From c92fd73c2ab477252600bc5fd4f26915873eb38f Mon Sep 17 00:00:00 2001
From: Erik Reinert <4638629+erikreinert@users.noreply.github.com>
Date: Wed, 28 Feb 2024 12:19:02 -0800
Subject: [PATCH] Update provider to 6.0.0 (#15)
* feat(flake): update github provider
* chore(flake): update provider to 6.0.0
* fix(terraformignore)
* fix(justfile)
* docs(README)
---
.github/workflows/flake.yaml | 29 ++++++++++---
.terraformignore | 2 +-
README.md | 14 +++---
flake.lock | 18 ++++----
flake.nix | 82 ++++++++++++++++++++----------------
justfile | 28 +++++++++++-
providers.tf => versions.tf | 2 +-
7 files changed, 114 insertions(+), 61 deletions(-)
rename providers.tf => versions.tf (80%)
diff --git a/.github/workflows/flake.yaml b/.github/workflows/flake.yaml
index 4cba552..09f7ee5 100644
--- a/.github/workflows/flake.yaml
+++ b/.github/workflows/flake.yaml
@@ -7,11 +7,30 @@ on:
- main
jobs:
+ check:
+ runs-on: ubuntu-latest
+ steps:
+ - uses: DeterminateSystems/nix-installer-action@main
+ - uses: cachix/cachix-action@v12
+ with:
+ authToken: ${{ secrets.CACHIX_AUTH_TOKEN }}
+ name: altf4llc-os
+ - uses: actions/checkout@v3
+ - run: cachix use altf4llc-os
+ - run: nix develop -c just check
+ - run: nix develop -c just cache-inputs
+ - run: nix develop -c just cache-shell
+
build:
+ needs:
+ - check
runs-on: ubuntu-latest
steps:
- - uses: actions/checkout@v4
- - uses: DeterminateSystems/nix-installer-action@v4
- - uses: DeterminateSystems/magic-nix-cache-action@v2
- - run: nix flake check
- - run: nix develop -c just check
+ - uses: DeterminateSystems/nix-installer-action@main
+ - uses: cachix/cachix-action@v12
+ with:
+ authToken: ${{ secrets.CACHIX_AUTH_TOKEN }}
+ name: altf4llc-os
+ - uses: actions/checkout@v4
+ - run: cachix use altf4llc-os
+ - run: nix develop -c just cache-build
diff --git a/.terraformignore b/.terraformignore
index fb222f0..8e8ad0e 100644
--- a/.terraformignore
+++ b/.terraformignore
@@ -3,4 +3,4 @@
.gitignore
flake.lock
flake.nix
-makefile
+justfile
diff --git a/README.md b/README.md
index 7879440..938c30e 100644
--- a/README.md
+++ b/README.md
@@ -6,13 +6,13 @@ Terraform module which creates GitHub repository resources.
| Name | Version |
|------|---------|
-| [github](#requirement\_github) | 5.41.0 |
+| [github](#requirement\_github) | 6.0.0 |
## Providers
| Name | Version |
|------|---------|
-| [github](#provider\_github) | 5.41.0 |
+| [github](#provider\_github) | 6.0.0 |
## Modules
@@ -22,10 +22,10 @@ No modules.
| Name | Type |
|------|------|
-| [github_branch_protection.self](https://registry.terraform.io/providers/integrations/github/5.41.0/docs/resources/branch_protection) | resource |
-| [github_repository.self](https://registry.terraform.io/providers/integrations/github/5.41.0/docs/resources/repository) | resource |
-| [github_team_repository.self](https://registry.terraform.io/providers/integrations/github/5.41.0/docs/resources/team_repository) | resource |
-| [github_team.self](https://registry.terraform.io/providers/integrations/github/5.41.0/docs/data-sources/team) | data source |
+| [github_branch_protection.self](https://registry.terraform.io/providers/integrations/github/6.0.0/docs/resources/branch_protection) | resource |
+| [github_repository.self](https://registry.terraform.io/providers/integrations/github/6.0.0/docs/resources/repository) | resource |
+| [github_team_repository.self](https://registry.terraform.io/providers/integrations/github/6.0.0/docs/resources/team_repository) | resource |
+| [github_team.self](https://registry.terraform.io/providers/integrations/github/6.0.0/docs/data-sources/team) | data source |
## Inputs
@@ -44,7 +44,7 @@ No modules.
