From dff8869053475cc986d6465c7fa10c1ca8631aec Mon Sep 17 00:00:00 2001 From: Marius Storhaug Date: Sun, 26 Jun 2022 14:09:22 +0200 Subject: [PATCH 01/18] [MAJOR/BREAKING] Adding OIDC login functionality (#1452) * Push updated Readme file(s) * Fix environement files * Updated actions to use powershell action in gh * reset readme * restore main * Test login using OCID * Update all workflows to use Engineering environment :D * Update workflows to use OIDC * Added envs to dependency pipeline * Removing commented out code * reset global.var and settings Co-authored-by: CARMLPipelinePrincipal --- .../templates/publishModule/action.yml | 4 +- .../validateModuleDeployment/action.yml | 4 +- .../templates/validateModulePester/action.yml | 4 +- .github/workflows/ms.aad.domainservices.yml | 12 +++- .../workflows/ms.analysisservices.servers.yml | 12 +++- .../workflows/ms.apimanagement.service.yml | 12 +++- ...s.appconfiguration.configurationstores.yml | 12 +++- .../ms.authorization.policyassignments.yml | 12 +++- .../ms.authorization.policydefinitions.yml | 12 +++- .../ms.authorization.policyexemptions.yml | 12 +++- .../ms.authorization.policysetdefinitions.yml | 12 +++- .../ms.authorization.roleassignments.yml | 12 +++- .../ms.authorization.roledefinitions.yml | 12 +++- .../ms.automation.automationaccounts.yml | 10 +++ .github/workflows/ms.batch.batchaccounts.yml | 12 +++- .../ms.cognitiveservices.accounts.yml | 12 +++- .../workflows/ms.compute.availabilitysets.yml | 12 +++- .../ms.compute.diskencryptionsets.yml | 12 +++- .github/workflows/ms.compute.disks.yml | 12 +++- .github/workflows/ms.compute.galleries.yml | 12 +++- .github/workflows/ms.compute.images.yml | 12 +++- .../ms.compute.proximityplacementgroups.yml | 12 +++- .../workflows/ms.compute.virtualmachines.yml | 12 +++- .../ms.compute.virtualmachinescalesets.yml | 12 +++- .github/workflows/ms.consumption.budgets.yml | 12 +++- .../ms.containerinstance.containergroups.yml | 12 +++- .../ms.containerregistry.registries.yml | 12 +++- .../ms.containerservice.managedclusters.yml | 12 +++- .../workflows/ms.databricks.workspaces.yml | 12 +++- .../workflows/ms.datafactory.factories.yml | 12 +++- ...esktopvirtualization.applicationgroups.yml | 12 +++- .../ms.desktopvirtualization.hostpools.yml | 12 +++- .../ms.desktopvirtualization.scalingplans.yml | 12 +++- .../ms.desktopvirtualization.workspaces.yml | 12 +++- .../ms.documentdb.databaseaccounts.yml | 12 +++- .../workflows/ms.eventgrid.systemtopics.yml | 12 +++- .github/workflows/ms.eventgrid.topics.yml | 12 +++- .github/workflows/ms.eventhub.namespaces.yml | 12 +++- .github/workflows/ms.healthbot.healthbots.yml | 12 +++- .../workflows/ms.insights.actiongroups.yml | 12 +++- .../ms.insights.activitylogalerts.yml | 12 +++- .github/workflows/ms.insights.components.yml | 12 +++- .../ms.insights.diagnosticsettings.yml | 12 +++- .../workflows/ms.insights.metricalerts.yml | 12 +++- .../ms.insights.privatelinkscopes.yml | 12 +++- .../ms.insights.scheduledqueryrules.yml | 12 +++- .github/workflows/ms.keyvault.vaults.yml | 12 +++- .../ms.kubernetesconfiguration.extensions.yml | 12 +++- ...rnetesconfiguration.fluxconfigurations.yml | 12 +++- .github/workflows/ms.logic.workflows.yml | 12 +++- .../ms.machinelearningservices.workspaces.yml | 12 +++- ...managedidentity.userassignedidentities.yml | 12 +++- ...anagedservices.registrationdefinitions.yml | 12 +++- .../ms.management.managementgroups.yml | 12 +++- .../workflows/ms.netapp.netappaccounts.yml | 12 +++- .../ms.network.applicationgateways.yml | 12 +++- .../ms.network.applicationsecuritygroups.yml | 12 +++- .../workflows/ms.network.azurefirewalls.yml | 12 +++- .github/workflows/ms.network.bastionhosts.yml | 12 +++- .github/workflows/ms.network.connections.yml | 12 +++- .../ms.network.ddosprotectionplans.yml | 12 +++- .../ms.network.expressroutecircuits.yml | 12 +++- .../workflows/ms.network.firewallpolicies.yml | 12 +++- .github/workflows/ms.network.frontdoors.yml | 12 +++- .github/workflows/ms.network.ipgroups.yml | 12 +++- .../workflows/ms.network.loadbalancers.yml | 12 +++- .../ms.network.localnetworkgateways.yml | 12 +++- .github/workflows/ms.network.natgateways.yml | 12 +++- .../ms.network.networkinterfaces.yml | 12 +++- .../ms.network.networksecuritygroups.yml | 12 +++- .../workflows/ms.network.networkwatchers.yml | 12 +++- .../workflows/ms.network.privatednszones.yml | 12 +++- .../workflows/ms.network.privateendpoints.yml | 12 +++- .../ms.network.publicipaddresses.yml | 12 +++- .../workflows/ms.network.publicipprefixes.yml | 12 +++- .github/workflows/ms.network.routetables.yml | 12 +++- .../ms.network.trafficmanagerprofiles.yml | 12 +++- .github/workflows/ms.network.virtualhubs.yml | 12 +++- .../ms.network.virtualnetworkgateways.yml | 12 +++- .../workflows/ms.network.virtualnetworks.yml | 12 +++- .github/workflows/ms.network.virtualwans.yml | 12 +++- .github/workflows/ms.network.vpngateways.yml | 12 +++- .github/workflows/ms.network.vpnsites.yml | 12 +++- .../ms.operationalinsights.workspaces.yml | 12 +++- .../workflows/ms.recoveryservices.vaults.yml | 12 +++- .../ms.resources.deploymentscripts.yml | 12 +++- .../workflows/ms.resources.resourcegroups.yml | 12 +++- .github/workflows/ms.resources.tags.yml | 12 +++- .../ms.security.azuresecuritycenter.yml | 12 +++- .../workflows/ms.servicebus.namespaces.yml | 12 +++- .../workflows/ms.servicefabric.clusters.yml | 12 +++- .github/workflows/ms.sql.managedinstances.yml | 12 +++- .github/workflows/ms.sql.servers.yml | 12 +++- .../workflows/ms.storage.storageaccounts.yml | 12 +++- .../workflows/ms.synapse.privatelinkhubs.yml | 12 +++- ...ms.virtualmachineimages.imagetemplates.yml | 12 +++- .github/workflows/ms.web.connections.yml | 12 +++- .../workflows/ms.web.hostingenvironments.yml | 12 +++- .github/workflows/ms.web.serverfarms.yml | 12 +++- .github/workflows/ms.web.sites.yml | 12 +++- .github/workflows/ms.web.staticsites.yml | 12 +++- .github/workflows/platform.dependencies.yml | 61 +++++++++++++++++-- docs/wiki/Solution creation.md | 6 ++ 103 files changed, 1147 insertions(+), 106 deletions(-) diff --git a/.github/actions/templates/publishModule/action.yml b/.github/actions/templates/publishModule/action.yml index cb3a327922..08984a8553 100644 --- a/.github/actions/templates/publishModule/action.yml +++ b/.github/actions/templates/publishModule/action.yml @@ -88,7 +88,9 @@ runs: - name: Azure Login uses: Azure/login@v1 with: - creds: ${{ env.AZURE_CREDENTIALS }} + client-id: ${{ env.ARM_CLIENT_ID }} + tenant-id: ${{ env.ARM_TENANT_ID }} + subscription-id: ${{ env.ARM_SUBSCRIPTION_ID }} enable-AzPSSession: true - name: 'Publish module to template specs' diff --git a/.github/actions/templates/validateModuleDeployment/action.yml b/.github/actions/templates/validateModuleDeployment/action.yml index 7d23efa771..9aa66b22ce 100644 --- a/.github/actions/templates/validateModuleDeployment/action.yml +++ b/.github/actions/templates/validateModuleDeployment/action.yml @@ -113,7 +113,9 @@ runs: - name: Azure Login uses: Azure/login@v1 with: - creds: ${{ env.AZURE_CREDENTIALS }} + client-id: ${{ env.ARM_CLIENT_ID }} + tenant-id: ${{ env.ARM_TENANT_ID }} + subscription-id: ${{ env.ARM_SUBSCRIPTION_ID }} enable-AzPSSession: true # [Token replacement] task(s) diff --git a/.github/actions/templates/validateModulePester/action.yml b/.github/actions/templates/validateModulePester/action.yml index 2585707067..7fe6299034 100644 --- a/.github/actions/templates/validateModulePester/action.yml +++ b/.github/actions/templates/validateModulePester/action.yml @@ -55,7 +55,9 @@ runs: - name: 'Azure Login' uses: Azure/login@v1 with: - creds: ${{ env.AZURE_CREDENTIALS }} + client-id: ${{ env.ARM_CLIENT_ID }} + tenant-id: ${{ env.ARM_TENANT_ID }} + subscription-id: ${{ env.ARM_SUBSCRIPTION_ID }} enable-AzPSSession: true # [Module Pester Test] task(s) diff --git a/.github/workflows/ms.aad.domainservices.yml b/.github/workflows/ms.aad.domainservices.yml index 229590b5e4..46c50bd154 100644 --- a/.github/workflows/ms.aad.domainservices.yml +++ b/.github/workflows/ms.aad.domainservices.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.AAD/DomainServices' workflowPath: '.github/workflows/ms.aad.domainservices.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.analysisservices.servers.yml b/.github/workflows/ms.analysisservices.servers.yml index 4330ec663a..c8dd94e0fa 100644 --- a/.github/workflows/ms.analysisservices.servers.yml +++ b/.github/workflows/ms.analysisservices.servers.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.AnalysisServices/servers' workflowPath: '.github/workflows/ms.analysisservices.servers.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.apimanagement.service.yml b/.github/workflows/ms.apimanagement.service.yml index b3078cda39..db20f3935a 100644 --- a/.github/workflows/ms.apimanagement.service.yml +++ b/.github/workflows/ms.apimanagement.service.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.ApiManagement/service' workflowPath: '.github/workflows/ms.apimanagement.service.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.appconfiguration.configurationstores.yml b/.github/workflows/ms.appconfiguration.configurationstores.yml index 2a6e3997f9..4b636f3873 100644 --- a/.github/workflows/ms.appconfiguration.configurationstores.yml +++ b/.github/workflows/ms.appconfiguration.configurationstores.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.AppConfiguration/configurationStores' workflowPath: '.github/workflows/ms.appconfiguration.configurationstores.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.authorization.policyassignments.yml b/.github/workflows/ms.authorization.policyassignments.yml index ebb21af4a3..d7f61815f0 100644 --- a/.github/workflows/ms.authorization.policyassignments.yml +++ b/.github/workflows/ms.authorization.policyassignments.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Authorization/policyAssignments' workflowPath: '.github/workflows/ms.authorization.policyassignments.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -118,6 +127,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.authorization.policydefinitions.yml b/.github/workflows/ms.authorization.policydefinitions.yml index e02a09c206..49c919594b 100644 --- a/.github/workflows/ms.authorization.policydefinitions.yml +++ b/.github/workflows/ms.authorization.policydefinitions.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Authorization/policyDefinitions' workflowPath: '.github/workflows/ms.authorization.policydefinitions.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -118,6 +127,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.authorization.policyexemptions.yml b/.github/workflows/ms.authorization.policyexemptions.yml index cbacdd34c7..7df4ee0427 100644 --- a/.github/workflows/ms.authorization.policyexemptions.yml +++ b/.github/workflows/ms.authorization.policyexemptions.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Authorization/policyExemptions' workflowPath: '.github/workflows/ms.authorization.policyexemptions.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -118,6 +127,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.authorization.policysetdefinitions.yml b/.github/workflows/ms.authorization.policysetdefinitions.yml index 5fee8e7ebf..fce9ddd26a 100644 --- a/.github/workflows/ms.authorization.policysetdefinitions.yml +++ b/.github/workflows/ms.authorization.policysetdefinitions.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Authorization/policySetDefinitions' workflowPath: '.github/workflows/ms.authorization.policysetdefinitions.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -118,6 +127,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.authorization.roleassignments.yml b/.github/workflows/ms.authorization.roleassignments.yml index e7e8c53828..a91afd3cb7 100644 --- a/.github/workflows/ms.authorization.roleassignments.yml +++ b/.github/workflows/ms.authorization.roleassignments.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Authorization/roleAssignments' workflowPath: '.github/workflows/ms.authorization.roleassignments.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -118,6 +127,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.authorization.roledefinitions.yml b/.github/workflows/ms.authorization.roledefinitions.yml index 95a3a5cc1d..b0fa7ff357 100644 --- a/.github/workflows/ms.authorization.roledefinitions.yml +++ b/.github/workflows/ms.authorization.roledefinitions.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Authorization/roleDefinitions' workflowPath: '.github/workflows/ms.authorization.roledefinitions.