Skip to content

feat: terraform S3 백엔드 설정 추가#25

Merged
chisanahn merged 1 commit intomainfrom
build/github-action
Sep 11, 2025
Merged

feat: terraform S3 백엔드 설정 추가#25
chisanahn merged 1 commit intomainfrom
build/github-action

Conversation

@chisanahn
Copy link
Copy Markdown
Contributor

@chisanahn chisanahn commented Sep 11, 2025

No description provided.

@chisanahn chisanahn self-assigned this Sep 11, 2025
@chisanahn chisanahn merged commit 96bcf2a into main Sep 11, 2025
1 check passed
@chisanahn chisanahn deleted the build/github-action branch September 11, 2025 22:14
@github-actions
Copy link
Copy Markdown

github-actions bot commented Sep 11, 2025

🏗️ Terraform Plan

data.http.myip: Reading...
module.ec2.tls_private_key.ssh: Refreshing state... [id=deb52ea824c1c6087bd7483da0b7f8670d782558]
module.ec2-ai.tls_private_key.ssh: Refreshing state... [id=36f9e3ea3d8a4bba8007026559b8d34ae3d32c7e]
data.http.myip: Read complete after 1s [id=https://api.ipify.org]
module.acm.data.aws_acm_certificate.cloudfront_main_domain: Reading...
module.acm.data.aws_acm_certificate.wildcard_domain: Reading...
module.s3-for-codedeploy.data.aws_s3_bucket.app_deploy: Reading...
module.codedeploy.aws_codedeploy_app.server-app: Refreshing state... [id=5e1db1c8-9a58-4022-8477-1b685981df7f:annyang-server-app]
module.frontend.aws_cloudfront_origin_access_identity.frontend_oai: Refreshing state... [id=E1NF9X6N0KP2SZ]
module.ec2-ai.aws_key_pair.key_pair: Refreshing state... [id=annyang-ai-key]
module.ec2.aws_ssm_parameter.ec2_private_key: Refreshing state... [id=/annyang/ec2/ssh/private-key]
aws_ssm_parameter.db_password: Refreshing state... [id=/annyang/db/password]
module.codedeploy.aws_iam_role.codedeploy_role: Refreshing state... [id=annyang-codedeploy-role]
module.vpc.aws_vpc.main: Refreshing state... [id=vpc-02dc942b0be273318]
module.s3-images.data.aws_s3_bucket.images: Reading...
module.acm.data.aws_acm_certificate.cloudfront_main_domain: Read complete after 0s [id=arn:aws:acm:us-east-1:124951343483:certificate/7199e1d7-472a-4f28-bab0-fe52b5bed8ca]
module.codedeploy.aws_codedeploy_deployment_config.custom_config: Refreshing state... [id=annyang-deploy-config]
module.frontend.data.aws_s3_bucket.frontend: Reading...
module.ec2-ai.aws_iam_role.ec2_role: Refreshing state... [id=annyang-ai-server-ec2-role]
module.s3-for-codedeploy.data.aws_s3_bucket.app_deploy: Read complete after 1s [id=annyang-for-codedeploy]
module.rds.aws_db_parameter_group.main: Refreshing state... [id=annyang-db-params]
module.ec2.aws_key_pair.key_pair: Refreshing state... [id=annyang-key]
module.acm.data.aws_acm_certificate.main_domain: Reading...
module.ec2-ai.aws_ssm_parameter.ai_server_private_key: Refreshing state... [id=/annyang/ec2-ai/ssh/private-key]
module.acm.data.aws_acm_certificate.wildcard_domain: Read complete after 1s [id=arn:aws:acm:ap-northeast-2:124951343483:certificate/180cc689-0225-4b47-9ddb-c23c8b6c7954]
module.ec2.aws_iam_role.ec2_role: Refreshing state... [id=annyang-api-server-ec2-role]
aws_ssm_parameter.ssh_user: Refreshing state... [id=/annyang/ssh/user]
module.codedeploy.aws_iam_role_policy_attachment.codedeploy_policy: Refreshing state... [id=annyang-codedeploy-role-20250911220722145000000006]
module.ec2-ai.aws_iam_role_policy_attachment.ec2_ecr_policy: Refreshing state... [id=annyang-ai-server-ec2-role-20250911220721883500000005]
module.s3-images.data.aws_s3_bucket.images: Read complete after 1s [id=annyang-images]
module.ec2-ai.aws_iam_role_policy_attachment.ec2_s3_policy: Refreshing state... [id=annyang-ai-server-ec2-role-20250911220721873400000004]
module.ec2-ai.aws_iam_instance_profile.ec2_profile: Refreshing state... [id=annyang-ai-server-ec2-profile]
module.frontend.data.aws_s3_bucket.frontend: Read complete after 1s [id=annyang-frontend]
module.ec2-ai.aws_iam_role_policy_attachment.ec2_ssm_policy: Refreshing state... [id=annyang-ai-server-ec2-role-20250911220721826500000003]
module.codedeploy.aws_codedeploy_deployment_group.api_server_deploy_group: Refreshing state... [id=a32c8505-7c25-4f89-9aec-ac43a196aa81]
module.codedeploy.aws_codedeploy_deployment_group.ai_server_deploy_group: Refreshing state... [id=c75aebdd-eb4a-4356-9373-0cb387cb703e]
module.frontend.aws_s3_bucket_policy.frontend: Refreshing state... [id=annyang-frontend]
module.ec2.aws_iam_role_policy_attachment.ec2_s3_policy: Refreshing state... [id=annyang-api-server-ec2-role-20250911220722642800000009]
