fix: Set the Senzing license into the config.

.github/actions/setup-opentofu/action.yaml

@@ -39,6 +39,7 @@ runs:
           "image_tags_mutable" "key_recovery_period" "log_level" "program"
           "project" "queue_empty_threshold" "redoer_container_count"
           "redoer_cpu" "redoer_memory" "region" "repository"
+          "senzing_license_base64"
         )
         for var in ${variables[@]}; do
           name="TF_VAR_$(echo $var | tr '[:lower:]' '[:upper:]')"

.github/workflows/deploy.yaml

@@ -62,6 +62,7 @@ jobs:
       TF_VAR_REDOER_MEMORY: ${{ secrets.TF_VAR_REDOER_MEMORY }}
       TF_VAR_REPO_OIDC_ARN: ${{ secrets.TF_VAR_REPO_OIDC_ARN }}
       TF_VAR_REPOSITORY: ${{ secrets.TF_VAR_REPOSITORY }}
+      TF_VAR_SENZING_LICENSE_BASE64: ${{ secrets.TF_VAR_SENZING_LICENSE_BASE64 }}
       TF_VAR_VPC_CIDR: ${{ secrets.TF_VAR_VPC_CIDR }}
       TF_VAR_VPC_PRIVATE_SUBNET_CIDRS: ${{ secrets.TF_VAR_VPC_PRIVATE_SUBNET_CIDRS }}
       TF_VAR_VPC_PUBLIC_SUBNET_CIDRS: ${{ secrets.TF_VAR_VPC_PUBLIC_SUBNET_CIDRS }}
@@ -119,6 +120,7 @@ jobs:
           TF_VAR_REDOER_MEMORY: ${{ secrets.TF_VAR_REDOER_MEMORY }}
           TF_VAR_REPO_OIDC_ARN: ${{ secrets.TF_VAR_REPO_OIDC_ARN }}
           TF_VAR_REPOSITORY: ${{ secrets.TF_VAR_REPOSITORY }}
+          TF_VAR_SENZING_LICENSE_BASE64: ${{ secrets.TF_VAR_SENZING_LICENSE_BASE64 }}
           TF_VAR_VPC_CIDR: ${{ secrets.TF_VAR_VPC_CIDR }}
           TF_VAR_VPC_PRIVATE_SUBNET_CIDRS: ${{ secrets.TF_VAR_VPC_PRIVATE_SUBNET_CIDRS }}
           TF_VAR_VPC_PUBLIC_SUBNET_CIDRS: ${{ secrets.TF_VAR_VPC_PUBLIC_SUBNET_CIDRS }}

.github/workflows/export.yaml

@@ -56,6 +56,7 @@ jobs:
           TF_VAR_QUEUE_EMPTY_THRESHOLD: ${{ secrets.TF_VAR_QUEUE_EMPTY_THRESHOLD }}
           TF_VAR_REPO_OIDC_ARN: ${{ secrets.TF_VAR_REPO_OIDC_ARN }}
           TF_VAR_REPOSITORY: ${{ secrets.TF_VAR_REPOSITORY }}
+          TF_VAR_SENZING_LICENSE_BASE64: ${{ secrets.TF_VAR_SENZING_LICENSE_BASE64 }}
           TF_VAR_VPC_CIDR: ${{ secrets.TF_VAR_VPC_CIDR }}
           TF_VAR_VPC_PRIVATE_SUBNET_CIDRS: ${{ secrets.TF_VAR_VPC_PRIVATE_SUBNET_CIDRS }}
           TF_VAR_VPC_PUBLIC_SUBNET_CIDRS: ${{ secrets.TF_VAR_VPC_PUBLIC_SUBNET_CIDRS }}

.github/workflows/launch-tools.yaml

@@ -64,6 +64,7 @@ jobs:
           TF_VAR_QUEUE_EMPTY_THRESHOLD: ${{ secrets.TF_VAR_QUEUE_EMPTY_THRESHOLD }}
           TF_VAR_REPO_OIDC_ARN: ${{ secrets.TF_VAR_REPO_OIDC_ARN }}
           TF_VAR_REPOSITORY: ${{ secrets.TF_VAR_REPOSITORY }}
+          TF_VAR_SENZING_LICENSE_BASE64: ${{ secrets.TF_VAR_SENZING_LICENSE_BASE64 }}
           TF_VAR_VPC_CIDR: ${{ secrets.TF_VAR_VPC_CIDR }}
           TF_VAR_VPC_PRIVATE_SUBNET_CIDRS: ${{ secrets.TF_VAR_VPC_PRIVATE_SUBNET_CIDRS }}
           TF_VAR_VPC_PUBLIC_SUBNET_CIDRS: ${{ secrets.TF_VAR_VPC_PUBLIC_SUBNET_CIDRS }}

