This repository contains a Pulumi project that creates AWS CodeBuild infrastructure to perform continuous integration and continuous deployment on the data-engineering-database-access repository.
To work with this repository, you must have the following installed:
- git-crypt โ see the git-crypt README for further information on how to install git-crypt and use it with this repository
- Python 3.6 or later
- Pulumi
You should also:
-
Create a virtual environment:
python -m venv venv
-
Activate the environment:
source venv/bin/activate
-
Install dependencies:
pip install -r requirements.txt
To update the Pulumi project:
-
Create an AWS Vault shell session with the
restricted-admin@data
role. For more information, see the analytical-platform-iam repository. -
Activate your virtual environment:
source venv/bin/activate
-
Log in to the Pulumi backend:
pulumi login -c s3://data-engineering-pulumi.analytics.justice.gov.uk
-
Select the
de-database-access-deploy
stack:pulumi stack select de-database-access-deploy
-
Preview any changes (optional):
pulumi preview [--diff]
-
Deploy any changes:
pulumi up
This repository uses git-crypt to encrypt secrets. For more information, see the git-crypt README.