I have a pipeline where I want to run terragrunt. I so far run everything local and use ssh to authenticate against Gitlab. Therefore, in my Terraform modules, I also use a git::ssh URL like below.
module "data_org" {
source = "git::ssh://[email protected]/bar/xdf/terraform_modules.git//modules/data_org?ref=develop"
}
Now, I do not know how to port this to a Gitlab pipeline. I would prefer using short-lived pipeline credentials like the Gitlab job token, but do not know how to make use of it. Did anybody know how to use this with Terraform?
What I come across already:
Update 2023-10-26 https: I tested git config --global url.https://gitlab-ci-token:${CI_JOB_TOKEN}@git.foobar.de.insteadOf ssh://[email protected]
and got a bit further. Now I get the error "not found" for the repository, and I assume the problem is the .git
suffix at the end. I do not know how to get rid of it yet but hope this is solvable.
Credits to @harshavmb from the comment above for his recommendation of
insteadOf
which solved the problem.The solution was twofold
git config --global url.https://gitlab-ci-token:${CI_JOB_TOKEN}@git.foobar.de.insteadOf ssh://[email protected]
so my ssh URL was rewritten to an HTTP one using the Gitlab job token to authenticate.