fix: user data over remote exec

Author: LesnyRumcajs

composite-action/terragrunt/action.yml

@@ -141,13 +141,13 @@ runs:
       run: exit 1
 
     - name: Configure ssh-agent
-      if: github.ref == 'refs/heads/main' && ( github.event_name == 'push' || github.event_name == 'workflow_dispatch' )
+    # if: github.ref == 'refs/heads/main' && ( github.event_name == 'push' || github.event_name == 'workflow_dispatch' )
       uses: webfactory/ssh-agent@v0.8.0
       with:
         ssh-private-key: ${{ inputs.ssh_private_key }}
 
     - name: Terragrunt Apply
-      if: github.ref == 'refs/heads/main' && github.event_name == 'push'
+    # if: github.ref == 'refs/heads/main' && github.event_name == 'push'
       shell: bash
       run: |
         if grep -q 'No changes.' ${{ github.workspace }}/tfplan; then
@@ -171,7 +171,7 @@ runs:
         TF_VAR_new_relic_account_id: ${{ inputs.new_relic_account_id }}
 
     - name: Terragrunt Force Apply
-      if: github.ref == 'refs/heads/main' && github.event_name == 'workflow_dispatch'
+    # if: github.ref == 'refs/heads/main' && github.event_name == 'workflow_dispatch'
       working-directory: ${{ inputs.working_directory }}
       env:
         AWS_ACCESS_KEY_ID: ${{ inputs.aws_access_key_id }}

tf-managed/modules/sync-check/main.tf

@@ -45,28 +45,35 @@ locals {
   })
 }
 
-locals {
-  init_commands = [
-    "tar xf sources.tar",
-    # Set required environment variables
-    "echo '${local.env_content}' >> /root/.forest_env",
-    "echo '. ~/.forest_env' >> .bashrc",
-    ". ~/.forest_env",
-    "nohup sh ./init.sh > init_log.txt &",
-    "cp ./restart.service /etc/systemd/system/",
-    "systemctl enable restart.service",
-    # Exiting without a sleep sometimes kills the script :-/
-    "sleep 60s",
-  ]
-}
-
 resource "digitalocean_droplet" "forest" {
   image  = var.image
   name   = format("%s-%s", var.environment, var.name)
   region = var.region
   size   = var.size
   # Re-initialize resource if this hash changes:
-  user_data  = join("-", [data.local_file.sources.content_sha256, sha256(join("", local.init_commands))])
+  user_data = <<-EOT
+#!/bin/bash
+set -e
+
+# Extract sources
+tar xf /root/sources.tar -C /root
+
+# Set required environment variables
+cat <<EOF >> /root/.forest_env
+${local.env_content}
+EOF
+
+echo '. /root/.forest_env' >> /root/.bashrc
+source /root/.forest_env
+
+# Run initialization script
+nohup sh /root/init.sh > /root/init_log.txt
+
+# Configure and enable restart service
+cp /root/restart.service /etc/systemd/system/
+systemctl enable restart.service
+EOT
+
   tags       = ["iac", var.environment]
   ssh_keys   = data.digitalocean_ssh_keys.keys.ssh_keys[*].fingerprint
   monitoring = true
@@ -85,12 +92,9 @@ resource "digitalocean_droplet" "forest" {
     source      = data.local_file.sources.filename
     destination = "/root/sources.tar"
   }
-
-  provisioner "remote-exec" {
-    inline = local.init_commands
-  }
 }
 
+
 data "digitalocean_project" "forest_project" {
   name = var.project
 }