github branches-provider update 
~  pulumi:providers:github bjerkio-provider update 
~  pulumi:providers:github basssene-provider update 
bjerk:project flexisoft  
gcp:organizations:Folder internal-folder  
bjerkio:github:IdentityPoolGithub conf  
gcp:projects:Service bjerk-gaming-cloudbilling.googleapis.com  
gcp:organizations:Folder customer-folder  
gcp:projects:Service servicemanagement.googleapis.com  
bjerk:project tripletex-time-agent  
bjerk:project bjerk-gaming  
github:index:ActionsSecret bot-pulumi  
bjerk:project bjerk-io  
bjerk:project bassene-web  
bjerk:project timely-agent  
bjerkio:github:IdentityPoolGithub conf-flexisoft-gh-identity-pool  
github:index:ActionsSecret conf-flexisoft-pulumi  
github:index:ActionsSecret conf-google-service-accuont  
bjerkio:github:GithubIdentityPoolIamMember conf  
github:index:ActionsSecret conf-identity-provider  
bjerkio:github:IdentityPoolGithub tripletex-time-agent-tripletex-time-agent-gh-identity-pool  
github:index:ActionsSecret conf-google-projects  
gcp:projects:Service bjerk-gaming-servicemanagement.googleapis.com  
bjerkio:github:IdentityPoolGithub timely-app-timely-agent-gh-identity-pool  
bjerkio:github:IdentityPoolGithub timely-agent-timely-agent-gh-identity-pool  
bjerkio:github:IdentityPoolGithub gaming-bjerk-gaming-gh-identity-pool  
bjerkio:github:IdentityPoolGithub infra-bassene-web-gh-identity-pool  
bjerkio:github:GithubIdentityPoolIamMember conf-flexisoft-gh-identity-pool  
github:index:ActionsSecret conf-flexisoft-gh-identity-pool-identity-provider  
gcp:projects:Service servicecontrol.googleapis.com  
gcp:serviceAccount:IAMMember iam-infra-token-conf  
gcp:serviceAccount:IAMMember iam-workload-conf  
bjerkio:github:GithubIdentityPoolIamMember tripletex-time-agent-tripletex-time-agent-gh-identity-pool  
github:index:ActionsSecret tripletex-time-agent-tripletex-time-agent-gh-identity-pool-identity-provider  
bjerkio:github:GithubIdentityPoolIamMember timely-app-timely-agent-gh-identity-pool  
github:index:ActionsSecret timely-app-timely-agent-gh-identity-pool-identity-provider  
bjerkio:github:GithubIdentityPoolIamMember timely-agent-timely-agent-gh-identity-pool  
github:index:ActionsSecret timely-agent-timely-agent-gh-identity-pool-identity-provider  
bjerkio:github:GithubIdentityPoolIamMember gaming-bjerk-gaming-gh-identity-pool  
github:index:ActionsSecret gaming-bjerk-gaming-gh-identity-pool-identity-provider  
bjerkio:github:GithubIdentityPoolIamMember infra-bassene-web-gh-identity-pool  
github:index:ActionsSecret infra-bassene-web-gh-identity-pool-identity-provider  
gcp:projects:Service bjerk-gaming-servicecontrol.googleapis.com  
gcp:projects:Service container.googleapis.com  
@ Previewing update....
gcp:projects:Service bjerk-gaming-container.googleapis.com  
gcp:projects:Service bjerk-gaming-compute.googleapis.com  
gcp:projects:Service bjerk-gaming-dns.googleapis.com  
gcp:projects:Service bjerk-gaming-cloudresourcemanager.googleapis.com  
gcp:projects:Service compute.googleapis.com  
gcp:projects:Service bjerk-gaming-logging.googleapis.com  
gcp:projects:Service cloudkms.googleapis.com  
gcp:projects:Service bjerk-gaming-stackdriver.googleapis.com  
gcp:projects:Service cloudresourcemanager.googleapis.com  
gcp:projects:Service logging.googleapis.com  
gcp:projects:Service stackdriver.googleapis.com  
gcp:projects:Service monitoring.googleapis.com  
@ Previewing update....
