From e98cbf1c6a78b47c9c2439f6765a4d2aa155e172 Mon Sep 17 00:00:00 2001 From: Ben Larabie Date: Wed, 21 Aug 2024 13:34:59 -0400 Subject: [PATCH] destroy --- .github/workflows/terragrunt_destroy_environment.yml | 2 +- aws/rds/rds.tf | 2 +- aws/rds/variables.tf | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/terragrunt_destroy_environment.yml b/.github/workflows/terragrunt_destroy_environment.yml index 3f97cb3a2..cf6822bfc 100644 --- a/.github/workflows/terragrunt_destroy_environment.yml +++ b/.github/workflows/terragrunt_destroy_environment.yml @@ -366,7 +366,7 @@ jobs: op read op://4eyyuwddp6w4vxlabrr2i2duxm/"TFVars - Dev"/notesPlain > /var/tmp/dev.tfvars cd env/dev/rds terragrunt destroy --var-file /var/tmp/dev.tfvars --terragrunt-non-interactive -auto-approve - + aws rds delete-db-cluster-snapshot --db-cluster-snapshot-identifier $(aws rds describe-db-cluster-snapshots --query 'DBClusterSnapshots[].DBClusterSnapshotIdentifier' --output text) terragrunt-destroy-performance-test: if: | diff --git a/aws/rds/rds.tf b/aws/rds/rds.tf index e121aeb96..a2b94e14d 100644 --- a/aws/rds/rds.tf +++ b/aws/rds/rds.tf @@ -149,7 +149,7 @@ resource "aws_rds_cluster" "notification-canada-ca" { db_subnet_group_name = aws_db_subnet_group.notification-canada-ca.name snapshot_identifier = var.recovery == true ? var.rds_snapshot_identifier : null - + #tfsec:ignore:AWS051 - database is encrypted without a custom key and that's fine storage_encrypted = true deletion_protection = var.enable_delete_protection diff --git a/aws/rds/variables.tf b/aws/rds/variables.tf index d4af1a564..486a5e74b 100644 --- a/aws/rds/variables.tf +++ b/aws/rds/variables.tf @@ -76,4 +76,4 @@ variable "recovery" { variable "rds_snapshot_identifier" { type = string description = "The snapshot identifier to recover from." -} \ No newline at end of file +} \ No newline at end of file