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -118,6 +127,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.automation.automationaccounts.yml b/.github/workflows/ms.automation.automationaccounts.yml index e2a3cc2bc9..2bf4b8f185 100644 --- a/.github/workflows/ms.automation.automationaccounts.yml +++ b/.github/workflows/ms.automation.automationaccounts.yml @@ -26,6 +26,12 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Automation/automationAccounts' @@ -43,6 +49,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -68,6 +75,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -84,6 +92,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -116,6 +125,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.batch.batchaccounts.yml b/.github/workflows/ms.batch.batchaccounts.yml index bdab22a0fb..138af6dd55 100644 --- a/.github/workflows/ms.batch.batchaccounts.yml +++ b/.github/workflows/ms.batch.batchaccounts.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Batch/batchAccounts' workflowPath: '.github/workflows/ms.batch.batchaccounts.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.cognitiveservices.accounts.yml b/.github/workflows/ms.cognitiveservices.accounts.yml index f320fd876d..40170e0bd2 100644 --- a/.github/workflows/ms.cognitiveservices.accounts.yml +++ b/.github/workflows/ms.cognitiveservices.accounts.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.CognitiveServices/accounts' workflowPath: '.github/workflows/ms.cognitiveservices.accounts.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.compute.availabilitysets.yml b/.github/workflows/ms.compute.availabilitysets.yml index a873271346..5bd83103f1 100644 --- a/.github/workflows/ms.compute.availabilitysets.yml +++ b/.github/workflows/ms.compute.availabilitysets.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Compute/availabilitySets' workflowPath: '.github/workflows/ms.compute.availabilitysets.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.compute.diskencryptionsets.yml b/.github/workflows/ms.compute.diskencryptionsets.yml index 4249bc2d92..fc2ecbb746 100644 --- a/.github/workflows/ms.compute.diskencryptionsets.yml +++ b/.github/workflows/ms.compute.diskencryptionsets.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Compute/diskEncryptionSets' workflowPath: '.github/workflows/ms.compute.diskencryptionsets.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.compute.disks.yml b/.github/workflows/ms.compute.disks.yml index 8495ead6ae..d7d83fcadf 100644 --- a/.github/workflows/ms.compute.disks.yml +++ b/.github/workflows/ms.compute.disks.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Compute/disks' workflowPath: '.github/workflows/ms.compute.disks.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.compute.galleries.yml b/.github/workflows/ms.compute.galleries.yml index 3e341e0474..4d6497beb1 100644 --- a/.github/workflows/ms.compute.galleries.yml +++ b/.github/workflows/ms.compute.galleries.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Compute/galleries' workflowPath: '.github/workflows/ms.compute.galleries.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.compute.images.yml b/.github/workflows/ms.compute.images.yml index 1e6aefa800..ba8e23f20d 100644 --- a/.github/workflows/ms.compute.images.yml +++ b/.github/workflows/ms.compute.images.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Compute/images' workflowPath: '.github/workflows/ms.compute.images.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.compute.proximityplacementgroups.yml b/.github/workflows/ms.compute.proximityplacementgroups.yml index 8dd426e6f6..f40ce23da5 100644 --- a/.github/workflows/ms.compute.proximityplacementgroups.yml +++ b/.github/workflows/ms.compute.proximityplacementgroups.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Compute/proximityPlacementGroups' workflowPath: '.github/workflows/ms.compute.proximityplacementgroups.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.compute.virtualmachines.yml b/.github/workflows/ms.compute.virtualmachines.yml index bb336d8917..9ac380d9c7 100644 --- a/.github/workflows/ms.compute.virtualmachines.yml +++ b/.github/workflows/ms.compute.virtualmachines.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Compute/virtualMachines' workflowPath: '.github/workflows/ms.compute.virtualmachines.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.compute.virtualmachinescalesets.yml b/.github/workflows/ms.compute.virtualmachinescalesets.yml index 3cc180a270..a815cf4869 100644 --- a/.github/workflows/ms.compute.virtualmachinescalesets.yml +++ b/.github/workflows/ms.compute.virtualmachinescalesets.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Compute/virtualMachineScaleSets' workflowPath: '.github/workflows/ms.compute.virtualmachinescalesets.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.consumption.budgets.yml b/.github/workflows/ms.consumption.budgets.yml index 1050a427d8..6a652094ea 100644 --- a/.github/workflows/ms.consumption.budgets.yml +++ b/.github/workflows/ms.consumption.budgets.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Consumption/budgets' workflowPath: '.github/workflows/ms.consumption.budgets.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.containerinstance.containergroups.yml b/.github/workflows/ms.containerinstance.containergroups.yml index b742a184d5..ee47343373 100644 --- a/.github/workflows/ms.containerinstance.containergroups.yml +++ b/.github/workflows/ms.containerinstance.containergroups.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.ContainerInstance/containerGroups' workflowPath: '.github/workflows/ms.containerinstance.containergroups.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.containerregistry.registries.yml b/.github/workflows/ms.containerregistry.registries.yml index afbf8879e1..9f3c23d2b0 100644 --- a/.github/workflows/ms.containerregistry.registries.yml +++ b/.github/workflows/ms.containerregistry.registries.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.ContainerRegistry/registries' workflowPath: '.github/workflows/ms.containerregistry.registries.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.containerservice.managedclusters.yml b/.github/workflows/ms.containerservice.managedclusters.yml index 2198f54e26..67f49d44fc 100644 --- a/.github/workflows/ms.containerservice.managedclusters.yml +++ b/.github/workflows/ms.containerservice.managedclusters.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.ContainerService/managedClusters' workflowPath: '.github/workflows/ms.containerservice.managedclusters.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.databricks.workspaces.yml b/.github/workflows/ms.databricks.workspaces.yml index b8cbfab40b..d3393b22a0 100644 --- a/.github/workflows/ms.databricks.workspaces.yml +++ b/.github/workflows/ms.databricks.workspaces.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Databricks/workspaces' workflowPath: '.github/workflows/ms.databricks.workspaces.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.datafactory.factories.yml b/.github/workflows/ms.datafactory.factories.yml index 5c29c4ee5d..4a68f23783 100644 --- a/.github/workflows/ms.datafactory.factories.yml +++ b/.github/workflows/ms.datafactory.factories.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.DataFactory/factories' workflowPath: '.github/workflows/ms.datafactory.factories.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.desktopvirtualization.applicationgroups.yml b/.github/workflows/ms.desktopvirtualization.applicationgroups.yml index 33ce312ca1..ed04f72ec9 100644 --- a/.github/workflows/ms.desktopvirtualization.applicationgroups.yml +++ b/.github/workflows/ms.desktopvirtualization.applicationgroups.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.DesktopVirtualization/applicationgroups' workflowPath: '.github/workflows/ms.desktopvirtualization.applicationgroups.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.desktopvirtualization.hostpools.yml b/.github/workflows/ms.desktopvirtualization.hostpools.yml index 32848ee2b7..eaf1b907c9 100644 --- a/.github/workflows/ms.desktopvirtualization.hostpools.yml +++ b/.github/workflows/ms.desktopvirtualization.hostpools.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.DesktopVirtualization/hostpools' workflowPath: '.github/workflows/ms.desktopvirtualization.hostpools.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.desktopvirtualization.scalingplans.yml b/.github/workflows/ms.desktopvirtualization.scalingplans.yml index fab5ecae6b..86ba77c5a8 100644 --- a/.github/workflows/ms.desktopvirtualization.scalingplans.yml +++ b/.github/workflows/ms.desktopvirtualization.scalingplans.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.DesktopVirtualization/scalingplans' workflowPath: '.github/workflows/ms.desktopvirtualization.scalingplans.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.desktopvirtualization.workspaces.yml b/.github/workflows/ms.desktopvirtualization.workspaces.yml index 7cfaa3e7be..5e63178c3f 100644 --- a/.github/workflows/ms.desktopvirtualization.workspaces.yml +++ b/.github/workflows/ms.desktopvirtualization.workspaces.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.DesktopVirtualization/workspaces' workflowPath: '.github/workflows/ms.desktopvirtualization.workspaces.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.documentdb.databaseaccounts.yml b/.github/workflows/ms.documentdb.databaseaccounts.yml index c61a97e61d..c37549fec0 100644 --- a/.github/workflows/ms.documentdb.databaseaccounts.yml +++ b/.github/workflows/ms.documentdb.databaseaccounts.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.DocumentDB/databaseAccounts' workflowPath: '.github/workflows/ms.documentdb.databaseaccounts.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.eventgrid.systemtopics.yml b/.github/workflows/ms.eventgrid.systemtopics.yml index 27a694db1f..3cd31a1f36 100644 --- a/.github/workflows/ms.eventgrid.systemtopics.yml +++ b/.github/workflows/ms.eventgrid.systemtopics.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.EventGrid/systemTopics' workflowPath: '.github/workflows/ms.eventgrid.systemtopics.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.eventgrid.topics.yml b/.github/workflows/ms.eventgrid.topics.yml index 84cc1e4c19..cd0139ca7c 100644 --- a/.github/workflows/ms.eventgrid.topics.yml +++ b/.github/workflows/ms.eventgrid.topics.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.EventGrid/topics' workflowPath: '.github/workflows/ms.eventgrid.topics.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.eventhub.namespaces.yml b/.github/workflows/ms.eventhub.namespaces.yml index a7582951bc..ef5d373a71 100644 --- a/.github/workflows/ms.eventhub.namespaces.yml +++ b/.github/workflows/ms.eventhub.namespaces.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.EventHub/namespaces' workflowPath: '.github/workflows/ms.eventhub.namespaces.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.healthbot.healthbots.yml b/.github/workflows/ms.healthbot.healthbots.yml index 59e4f32200..3d5d303ebd 100644 --- a/.github/workflows/ms.healthbot.healthbots.yml +++ b/.github/workflows/ms.healthbot.healthbots.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.HealthBot/healthBots' workflowPath: '.github/workflows/ms.healthbot.healthbots.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.insights.actiongroups.yml b/.github/workflows/ms.insights.actiongroups.yml index b9758fd8aa..f669959d02 100644 --- a/.github/workflows/ms.insights.actiongroups.yml +++ b/.github/workflows/ms.insights.actiongroups.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Insights/actionGroups' workflowPath: '.github/workflows/ms.insights.actiongroups.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.insights.activitylogalerts.yml b/.github/workflows/ms.insights.activitylogalerts.yml index 3f1f01f514..919a6dd44b 100644 --- a/.github/workflows/ms.insights.activitylogalerts.yml +++ b/.github/workflows/ms.insights.activitylogalerts.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Insights/activityLogAlerts' workflowPath: '.github/workflows/ms.insights.activitylogalerts.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.insights.components.yml b/.github/workflows/ms.insights.components.yml index ed559d1c8e..60f9417a1f 100644 --- a/.github/workflows/ms.insights.components.yml +++ b/.github/workflows/ms.insights.components.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Insights/components' workflowPath: '.github/workflows/ms.insights.components.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.insights.diagnosticsettings.yml b/.github/workflows/ms.insights.diagnosticsettings.yml index b49863642c..4a668f4721 100644 --- a/.github/workflows/ms.insights.diagnosticsettings.yml +++ b/.github/workflows/ms.insights.diagnosticsettings.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Insights/diagnosticSettings' workflowPath: '.github/workflows/ms.insights.diagnosticsettings.