Managing GitHub with Terraform

Terraform

• built to codify infrastructure resources • wide support for different providers • flow based on HashiCorp Configura

HashiCorp Configura/on Language

service { key = "value" }

service { acl = "private" ... env = "development" }

Terraform flow

• terraform init • terraform get • terraform plan • terraform apply • terraform destroy • terraform graph

Code

# _providers.tf provider "github" { organization = "my-organization" token = "${var.github_token}" version = "~> 0.1" }

# terraform.tfvars github_token = "6a2...2f7"

# github_teams.tf resource "github_team" "frontend" { name = "frontend" description = "Team: frontend" privacy = "closed" }

# github_memberships.tf resource "github_membership" "jane" { username = "jane" role = "member" }

# github_team_memberships.tf resource "github_team_membership" "jane" { team_id = "${github_team.frontend.id}" username = "jane" role = "member" }

# github_repositories.tf module "infra" { source = "github.com/my-organization/terraform-github-repository-my-organization" name = "infra" description = "Infrastructure" req_status_checks_context = ["continuous-integration/travis-ci"] auto_init = false gitignore_template = "" team_repository_team = "${github_team.operations.id}" enable_branch_protection = 0 req_pr_reviews_dismissal_teams = ["${github_team.operations.id}"] restrictions_teams = ["${github_team.operations.id}"] }

# github_repositories.tf module "infra" { source = "github.com/my-organization/terraform-github-repository-my-organization" name = "infra" description = "Infrastructure" req_status_checks_context = ["continuous-integration/travis-ci"] auto_init = false gitignore_template = "" team_repository_team = "${github_team.operations.id}" enable_branch_protection = 1 req_pr_reviews_dismissal_teams = ["${github_team.operations.id}"] restrictions_teams = ["${github_team.operations.id}"] }

# github_repositories.tf module "infra" { source = "github.com/my-organization/terraform-github-repository-my-organization" name = "infra" description = "Infrastructure" req_status_checks_context = ["continuous-integration/travis-ci"] auto_init = false gitignore_template = "" team_repository_team = "${github_team.operations.id}" enable_branch_protection = 1 req_pr_reviews_dismissal_teams = ["${github_team.operations.id}"] restrictions_teams = ["${github_team.operations.id}"] }

# github_repositories.tf module "infra" { source = "github.com/my-organization/terraform-github-repository-my-organization" name = "infra" description = "Infrastructure" req_status_checks_context = ["continuous-integration/travis-ci"] auto_init = false gitignore_template = "" team_repository_team = "${github_team.operations.id}" enable_branch_protection = 1 req_pr_reviews_dismissal_teams = ["${github_team.operations.id}"] restrictions_teams = ["${github_team.operations.id}"] }

No content

No content

Fin