| [has\_wiki](#input\_has\_wiki) | Whether the repository has wiki enabled | `bool` | `false` | no |
| [license\_template](#input\_license\_template) | Wheter the repository uses a license template | `string` | `null` | no |
| [name](#input\_name) | The name of the repository | `string` | n/a | yes |
-| [owner](#input\_owner) | The name of the repository | `string` | n/a | yes |
+| [owner](#input\_owner) | The owner of the repository | `string` | n/a | yes |
| [required\_status\_checks\_contexts](#input\_required\_status\_checks\_contexts) | The list of status checks to require in order to merge into this branch | `list(string)` | `[]` | no |
| [teams](#input\_teams) | The teams to grant access to, and their permission levels | `map(string)` | `{}` | no |
| [topics](#input\_topics) | The topics of the repository | `list(string)` | `[]` | no |
diff --git a/flake.lock b/flake.lock
index ff14bbe..7f8bc00 100644
--- a/flake.lock
+++ b/flake.lock
@@ -5,11 +5,11 @@
"nixpkgs-lib": "nixpkgs-lib"
},
"locked": {
- "lastModified": 1698882062,
- "narHash": "sha256-HkhafUayIqxXyHH1X8d9RDl1M2CkFgZLjKD3MzabiEo=",
+ "lastModified": 1706830856,
+ "narHash": "sha256-a0NYyp+h9hlb7ddVz4LUn1vT/PLwqfrWYcHMvFB1xYg=",
"owner": "hercules-ci",
"repo": "flake-parts",
- "rev": "8c9fa2545007b49a5db5f650ae91f227672c3877",
+ "rev": "b253292d9c0a5ead9bc98c4e9a26c6312e27d69f",
"type": "github"
},
"original": {
@@ -19,11 +19,11 @@
},
"nixpkgs": {
"locked": {
- "lastModified": 1698924604,
- "narHash": "sha256-GCFbkl2tj8fEZBZCw3Tc0AkGo0v+YrQlohhEGJ/X4s0=",
+ "lastModified": 1708984720,
+ "narHash": "sha256-gJctErLbXx4QZBBbGp78PxtOOzsDaQ+yw1ylNQBuSUY=",
"owner": "NixOS",
"repo": "nixpkgs",
- "rev": "fa804edfb7869c9fb230e174182a8a1a7e512c40",
+ "rev": "13aff9b34cc32e59d35c62ac9356e4a41198a538",
"type": "github"
},
"original": {
@@ -36,11 +36,11 @@
"nixpkgs-lib": {
"locked": {
"dir": "lib",
- "lastModified": 1698611440,
- "narHash": "sha256-jPjHjrerhYDy3q9+s5EAsuhyhuknNfowY6yt6pjn9pc=",
+ "lastModified": 1706550542,
+ "narHash": "sha256-UcsnCG6wx++23yeER4Hg18CXWbgNpqNXcHIo5/1Y+hc=",
"owner": "NixOS",
"repo": "nixpkgs",
- "rev": "0cbe9f69c234a7700596e943bfae7ef27a31b735",
+ "rev": "97b17f32362e475016f942bbdfda4a4a72a8a652",
"type": "github"
},
"original": {
diff --git a/flake.nix b/flake.nix
index dabebeb..5388638 100644
--- a/flake.nix
+++ b/flake.nix
@@ -3,53 +3,61 @@
inputs.nixpkgs.url = "github:NixOS/nixpkgs/nixos-unstable";
- outputs = inputs@{ flake-parts, nixpkgs, ... }:
- flake-parts.lib.mkFlake { inherit inputs; } {
- systems = [ "x86_64-linux" "aarch64-darwin" "x86_64-darwin" ];
- perSystem = { config, self', inputs', pkgs, system, ... }:
- let
- inherit (pkgs) just terraform terraform-docs;
- terraform-github = pkgs.terraform-providers.mkProvider {
+ outputs = inputs @ {
+ flake-parts,
+ nixpkgs,
+ ...
