Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Ability to run terraform plan outside pull request cycle (drift detection) #263

Closed
lkysow opened this issue Sep 7, 2018 · 4 comments
Closed

Ability to run terraform plan outside pull request cycle (drift detection) #263

lkysow opened this issue Sep 7, 2018 · 4 comments
Labels
feature New functionality/enhancement wont-do Unfortunately due to scope or project direction we won't build this in a reasonable amount of time

Comments

@lkysow
Copy link
Member

lkysow commented Sep 7, 2018

Via @lorenzoaiello, Atlantis should be able to run terraform plan on demand or on a schedule in order to identify whether the actual resources have drifted from what's defined in Terraform.
@johnlinvc
Copy link
Contributor

I'm also interested in this feature. Which is essential to reach a GitOps1 like model for terraform.
I want to contribute this feature if possible.
The current design I have in mind is:
Run atlantis plan in master branch on all defined workspaces in atlantis.yml (or root dir) on a schedule. If there's diff output for more than N consecutive atlantis plan, create a GitHub issue to alert the user.

  1. Add parameter drift-golden-branch in atlantis.yml which represent the branch terraform plan will run against. Defaults to master.
  2. Add parameter drift-detection-interval in atlantis.yml, defaults to 1 day.
  3. Add parameter drift-warning-threshold in atlantis.yml, defaults to 3 times.
  4. Add parameter drift-detection in atlantis.yml, defaults to false.

The one thing I'm not sure is that if this should be turned on by default. or should we provide a switch for the feature when starting Atlantis.

@majormoses
Copy link
Contributor

Some thoughts:

  • should not be on by default, operator should opt in
  • these would need to be serverside options (be it config or CLI) to avoid abuse. see Restrict Plan or Apply to Github Teams or Github Users #308 for some extra context
  • you would probably need to specify a mapping for each repo as not all teams manage their projects the same way
  • would the action be configurable? who would be assigned to the issue? For example at my org we use an internal system for stories, bugs, etc and no one would actually look at a github issue.

@majormoses majormoses mentioned this issue Mar 19, 2019
Open
@smiller171
Copy link

@majormoses I think configuring an outgoing webhook would allow most use-cases for the notification.

@lkysow
Copy link
Member Author

lkysow commented Apr 4, 2019

I think this is out of the scope of Atlantis unfortunately. Atlantis is best focused on Terraform pull request workflows. It would be a lot of work to build this which would take time away from that focus and make other features around pull request workflows more complicated.

@lkysow lkysow closed this as completed Apr 4, 2019
@lkysow lkysow added wont-do Unfortunately due to scope or project direction we won't build this in a reasonable amount of time feature New functionality/enhancement labels Apr 4, 2019
@lkysow lkysow mentioned this issue Aug 21, 2019
Closed
jamengual pushed a commit that referenced this issue Nov 24, 2022
@nishkrishnan
Add support for merge strategy per repo. (#263)
79b1d6d
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
feature New functionality/enhancement wont-do Unfortunately due to scope or project direction we won't build this in a reasonable amount of time
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@johnlinvc @lkysow @majormoses @smiller171