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.insights.metricalerts.yml b/.github/workflows/ms.insights.metricalerts.yml index 7f4e64a2b7..6d96c6a7a2 100644 --- a/.github/workflows/ms.insights.metricalerts.yml +++ b/.github/workflows/ms.insights.metricalerts.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Insights/metricAlerts' workflowPath: '.github/workflows/ms.insights.metricalerts.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.insights.privatelinkscopes.yml b/.github/workflows/ms.insights.privatelinkscopes.yml index 35e362059b..6e0a1a0e55 100644 --- a/.github/workflows/ms.insights.privatelinkscopes.yml +++ b/.github/workflows/ms.insights.privatelinkscopes.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Insights/privateLinkScopes' workflowPath: '.github/workflows/ms.insights.privatelinkscopes.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.insights.scheduledqueryrules.yml b/.github/workflows/ms.insights.scheduledqueryrules.yml index 3ac293149b..728be561f6 100644 --- a/.github/workflows/ms.insights.scheduledqueryrules.yml +++ b/.github/workflows/ms.insights.scheduledqueryrules.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Insights/scheduledQueryRules' workflowPath: '.github/workflows/ms.insights.scheduledqueryrules.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.keyvault.vaults.yml b/.github/workflows/ms.keyvault.vaults.yml index a428a0e48a..ea72656159 100644 --- a/.github/workflows/ms.keyvault.vaults.yml +++ b/.github/workflows/ms.keyvault.vaults.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.KeyVault/vaults' workflowPath: '.github/workflows/ms.keyvault.vaults.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.kubernetesconfiguration.extensions.yml b/.github/workflows/ms.kubernetesconfiguration.extensions.yml index cb6c3b7664..81996f3835 100644 --- a/.github/workflows/ms.kubernetesconfiguration.extensions.yml +++ b/.github/workflows/ms.kubernetesconfiguration.extensions.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.KubernetesConfiguration/extensions' workflowPath: '.github/workflows/ms.kubernetesconfiguration.extensions.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.kubernetesconfiguration.fluxconfigurations.yml b/.github/workflows/ms.kubernetesconfiguration.fluxconfigurations.yml index 47ec3b2fc6..d9f1abc12a 100644 --- a/.github/workflows/ms.kubernetesconfiguration.fluxconfigurations.yml +++ b/.github/workflows/ms.kubernetesconfiguration.fluxconfigurations.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.KubernetesConfiguration/fluxConfigurations' workflowPath: '.github/workflows/ms.kubernetesconfiguration.fluxconfigurations.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.logic.workflows.yml b/.github/workflows/ms.logic.workflows.yml index 03e09b6410..00660f833c 100644 --- a/.github/workflows/ms.logic.workflows.yml +++ b/.github/workflows/ms.logic.workflows.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Logic/workflows' workflowPath: '.github/workflows/ms.logic.workflows.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.machinelearningservices.workspaces.yml b/.github/workflows/ms.machinelearningservices.workspaces.yml index aab2efcaeb..a12582ec51 100644 --- a/.github/workflows/ms.machinelearningservices.workspaces.yml +++ b/.github/workflows/ms.machinelearningservices.workspaces.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.MachineLearningServices/workspaces' workflowPath: '.github/workflows/ms.machinelearningservices.workspaces.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.managedidentity.userassignedidentities.yml b/.github/workflows/ms.managedidentity.userassignedidentities.yml index e85f71f65a..feead5eca8 100644 --- a/.github/workflows/ms.managedidentity.userassignedidentities.yml +++ b/.github/workflows/ms.managedidentity.userassignedidentities.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.ManagedIdentity/userAssignedIdentities' workflowPath: '.github/workflows/ms.managedidentity.userassignedidentities.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.managedservices.registrationdefinitions.yml b/.github/workflows/ms.managedservices.registrationdefinitions.yml index 174cdf5a4d..a8ab1d9ef9 100644 --- a/.github/workflows/ms.managedservices.registrationdefinitions.yml +++ b/.github/workflows/ms.managedservices.registrationdefinitions.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.ManagedServices/registrationDefinitions' workflowPath: '.github/workflows/ms.managedservices.registrationdefinitions.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.management.managementgroups.yml b/.github/workflows/ms.management.managementgroups.yml index 00860c6205..c2ce434d1a 100644 --- a/.github/workflows/ms.management.managementgroups.yml +++ b/.github/workflows/ms.management.managementgroups.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Management/managementGroups' workflowPath: '.github/workflows/ms.management.managementgroups.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.netapp.netappaccounts.yml b/.github/workflows/ms.netapp.netappaccounts.yml index 0aa8dc46b1..e77737354c 100644 --- a/.github/workflows/ms.netapp.netappaccounts.yml +++ b/.github/workflows/ms.netapp.netappaccounts.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.NetApp/netAppAccounts' workflowPath: '.github/workflows/ms.netapp.netappaccounts.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.applicationgateways.yml b/.github/workflows/ms.network.applicationgateways.yml index 4e8aa732e5..fc29ae018e 100644 --- a/.github/workflows/ms.network.applicationgateways.yml +++ b/.github/workflows/ms.network.applicationgateways.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/applicationGateways' workflowPath: '.github/workflows/ms.network.applicationgateways.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.applicationsecuritygroups.yml b/.github/workflows/ms.network.applicationsecuritygroups.yml index a4f3df798d..3d3f0e987a 100644 --- a/.github/workflows/ms.network.applicationsecuritygroups.yml +++ b/.github/workflows/ms.network.applicationsecuritygroups.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/applicationSecurityGroups' workflowPath: '.github/workflows/ms.network.applicationsecuritygroups.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.azurefirewalls.yml b/.github/workflows/ms.network.azurefirewalls.yml index 93bffd1e5b..1fb6676179 100644 --- a/.github/workflows/ms.network.azurefirewalls.yml +++ b/.github/workflows/ms.network.azurefirewalls.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/azureFirewalls' workflowPath: '.github/workflows/ms.network.azurefirewalls.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.bastionhosts.yml b/.github/workflows/ms.network.bastionhosts.yml index 4737fe021a..836dd1d620 100644 --- a/.github/workflows/ms.network.bastionhosts.yml +++ b/.github/workflows/ms.network.bastionhosts.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/bastionHosts' workflowPath: '.github/workflows/ms.network.bastionhosts.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.connections.yml b/.github/workflows/ms.network.connections.yml index e37af7123d..a76b008037 100644 --- a/.github/workflows/ms.network.connections.yml +++ b/.github/workflows/ms.network.connections.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/connections' workflowPath: '.github/workflows/ms.network.connections.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.ddosprotectionplans.yml b/.github/workflows/ms.network.ddosprotectionplans.yml index 0f83af3940..e59853fab3 100644 --- a/.github/workflows/ms.network.ddosprotectionplans.yml +++ b/.github/workflows/ms.network.ddosprotectionplans.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/ddosProtectionPlans' workflowPath: '.github/workflows/ms.network.ddosprotectionplans.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.expressroutecircuits.yml b/.github/workflows/ms.network.expressroutecircuits.yml index a8bc58510a..75bc323064 100644 --- a/.github/workflows/ms.network.expressroutecircuits.yml +++ b/.github/workflows/ms.network.expressroutecircuits.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/expressRouteCircuits' workflowPath: '.github/workflows/ms.network.expressroutecircuits.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.firewallpolicies.yml b/.github/workflows/ms.network.firewallpolicies.yml index 6137b0212f..0cacfc1664 100644 --- a/.github/workflows/ms.network.firewallpolicies.yml +++ b/.github/workflows/ms.network.firewallpolicies.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/firewallPolicies' workflowPath: '.github/workflows/ms.network.firewallpolicies.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.frontdoors.yml b/.github/workflows/ms.network.frontdoors.yml index 5e511cae0b..8632b6d558 100644 --- a/.github/workflows/ms.network.frontdoors.yml +++ b/.github/workflows/ms.network.frontdoors.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/frontDoors' workflowPath: '.github/workflows/ms.network.frontdoors.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.ipgroups.yml b/.github/workflows/ms.network.ipgroups.yml index 3a13b6d30b..98c4306715 100644 --- a/.github/workflows/ms.network.ipgroups.yml +++ b/.github/workflows/ms.network.ipgroups.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/ipGroups' workflowPath: '.github/workflows/ms.network.ipgroups.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.loadbalancers.yml b/.github/workflows/ms.network.loadbalancers.yml index 3d23e74394..556af5a7ae 100644 --- a/.github/workflows/ms.network.loadbalancers.yml +++ b/.github/workflows/ms.network.loadbalancers.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/loadBalancers' workflowPath: '.github/workflows/ms.network.loadbalancers.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.localnetworkgateways.yml b/.github/workflows/ms.network.localnetworkgateways.yml index be05683a4b..4ba87b67fb 100644 --- a/.github/workflows/ms.network.localnetworkgateways.yml +++ b/.github/workflows/ms.network.localnetworkgateways.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/localNetworkGateways' workflowPath: '.github/workflows/ms.network.localnetworkgateways.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.natgateways.yml b/.github/workflows/ms.network.natgateways.yml index ebdd539815..f8edf88f88 100644 --- a/.github/workflows/ms.network.natgateways.yml +++ b/.github/workflows/ms.network.natgateways.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/natGateways' workflowPath: '.github/workflows/ms.network.natgateways.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.networkinterfaces.yml b/.github/workflows/ms.network.networkinterfaces.yml index feda3575e3..302148a0a2 100644 --- a/.github/workflows/ms.network.networkinterfaces.yml +++ b/.github/workflows/ms.network.networkinterfaces.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/networkInterfaces' workflowPath: '.github/workflows/ms.network.networkinterfaces.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.networksecuritygroups.yml b/.github/workflows/ms.network.networksecuritygroups.yml index 186a49f9c6..e5ca5ce1bb 100644 --- a/.github/workflows/ms.network.networksecuritygroups.yml +++ b/.github/workflows/ms.network.networksecuritygroups.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/networkSecurityGroups' workflowPath: '.github/workflows/ms.network.networksecuritygroups.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.networkwatchers.yml b/.github/workflows/ms.network.networkwatchers.yml index 3728a63e58..1172d1dc09 100644 --- a/.github/workflows/ms.network.networkwatchers.yml +++ b/.github/workflows/ms.network.networkwatchers.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/networkWatchers' workflowPath: '.github/workflows/ms.network.networkwatchers.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.privatednszones.yml b/.github/workflows/ms.network.privatednszones.yml index 3afa12980f..700cef7a58 100644 --- a/.github/workflows/ms.network.privatednszones.yml +++ b/.github/workflows/ms.network.privatednszones.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/privateDnsZones' workflowPath: '.github/workflows/ms.network.privatednszones.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.privateendpoints.yml b/.github/workflows/ms.network.privateendpoints.yml index 06132ed4a2..a75f1c8c21 100644 --- a/.github/workflows/ms.network.privateendpoints.yml +++ b/.github/workflows/ms.network.privateendpoints.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/privateEndpoints' workflowPath: '.github/workflows/ms.network.privateendpoints.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.publicipaddresses.yml b/.github/workflows/ms.network.publicipaddresses.yml index ff2e212f7b..702ed08b86 100644 --- a/.github/workflows/ms.network.publicipaddresses.yml +++ b/.github/workflows/ms.network.publicipaddresses.