java-chime-voicesdk-sma/.github/workflows/destroy.yml at main · docwho2/java-chime-voicesdk-sma · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
## YAML Template.
name: Destroy Stack

on:
  workflow_dispatch:
    inputs:
      environment:
        description: 'Region to Destroy Stack in'
        type: environment
        required: true

env:
  STACK_NAME: ${{ vars.STACK_NAME || 'chime-voicesdk-sma' }}

permissions:
  id-token: write # This is required for requesting the JWT
  contents: read  # This is required for actions/checkout


jobs:
  destroy-stack:
    runs-on: ubuntu-latest
    environment: ${{ inputs.environment }}
    steps:
    - name: Checkout Code
      uses: actions/checkout@v6

    - name: Setup AWS Credentials
      id: aws-creds
      uses: aws-actions/configure-aws-credentials@v6
      with:
          aws-region: ${{ vars.REGION }}
          role-to-assume: ${{ secrets.AWS_ROLE_TO_ASSUME }}
          # Set up the below secrets if you are not using OIDC and want to use regular keys (best practive is to use just role above with OIDC provider)
          aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
          aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
          mask-aws-account-id: true

    - name: Setup AWS SAM
      uses: aws-actions/setup-sam@v3
      with:
        use-installer: true

    - name: SAM Delete Stack
      run:  >
        sam delete --no-prompts
        --region ${{ vars.REGION }}
        --stack-name ${STACK_NAME}

    - name: Delete OpenAI API Key from Param Store
      continue-on-error: true
      run: aws ssm --region ${{ vars.REGION }} delete-parameter --name "/${STACK_NAME}/OPENAI_API_KEY"