From 9a3dfc4401080db8f9bb14bf3a2064799e59c6de Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Nicolas=20B=C3=A9jean?= <nicolas@bejean.fr> Date: Sat, 29 Jan 2022 13:38:29 +0100 Subject: [PATCH] feat: Secure GCP SA --- .gitlab-ci.yml | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml index 5524a17..1f99732 100644 --- a/.gitlab-ci.yml +++ b/.gitlab-ci.yml @@ -194,6 +194,7 @@ destroy-psc: entrypoint: [""] variables: GCP_PROJECT_ID: $GCP_PROJECT_ID + GCP_SA: $GCP_SA GCP_REGION: $GCP_REGION GCP_NETWORK_NAME: $GCP_NETWORK_NAME GCP_SUBNETWORK_NAME: $GCP_SUBNETWORK_NAME @@ -205,7 +206,7 @@ destroy-psc: before_script: - | printenv - echo $GCP_SA | base64 -di > gcp-sa.json + echo "$GCP_SA" | base64 -di > gcp-sa.json gcloud auth activate-service-account --key-file gcp-sa.json echo "Activate Service Account: OK" gcloud config set project $GCP_PROJECT_ID @@ -262,7 +263,7 @@ destroy-gke: before_script: - | cd $TF_ROOT_GKE - echo $GCP_SA | base64 -di > gcp-sa.json + echo "$GCP_SA" | base64 -di > gcp-sa.json script: - | gitlab-terraform init -- GitLab