Before running terraform make sure the following infrastructure is in place:
- Follow Store Terraform state in a Cloud Storage bucket
- Set
terraform.backend.bucket
inproviders.tf
- Set
artifact_repository_name
anddaily_image_name
indeployment.yaml
workflow
to authenticate to GCP without a service account key to minimize risk.
- Set workload identity federation
- Set a service account to be used with it
- Grant the service account the appropriate permission