gcp:projects:Service cloudtrace.googleapis.com  
gcp:projects:Service clouderrorreporting.googleapis.com  
+  gcp:projects:Service clouddebugger.googleapis.com create 
gcp:projects:Service cloudprofiler.googleapis.com  
gcp:projects:Service sqladmin.googleapis.com  
gcp:projects:Service bjerk-gaming-monitoring.googleapis.com  
gcp:projects:Service cloudfunctions.googleapis.com  
gcp:projects:Service bjerk-gaming-cloudprofiler.googleapis.com  
gcp:projects:Service bjerk-gaming-cloudtrace.googleapis.com  
gcp:projects:Service bjerk-gaming-clouderrorreporting.googleapis.com  
gcp:projects:Service bjerk-gaming-cloudkms.googleapis.com  
+  gcp:projects:Service bjerk-gaming-clouddebugger.googleapis.com create 
gcp:projects:Service bjerk-gaming-sqladmin.googleapis.com  
gcp:organizations:Project tomba-domains  
@ Previewing update....
gcp:organizations:Project veltno  
gcp:folder:IAMMember group:developers@bjerk.io-viewer  
gcp:folder:IAMMember group:developers@bjerk.io-folderViewer  
gcp:folder:IAMMember group:gcp-organization-viewers@bjerk.io-internal-developer-browser  
gcp:folder:IAMMember group:gcp-organization-viewers@bjerk.io-internal-developer-logging-viewier  
gcp:organizations:Project flexisoft  
github:index:ActionsSecret conf-flexisoft-gh-identity-pool-google-projects  
gcp:serviceAccount:Account flexisoft  
pulumi:providers:gcp flexisoft  
gcp:serviceAccount:IAMMember iam-infra-token-conf-flexisoft-gh-identity-pool  
github:index:ActionsSecret conf-flexisoft-gh-identity-pool-google-service-accuont  
gcp:serviceAccount:IAMMember iam-workload-conf-flexisoft-gh-identity-pool  
@ Previewing update....
gcp:projects:IAMMember flexisoft-service-account  
gcp:organizations:Project abax-vwfs  
gcp:folder:IAMMember group:gcp-organization-viewers@bjerk.io-customer-developer-browser  
gcp:organizations:Project tripletex-time-agent  
gcp:organizations:Project timely-agent  
gcp:organizations:Project bjerk-gaming  
gcp:organizations:Project bjerk-io  
gcp:organizations:Project bassene-web  
pulumi:providers:gcp abax-vwfs  
gcp:serviceAccount:Account abax-vwfs  
pulumi:providers:gcp tripletex-time-agent  
gcp:serviceAccount:Account tripletex-time-agent  
github:index:ActionsSecret tripletex-time-agent-tripletex-time-agent-gh-identity-pool-google-projects  
pulumi:providers:gcp timely-agent  
gcp:serviceAccount:Account timely-agent  
github:index:ActionsSecret timely-agent-timely-agent-gh-identity-pool-google-projects  
github:index:ActionsSecret timely-app-timely-agent-gh-identity-pool-google-projects  
@ Previewing update....
pulumi:providers:gcp bjerk-io  
gcp:serviceAccount:Account bjerk-gaming  
github:index:ActionsSecret gaming-bjerk-gaming-gh-identity-pool-google-projects  
pulumi:providers:gcp bjerk-gaming  
gcp:serviceAccount:Account bjerk-io  
pulumi:providers:gcp bassene-web  
gcp:serviceAccount:Account bassene-web  
github:index:ActionsSecret infra-bassene-web-gh-identity-pool-google-projects  
gcp:projects:IAMMember abax-vwfs-service-account  
gcp:serviceAccount:IAMMember iam-infra-token-tripletex-time-agent-tripletex-time-agent-gh-identity-pool  
github:index:ActionsSecret tripletex-time-agent-tripletex-time-agent-gh-identity-pool-google-service-accuont  
gcp:serviceAccount:IAMMember iam-workload-tripletex-time-agent-tripletex-time-agent-gh-identity-pool  
@ Previewing update....
gcp:projects:IAMMember tripletex-time-agent-service-account  