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/publicIPAddresses' workflowPath: '.github/workflows/ms.network.publicipaddresses.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.publicipprefixes.yml b/.github/workflows/ms.network.publicipprefixes.yml index 7ee726e778..04608a1334 100644 --- a/.github/workflows/ms.network.publicipprefixes.yml +++ b/.github/workflows/ms.network.publicipprefixes.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/publicIPPrefixes' workflowPath: '.github/workflows/ms.network.publicipprefixes.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.routetables.yml b/.github/workflows/ms.network.routetables.yml index c64d0c4b61..c0f729ddb7 100644 --- a/.github/workflows/ms.network.routetables.yml +++ b/.github/workflows/ms.network.routetables.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/routeTables' workflowPath: '.github/workflows/ms.network.routetables.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.trafficmanagerprofiles.yml b/.github/workflows/ms.network.trafficmanagerprofiles.yml index 38e8f66a8c..d6c0eecf56 100644 --- a/.github/workflows/ms.network.trafficmanagerprofiles.yml +++ b/.github/workflows/ms.network.trafficmanagerprofiles.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/trafficmanagerprofiles' workflowPath: '.github/workflows/ms.network.trafficmanagerprofiles.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.virtualhubs.yml b/.github/workflows/ms.network.virtualhubs.yml index cf5d3d8db7..921c1d92c6 100644 --- a/.github/workflows/ms.network.virtualhubs.yml +++ b/.github/workflows/ms.network.virtualhubs.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/virtualHubs' workflowPath: '.github/workflows/ms.network.virtualhubs.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.virtualnetworkgateways.yml b/.github/workflows/ms.network.virtualnetworkgateways.yml index d0ad36a1fa..8fc41b1042 100644 --- a/.github/workflows/ms.network.virtualnetworkgateways.yml +++ b/.github/workflows/ms.network.virtualnetworkgateways.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/virtualNetworkGateways' workflowPath: '.github/workflows/ms.network.virtualnetworkgateways.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.virtualnetworks.yml b/.github/workflows/ms.network.virtualnetworks.yml index b1445fc3ce..5b15bc988c 100644 --- a/.github/workflows/ms.network.virtualnetworks.yml +++ b/.github/workflows/ms.network.virtualnetworks.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/virtualNetworks' workflowPath: '.github/workflows/ms.network.virtualnetworks.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.virtualwans.yml b/.github/workflows/ms.network.virtualwans.yml index af84aa61d6..ccbbc9fe21 100644 --- a/.github/workflows/ms.network.virtualwans.yml +++ b/.github/workflows/ms.network.virtualwans.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/virtualWans' workflowPath: '.github/workflows/ms.network.virtualwans.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.vpngateways.yml b/.github/workflows/ms.network.vpngateways.yml index a478903089..6c8d144745 100644 --- a/.github/workflows/ms.network.vpngateways.yml +++ b/.github/workflows/ms.network.vpngateways.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/vpnGateways' workflowPath: '.github/workflows/ms.network.vpngateways.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.vpnsites.yml b/.github/workflows/ms.network.vpnsites.yml index fb0f8c8d3f..b21f7348d4 100644 --- a/.github/workflows/ms.network.vpnsites.yml +++ b/.github/workflows/ms.network.vpnsites.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/vpnSites' workflowPath: '.github/workflows/ms.network.vpnsites.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.operationalinsights.workspaces.yml b/.github/workflows/ms.operationalinsights.workspaces.yml index 9ddfc177f5..6317043718 100644 --- a/.github/workflows/ms.operationalinsights.workspaces.yml +++ b/.github/workflows/ms.operationalinsights.workspaces.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.OperationalInsights/workspaces' workflowPath: '.github/workflows/ms.operationalinsights.workspaces.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.recoveryservices.vaults.yml b/.github/workflows/ms.recoveryservices.vaults.yml index 15e09441c3..c89b73e566 100644 --- a/.github/workflows/ms.recoveryservices.vaults.yml +++ b/.github/workflows/ms.recoveryservices.vaults.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.RecoveryServices/vaults' workflowPath: '.github/workflows/ms.recoveryservices.vaults.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.resources.deploymentscripts.yml b/.github/workflows/ms.resources.deploymentscripts.yml index 967b05e4b9..521ae352c6 100644 --- a/.github/workflows/ms.resources.deploymentscripts.yml +++ b/.github/workflows/ms.resources.deploymentscripts.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Resources/deploymentScripts' workflowPath: '.github/workflows/ms.resources.deploymentscripts.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.resources.resourcegroups.yml b/.github/workflows/ms.resources.resourcegroups.yml index 392cd5740b..cd92d146f5 100644 --- a/.github/workflows/ms.resources.resourcegroups.yml +++ b/.github/workflows/ms.resources.resourcegroups.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Resources/resourceGroups' workflowPath: '.github/workflows/ms.resources.resourcegroups.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.resources.tags.yml b/.github/workflows/ms.resources.tags.yml index c35776cb2d..eaf739cc68 100644 --- a/.github/workflows/ms.resources.tags.yml +++ b/.github/workflows/ms.resources.tags.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Resources/tags' workflowPath: '.github/workflows/ms.resources.tags.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.security.azuresecuritycenter.yml b/.github/workflows/ms.security.azuresecuritycenter.yml index 0eab54dc73..3a94a47029 100644 --- a/.github/workflows/ms.security.azuresecuritycenter.yml +++ b/.github/workflows/ms.security.azuresecuritycenter.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Security/azureSecurityCenter' workflowPath: '.github/workflows/ms.security.azuresecuritycenter.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.servicebus.namespaces.yml b/.github/workflows/ms.servicebus.namespaces.yml index e290a78302..3f40b3e897 100644 --- a/.github/workflows/ms.servicebus.namespaces.yml +++ b/.github/workflows/ms.servicebus.namespaces.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.ServiceBus/namespaces' workflowPath: '.github/workflows/ms.servicebus.namespaces.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.servicefabric.clusters.yml b/.github/workflows/ms.servicefabric.clusters.yml index d53258695c..efac82cb56 100644 --- a/.github/workflows/ms.servicefabric.clusters.yml +++ b/.github/workflows/ms.servicefabric.clusters.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.ServiceFabric/clusters' workflowPath: '.github/workflows/ms.servicefabric.clusters.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.sql.managedinstances.yml b/.github/workflows/ms.sql.managedinstances.yml index 70cacaaaaf..3e41384fe0 100644 --- a/.github/workflows/ms.sql.managedinstances.yml +++ b/.github/workflows/ms.sql.managedinstances.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Sql/managedInstances' workflowPath: '.github/workflows/ms.sql.managedinstances.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.sql.servers.yml b/.github/workflows/ms.sql.servers.yml index c2b15642ee..8987157a35 100644 --- a/.github/workflows/ms.sql.servers.yml +++ b/.github/workflows/ms.sql.servers.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Sql/servers' workflowPath: '.github/workflows/ms.sql.servers.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.storage.storageaccounts.yml b/.github/workflows/ms.storage.storageaccounts.yml index 25ca93d427..f8e7532864 100644 --- a/.github/workflows/ms.storage.storageaccounts.yml +++ b/.github/workflows/ms.storage.storageaccounts.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Storage/storageAccounts' workflowPath: '.github/workflows/ms.storage.storageaccounts.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.synapse.privatelinkhubs.yml b/.github/workflows/ms.synapse.privatelinkhubs.yml index 7c70983ae5..e60bce6d02 100644 --- a/.github/workflows/ms.synapse.privatelinkhubs.yml +++ b/.github/workflows/ms.synapse.privatelinkhubs.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Synapse/privateLinkHubs' workflowPath: '.github/workflows/ms.synapse.privatelinkhubs.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.virtualmachineimages.imagetemplates.yml b/.github/workflows/ms.virtualmachineimages.imagetemplates.yml index 1a586bcf64..e576b977b4 100644 --- a/.github/workflows/ms.virtualmachineimages.imagetemplates.yml +++ b/.github/workflows/ms.virtualmachineimages.imagetemplates.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.VirtualMachineImages/imageTemplates' workflowPath: '.github/workflows/ms.virtualmachineimages.imagetemplates.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.web.connections.yml b/.github/workflows/ms.web.connections.yml index e32df8e3c9..d16ce02346 100644 --- a/.github/workflows/ms.web.connections.yml +++ b/.github/workflows/ms.web.connections.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Web/connections' workflowPath: '.github/workflows/ms.web.connections.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.web.hostingenvironments.yml b/.github/workflows/ms.web.hostingenvironments.yml index 0d926983ec..aadb87dbe1 100644 --- a/.github/workflows/ms.web.hostingenvironments.yml +++ b/.github/workflows/ms.web.hostingenvironments.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Web/hostingEnvironments' workflowPath: '.github/workflows/ms.web.hostingenvironments.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.web.serverfarms.yml b/.github/workflows/ms.web.serverfarms.yml index 1ba700cf21..089886e920 100644 --- a/.github/workflows/ms.web.serverfarms.yml +++ b/.github/workflows/ms.web.serverfarms.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Web/serverfarms' workflowPath: '.github/workflows/ms.web.serverfarms.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.web.sites.yml b/.github/workflows/ms.web.sites.yml index a83b5659d2..fd3f543b75 100644 --- a/.github/workflows/ms.web.sites.yml +++ b/.github/workflows/ms.web.sites.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Web/sites' workflowPath: '.github/workflows/ms.web.sites.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.web.staticsites.yml b/.github/workflows/ms.web.staticsites.yml index bc0920919b..2cd9132c78 100644 --- a/.github/workflows/ms.web.staticsites.yml +++ b/.github/workflows/ms.web.staticsites.yml @@ -25,11 +25,17 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Web/staticSites' workflowPath: '.github/workflows/ms.web.staticsites.