.github/workflows/plan.yaml

@@ -68,6 +68,8 @@ on:
         required: false
       TF_VAR_REPOSITORY:
         required: false
+      TF_VAR_SENZING_LICENSE_BASE64:
+        required: false
   workflow_dispatch:
     inputs:
       config:
@@ -140,6 +142,7 @@ jobs:
           TF_VAR_REDOER_MEMORY: ${{ secrets.TF_VAR_REDOER_MEMORY }}
           TF_VAR_REPO_OIDC_ARN: ${{ secrets.TF_VAR_REPO_OIDC_ARN }}
           TF_VAR_REPOSITORY: ${{ secrets.TF_VAR_REPOSITORY }}
+          TF_VAR_SENZING_LICENSE_BASE64: ${{ secrets.TF_VAR_SENZING_LICENSE_BASE64 }}
           TF_VAR_VPC_CIDR: ${{ secrets.TF_VAR_VPC_CIDR }}
           TF_VAR_VPC_PRIVATE_SUBNET_CIDRS: ${{ secrets.TF_VAR_VPC_PRIVATE_SUBNET_CIDRS }}
           TF_VAR_VPC_PUBLIC_SUBNET_CIDRS: ${{ secrets.TF_VAR_VPC_PUBLIC_SUBNET_CIDRS }}

.github/workflows/pull-request.yaml

@@ -66,6 +66,7 @@ jobs:
       TF_VAR_REDOER_MEMORY: ${{ secrets.TF_VAR_REDOER_MEMORY }}
       TF_VAR_REPO_OIDC_ARN: ${{ secrets.TF_VAR_REPO_OIDC_ARN }}
       TF_VAR_REPOSITORY: ${{ secrets.TF_VAR_REPOSITORY }}
+      TF_VAR_SENZING_LICENSE_BASE64: ${{ secrets.TF_VAR_SENZING_LICENSE_BASE64 }}
       TF_VAR_VPC_CIDR: ${{ secrets.TF_VAR_VPC_CIDR }}
       TF_VAR_VPC_PRIVATE_SUBNET_CIDRS: ${{ secrets.TF_VAR_VPC_PRIVATE_SUBNET_CIDRS }}
       TF_VAR_VPC_PUBLIC_SUBNET_CIDRS: ${{ secrets.TF_VAR_VPC_PUBLIC_SUBNET_CIDRS }}

tofu/config/service/main.tf

@@ -18,16 +18,17 @@ module "inputs" {
 module "system" {
   source = "../../modules/system"
 
-  environment           = var.environment
-  project               = var.project
-  export_expiration     = var.export_expiration
-  key_recovery_period   = var.key_recovery_period
-  logging_bucket        = module.inputs.values["logging/bucket"]
-  logging_key_arn       = module.inputs.values["logging/key"]
-  log_level             = var.log_level
-  tags                  = merge({ awsApplication : module.inputs.values["application/tag"] }, var.tags)
-  vpc_id                = module.inputs.values["vpc/id"]
-  queue_empty_threshold = var.queue_empty_threshold
+  environment            = var.environment
+  project                = var.project
+  export_expiration      = var.export_expiration
+  key_recovery_period    = var.key_recovery_period
+  logging_bucket         = module.inputs.values["logging/bucket"]
+  logging_key_arn        = module.inputs.values["logging/key"]
+  log_level              = var.log_level
+  tags                   = merge({ awsApplication : module.inputs.values["application/tag"] }, var.tags)
+  vpc_id                 = module.inputs.values["vpc/id"]
+  queue_empty_threshold  = var.queue_empty_threshold
+  senzing_license_base64 = var.senzing_license_base64
 
   database_subnets                   = split(",", module.inputs.values["vpc/private_subnets"])
   apply_database_updates_immediately = var.apply_database_updates_immediately

tofu/config/service/variables.tf

@@ -145,6 +145,13 @@ variable "region" {
   default     = "us-west-1"
 }
 
+variable "senzing_license_base64" {
+  type        = string
+  description = "Base64 encoded Senzing license."
+  default     = null
+  sensitive   = true
+}
+
 variable "tags" {
   type        = map(string)
   description = "Tags to apply to all resources."

tofu/modules/persistent_service/main.tf

@@ -30,10 +30,10 @@ module "service" {
   source  = "HENNGE/ecs/aws//modules/core/service"
   version = "5.3.0"
 
-  cluster                      = var.cluster_name
-  name                         = local.prefix
-  create_task_definition       = false
-  task_definition_arn          = module.task.task_definition_arn
+  cluster                = var.cluster_name
+  name                   = local.prefix
+  create_task_definition = false
+  task_definition_arn    = module.task.task_definition_arn
 
   # Ignore changes to the desired count to prevent conflicts with auto-scaling.
   ignore_desired_count_changes = true

tofu/modules/system/ecs.tf

@@ -67,7 +67,7 @@ module "senzing_config" {
     database_host : module.database.cluster_endpoint
     database_username : jsondecode(data.aws_secretsmanager_secret_version.database.secret_string).username
     database_password : urlencode(jsondecode(data.aws_secretsmanager_secret_version.database.secret_string).password)
-    senzing_license_base64 : " "
+    senzing_license_base64 : coalesce(var.senzing_license_base64, " ")
   })))
 
   tags = var.tags

tofu/modules/system/variables.tf

@@ -193,6 +193,13 @@ variable "redoer_memory" {
   default     = 4096
 }
 
+variable "senzing_license_base64" {
+  type        = string
+  description = "Base64 encoded Senzing license."
+  default     = null
+  sensitive   = true
+}
+
 variable "tags" {
   type        = map(string)
   description = "Tags to apply to resources."