rshamunov commented on code in PR #26513:
URL: https://github.com/apache/beam/pull/26513#discussion_r1191031126
##########
playground/terraform/infrastructure/cloudbuild-manual-setup/README.md:
##########
@@ -31,18 +31,51 @@ Cloud Build triggers created by terraform scripts from this
directory automate s
- Cloud Build Editor
- Security Admin
- Service Account User
+ - Secret Manager Admin
- [gcloud CLI](https://cloud.google.com/sdk/docs/install-sdk)
-- An existing GCP Bucket to save Terraform state - `state-bucket`
+- An existing GCS Bucket to save Terraform state for Cloud Build triggers
<triggers-state-bucket>
+- An existing GCS Bucket to store private Cloud Build logs
<private-logs-bucket>
+- An existing GCS Bucket to store public Cloud Build logs <public-logs-bucket>
- DNS name for your Playground deployment instance
- [Terraform](https://www.terraform.io/)
+- [GitHub Personal Access
Token](https://docs.github.com/en/authentication/keeping-your-account-and-data-secure/creating-a-personal-access-token)
- [Apache Beam GitHub](https://github.com/apache/beam) repository cloned
locally
## 1. Set up the Google Cloud Build for your GCP project
-The `playground/terraform/infrastructure/cloudbuild-manual-setup/01.setup`
provisions dependencies required to set up Cloud Build for Playground:
+First provide the variables by creating a `common.tfvars`
+```
+beam/playground/terraform/infrastructure/cloudbuild-manual-setup/common.tfvars
+```
+And put the following:
+```
+playground_deploy_sa = "DEPLOY_SA_NAME" # SA name used for Deploy trigger
+playground_update_sa = "UPDATE_SA_NAME" # SA name used for Update trigger
+playground_ci_sa = "CI_SA_NAME" # SA name used for CI trigger
+playground_cd_sa = "CD_SA_NAME" # SA name used for CD trigger
+project_id = "PROJECT_ID" # ID of the project used
+playground_environment_name = "environment" # Name of the environment. Used
for prefixing (dev- stag- prod- etc.)
+playground_dns_name = "fqdm.playground.zone" # FQDN used for Playground
deployment
+image_tag = "tag" # Container image tag to build
+playground_region = "us-central1" # GCP Region to deploy in
+playground_zone = "us-central1-a" # GCP Zone to deploy in
+skip_appengine_deploy = false # Workaround for Appengine issue. Appengine can
only be deployed once so subsequent runs need to set this to true
+webhook_trigger_secret_id = "SECRET_ID" # Secret ID for webhook
+gh_pat_secret_id = "PAT_SECRET_ID" # Secret ID with github PAT
+data_for_github_pat_secret = "PAT" # Actual Github PAT
+trigger_source_repo = "https://github.com/beamplayground/deploy-workaround"; #
Repo used as a workaround
+terraform_source_repo = "https://github.com/apache/beam"; # Repo from which
terraform code is fetched
+terraform_source_branch = "master" # Branch from which terraform code is
fetched
+state_bucket = "BUCKET_NAME" # State bucket to preseve environment state
+data_for_cicd_webhook_secret = "secret_sting" # Secret used when creating the
Github webhook
Review Comment:
request bucket names, don't create them
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