module.ec2.aws_iam_instance_profile.ec2_profile: Refreshing state... [id=annyang-api-server-ec2-profile]
module.ec2.aws_iam_role_policy_attachment.ec2_codedeploy_policy: Refreshing state... [id=annyang-api-server-ec2-role-20250911220722430900000007]
module.ec2.aws_iam_role_policy_attachment.ec2_ssm_policy: Refreshing state... [id=annyang-api-server-ec2-role-20250911220722581700000008]
aws_ssm_parameter.deployment_bucket: Refreshing state... [id=/annyang/server-deploy/bucket]
module.frontend.aws_cloudfront_distribution.frontend: Refreshing state... [id=E3IL041YKGCZXY]
module.acm.data.aws_acm_certificate.main_domain: Read complete after 1s [id=arn:aws:acm:ap-northeast-2:124951343483:certificate/64fa3405-11c5-43c8-bfe2-1fe137310eb5]
aws_ssm_parameter.api_server_codedeploy_group: Refreshing state... [id=/annyang/server-deploy/api-server/group_name]
aws_ssm_parameter.ai_server_codedeploy_group: Refreshing state... [id=/annyang/server-deploy/ai-server/group_name]
aws_ssm_parameter.codedeploy_app: Refreshing state... [id=/annyang/server-deploy/app_name]
module.vpc.aws_route_table.private: Refreshing state... [id=rtb-05b95738a6000c48c]
module.vpc.aws_internet_gateway.main: Refreshing state... [id=igw-0a8c09b2bb6fcd042]
module.vpc.aws_subnet.private["subnet-a"]: Refreshing state... [id=subnet-02da535461d12a8e1]
module.vpc.aws_subnet.public["subnet-a"]: Refreshing state... [id=subnet-0154435023b4919f3]
module.vpc.aws_subnet.public["subnet-b"]: Refreshing state... [id=subnet-099019c7097aa1e17]
module.vpc.aws_subnet.private["subnet-b"]: Refreshing state... [id=subnet-0e8200df165c213f6]
module.vpc.aws_route_table.public: Refreshing state... [id=rtb-013c1a45f7f03a0c2]
module.sg.aws_security_group.alb: Refreshing state... [id=sg-01787c14647fea43b]
module.alb.aws_lb_target_group.main: Refreshing state... [id=arn:aws:elasticloadbalancing:ap-northeast-2:124951343483:targetgroup/annyang-target-group/5c9d0715c6a4a433]
module.vpc.aws_route_table_association.public["subnet-b"]: Refreshing state... [id=rtbassoc-024782f00b6874c94]
module.vpc.aws_route_table_association.public["subnet-a"]: Refreshing state... [id=rtbassoc-08a38f48bf93950c8]
module.alb.aws_lb.main: Refreshing state... [id=arn:aws:elasticloadbalancing:ap-northeast-2:124951343483:loadbalancer/app/annyang-alb/5dad17c6918d2da8]
module.sg.aws_security_group.ec2: Refreshing state... [id=sg-055a3b8bbb5caf837]
module.vpc.aws_route_table_association.private["subnet-a"]: Refreshing state... [id=rtbassoc-0df0bfcda1f2cf4e4]
module.vpc.aws_route_table_association.private["subnet-b"]: Refreshing state... [id=rtbassoc-061506b8019efd802]
module.rds.aws_db_subnet_group.main: Refreshing state... [id=annyang-db-subnet-group]
module.sg.aws_security_group.rds: Refreshing state... [id=sg-0d588905cc14df947]
module.sg.aws_security_group.ai_server: Refreshing state... [id=sg-0c697b4c68cc66d08]
module.ec2.aws_instance.main: Refreshing state... [id=i-09b6cc618b3eb2a61]
module.ec2-ai.aws_instance.ai_server: Refreshing state... [id=i-0d135b12e0a9795a4]
module.rds.aws_db_instance.main: Refreshing state... [id=db-ZTDMWM274GT2VO3CDYQCFIEYL4]
aws_ssm_parameter.db_url: Refreshing state... [id=/annyang/db/url]
aws_ssm_parameter.db_username: Refreshing state... [id=/annyang/db/username]
module.alb.aws_lb_listener.https: Refreshing state... [id=arn:aws:elasticloadbalancing:ap-northeast-2:124951343483:listener/app/annyang-alb/5dad17c6918d2da8/05c2217ad60fca22]
module.alb.aws_lb_listener.http: Refreshing state... [id=arn:aws:elasticloadbalancing:ap-northeast-2:124951343483:listener/app/annyang-alb/5dad17c6918d2da8/ed2ae00369e3f093]
module.alb.aws_lb_listener_certificate.wildcard_cert: Refreshing state... [id=arn:aws:elasticloadbalancing:ap-northeast-2:124951343483:listener/app/annyang-alb/5dad17c6918d2da8/05c2217ad60fca22_arn:aws:acm:ap-northeast-2:124951343483:certificate/180cc689-0225-4b47-9ddb-c23c8b6c7954]
module.ec2.aws_ssm_parameter.ec2_connection_info: Refreshing state... [id=/annyang/ec2/connection/info]
module.alb.aws_lb_target_group_attachment.main: Refreshing state... [id=arn:aws:elasticloadbalancing:ap-northeast-2:124951343483:targetgroup/annyang-target-group/5c9d0715c6a4a433-2025091122080197710000000e]
module.ec2-ai.aws_ssm_parameter.ai_server_connection_info: Refreshing state... [id=/annyang/ec2-ai/connection/info]
aws_ssm_parameter.ai_server_endpoint: Refreshing state... [id=/annyang/ai-server/url]

