Cognito Setup part 1 #40

	name: Environment Main - Plan

	on:
	pull_request: {}

	permissions:
	id-token: write
	contents: read
	pull-requests: write

	jobs:
	envtest:
	name: Environment Main - Plan
	runs-on: ubuntu-latest
	environment: primary-ro
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
	steps:
	- name: Checkout code
	uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08
	- name: Configure AWS Access
	uses: aws-actions/configure-aws-credentials@39228ca2bffc0bfc8f7761ce893f5b80e7eaaf8f
	with:
	role-to-assume: arn:aws:iam::${{ vars.AWS_ACCOUNT }}:role/${{ vars.AWS_ROLE }}
	role-session-name: GitHubTest-${{ vars.ENVIRONMENT }}
	aws-region: ${{ vars.AWS_REGION }}
	- name: terraform plan
	uses: dflook/terraform-plan@b0877a1bf56160160ab482f4aff8a12fff35fe06
	with:
	path: terraform/environment/wildsea
	variables: \|
	aws_account="${{ vars.AWS_ACCOUNT }}"
	aws_region="${{ vars.AWS_REGION }}"
	state_bucket="${{ vars.STATE_BUCKET }}"
	environment="${{ vars.ENVIRONMENT }}"
	saml_metadata_url="${{ secrets.SAML_METADATA_URL }}"
	backend_config:
	bucket=${{ vars.STATE_BUCKET }}
	key=${{ vars.ENVIRONMENT }}/terraform.tfstate
	region=${{ vars.AWS_REGION }}

Provide feedback