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Engineering' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Engineering' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/platform.dependencies.yml b/.github/workflows/platform.dependencies.yml index 1754c3c32c..1a8d07d92b 100644 --- a/.github/workflows/platform.dependencies.yml +++ b/.github/workflows/platform.dependencies.yml @@ -22,13 +22,19 @@ on: # - '.github/workflows/platform.dependencies.yml' # - 'utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: location: 'WestEurope' defaultResourceGroupName: 'validation-rg' resourceGroupNameArtifacts: 'artifacts-rg' removeDeployment: 'false' dependencyPath: 'utilities/pipelines/dependencies' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' @@ -44,6 +50,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['validation.parameters.json', 'locks.parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -71,6 +78,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -101,6 +109,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -141,6 +150,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -169,6 +179,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -197,6 +208,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['mg.parameters.json', 'sub.parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -225,6 +237,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -254,6 +267,7 @@ jobs: matrix: parameterFilePaths: ['appi.parameters.json', 'aut.parameters.json', 'sol.parameters.json', 'parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -283,6 +297,7 @@ jobs: matrix: parameterFilePaths: ['fa.parameters.json', 'law.parameters.json', 'parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -307,6 +322,7 @@ jobs: namespace: 'Microsoft.Storage\storageAccounts' needs: - job_deploy_sa + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -330,7 +346,9 @@ jobs: - name: Azure Login uses: azure/login@v1 with: - creds: ${{ secrets.AZURE_CREDENTIALS }} + client-id: ${{ env.ARM_CLIENT_ID }} + tenant-id: ${{ env.ARM_TENANT_ID }} + subscription-id: ${{ env.ARM_SUBSCRIPTION_ID }} enable-AzPSSession: true - name: Run PowerShell @@ -391,6 +409,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -424,6 +443,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -466,6 +486,7 @@ jobs: needs: - job_deploy_imgt - job_deploy_sa + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -490,7 +511,9 @@ jobs: - name: Azure Login uses: azure/login@v1 with: - creds: ${{ secrets.AZURE_CREDENTIALS }} + client-id: ${{ env.ARM_CLIENT_ID }} + tenant-id: ${{ env.ARM_TENANT_ID }} + subscription-id: ${{ env.ARM_SUBSCRIPTION_ID }} enable-AzPSSession: true - name: 'Trigger building new image' @@ -588,6 +611,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -616,6 +640,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -644,6 +669,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -673,6 +699,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['sqlMi.parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -710,6 +737,7 @@ jobs: 'aadds.parameters.json', 'parameters.json', ] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -741,6 +769,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['sqlmi.parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -778,8 +807,9 @@ jobs: 'lb.parameters.json', 'lb.min.parameters.json', 'fw.parameters.json', - 'fw.additional.parameters.json' + 'fw.additional.parameters.json', ] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -810,6 +840,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -840,6 +871,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -870,6 +902,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -901,6 +934,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -934,6 +968,7 @@ jobs: matrix: parameterFilePaths: ['parameters.json', 'pe.parameters.json', 'nopr.parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -960,6 +995,7 @@ jobs: namespace: 'Microsoft.KeyVault\vaults' needs: - job_deploy_kv + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -983,7 +1019,9 @@ jobs: - name: Azure Login uses: azure/login@v1 with: - creds: ${{ secrets.AZURE_CREDENTIALS }} + client-id: ${{ env.ARM_CLIENT_ID }} + tenant-id: ${{ env.ARM_TENANT_ID }} + subscription-id: ${{ env.ARM_SUBSCRIPTION_ID }} enable-AzPSSession: true - name: 'Set key vault secrets keys and certificates' @@ -1114,6 +1152,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['sqlmi.parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -1140,6 +1179,7 @@ jobs: - job_deploy_sqlmi_kv env: namespace: 'Microsoft.KeyVault\vaults' + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -1163,7 +1203,9 @@ jobs: - name: Azure Login uses: azure/login@v1 with: - creds: ${{ secrets.AZURE_CREDENTIALS }} + client-id: ${{ env.ARM_CLIENT_ID }} + tenant-id: ${{ env.ARM_TENANT_ID }} + subscription-id: ${{ env.ARM_SUBSCRIPTION_ID }} enable-AzPSSession: true - name: 'Set sqlmi key vault secrets and keys' @@ -1236,6 +1278,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -1264,6 +1307,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -1308,6 +1352,7 @@ jobs: '13.bastion.parameters.json', 'parameters.json' ] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -1338,6 +1383,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['6.sqlmi.parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -1366,6 +1412,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -1396,6 +1443,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -1424,6 +1472,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['internal.parameters.json'] + environment: 'Engineering' steps: - name: 'Checkout' uses: actions/checkout@v2 diff --git a/docs/wiki/Solution creation.md b/docs/wiki/Solution creation.md index 8d3a037343..28457e4137 100644 --- a/docs/wiki/Solution creation.md +++ b/docs/wiki/Solution creation.md @@ -405,6 +405,12 @@ on: - 'network-hub-rg/Parameters/**' - '.github/workflows/network-hub.yml' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} removeDeployment: false From 1ae3bc6471c2c25c2d7ad09719fa99148a1255fc Mon Sep 17 00:00:00 2001 From: Marius Storhaug Date: Sun, 26 Jun 2022 15:36:13 +0200 Subject: [PATCH 02/18] Added environments for Publishing and Validation --- .../jobs.validateModuleDeployment.yml | 10 +- .../jobs.validateModulePester.yml | 12 +- .../templates/publishModule/action.yml | 6 +- .../validateModuleDeployment/action.yml | 8 +- .../templates/validateModulePester/action.yml | 14 +-- .github/workflows/ms.aad.domainservices.yml | 16 +-- .../workflows/ms.analysisservices.servers.yml | 16 +-- .../workflows/ms.apimanagement.service.yml | 16 +-- ...s.appconfiguration.configurationstores.yml | 16 +-- .github/workflows/ms.authorization.locks.yml | 18 ++- .../ms.authorization.policyassignments.yml | 16 +-- .../ms.authorization.policydefinitions.yml | 16 +-- .../ms.authorization.policyexemptions.yml | 16 +-- .../ms.authorization.policysetdefinitions.yml | 16 +-- .../ms.authorization.roleassignments.yml | 16 +-- .../ms.authorization.roledefinitions.yml | 16 +-- .../ms.automation.automationaccounts.yml | 14 +-- .github/workflows/ms.batch.batchaccounts.yml | 16 +-- .../ms.cognitiveservices.accounts.yml | 16 +-- .../workflows/ms.compute.availabilitysets.yml | 16 +-- .../ms.compute.diskencryptionsets.yml | 16 +-- .github/workflows/ms.compute.disks.yml | 16 +-- .github/workflows/ms.compute.galleries.yml | 16 +-- .github/workflows/ms.compute.images.yml | 16 +-- .../ms.compute.proximityplacementgroups.yml | 16 +-- .../workflows/ms.compute.virtualmachines.yml | 16 +-- .../ms.compute.virtualmachinescalesets.yml | 16 +-- .github/workflows/ms.consumption.budgets.yml | 16 +-- .../ms.containerinstance.containergroups.yml | 16 +-- .../ms.containerregistry.registries.yml | 16 +-- .../ms.containerservice.managedclusters.yml | 16 +-- .../workflows/ms.databricks.workspaces.yml | 16 +-- .../workflows/ms.datafactory.factories.yml | 16 +-- .../ms.dataprotection.backupvaults.yml | 110 ++++++++++-------- ...esktopvirtualization.applicationgroups.yml | 16 +-- .../ms.desktopvirtualization.hostpools.yml | 16 +-- .../ms.desktopvirtualization.scalingplans.yml | 16 +-- .../ms.desktopvirtualization.workspaces.yml | 16 +-- .../ms.documentdb.databaseaccounts.yml | 16 +-- .../workflows/ms.eventgrid.systemtopics.yml | 16 +-- .github/workflows/ms.eventgrid.topics.yml | 16 +-- .github/workflows/ms.eventhub.namespaces.yml | 16 +-- .github/workflows/ms.healthbot.healthbots.yml | 16 +-- .../workflows/ms.insights.actiongroups.yml | 16 +-- .../ms.insights.activitylogalerts.yml | 16 +-- .github/workflows/ms.insights.components.yml | 16 +-- .../ms.insights.diagnosticsettings.yml | 16 +-- .../workflows/ms.insights.metricalerts.yml | 16 +-- .../ms.insights.privatelinkscopes.yml | 16 +-- .../ms.insights.scheduledqueryrules.yml | 16 +-- .github/workflows/ms.keyvault.vaults.yml | 16 +-- .../ms.kubernetesconfiguration.extensions.yml | 16 +-- ...rnetesconfiguration.fluxconfigurations.yml | 16 +-- .github/workflows/ms.logic.workflows.yml | 16 +-- .../ms.machinelearningservices.workspaces.yml | 16 +-- ...managedidentity.userassignedidentities.yml | 16 +-- ...anagedservices.registrationdefinitions.yml | 16 +-- .../ms.management.managementgroups.yml | 16 +-- .../workflows/ms.netapp.netappaccounts.yml | 16 +-- .../ms.network.applicationgateways.yml | 16 +-- .../ms.network.applicationsecuritygroups.yml | 16 +-- .../workflows/ms.network.azurefirewalls.yml | 16 +-- .github/workflows/ms.network.bastionhosts.yml | 16 +-- .github/workflows/ms.network.connections.yml | 16 +-- .../ms.network.ddosprotectionplans.yml | 16 +-- .../ms.network.expressroutecircuits.yml | 16 +-- .../workflows/ms.network.firewallpolicies.yml | 16 +-- .github/workflows/ms.network.frontdoors.yml | 16 +-- .github/workflows/ms.network.ipgroups.yml | 16 +-- .../workflows/ms.network.loadbalancers.yml | 16 +-- .../ms.network.localnetworkgateways.yml | 16 +-- .github/workflows/ms.network.natgateways.yml | 16 +-- .../ms.network.networkinterfaces.yml | 16 +-- .../ms.network.networksecuritygroups.yml | 16 +-- .../workflows/ms.network.networkwatchers.yml | 16 +-- .../workflows/ms.network.privatednszones.yml | 16 +-- .../workflows/ms.network.privateendpoints.yml | 16 +-- .../ms.network.publicipaddresses.yml | 16 +-- .../workflows/ms.network.publicipprefixes.yml | 16 +-- .github/workflows/ms.network.routetables.yml | 16 +-- .../ms.network.trafficmanagerprofiles.yml | 16 +-- .github/workflows/ms.network.virtualhubs.yml | 16 +-- .../ms.network.virtualnetworkgateways.yml | 16 +-- .../workflows/ms.network.virtualnetworks.yml | 16 +-- .github/workflows/ms.network.virtualwans.yml | 16 +-- .github/workflows/ms.network.vpngateways.yml | 16 +-- .github/workflows/ms.network.vpnsites.yml | 16 +-- .../ms.operationalinsights.workspaces.yml | 16 +-- .../ms.operationsmanagement.solutions.yml | 18 ++- .../workflows/ms.recoveryservices.vaults.yml | 16 +-- .../ms.resources.deploymentscripts.yml | 16 +-- .../workflows/ms.resources.resourcegroups.yml | 16 +-- .github/workflows/ms.resources.tags.yml | 16 +-- .../ms.security.azuresecuritycenter.yml | 16 +-- .../workflows/ms.servicebus.namespaces.yml | 16 +-- .../workflows/ms.servicefabric.clusters.yml | 16 +-- .github/workflows/ms.sql.managedinstances.yml | 16 +-- .github/workflows/ms.sql.servers.yml | 16 +-- .../workflows/ms.storage.storageaccounts.yml | 16 +-- .../workflows/ms.synapse.privatelinkhubs.yml | 16 +-- ...ms.virtualmachineimages.imagetemplates.yml | 16 +-- .github/workflows/ms.web.connections.yml | 16 +-- .../workflows/ms.web.hostingenvironments.yml | 16 +-- .github/workflows/ms.web.serverfarms.yml | 16 +-- .github/workflows/ms.web.sites.yml | 16 +-- .github/workflows/ms.web.staticsites.yml | 16 +-- .github/workflows/platform.dependencies.yml | 104 +++++++++-------- ...board module library and CI environment.md | 9 +- docs/wiki/Solution creation.md | 6 +- 109 files changed, 959 insertions(+), 922 deletions(-) diff --git a/.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml b/.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml index 207b45e811..7c1bf8a4d5 100644 --- a/.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml +++ b/.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml @@ -32,9 +32,9 @@ ## | checkoutRepositories | '' | An optional list of repositories to check out at the beginning of this job in addition to the source | 'Components' | ## | modulePath | '$(modulePath)' | The path to the module to deploy. E.g. [c:/KeyVault] | 'c:/KeyVault' | ## | deploymentBlocks | | The parameter file(s) to deploy with. Must be provided | path: 'C:/parameters.json' | -## | location | '$(location)' | The location to deploy with | 'EastUs2' | -## | resourceGroupName | '$(resourceGroupName)' | The resourcegroup to deploy into. Required only for Resource-Group-Level deployments | 'validation-rg' | -## | subscriptionId | '$(ARM_SUBSCRIPTION_ID)' | The id of the subscription to deploy into when using a Management group service connection | 'aed7c000-6387-412e-bed0-24dfddf4bbc6' | +## | location | '$(location)' | The location to deploy with | 'EastUs2' | +## | resourceGroupName | '$(resourceGroupName)' | The resourcegroup to deploy into. Required only for Resource-Group-Level deployments | 'validation-rg' | +## | subscriptionId | '$(AZURE_SUBSCRIPTION_ID)' | The id of the subscription to deploy into when using a Management group service connection | 'aed7c000-6387-412e-bed0-24dfddf4bbc6' | ## | managementGroupId | '$(ARM_MGMTGROUP_ID)' | The id of the management group to deploy into. Required only for Management-Group-Level deployments | '6ycc9620-cb01-454f-9ebc-fc6b1df48d64' | ## | parametersRepository | '$(Build.Repository.Name)' | The respository with the parameter files. Defaults to the triggering repository | 'Solutions' | ## | modulesRepository | '$(modulesRepository)' | The respository with the modules. | 'Components' | @@ -58,7 +58,7 @@ parameters: deploymentBlocks: '' location: '$(location)' resourceGroupName: '$(resourceGroupName)' - subscriptionId: '$(ARM_SUBSCRIPTION_ID)' + subscriptionId: '$(AZURE_SUBSCRIPTION_ID)' managementGroupId: '$(ARM_MGMTGROUP_ID)' parametersRepository: '$(Build.Repository.Name)' modulesRepository: '$(modulesRepository)' @@ -180,7 +180,7 @@ jobs: resourceGroupName = '${{ parameters.resourceGroupName }}' subscriptionId = '${{ parameters.subscriptionId }}' managementGroupId = '${{ parameters.managementGroupId }}' - tenantId = '$(ARM_TENANT_ID)' + tenantId = '$(AZURE_TENANT_ID)' deploymentSpId = '$(DEPLOYMENT_SP_ID)' } diff --git a/.azuredevops/pipelineTemplates/jobs.validateModulePester.yml b/.azuredevops/pipelineTemplates/jobs.validateModulePester.yml index 9e2870a142..13fd23b3ac 100644 --- a/.azuredevops/pipelineTemplates/jobs.validateModulePester.yml +++ b/.azuredevops/pipelineTemplates/jobs.validateModulePester.yml @@ -30,9 +30,9 @@ ## | defaultJobTimeoutInMinutes | 120 | The timeout for the job in this pipeline | 120 | ## | checkoutRepositories | '' | An optional list of repositories to check out at the beginning of this job in addition to the source | 'Components' | ## | modulePath | '$(modulePath)' | The path to the module to deploy. E.g. [c:/KeyVault] | 'c:/KeyVault' | -## | location | '$(location)' | The location to validate with | 'France Central' | -## | resourceGroupName | '$(resourceGroupName)' | The resourcegroup to validate into. Required only for Resource-Group-Level validations | 'validation-rg' | -## | subscriptionId | '$(ARM_SUBSCRIPTION_ID)' | The id of the subscription to validate with when using a Management group service connection | 'aed7c000-6387-412e-bed0-24dfddf4bbc6' | +## | location | '$(location)' | The location to validate with | 'France Central' | +## | resourceGroupName | '$(resourceGroupName)' | The resourcegroup to validate into. Required only for Resource-Group-Level validations | 'validation-rg' | +## | subscriptionId | '$(AZURE_SUBSCRIPTION_ID)' | The id of the subscription to validate with when using a Management group service connection | 'aed7c000-6387-412e-bed0-24dfddf4bbc6' | ## | managementGroupId | '$(ARM_MGMTGROUP_ID)' | The id of the management group to validate with. Required only for Management-Group-Level validations | '477c9620-cb01-454f-9ebc-fc6b1df48c14' | ## | parametersRepository | '$(Build.Repository.Name)' | The respository with the parameter files. Defaults to the triggering repository | 'Solutions' | ## | modulesRepository | '$(modulesRepository)' | The respository with the modules. | 'Components' | @@ -54,7 +54,7 @@ parameters: parametersRepository: '$(Build.Repository.Name)' location: '$(location)' resourceGroupName: '$(resourceGroupName)' - subscriptionId: '$(ARM_SUBSCRIPTION_ID)' + subscriptionId: '$(AZURE_SUBSCRIPTION_ID)' managementGroupId: '$(ARM_MGMTGROUP_ID)' modulesRepository: '$(modulesRepository)' # Azure PowerShell Version parameter @@ -155,8 +155,8 @@ jobs: if (-not [String]::IsNullOrEmpty('$(DEPLOYMENT_SP_ID)')) { $enforcedTokenList['deploymentSpId'] = '$(DEPLOYMENT_SP_ID)' } - if (-not [String]::IsNullOrEmpty('$(ARM_TENANT_ID)')) { - $enforcedTokenList['tenantId'] = '$(ARM_TENANT_ID)' + if (-not [String]::IsNullOrEmpty('$(AZURE_TENANT_ID)')) { + $enforcedTokenList['tenantId'] = '$(AZURE_TENANT_ID)' } # --------------------- # diff --git a/.github/actions/templates/publishModule/action.yml b/.github/actions/templates/publishModule/action.yml index 08984a8553..9c06910205 100644 --- a/.github/actions/templates/publishModule/action.yml +++ b/.github/actions/templates/publishModule/action.yml @@ -88,9 +88,9 @@ runs: - name: Azure Login uses: Azure/login@v1 with: - client-id: ${{ env.ARM_CLIENT_ID }} - tenant-id: ${{ env.ARM_TENANT_ID }} - subscription-id: ${{ env.ARM_SUBSCRIPTION_ID }} + client-id: ${{ env.AZURE_CLIENT_ID }} + tenant-id: ${{ env.AZURE_TENANT_ID }} + subscription-id: ${{ env.AZURE_SUBSCRIPTION_ID }} enable-AzPSSession: true - name: 'Publish module to template specs' diff --git a/.github/actions/templates/validateModuleDeployment/action.yml b/.github/actions/templates/validateModuleDeployment/action.yml index 9aa66b22ce..09486cf1f2 100644 --- a/.github/actions/templates/validateModuleDeployment/action.yml +++ b/.github/actions/templates/validateModuleDeployment/action.yml @@ -113,9 +113,9 @@ runs: - name: Azure Login uses: Azure/login@v1 with: - client-id: ${{ env.ARM_CLIENT_ID }} - tenant-id: ${{ env.ARM_TENANT_ID }} - subscription-id: ${{ env.ARM_SUBSCRIPTION_ID }} + client-id: ${{ env.AZURE_CLIENT_ID }} + tenant-id: ${{ env.AZURE_TENANT_ID }} + subscription-id: ${{ env.AZURE_SUBSCRIPTION_ID }} enable-AzPSSession: true # [Token replacement] task(s) @@ -147,7 +147,7 @@ runs: resourceGroupName = '${{ inputs.resourceGroupName }}' subscriptionId = '${{ inputs.subscriptionId }}' managementGroupId = '${{ inputs.managementGroupId }}' - tenantId = '${{ env.ARM_TENANT_ID }}' + tenantId = '${{ env.AZURE_TENANT_ID }}' deploymentSpId = '${{ env.DEPLOYMENT_SP_ID }}' } diff --git a/.github/actions/templates/validateModulePester/action.yml b/.github/actions/templates/validateModulePester/action.yml index 7fe6299034..85005eaae6 100644 --- a/.github/actions/templates/validateModulePester/action.yml +++ b/.github/actions/templates/validateModulePester/action.yml @@ -55,9 +55,9 @@ runs: - name: 'Azure Login' uses: Azure/login@v1 with: - client-id: ${{ env.ARM_CLIENT_ID }} - tenant-id: ${{ env.ARM_TENANT_ID }} - subscription-id: ${{ env.ARM_SUBSCRIPTION_ID }} + client-id: ${{ env.AZURE_CLIENT_ID }} + tenant-id: ${{ env.AZURE_TENANT_ID }} + subscription-id: ${{ env.AZURE_SUBSCRIPTION_ID }} enable-AzPSSession: true # [Module Pester Test] task(s) @@ -79,8 +79,8 @@ runs: } $enforcedTokenList = @{} - if (-not [String]::IsNullOrEmpty('${{ env.ARM_SUBSCRIPTION_ID }}')) { - $enforcedTokenList['subscriptionId'] = '${{ env.ARM_SUBSCRIPTION_ID }}' + if (-not [String]::IsNullOrEmpty('${{ env.AZURE_SUBSCRIPTION_ID }}')) { + $enforcedTokenList['subscriptionId'] = '${{ env.AZURE_SUBSCRIPTION_ID }}' } if (-not [String]::IsNullOrEmpty('${{ env.ARM_MGMTGROUP_ID }}')) { $enforcedTokenList['managementGroupId'] = '${{ env.ARM_MGMTGROUP_ID }}' @@ -88,8 +88,8 @@ runs: if (-not [String]::IsNullOrEmpty('${{ env.DEPLOYMENT_SP_ID }}')) { $enforcedTokenList['deploymentSpId'] = '${{ env.DEPLOYMENT_SP_ID }}' } - if (-not [String]::IsNullOrEmpty('${{ env.ARM_TENANT_ID }}')) { - $enforcedTokenList['tenantId'] = '${{ env.ARM_TENANT_ID }}' + if (-not [String]::IsNullOrEmpty('${{ env.AZURE_TENANT_ID }}')) { + $enforcedTokenList['tenantId'] = '${{ env.AZURE_TENANT_ID }}' } # --------------------- # diff --git a/.github/workflows/ms.aad.domainservices.yml b/.github/workflows/ms.aad.domainservices.yml index 46c50bd154..8e1fdddf9a 100644 --- a/.github/workflows/ms.aad.domainservices.yml +++ b/.github/workflows/ms.aad.domainservices.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.AAD/DomainServices' workflowPath: '.github/workflows/ms.aad.domainservices.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.analysisservices.servers.yml b/.github/workflows/ms.analysisservices.servers.yml index c8dd94e0fa..52a6794e30 100644 --- a/.github/workflows/ms.analysisservices.servers.yml +++ b/.github/workflows/ms.analysisservices.servers.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.AnalysisServices/servers' workflowPath: '.github/workflows/ms.analysisservices.servers.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.apimanagement.service.yml b/.github/workflows/ms.apimanagement.service.yml index db20f3935a..86fed08e2a 100644 --- a/.github/workflows/ms.apimanagement.service.yml +++ b/.github/workflows/ms.apimanagement.service.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.ApiManagement/service' workflowPath: '.github/workflows/ms.apimanagement.service.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.appconfiguration.configurationstores.yml b/.github/workflows/ms.appconfiguration.configurationstores.yml index 4b636f3873..2bb8e53306 100644 --- a/.github/workflows/ms.appconfiguration.configurationstores.yml +++ b/.github/workflows/ms.appconfiguration.configurationstores.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.AppConfiguration/configurationStores' workflowPath: '.github/workflows/ms.appconfiguration.configurationstores.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.authorization.locks.yml b/.github/workflows/ms.authorization.locks.yml index 49c6070b64..636d35c455 100644 --- a/.github/workflows/ms.authorization.locks.yml +++ b/.github/workflows/ms.authorization.locks.yml @@ -25,14 +25,20 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Authorization/locks' workflowPath: '.github/workflows/ms.authorization.locks.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -109,7 +118,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -118,6 +127,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.authorization.policyassignments.yml b/.github/workflows/ms.authorization.policyassignments.yml index d7f61815f0..c8c3c59b48 100644 --- a/.github/workflows/ms.authorization.policyassignments.yml +++ b/.github/workflows/ms.authorization.policyassignments.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Authorization/policyAssignments' workflowPath: '.github/workflows/ms.authorization.policyassignments.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -118,7 +118,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -127,7 +127,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.authorization.policydefinitions.yml b/.github/workflows/ms.authorization.policydefinitions.yml index 49c919594b..d8c740e13f 100644 --- a/.github/workflows/ms.authorization.policydefinitions.yml +++ b/.github/workflows/ms.authorization.policydefinitions.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Authorization/policyDefinitions' workflowPath: '.github/workflows/ms.authorization.policydefinitions.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -118,7 +118,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -127,7 +127,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.authorization.policyexemptions.yml b/.github/workflows/ms.authorization.policyexemptions.yml index 7df4ee0427..f8c4363cea 100644 --- a/.github/workflows/ms.authorization.policyexemptions.yml +++ b/.github/workflows/ms.authorization.policyexemptions.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Authorization/policyExemptions' workflowPath: '.github/workflows/ms.authorization.policyexemptions.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -118,7 +118,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -127,7 +127,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.authorization.policysetdefinitions.yml b/.github/workflows/ms.authorization.policysetdefinitions.yml index fce9ddd26a..fe64d6958b 100644 --- a/.github/workflows/ms.authorization.policysetdefinitions.yml +++ b/.github/workflows/ms.authorization.policysetdefinitions.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Authorization/policySetDefinitions' workflowPath: '.github/workflows/ms.authorization.policysetdefinitions.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -118,7 +118,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -127,7 +127,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.authorization.roleassignments.yml b/.github/workflows/ms.authorization.roleassignments.yml index a91afd3cb7..dfeef0f4f5 100644 --- a/.github/workflows/ms.authorization.roleassignments.yml +++ b/.github/workflows/ms.authorization.roleassignments.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Authorization/roleAssignments' workflowPath: '.github/workflows/ms.authorization.roleassignments.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -118,7 +118,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -127,7 +127,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.authorization.roledefinitions.yml b/.github/workflows/ms.authorization.roledefinitions.yml index b0fa7ff357..8a0a64cf18 100644 --- a/.github/workflows/ms.authorization.roledefinitions.yml +++ b/.github/workflows/ms.authorization.roledefinitions.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Authorization/roleDefinitions' workflowPath: '.github/workflows/ms.authorization.roledefinitions.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -118,7 +118,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -127,7 +127,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.automation.automationaccounts.yml b/.github/workflows/ms.automation.automationaccounts.yml index 2bf4b8f185..765b81524f 100644 --- a/.github/workflows/ms.automation.automationaccounts.yml +++ b/.github/workflows/ms.automation.automationaccounts.yml @@ -37,9 +37,9 @@ env: modulePath: 'arm/Microsoft.Automation/automationAccounts' workflowPath: '.github/workflows/ms.automation.automationaccounts.yml' AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} - ARM_SUBSCRIPTION_ID: ${{ secrets.ARM_SUBSCRIPTION_ID }} + AZURE_SUBSCRIPTION_ID: ${{ secrets.AZURE_SUBSCRIPTION_ID }} ARM_MGMTGROUP_ID: ${{ secrets.ARM_MGMTGROUP_ID }} - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -49,7 +49,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -75,7 +75,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -92,7 +92,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -116,7 +116,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -125,7 +125,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.batch.batchaccounts.yml b/.github/workflows/ms.batch.batchaccounts.yml index 138af6dd55..72719775db 100644 --- a/.github/workflows/ms.batch.batchaccounts.yml +++ b/.github/workflows/ms.batch.batchaccounts.