github:index:ActionsSecret timely-agent-timely-agent-gh-identity-pool-google-service-accuont  
github:index:ActionsSecret timely-app-timely-agent-gh-identity-pool-google-service-accuont  
gcp:serviceAccount:IAMMember iam-workload-timely-app-timely-agent-gh-identity-pool  
gcp:serviceAccount:IAMMember iam-infra-token-timely-app-timely-agent-gh-identity-pool  
gcp:serviceAccount:IAMMember iam-workload-timely-agent-timely-agent-gh-identity-pool  
bjerk:project-slack-logger timely-agent  
gcp:serviceAccount:IAMMember iam-infra-token-timely-agent-timely-agent-gh-identity-pool  
gcp:projects:IAMMember timely-agent-service-account  
gcp:serviceAccount:IAMMember iam-infra-token-gaming-bjerk-gaming-gh-identity-pool  
github:index:ActionsSecret gaming-bjerk-gaming-gh-identity-pool-google-service-accuont  
gcp:serviceAccount:IAMMember iam-workload-gaming-bjerk-gaming-gh-identity-pool  
gcp:projects:IAMMember bjerk-io-group:developers@bjerk.io-dns-admin  
gcp:projects:IAMMember bjerk-io-group:developers@bjerk.io-firebase-viewer  
gcp:projects:IAMMember bjerk-io-service-account  
gcp:projects:IAMMember bjerk-gaming-service-account  
gcp:serviceAccount:IAMMember iam-infra-token-infra-bassene-web-gh-identity-pool  
github:index:ActionsSecret infra-bassene-web-gh-identity-pool-google-service-accuont  
gcp:serviceAccount:IAMMember iam-workload-infra-bassene-web-gh-identity-pool  
@ Previewing update....
gcp:projects:IAMMember bassene-web-service-account  
gcp:pubsub:Topic timely-agent  
gcp:serviceAccount:Account timely-agent  
gcp:projects:Service tta-cloudbilling.googleapis.com  
gcp:projects:Service tta-eventarc.googleapis.com  
gcp:projects:Service tta-servicemanagement.googleapis.com  
gcp:projects:Service tta-servicecontrol.googleapis.com  
gcp:projects:Service tta-container.googleapis.com  
gcp:projects:Service tta-compute.googleapis.com  
gcp:projects:Service tta-dns.googleapis.com  
gcp:projects:Service tta-cloudresourcemanager.googleapis.com  
gcp:logging:ProjectSink timely-agent  
gcp:projects:Service tta-logging.googleapis.com  
gcp:cloudrunv2:Service timely-agent  
gcp:projects:IAMMember timely-agent  
gcp:pubsub:TopicIAMMember timely-agent  [diff: ~topic]
gcp:cloudrunv2:ServiceIamMember timely-agent  [diff: ~name]
gcp:eventarc:Trigger timely-agent  
gcp:projects:Service tta-stackdriver.googleapis.com  
gcp:projects:Service tta-monitoring.googleapis.com  
gcp:projects:Service tta-cloudtrace.googleapis.com  
gcp:projects:Service tta-clouderrorreporting.googleapis.com  
+  gcp:projects:Service tta-clouddebugger.googleapis.com create 
gcp:projects:Service tta-cloudprofiler.googleapis.com  
gcp:projects:Service tta-sqladmin.googleapis.com  
gcp:projects:Service tta-cloudkms.googleapis.com  
gcp:projects:Service tta-cloudfunctions.googleapis.com  
gcp:projects:Service tta-run.googleapis.com  
gcp:projects:Service tta-cloudbuild.googleapis.com  
gcp:projects:Service tta-iam.googleapis.com  
bjerk:project-slack-logger tripletex-time-agent  
gcp:serviceAccount:Account tripletex-time-agent  
gcp:pubsub:Topic tripletex-time-agent  
gcp:cloudrunv2:Service tripletex-time-agent  
gcp:projects:IAMMember tripletex-time-agent  
gcp:logging:ProjectSink tripletex-time-agent  
gcp:cloudrunv2:ServiceIamMember tripletex-time-agent  [diff: ~name]
gcp:eventarc:Trigger tripletex-time-agent  
gcp:pubsub:TopicIAMMember tripletex-time-agent  [diff: ~topic]
@ Previewing update....
pulumi:pulumi:Stack bjerk-core-infra-prod  

