chore: Refactor Azure Terraform

Author: subir0071

.github/workflows/deploy_azure_infra.yaml

@@ -3,20 +3,53 @@ name: GHA Self-hosted Infra - Azure
 on:
   push:
     paths:
-    - terraform_modules/gh-self-hosted-runner-infra/azure/**
-
-env:
-  AZURE_FUNCTIONAPP_NAME: ''   # set this to your function app name on Azure
-  AZURE_FUNCTIONAPP_PACKAGE_PATH: './github-runner-receiver-function'       # set this to the path to your function app project, defaults to the repository root
-  PYTHON_VERSION: '3.11'                     # set this to the python version to use (e.g. '3.6', '3.7', '3.8')
+    - create-azure-infra/**
+  workflow_dispatch:
+    inputs:
+      confirm:
+        description: "Type 'yes' to confirm Terraform destroy"
+        required: true
 
 jobs:
   build-and-deploy:
     runs-on: ubuntu-latest
     environment: dev
+
+    defaults:
+      run:
+        shell: bash
+        working-directory: create-azure-infra
+
     steps:
     - name: 'Checkout Azure Infra'
       uses: actions/checkout@v4
       with: 
         sparse-checkout:
-          terraform_modules/gh-self-hosted-runner-infra/azure
+          create-azure-infra
+
+    - name: Authenticate with Azure
+      uses: azure/login@v2
+      with:
+        creds: '{"clientId":"${{ secrets.ARM_CLIENT_ID }}", "clientSecret":"${{ secrets.ARM_CLIENT_SECRET }}", "subscriptionId":"${{ secrets.ARM_SUBSCRIPTION_ID }}", "tenantId":"${{ secrets.ARM_TENANT_ID }}"}'
+     
+    - name: "Terraform init"
+      run : |
+        pwd
+        terraform init
+
+    - name: Terraform Apply
+      if: github.event_name == 'push'
+      run: terraform apply -auto-approve tfplan
+    
+    - name: Terraform destroy plan
+      if: github.event.inputs.confirm == 'yes'
+      run:  terraform plan -destroy -out=destroyplan
+
+    - name: Terraform destroy infra
+      if: github.event.inputs.confirm == 'yes'
+      run:  terraform apply -destroy -out=destroyplan
+
+      
+
+
+

terraform_modules/gh-self-hosted-runner-infra/azure/data.tf renamed to create-azure-infra/data.tf

@@ -0,0 +1,6 @@
+project             = "awesome-proj"
+env                 = "dev"
+location            = "eastus2"
+acr_sku             = "Basic"
+acr_admin_enabled = false
+kv_sku_name = "standard"

create-azure-infra/dev.tfvars

@@ -1,23 +1,24 @@
-locals {
-  current_date = formatdate("YYYYMMDD", timestamp())
+resource "random_string" "resource_code" {
+  length  = 5
+  special = false
+  upper   = false
 }
 
 resource "azurerm_resource_group" "gha_runner_rg" {
-  name     = "${var.project}-rg"
+  name     = "${var.project}-${var.env}-rg"
   location = var.location
 }
 
 # Storage Account
 resource "azurerm_storage_account" "gha_runner_sa" {
-  name                     = "${var.project}${var.env}${local.current_date}" # Unique name for the storage account
+  name                     = "${var.project}${var.env}${random_string.resource_code}" # Unique name for the storage account
   resource_group_name      = azurerm_resource_group.gha_runner_rg.name
   location                 = azurerm_resource_group.gha_runner_rg.location
   account_tier             = var.storage_account_account_tier #"Standard"
   account_replication_type = var.storage_account_replication_type #"LRS"
   account_kind             = "Storage"
 }
 
-
 # App Service Plan (Hosting plan for the function app)
 resource "azurerm_service_plan" "gha_runner_asp" {
   name                = "${var.project}-${var.env}-asp"

terraform_modules/gh-self-hosted-runner-infra/azure/main.tf renamed to create-azure-infra/main.tf

@@ -0,0 +1,32 @@
+terraform {
+  required_providers {
+    azurerm = {
+      source = "hashicorp/azurerm"
+      version = "4.12.0"
+    }
+  }
+  backend "azurerm" {
+      resource_group_name  = azurerm_resource_group.gha_runner_rg.name
+      storage_account_name = azurerm_storage_account.gha_runner_sa.name
+      container_name       = azurerm_storage_container.tfstate_container.name
+      key                  = "${var.project}-${var.env}-terraform.tfstate"
+  }
+}
+
+# Provider Configuration
+provider "azurerm" {
+  features {
+    resource_group {
+      prevent_deletion_if_contains_resources = false
+    }
+  }
+}
+
+resource "azurerm_storage_container" "tfstate_container" {
+  name                  = ""${var.project}-${var.env}-tfstate-container"
+  storage_account_id  = azurerm_storage_account.gha_runner_sa.id
+  container_access_type = "private"
+}
+
+
+data "azurerm_client_config" "current" {}