Skip to content

Commit e49cd22

Browse files
bogsi17bogsi17
committed
WIP
1 parent 14d2b94 commit e49cd22

File tree

2 files changed

+3
-1
lines changed

2 files changed

+3
-1
lines changed

.github/workflows/deploy-infrastructure.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -97,7 +97,7 @@ jobs:
9797
name: Terraform plan
9898
runs-on: ubuntu-latest
9999
needs: [validate-permissions, update-permissions]
100-
if: needs.update-permissions.result == 'success' || needs.validate-permissions.outputs.policy-mismatch != 'true'
100+
if: always() && needs.validate-permissions.outputs.policy-mismatch != 'true'
101101
permissions:
102102
id-token: write
103103
steps:

terraform/scripts/validate-github-actions-policy.sh

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -8,6 +8,8 @@ fi
88
POLICY_ARN=$1
99
POLICY_FILE=$2
1010

11+
echo "policy_mismatch=false" >> "$GITHUB_OUTPUT"
12+
1113
VERSION_ID=$(aws iam get-policy --policy-arn "$POLICY_ARN" --query 'Policy.DefaultVersionId' --output text)
1214
aws iam get-policy-version --policy-arn "$POLICY_ARN" --version-id "$VERSION_ID" --query 'PolicyVersion.Document' --output json > deployed_policy.json
1315
echo "fetched deployed policy: $(cat deployed_policy.json)"

0 commit comments

Comments
 (0)