Skip to content

Commit 221c9bc

Browse files
sandyforresternhssandyforresternhs
committed
NRL-721 Add build dependencies and perms
1 parent 02b98bf commit 221c9bc

File tree

1 file changed

+18
-2
lines changed

1 file changed

+18
-2
lines changed

.github/workflows/deploy-account-wide-infra.yml

Lines changed: 18 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -52,7 +52,9 @@ jobs:
5252
poetry install --no-root
5353
5454
- name: Build Lambda Layers
55-
run: make build-layers
55+
run: |
56+
make build-layers
57+
make build-dependency-layer
5658
5759
- name: Configure Management Credentials
5860
uses: aws-actions/configure-aws-credentials@7474bc4690e29a8392af63c5b98e7449536d5c3a #v4.3.1
@@ -61,6 +63,12 @@ jobs:
6163
role-to-assume: ${{ secrets.MGMT_ROLE_ARN }}
6264
role-session-name: github-actions-ci-${{ inputs.environment }}-${{ github.run_id }}
6365

66+
- name: Add S3 Permissions to Lambda Layer
67+
env:
68+
ACCOUNT_NAME: ${{ vars.ACCOUNT_NAME }}
69+
run: |
70+
make get-s3-perms ENV=${ACCOUNT_NAME}
71+
6472
- name: Retrieve Server Certificates
6573
env:
6674
ACCOUNT_NAME: ${{ vars.ACCOUNT_NAME }}
@@ -113,7 +121,9 @@ jobs:
113121
poetry install --no-root
114122
115123
- name: Build Lambda Layers
116-
run: make build-layers
124+
run: |
125+
make build-layers
126+
make build-dependency-layer
117127
118128
- name: Configure Management Credentials
119129
uses: aws-actions/configure-aws-credentials@7474bc4690e29a8392af63c5b98e7449536d5c3a #v4.3.1
@@ -122,6 +132,12 @@ jobs:
122132
role-to-assume: ${{ secrets.MGMT_ROLE_ARN }}
123133
role-session-name: github-actions-ci-${{ inputs.environment }}-${{ github.run_id}}
124134

135+
- name: Add S3 Permissions to Lambda Layer
136+
env:
137+
ACCOUNT_NAME: ${{ vars.ACCOUNT_NAME }}
138+
run: |
139+
make get-s3-perms ENV=${ACCOUNT_NAME}
140+
125141
- name: Download Terraform Plan Artifacts
126142
env:
127143
ACCOUNT_NAME: ${{ vars.ACCOUNT_NAME }}

0 commit comments

Comments
 (0)