In this tutorial, you will set up Digger to automate terraform pull requests using Github Actions and AWS
In GitHub repository settings, go to Secrets and Variables - Actions. Create the following secrets:
AWS_ACCESS_KEY_ID
and AWS_SECRET_ACCESS_KEY
(you can also use OIDCDIGGER_TOKEN
- your Digger token (cloud or self-hosted)This file contains Digger configuration and needs to be placed at the root level of your repository. Assuming your terraform code is in the prod
directory:
Place it at .github/workflows/digger_workflow.yml
(name is important!)
This file defines a simple workflow that
DIGGER_TOKEN
needs to be set as a secret in Actions (either repository secret, or environment secret), you also need to set AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY parameter. OIDC is also supported if you prefer that routeTerraform will run an existing plan against your code.
Make any change to your terraform code e.g. add a blank line. An action run should start (you can see log output in Actions). After some time you should see output of Terraform Plan added as a comment to your PR.
Then you can add a comment like digger apply
and shortly after apply output will be added as comment too.
In this tutorial, you will set up Digger to automate terraform pull requests using Github Actions and AWS
In GitHub repository settings, go to Secrets and Variables - Actions. Create the following secrets:
AWS_ACCESS_KEY_ID
and AWS_SECRET_ACCESS_KEY
(you can also use OIDCDIGGER_TOKEN
- your Digger token (cloud or self-hosted)This file contains Digger configuration and needs to be placed at the root level of your repository. Assuming your terraform code is in the prod
directory:
Place it at .github/workflows/digger_workflow.yml
(name is important!)
This file defines a simple workflow that
DIGGER_TOKEN
needs to be set as a secret in Actions (either repository secret, or environment secret), you also need to set AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY parameter. OIDC is also supported if you prefer that routeTerraform will run an existing plan against your code.
Make any change to your terraform code e.g. add a blank line. An action run should start (you can see log output in Actions). After some time you should see output of Terraform Plan added as a comment to your PR.
Then you can add a comment like digger apply
and shortly after apply output will be added as comment too.