jhackshaw
diff --git a/‎.github/workflows/deploy.yml‎
Lines changed: 64 additions & 0 deletions b/‎.github/workflows/deploy.yml‎
Lines changed: 64 additions & 0 deletions
diff --git a/‎.gitignore‎
Lines changed: 3 additions & 0 deletions b/‎.gitignore‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎backend/.serverless/cloudformation-template-create-stack.json‎
Lines changed: 67 additions & 0 deletions b/‎backend/.serverless/cloudformation-template-create-stack.json‎
Lines changed: 67 additions & 0 deletions
@@ -0,0 +1,64 @@
+name: IpLocate Deploy
+
+on:
+  push:
+    branches:
+      - master
+
+env:
+  AWS_ACCESS_KEY: ${{ secrets.AWS_ACCESS_KEY }}
+  AWS_SECRET_KEY: ${{ secrets.AWS_SECRET_KEY }}
+  TF_VAR_geoip_account_id: ${{ secrets.TF_VAR_GEOIP_ACCOUNT_ID }}
+  TF_VAR_geoip_license_key: ${{ secrets.TF_VAR_GEOIP_LICENSE_KEY }}
+  TF_VAR_state_bucket: ${{ secrets.TF_VAR_STATE_BUCKET }}
+
+jobs:
+  deploy-infrastructure:
+    runs-on: ubuntu-latest
+    defaults:
+      run:
+        working-directory: ./infrastructure
+    steps:
+      - uses: actions/checkout@v2.3.2
+      - uses: hashicorp/setup-terraform@v1
+
+      - name: Check Format
+        run: terraform fmt -check -diff
+
+      - name: Validate
+        run: terraform validate
+
+      - name: Bootstrap
+        run: ./bootstrap.sh
+
+      - name: Init Terraform
+        run: terraform init -input=false
+
+      - name: Deploy Infrastructure
+        run: terraform apply -input=false -auto-approve
+
+  deploy-backend:
+    runs-on: ubuntu-latest
+    needs:
+      - deploy-infrastructure
+    defaults:
+      run:
+        working-directory: ./backend
+    steps:
+      - uses: actions/checkout@v2.3.2
+      - uses: actions/setup-node@v2.1.1
+        with:
+          node-version: "12"
+      - name: Restore npm cache
+        uses: actions/cache@v2
+        with:
+          path: ~/.npm
+          key: ${{ runner.os }}-node-${{ hashFiles('**/package-lock.json') }}
+          restore-keys: |
+            ${{ runner.os }}-node-
+
+      - name: Install dependencies
+        run: npm ci
+
+      - name: Deploy Backend
+        run: npm run deploy
@@ -30,3 +30,6 @@ geoip-data
 npm-debug.log*
 yarn-debug.log*
 yarn-error.log\*
+
+terraform.tfvars
+.terraform
@@ -0,0 +1,67 @@
+{
+  "AWSTemplateFormatVersion": "2010-09-09",
+  "Description": "The AWS CloudFormation template for this Serverless application",
+  "Resources": {
+    "ServerlessDeploymentBucket": {
+      "Type": "AWS::S3::Bucket",
+      "Properties": {
+        "BucketEncryption": {
+          "ServerSideEncryptionConfiguration": [
+            {
+              "ServerSideEncryptionByDefault": {
+                "SSEAlgorithm": "AES256"
+              }
+            }
+          ]
+        }
+      }
+    },
+    "ServerlessDeploymentBucketPolicy": {
+      "Type": "AWS::S3::BucketPolicy",
+      "Properties": {
+        "Bucket": {
+          "Ref": "ServerlessDeploymentBucket"
+        },
+        "PolicyDocument": {
+          "Statement": [
+            {
+              "Action": "s3:*",
+              "Effect": "Deny",
+              "Principal": "*",
+              "Resource": [
+                {
+                  "Fn::Join": [
+                    "",
+                    [
+                      "arn:",
+                      {
+                        "Ref": "AWS::Partition"
+                      },
+                      ":s3:::",
+                      {
+                        "Ref": "ServerlessDeploymentBucket"
+                      },
+                      "/*"
+                    ]
+                  ]
+                }
+              ],
+              "Condition": {
+                "Bool": {
+                  "aws:SecureTransport": false
+                }
+              }
+            }
+          ]
+        }
+      }
+    }
+  },
+  "Outputs": {
+    "ServerlessDeploymentBucketName": {
+      "Value": {
+        "Ref": "ServerlessDeploymentBucket"
+      }
+    }
+  }
+}