added the plan yml content using gcp sa and tf variables as environment variables

Author: linoy-zoaretz

.github/workflows/terraform-plan.yml

@@ -0,0 +1,51 @@
+name: 'Terraform'
+
+on: workflow_dispatch # for manual runs, can be replaced by push, pull_request, etc.
+
+permissions:
+  contents: read
+
+jobs:
+  terraform:
+    name: 'Terraform'
+    runs-on: ubuntu-latest
+    environment: development
+    defaults:
+      run:
+        shell: bash
+
+    steps:
+    # Checkout the repository to the GitHub Actions runner
+    - name: Checkout
+      uses: actions/checkout@v3
+
+    # Install the latest version of Terraform
+    - name: Setup Terraform
+      uses: hashicorp/setup-terraform@v3
+
+
+    #  Run Terraform commands
+    - name: Terraform Init
+      run: terraform init
+      env:
+        GOOGLE_CREDENTIALS: ${{ secrets.GOOGLE_CREDENTIALS }}
+
+    - name: Terraform Validate
+      run: terraform validate
+      env:
+        GOOGLE_CREDENTIALS: ${{ secrets.GOOGLE_CREDENTIALS }}
+
+    - name: Terraform Plan
+      run: terraform plan -input=false
+      env:
+        GOOGLE_CREDENTIALS: ${{ secrets.GOOGLE_CREDENTIALS }}
+        
+        TF_VAR_mx_password: ${{ secrets.MX_PASSWORD }}
+        TF_VAR_vpc_network: ${{ vars.VPC_NETWORK }}
+        TF_VAR_subnet_name: ${{ vars.SUBNET_NAME }}
+        TF_VAR_zone: ${{ vars.GCP_ZONE }}
+        TF_VAR_instance_type: ${{ vars.INSTANCE_TYPE }}
+        TF_VAR_waf_version: ${{ vars.WAF_VERSION }}
+        TF_VAR_timezone: ${{ vars.TIMEZONE }}
+        TF_VAR_ssh_access_source_ranges: ${{ vars.SSH_ACCESS_SOURCE_RANGES }}
+        TF_VAR_ui_access_source_ranges: ${{ vars.UI_ACCESS_SOURCE_RANGES }}