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Batch/batchAccounts' workflowPath: '.github/workflows/ms.batch.batchaccounts.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.cognitiveservices.accounts.yml b/.github/workflows/ms.cognitiveservices.accounts.yml index 40170e0bd2..937dda72dc 100644 --- a/.github/workflows/ms.cognitiveservices.accounts.yml +++ b/.github/workflows/ms.cognitiveservices.accounts.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.CognitiveServices/accounts' workflowPath: '.github/workflows/ms.cognitiveservices.accounts.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.compute.availabilitysets.yml b/.github/workflows/ms.compute.availabilitysets.yml index 5bd83103f1..024e2320af 100644 --- a/.github/workflows/ms.compute.availabilitysets.yml +++ b/.github/workflows/ms.compute.availabilitysets.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Compute/availabilitySets' workflowPath: '.github/workflows/ms.compute.availabilitysets.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.compute.diskencryptionsets.yml b/.github/workflows/ms.compute.diskencryptionsets.yml index fc2ecbb746..2623f85f94 100644 --- a/.github/workflows/ms.compute.diskencryptionsets.yml +++ b/.github/workflows/ms.compute.diskencryptionsets.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Compute/diskEncryptionSets' workflowPath: '.github/workflows/ms.compute.diskencryptionsets.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.compute.disks.yml b/.github/workflows/ms.compute.disks.yml index d7d83fcadf..42d4af497c 100644 --- a/.github/workflows/ms.compute.disks.yml +++ b/.github/workflows/ms.compute.disks.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Compute/disks' workflowPath: '.github/workflows/ms.compute.disks.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.compute.galleries.yml b/.github/workflows/ms.compute.galleries.yml index 4d6497beb1..6604e9dbd5 100644 --- a/.github/workflows/ms.compute.galleries.yml +++ b/.github/workflows/ms.compute.galleries.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Compute/galleries' workflowPath: '.github/workflows/ms.compute.galleries.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.compute.images.yml b/.github/workflows/ms.compute.images.yml index ba8e23f20d..2c01f5d6d6 100644 --- a/.github/workflows/ms.compute.images.yml +++ b/.github/workflows/ms.compute.images.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Compute/images' workflowPath: '.github/workflows/ms.compute.images.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.compute.proximityplacementgroups.yml b/.github/workflows/ms.compute.proximityplacementgroups.yml index f40ce23da5..a739c23f25 100644 --- a/.github/workflows/ms.compute.proximityplacementgroups.yml +++ b/.github/workflows/ms.compute.proximityplacementgroups.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Compute/proximityPlacementGroups' workflowPath: '.github/workflows/ms.compute.proximityplacementgroups.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.compute.virtualmachines.yml b/.github/workflows/ms.compute.virtualmachines.yml index 9ac380d9c7..e439a3c49e 100644 --- a/.github/workflows/ms.compute.virtualmachines.yml +++ b/.github/workflows/ms.compute.virtualmachines.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Compute/virtualMachines' workflowPath: '.github/workflows/ms.compute.virtualmachines.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.compute.virtualmachinescalesets.yml b/.github/workflows/ms.compute.virtualmachinescalesets.yml index a815cf4869..2b2fcacdb2 100644 --- a/.github/workflows/ms.compute.virtualmachinescalesets.yml +++ b/.github/workflows/ms.compute.virtualmachinescalesets.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Compute/virtualMachineScaleSets' workflowPath: '.github/workflows/ms.compute.virtualmachinescalesets.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.consumption.budgets.yml b/.github/workflows/ms.consumption.budgets.yml index 6a652094ea..d95f52f476 100644 --- a/.github/workflows/ms.consumption.budgets.yml +++ b/.github/workflows/ms.consumption.budgets.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Consumption/budgets' workflowPath: '.github/workflows/ms.consumption.budgets.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.containerinstance.containergroups.yml b/.github/workflows/ms.containerinstance.containergroups.yml index ee47343373..80a0f9a29d 100644 --- a/.github/workflows/ms.containerinstance.containergroups.yml +++ b/.github/workflows/ms.containerinstance.containergroups.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.ContainerInstance/containerGroups' workflowPath: '.github/workflows/ms.containerinstance.containergroups.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.containerregistry.registries.yml b/.github/workflows/ms.containerregistry.registries.yml index 9f3c23d2b0..9616737b3e 100644 --- a/.github/workflows/ms.containerregistry.registries.yml +++ b/.github/workflows/ms.containerregistry.registries.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.ContainerRegistry/registries' workflowPath: '.github/workflows/ms.containerregistry.registries.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.containerservice.managedclusters.yml b/.github/workflows/ms.containerservice.managedclusters.yml index 67f49d44fc..abebccd661 100644 --- a/.github/workflows/ms.containerservice.managedclusters.yml +++ b/.github/workflows/ms.containerservice.managedclusters.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.ContainerService/managedClusters' workflowPath: '.github/workflows/ms.containerservice.managedclusters.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.databricks.workspaces.yml b/.github/workflows/ms.databricks.workspaces.yml index d3393b22a0..f04e020004 100644 --- a/.github/workflows/ms.databricks.workspaces.yml +++ b/.github/workflows/ms.databricks.workspaces.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Databricks/workspaces' workflowPath: '.github/workflows/ms.databricks.workspaces.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.datafactory.factories.yml b/.github/workflows/ms.datafactory.factories.yml index 4a68f23783..fb8deee195 100644 --- a/.github/workflows/ms.datafactory.factories.yml +++ b/.github/workflows/ms.datafactory.factories.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.DataFactory/factories' workflowPath: '.github/workflows/ms.datafactory.factories.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.dataprotection.backupvaults.yml b/.github/workflows/ms.dataprotection.backupvaults.yml index 58e5749b5e..ca5da8428a 100644 --- a/.github/workflows/ms.dataprotection.backupvaults.yml +++ b/.github/workflows/ms.dataprotection.backupvaults.yml @@ -1,39 +1,45 @@ -name: "DataProtection: BackupVaults" +name: 'DataProtection: BackupVaults' on: workflow_dispatch: inputs: removeDeployment: type: boolean - description: "Remove deployed module" + description: 'Remove deployed module' required: false default: true prerelease: type: boolean - description: "Publish prerelease module" + description: 'Publish prerelease module' required: false default: false push: branches: - main paths: - - ".github/actions/templates/**" - - ".github/workflows/ms.dataprotection.backupvaults.yml" - - "arm/Microsoft.DataProtection/backupVaults/**" - - "arm/.global/global.module.tests.ps1" - - "!*/**/readme.md" - - "utilities/pipelines/**" - - "!utilities/pipelines/dependencies/**" + - '.github/actions/templates/**' + - '.github/workflows/ms.dataprotection.backupvaults.yml' + - 'arm/Microsoft.DataProtection/backupVaults/**' + - 'arm/.global/global.module.tests.ps1' + - '!*/**/readme.md' + - 'utilities/pipelines/**' + - '!utilities/pipelines/dependencies/**' + +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action env: - variablesPath: "global.variables.yml" - modulePath: "arm/Microsoft.DataProtection/backupVaults" - workflowPath: ".github/workflows/ms.dataprotection.backupvaults.yml" - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} - ARM_SUBSCRIPTION_ID: "${{ secrets.ARM_SUBSCRIPTION_ID }}" - ARM_MGMTGROUP_ID: "${{ secrets.ARM_MGMTGROUP_ID }}" - ARM_TENANT_ID: "${{ secrets.ARM_TENANT_ID }}" - DEPLOYMENT_SP_ID: "${{ secrets.DEPLOYMENT_SP_ID }}" + variablesPath: 'global.variables.yml' + modulePath: 'arm/Microsoft.DataProtection/backupVaults' + workflowPath: '.github/workflows/ms.dataprotection.backupvaults.yml' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' + ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' + DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: ########################### @@ -41,22 +47,23 @@ jobs: ########################### job_initialize_pipeline: runs-on: ubuntu-20.04 - name: "Initialize pipeline" + name: 'Initialize pipeline' + environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 - - name: "Set input parameters to output variables" + - name: 'Set input parameters to output variables' id: get-workflow-param uses: ./.github/actions/templates/getWorkflowInput with: - workflowPath: "${{ env.workflowPath}}" - - name: "Get parameter file paths" + workflowPath: '${{ env.workflowPath}}' + - name: 'Get parameter file paths' id: get-parameter-file-paths uses: ./.github/actions/templates/getParameterFiles with: - modulePath: "${{ env.modulePath }}" + modulePath: '${{ env.modulePath }}' outputs: removeDeployment: ${{ steps.get-workflow-param.outputs.removeDeployment }} parameterFilePaths: ${{ steps.get-parameter-file-paths.outputs.parameterFilePaths }} @@ -66,23 +73,25 @@ jobs: ######################### job_module_pester_validation: runs-on: ubuntu-20.04 - name: "Static validation" + name: 'Static validation' + environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 - - name: "Run tests" + - name: 'Run tests' uses: ./.github/actions/templates/validateModulePester with: - modulePath: "${{ env.modulePath }}" + modulePath: '${{ env.modulePath }}' ############################# # Deployment validation # ############################# job_module_deploy_validation: runs-on: ubuntu-20.04 - name: "Deployment validation" + name: 'Deployment validation' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -91,7 +100,7 @@ jobs: matrix: parameterFilePaths: ${{ fromJSON(needs.job_initialize_pipeline.outputs.parameterFilePaths) }} steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -99,28 +108,29 @@ jobs: uses: ./.github/actions/templates/setEnvironmentVariables with: variablesPath: ${{ env.variablesPath }} - - name: "Using parameter file [${{ matrix.parameterFilePaths }}]" + - name: 'Using parameter file [${{ matrix.parameterFilePaths }}]' uses: ./.github/actions/templates/validateModuleDeployment with: - templateFilePath: "${{ env.modulePath }}/deploy.bicep" - parameterFilePath: "${{ env.modulePath }}/${{ matrix.parameterFilePaths }}" - location: "${{ env.location }}" - resourceGroupName: "${{ env.resourceGroupName }}" - subscriptionId: "${{ secrets.ARM_SUBSCRIPTION_ID }}" - managementGroupId: "${{ secrets.ARM_MGMTGROUP_ID }}" - removeDeployment: "${{ needs.job_initialize_pipeline.outputs.removeDeployment }}" + templateFilePath: '${{ env.modulePath }}/deploy.bicep' + parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' + location: '${{ env.location }}' + resourceGroupName: '${{ env.resourceGroupName }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' + managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' + removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' ################## # Publishing # ################## job_publish_module: - name: "Publishing" + name: 'Publishing' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: - job_module_deploy_validation steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -128,15 +138,15 @@ jobs: uses: ./.github/actions/templates/setEnvironmentVariables with: variablesPath: ${{ env.variablesPath }} - - name: "Publishing" + - name: 'Publishing' uses: ./.github/actions/templates/publishModule with: - templateFilePath: "${{ env.modulePath }}/deploy.bicep" - templateSpecsRGName: "${{ env.templateSpecsRGName }}" - templateSpecsRGLocation: "${{ env.templateSpecsRGLocation }}" - templateSpecsDescription: "${{ env.templateSpecsDescription }}" - templateSpecsDoPublish: "${{ env.templateSpecsDoPublish }}" - bicepRegistryName: "${{ env.bicepRegistryName }}" - bicepRegistryRGName: "${{ env.bicepRegistryRGName }}" - bicepRegistryRgLocation: "${{ env.bicepRegistryRgLocation }}" - bicepRegistryDoPublish: "${{ env.bicepRegistryDoPublish }}" \ No newline at end of file + templateFilePath: '${{ env.modulePath }}/deploy.bicep' + templateSpecsRGName: '${{ env.templateSpecsRGName }}' + templateSpecsRGLocation: '${{ env.templateSpecsRGLocation }}' + templateSpecsDescription: '${{ env.templateSpecsDescription }}' + templateSpecsDoPublish: '${{ env.templateSpecsDoPublish }}' + bicepRegistryName: '${{ env.bicepRegistryName }}' + bicepRegistryRGName: '${{ env.bicepRegistryRGName }}' + bicepRegistryRgLocation: '${{ env.bicepRegistryRgLocation }}' + bicepRegistryDoPublish: '${{ env.bicepRegistryDoPublish }}' diff --git a/.github/workflows/ms.desktopvirtualization.applicationgroups.yml b/.github/workflows/ms.desktopvirtualization.applicationgroups.yml index ed04f72ec9..c511c19561 100644 --- a/.github/workflows/ms.desktopvirtualization.applicationgroups.yml +++ b/.github/workflows/ms.desktopvirtualization.applicationgroups.