Github Actions Serverless Deployer

Terraform module that will create the resources for deploying serverless framework using github actions.

Requirements

Name	Version
terraform	>= 1.0
aws	>= 4.27

Providers

Name	Version
aws	4.31.0

Modules

Name	Source	Version
cf_execution_assume_role	terraform-aws-modules/iam/aws//modules/iam-assumable-role	>= 5.3.0
cf_execution_role_policy	terraform-aws-modules/iam/aws//modules/iam-policy	>= 5.3.0
deployer_role_policy	terraform-aws-modules/iam/aws//modules/iam-policy	>= 5.3.0
github_actions_repo	philips-labs/github-oidc/aws	>= 0.3.0

Resources

Name	Type
aws_caller_identity.current	data source
aws_iam_openid_connect_provider.github	data source
aws_iam_policy_document.cf_execution	data source
aws_iam_policy_document.cf_execution_concat	data source
aws_iam_policy_document.deployer	data source
aws_iam_policy_document.deployer_concat	data source
aws_region.current	data source

Inputs

Name	Description	Type	Default	Required
additional_deployer_role	(Optional) Additional Deployer Policy Role	list(any)	[]	no
additional_execution_role	(Optional) Additional Execution Policy Role	list(any)	[]	no
github_branches	List of github branches allowed for oidc subject claims.	list(string)	[]	no
github_environments	(Optional) Allow GitHub action to deploy to all (default) or to one of the environments in the list.	list(string)	[ "*" ]	no
github_repo	GitHub repository to grant access to assume a role via OIDC.	string	n/a	yes
prefix	(Optional) project prefix	string	""	no
role_name	(Optional) role name of the created role, if not provided the github_repo will be used to generate.	string	null	no

Outputs

Name	Description
cf_execution_role_arn	Cloudformation Execution Role that will be used by serverless