+ }:
+ flake-parts.lib.mkFlake {inherit inputs;} {
+ systems = ["x86_64-linux" "aarch64-darwin" "x86_64-darwin"];
+ perSystem = {
+ config,
+ self',
+ inputs',
+ pkgs,
+ system,
+ ...
+ }: let
+ inherit (pkgs) just terraform-docs;
+ terraform = pkgs.terraform.withPlugins (p: [
+ (pkgs.terraform-providers.mkProvider {
+ hash = "sha256-y8DMpNSySMbe7E+sGVQcQdEyulq4Wnp5ryYD7FQO/fc=";
homepage = "https://registry.terraform.io/providers/integrations/github";
owner = "integrations";
repo = "terraform-provider-github";
- rev = "v5.41.0";
- hash = "sha256-fWxWcHy3TWFEpkU9uDSsHbUu+dnQKfvquN63eZH+Qf0=";
+ rev = "v6.0.0";
vendorHash = null;
- };
- in
- {
- _module.args.pkgs = import nixpkgs {
- inherit system;
- config.allowUnfree = true;
- };
+ })
+ ]);
+ in {
+ _module.args.pkgs = import nixpkgs {
+ inherit system;
+ config.allowUnfree = true;
+ };
- packages = {
- terraform-with-plugins = pkgs.terraform.withPlugins (ps: [
- terraform-github
- ]);
+ devShells = {
+ default = pkgs.mkShell {
+ buildInputs = [
+ just
+ terraform
+ terraform-docs
+ ];
+ };
+ };
- default = pkgs.runCommand "default"
- {
- src = ./.;
- } ''
+ packages = {
+ default =
+ pkgs.runCommand "default"
+ {
+ src = ./.;
+ } ''
mkdir -p $out
cp -R $src/*.tf $out
- ${config.packages.terraform-with-plugins}/bin/terraform -chdir="$out" init
- ${config.packages.terraform-with-plugins}/bin/terraform -chdir="$out" validate
+ ${terraform}/bin/terraform -chdir="$out" init
+ ${terraform}/bin/terraform -chdir="$out" validate
'';
- };
-
- devShells = {
- default = pkgs.mkShell {
- buildInputs = [
- just
- terraform
- terraform-docs
- ];
- };
- };
};
+ };
};
}
diff --git a/justfile b/justfile
index e3647b0..fd671ea 100644
--- a/justfile
+++ b/justfile
@@ -1,7 +1,33 @@
+_default:
+ just --list
+
+build:
+ nix build --json --no-link --print-build-logs
+
+cache-build cache_name="altf4llc-os":
+ just build \
+ | jq -r '.[].outputs | to_entries[].value' \
+ | cachix push {{ cache_name }}
+
+cache-inputs cache_name="altf4llc-os":
+ nix flake archive --json \
+ | jq -r '.path,(.inputs|to_entries[].value.path)' \
+ | cachix push "{{ cache_name }}"
+
+cache-shell cache_name="altf4llc-os":
+ nix develop --profile "dev-profile" -c true
+ cachix push "{{ cache_name }}" "dev-profile"
+
check:
- nix build --json --no-link --print-build-logs
+ nix flake check
docs:
terraform-docs markdown table \
--output-file README.md \
--output-mode inject .
+
+init:
+ terraform init
+
+validate:
+ terraform validate
diff --git a/providers.tf b/versions.tf
similarity index 80%
rename from providers.tf
rename to versions.tf
index e75b74d..02fee5d 100644
--- a/providers.tf
+++ b/versions.tf
@@ -2,7 +2,7 @@ terraform {
required_providers {
github = {
source = "integrations/github"
- version = "5.41.0"
+ version = "6.0.0"
}
}
}