Support Atlantis deployments for sandobx repos that are on a personal…

… account (#1507) instead of an organization account
dfds · Aug 9, 2024 · 65832f7 · 65832f7
1 parent 5e338aa
commit 65832f7
Show file tree

Hide file tree

Showing 4 changed files with 16 additions and 1 deletion.
diff --git a/_sub/compute/helm-atlantis/main.tf b/_sub/compute/helm-atlantis/main.tf
@@ -151,13 +151,15 @@ resource "github_repository_webhook" "hook" {
 }
 
 resource "github_actions_organization_secret" "atlantis_username" {
+  count                   = var.enable_github_secrets ? 1 : 0
   secret_name             = "${upper(var.environment)}_ATLANTIS_USERNAME"
   visibility              = "selected"
   plaintext_value         = var.auth_username
   selected_repository_ids = data.github_repository.repo.*.repo_id
 }
 
 resource "github_actions_organization_secret" "atlantis_password" {
+  count                   = var.enable_github_secrets ? 1 : 0
   secret_name             = "${upper(var.environment)}_ATLANTIS_PASSWORD"
   visibility              = "selected"
   plaintext_value         = random_password.password.result

diff --git a/_sub/compute/helm-atlantis/vars.tf b/_sub/compute/helm-atlantis/vars.tf
@@ -135,4 +135,10 @@ variable "add_secret_volumes" {
   type        = bool
   default     = false
   description = "Add secret volumes to the Atlantis deployment. Requires a secret deployed named 'kubeconfigs'"
-}
+}
+
+variable "enable_github_secrets" {
+  type        = bool
+  default     = true
+  description = "Enable Github secrets for Atlantis"
+}
diff --git a/compute/k8s-services/main.tf b/compute/k8s-services/main.tf
@@ -501,6 +501,7 @@ module "atlantis" {
   webhook_events            = var.atlantis_webhook_events
   environment               = var.atlantis_environment
   add_secret_volumes        = var.atlantis_add_secret_volumes
+  enable_github_secrets     = var.atlantis_enable_github_secrets
 
   environment_variables = local.atlantis_env_vars
 

diff --git a/compute/k8s-services/vars.tf b/compute/k8s-services/vars.tf
@@ -591,6 +591,12 @@ variable "atlantis_environment" {
   default     = ""
 }
 
+variable "atlantis_enable_github_secrets" {
+  type        = bool
+  default     = true
+  description = "Enable Github secrets for Atlantis"
+}
+
 # --------------------------------------------------
 # Atlantis variables
 # --------------------------------------------------