feat: Add github secrets to terraform files

djnovin · Jan 13, 2025 · 35151fa · 35151fa
1 parent ef2b7df
commit 35151fa
Show file tree

Hide file tree

Showing 2 changed files with 12 additions and 3 deletions.
diff --git a/.github/workflows/deploy.yml b/.github/workflows/deploy.yml
@@ -43,8 +43,12 @@ jobs:
 
       - name: Terraform Plan
         id: plan
+        env:
+          DATABASE_URL: ${{ secrets.DATABASE_URL }}
         run: terraform plan -no-color -out=tfplan
 
       - name: Terraform Apply
         if: github.event_name == 'push' && github.ref == 'refs/heads/main'
+        env:
+          DATABASE_URL: ${{ secrets.DATABASE_URL }}
         run: terraform apply -auto-approve tfplan
diff --git a/main.tf b/main.tf
@@ -22,6 +22,12 @@ variable "IMAGE_TAG" {
   default     = "latest"
 }
 
+variable "DATABASE_URL" {
+  description = "The connection string for the database"
+  type        = string
+  sensitive   = true
+}
+
 # Tags for resources
 locals {
   tags = {
@@ -100,9 +106,8 @@ resource "aws_lambda_function" "lambda" {
 
   environment {
     variables = {
-      NODE_ENV   = "production"
-      BASE_URL   = "https://shortener.example.com"
-      AWS_REGION = var.AWS_REGION
+      NODE_ENV     = "production"
+      DATABASE_URL = var.DATABASE_URL
     }
   }