Outputs:
- token: [secret]

Resources:
+ 3 to create
~ 4 to update
7 changes. 181 unchanged

* feat: get github token from bjerk-bot stack * fix: add githubProvider to other github actions secrets * feat: use githubProvider everywhere * fix: get token from stackref, not through provider * fix: remove unused import * fix: update import * fix: update imports and stack refs * fix: remove unnecessary provider * refactor: use gitHub instead of github * feat: add stack refs to bjerk-conf * fix: remove extraneous provider reference * fix: remove unused export * fix: revert irrelevant change * revert format change * refactor: move stack-refs into resources folder * refactor: rename token in import * fix: use correct quotes * fix: use singlequotes * fix: use all lowercase stack refs * fix: set temporary local github token * fix: add config * move away from stackref folder * move out of stack ref * fix: revert temp token testing * fix: remove unnecessary import * disable default providers * change github token name * remove default provider * do not refresh for a second * fix token name * fix token name --------- Co-authored-by: Simen A. W. Olsen <so@bjerk.io>

* main: fix: remove references to deprecated google cloud API (#84) feat: get github token from bjerk-bot stack reference (#81) fix: remove unused github token reference (#80)

* fix: fix linter setup * fix: remove unused github token reference (#80) * feat: get github token from bjerk-bot stack reference (#81) * feat: get github token from bjerk-bot stack * fix: add githubProvider to other github actions secrets * feat: use githubProvider everywhere * fix: get token from stackref, not through provider * fix: remove unused import * fix: update import * fix: update imports and stack refs * fix: remove unnecessary provider * refactor: use gitHub instead of github * feat: add stack refs to bjerk-conf * fix: remove extraneous provider reference * fix: remove unused export * fix: revert irrelevant change * revert format change * refactor: move stack-refs into resources folder * refactor: rename token in import * fix: use correct quotes * fix: use singlequotes * fix: use all lowercase stack refs * fix: set temporary local github token * fix: add config * move away from stackref folder * move out of stack ref * fix: revert temp token testing * fix: remove unnecessary import * disable default providers * change github token name * remove default provider * do not refresh for a second * fix token name * fix token name --------- Co-authored-by: Simen A. W. Olsen <so@bjerk.io> * fix: remove references to deprecated google cloud API (#84) --------- Co-authored-by: Simen A. W. Olsen <so@bjerk.io>

feat: get github token from bjerk-bot stack

c3575e8

braaar requested a review from simenandre August 11, 2023 13:58

braaar added 5 commits August 11, 2023 17:08

fix: add githubProvider to other github actions secrets

815a330

feat: use githubProvider everywhere

3deef0e

fix: get token from stackref, not through provider

9136777

fix: remove unused import

a7ab3cc

fix: update import

cdbc15f

simenandre reviewed Aug 11, 2023

View reviewed changes

projects/bjerk-conf/resources/github/providers.ts Outdated Show resolved Hide resolved

simenandre reviewed Aug 11, 2023

View reviewed changes

projects/core-infra/src/components/identity-pool-github.ts Outdated Show resolved Hide resolved

braaar added 5 commits August 11, 2023 17:42

fix: update imports and stack refs

7120043

fix: remove unnecessary provider

0b59718

refactor: use gitHub instead of github

c390624

feat: add stack refs to bjerk-conf

57ebc80

fix: remove extraneous provider reference

ca47f59

simenandre reviewed Aug 11, 2023

View reviewed changes

projects/core-infra/src/index.ts Outdated Show resolved Hide resolved

braaar added 15 commits August 11, 2023 17:58

fix: remove unused export

53fba25

fix: revert irrelevant change

6829c5e

revert format change

c46b808

Merge branch 'main' into github-token-stack-reference

6bbbb5c

* main: fix: remove unused github token reference (#80)

refactor: move stack-refs into resources folder

d3f7f47

refactor: rename token in import

c54d504

fix: use correct quotes

c35b8aa

fix: use singlequotes

308f451

fix: use all lowercase stack refs

a11f9af

fix: set temporary local github token

a70fccb

fix: add config

dedfd98

move away from stackref folder

7806d96

move out of stack ref

72b39c1

fix: revert temp token testing

96967bc

fix: remove unnecessary import

250c23f

simenandre added 4 commits August 29, 2023 14:05

disable default providers

288f96e

change github token name

70d5076

remove default provider

cb9ad84

do not refresh for a second

53f1cea

braaar added 2 commits August 29, 2023 15:11

fix token name

014c74a

fix token name

7e9571e

braaar changed the title ~~feat: get github token from bjerk-bot stack~~ feat: get github token from bjerk-bot stack reference Aug 29, 2023

braaar merged commit 158e865 into main Aug 29, 2023
2 checks passed

delete-merged-branch bot deleted the github-token-stack-reference branch August 29, 2023 12:20

braaar added a commit that referenced this pull request Aug 29, 2023

Merge branch 'main' into fix-linter

39bda1a

* main: fix: remove references to deprecated google cloud API (#84) feat: get github token from bjerk-bot stack reference (#81) fix: remove unused github token reference (#80)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

feat: get github token from bjerk-bot stack reference #81

feat: get github token from bjerk-bot stack reference #81

braaar commented Aug 11, 2023

bjerk-bot commented Aug 29, 2023 •

edited

Loading

bjerk-bot commented Aug 29, 2023

feat: get github token from bjerk-bot stack reference #81

feat: get github token from bjerk-bot stack reference #81

Conversation

braaar commented Aug 11, 2023

bjerk-bot commented Aug 29, 2023 • edited Loading

🍹 preview on bjerk-io-infra/bjerk/prod

bjerk-bot commented Aug 29, 2023

🍹 preview on bjerk-core-infra/bjerk/prod

bjerk-bot commented Aug 29, 2023 •

edited

Loading

🍹 `preview` on bjerk-io-infra/bjerk/prod

🍹 `preview` on bjerk-core-infra/bjerk/prod