Terraform used the selected providers to generate the following execution
plan. Resource actions are indicated with the following symbols:
  ~ update in-place

Terraform will perform the following actions:

  # module.sg.aws_security_group.ai_server will be updated in-place
  ~ resource "aws_security_group" "ai_server" {
        id                     = "sg-0c697b4c68cc66d08"
      ~ ingress                = [
          - {
              - cidr_blocks      = [
                  - "211.169.117.229/32",
                ]
              - description      = "Allow SSH access from admin IP"
              - from_port        = 22
              - ipv6_cidr_blocks = []
              - prefix_list_ids  = []
              - protocol         = "tcp"
              - security_groups  = []
              - self             = false
              - to_port          = 22
            },
          + {
              + cidr_blocks      = [
                  + "172.182.202.196/32",
                ]
              + description      = "Allow SSH access from admin IP"
              + from_port        = 22
              + ipv6_cidr_blocks = []
              + prefix_list_ids  = []
              + protocol         = "tcp"
              + security_groups  = []
              + self             = false
              + to_port          = 22
            },
            # (1 unchanged element hidden)
        ]
        name                   = "annyang-ai-server-sg"
        tags                   = {
            "Application" = "annyang"
            "ManagedBy"   = "terraform"
            "Name"        = "annyang-ai-server-sg"
        }
        # (7 unchanged attributes hidden)
    }

  # module.sg.aws_security_group.ec2 will be updated in-place
  ~ resource "aws_security_group" "ec2" {
        id                     = "sg-055a3b8bbb5caf837"
      ~ ingress                = [
          - {
              - cidr_blocks      = [
                  - "211.169.117.229/32",
                ]
              - description      = "Allow SSH access from admin IP"
              - from_port        = 22
              - ipv6_cidr_blocks = []
              - prefix_list_ids  = []
              - protocol         = "tcp"
              - security_groups  = []
              - self             = false
              - to_port          = 22
            },
          + {
              + cidr_blocks      = [
                  + "172.182.202.196/32",
                ]
              + description      = "Allow SSH access from admin IP"
              + from_port        = 22
              + ipv6_cidr_blocks = []
              + prefix_list_ids  = []
              + protocol         = "tcp"
              + security_groups  = []
              + self             = false
              + to_port          = 22
            },
            # (1 unchanged element hidden)
        ]
        name                   = "annyang-api-server-ec2-sg"
        tags                   = {
            "Name" = "annyang-api-server-ec2-sg"
        }
        # (7 unchanged attributes hidden)
    }

Plan: 0 to add, 2 to change, 0 to destroy.

─────────────────────────────────────────────────────────────────────────────

Note: You didn't use the -out option to save this plan, so Terraform can't
guarantee to take exactly these actions if you run "terraform apply" now.

Pusher: @chisanahn, Action: pull_request

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@chisanahn chisanahn

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@chisanahn