From 96be0ab0dae118920c7863ec822dff4fa78dcccd Mon Sep 17 00:00:00 2001
From: Hubert Cornet <hcornet@noreply@tips-of-mine.fr>
Date: Wed, 20 Aug 2025 13:35:03 +0200
Subject: [PATCH] Actualiser .gitea/workflows/validate.yml

---
 .gitea/workflows/validate.yml | 42 +++++++++++++++++++++++++++++------
 1 file changed, 35 insertions(+), 7 deletions(-)

diff --git a/.gitea/workflows/validate.yml b/.gitea/workflows/validate.yml
index b73148a..1688e46 100644
--- a/.gitea/workflows/validate.yml
+++ b/.gitea/workflows/validate.yml
@@ -1,15 +1,21 @@
-name: terraform validation
+name: 'Terraform Apply'
 
 on:
   push:
-    branches: [main]
+    branches: [ main ]
   pull_request:
     types: [opened, reopened, edited, synchronize]
+permissions:
+  contents: read
 
 jobs:
   validate:
-    name: 'Terraform'
+    name: 'Terraform Apply'
     runs-on: ubuntu-latest
+    environment: production
+    defaults:
+      run:
+        shell: bash
 
     steps:
       - name: Checkout
@@ -21,19 +27,41 @@ jobs:
 
       - name: Terraform fmt
         id: fmt
-        run: terraform fmt -check -diff -recursive
+        run: terraform fmt -list=true -check -diff -recursive
         continue-on-error: true
 
       - name: Terraform Init
         id: init
+        env:
+          AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }}
+          AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
         run: terraform init
-#        working-directory: examples
 
       - name: Terraform Validate
         id: validate
         run: terraform validate
-#        working-directory: examples
 
       - name: Terraform Plan
         id: plan
-        run: terraform plan
\ No newline at end of file
+        env:
+          AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }}
+          AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+        run: terraform plan
+        
+      - name: Terraform Apply
+        env:
+          AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }}
+          AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+        run: terraform apply --auto-approve --input=false
+
+      - name: Terraform Destroy
+        env:
+          AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }}
+          AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+        run: terraform destroy --auto-approve --input=false
+        
+      - name: Terraform Output
+        env:
+          AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }}
+          AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+        run: terraform output
\ No newline at end of file