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.DesktopVirtualization/applicationgroups' workflowPath: '.github/workflows/ms.desktopvirtualization.applicationgroups.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.desktopvirtualization.hostpools.yml b/.github/workflows/ms.desktopvirtualization.hostpools.yml index eaf1b907c9..8e03c92f68 100644 --- a/.github/workflows/ms.desktopvirtualization.hostpools.yml +++ b/.github/workflows/ms.desktopvirtualization.hostpools.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.DesktopVirtualization/hostpools' workflowPath: '.github/workflows/ms.desktopvirtualization.hostpools.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.desktopvirtualization.scalingplans.yml b/.github/workflows/ms.desktopvirtualization.scalingplans.yml index 86ba77c5a8..c4f18b4078 100644 --- a/.github/workflows/ms.desktopvirtualization.scalingplans.yml +++ b/.github/workflows/ms.desktopvirtualization.scalingplans.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.DesktopVirtualization/scalingplans' workflowPath: '.github/workflows/ms.desktopvirtualization.scalingplans.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.desktopvirtualization.workspaces.yml b/.github/workflows/ms.desktopvirtualization.workspaces.yml index 5e63178c3f..111662753c 100644 --- a/.github/workflows/ms.desktopvirtualization.workspaces.yml +++ b/.github/workflows/ms.desktopvirtualization.workspaces.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.DesktopVirtualization/workspaces' workflowPath: '.github/workflows/ms.desktopvirtualization.workspaces.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.documentdb.databaseaccounts.yml b/.github/workflows/ms.documentdb.databaseaccounts.yml index c37549fec0..62f8143c8e 100644 --- a/.github/workflows/ms.documentdb.databaseaccounts.yml +++ b/.github/workflows/ms.documentdb.databaseaccounts.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.DocumentDB/databaseAccounts' workflowPath: '.github/workflows/ms.documentdb.databaseaccounts.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.eventgrid.systemtopics.yml b/.github/workflows/ms.eventgrid.systemtopics.yml index 3cd31a1f36..662f3a6300 100644 --- a/.github/workflows/ms.eventgrid.systemtopics.yml +++ b/.github/workflows/ms.eventgrid.systemtopics.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.EventGrid/systemTopics' workflowPath: '.github/workflows/ms.eventgrid.systemtopics.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.eventgrid.topics.yml b/.github/workflows/ms.eventgrid.topics.yml index cd0139ca7c..798c9e25a7 100644 --- a/.github/workflows/ms.eventgrid.topics.yml +++ b/.github/workflows/ms.eventgrid.topics.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.EventGrid/topics' workflowPath: '.github/workflows/ms.eventgrid.topics.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.eventhub.namespaces.yml b/.github/workflows/ms.eventhub.namespaces.yml index ef5d373a71..711be280af 100644 --- a/.github/workflows/ms.eventhub.namespaces.yml +++ b/.github/workflows/ms.eventhub.namespaces.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.EventHub/namespaces' workflowPath: '.github/workflows/ms.eventhub.namespaces.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.healthbot.healthbots.yml b/.github/workflows/ms.healthbot.healthbots.yml index 3d5d303ebd..d977057eaf 100644 --- a/.github/workflows/ms.healthbot.healthbots.yml +++ b/.github/workflows/ms.healthbot.healthbots.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.HealthBot/healthBots' workflowPath: '.github/workflows/ms.healthbot.healthbots.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.insights.actiongroups.yml b/.github/workflows/ms.insights.actiongroups.yml index f669959d02..2e2b9246cd 100644 --- a/.github/workflows/ms.insights.actiongroups.yml +++ b/.github/workflows/ms.insights.actiongroups.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Insights/actionGroups' workflowPath: '.github/workflows/ms.insights.actiongroups.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.insights.activitylogalerts.yml b/.github/workflows/ms.insights.activitylogalerts.yml index 919a6dd44b..ed2b0be465 100644 --- a/.github/workflows/ms.insights.activitylogalerts.yml +++ b/.github/workflows/ms.insights.activitylogalerts.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Insights/activityLogAlerts' workflowPath: '.github/workflows/ms.insights.activitylogalerts.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.insights.components.yml b/.github/workflows/ms.insights.components.yml index 60f9417a1f..107c814dfd 100644 --- a/.github/workflows/ms.insights.components.yml +++ b/.github/workflows/ms.insights.components.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Insights/components' workflowPath: '.github/workflows/ms.insights.components.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.insights.diagnosticsettings.yml b/.github/workflows/ms.insights.diagnosticsettings.yml index 4a668f4721..d2f747f420 100644 --- a/.github/workflows/ms.insights.diagnosticsettings.yml +++ b/.github/workflows/ms.insights.diagnosticsettings.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Insights/diagnosticSettings' workflowPath: '.github/workflows/ms.insights.diagnosticsettings.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.insights.metricalerts.yml b/.github/workflows/ms.insights.metricalerts.yml index 6d96c6a7a2..f6d53b6c7f 100644 --- a/.github/workflows/ms.insights.metricalerts.yml +++ b/.github/workflows/ms.insights.metricalerts.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Insights/metricAlerts' workflowPath: '.github/workflows/ms.insights.metricalerts.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.insights.privatelinkscopes.yml b/.github/workflows/ms.insights.privatelinkscopes.yml index 6e0a1a0e55..2b118d3a11 100644 --- a/.github/workflows/ms.insights.privatelinkscopes.yml +++ b/.github/workflows/ms.insights.privatelinkscopes.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Insights/privateLinkScopes' workflowPath: '.github/workflows/ms.insights.privatelinkscopes.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.insights.scheduledqueryrules.yml b/.github/workflows/ms.insights.scheduledqueryrules.yml index 728be561f6..ba1f2fea6a 100644 --- a/.github/workflows/ms.insights.scheduledqueryrules.yml +++ b/.github/workflows/ms.insights.scheduledqueryrules.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Insights/scheduledQueryRules' workflowPath: '.github/workflows/ms.insights.scheduledqueryrules.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.keyvault.vaults.yml b/.github/workflows/ms.keyvault.vaults.yml index ea72656159..354127b339 100644 --- a/.github/workflows/ms.keyvault.vaults.yml +++ b/.github/workflows/ms.keyvault.vaults.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.KeyVault/vaults' workflowPath: '.github/workflows/ms.keyvault.vaults.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.kubernetesconfiguration.extensions.yml b/.github/workflows/ms.kubernetesconfiguration.extensions.yml index 81996f3835..323516f7b9 100644 --- a/.github/workflows/ms.kubernetesconfiguration.extensions.yml +++ b/.github/workflows/ms.kubernetesconfiguration.extensions.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.KubernetesConfiguration/extensions' workflowPath: '.github/workflows/ms.kubernetesconfiguration.extensions.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.kubernetesconfiguration.fluxconfigurations.yml b/.github/workflows/ms.kubernetesconfiguration.fluxconfigurations.yml index d9f1abc12a..4d0ac8377d 100644 --- a/.github/workflows/ms.kubernetesconfiguration.fluxconfigurations.yml +++ b/.github/workflows/ms.kubernetesconfiguration.fluxconfigurations.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.KubernetesConfiguration/fluxConfigurations' workflowPath: '.github/workflows/ms.kubernetesconfiguration.fluxconfigurations.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.logic.workflows.yml b/.github/workflows/ms.logic.workflows.yml index 00660f833c..5e3d5b7f0c 100644 --- a/.github/workflows/ms.logic.workflows.yml +++ b/.github/workflows/ms.logic.workflows.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Logic/workflows' workflowPath: '.github/workflows/ms.logic.workflows.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.machinelearningservices.workspaces.yml b/.github/workflows/ms.machinelearningservices.workspaces.yml index a12582ec51..c2cf3151d7 100644 --- a/.github/workflows/ms.machinelearningservices.workspaces.yml +++ b/.github/workflows/ms.machinelearningservices.workspaces.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.MachineLearningServices/workspaces' workflowPath: '.github/workflows/ms.machinelearningservices.workspaces.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.managedidentity.userassignedidentities.yml b/.github/workflows/ms.managedidentity.userassignedidentities.yml index feead5eca8..a446ad9b6c 100644 --- a/.github/workflows/ms.managedidentity.userassignedidentities.yml +++ b/.github/workflows/ms.managedidentity.userassignedidentities.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.ManagedIdentity/userAssignedIdentities' workflowPath: '.github/workflows/ms.managedidentity.userassignedidentities.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.managedservices.registrationdefinitions.yml b/.github/workflows/ms.managedservices.registrationdefinitions.yml index a8ab1d9ef9..c1ffc4ce49 100644 --- a/.github/workflows/ms.managedservices.registrationdefinitions.yml +++ b/.github/workflows/ms.managedservices.registrationdefinitions.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.ManagedServices/registrationDefinitions' workflowPath: '.github/workflows/ms.managedservices.registrationdefinitions.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.management.managementgroups.yml b/.github/workflows/ms.management.managementgroups.yml index c2ce434d1a..8600960bd7 100644 --- a/.github/workflows/ms.management.managementgroups.yml +++ b/.github/workflows/ms.management.managementgroups.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Management/managementGroups' workflowPath: '.github/workflows/ms.management.managementgroups.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.netapp.netappaccounts.yml b/.github/workflows/ms.netapp.netappaccounts.yml index e77737354c..c15bc0574b 100644 --- a/.github/workflows/ms.netapp.netappaccounts.yml +++ b/.github/workflows/ms.netapp.netappaccounts.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.NetApp/netAppAccounts' workflowPath: '.github/workflows/ms.netapp.netappaccounts.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.applicationgateways.yml b/.github/workflows/ms.network.applicationgateways.yml index fc29ae018e..82458bcc21 100644 --- a/.github/workflows/ms.network.applicationgateways.yml +++ b/.github/workflows/ms.network.applicationgateways.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/applicationGateways' workflowPath: '.github/workflows/ms.network.applicationgateways.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.applicationsecuritygroups.yml b/.github/workflows/ms.network.applicationsecuritygroups.yml index 3d3f0e987a..ecfa2b5673 100644 --- a/.github/workflows/ms.network.applicationsecuritygroups.yml +++ b/.github/workflows/ms.network.applicationsecuritygroups.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/applicationSecurityGroups' workflowPath: '.github/workflows/ms.network.applicationsecuritygroups.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.azurefirewalls.yml b/.github/workflows/ms.network.azurefirewalls.yml index 1fb6676179..712aaec4ae 100644 --- a/.github/workflows/ms.network.azurefirewalls.yml +++ b/.github/workflows/ms.network.azurefirewalls.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/azureFirewalls' workflowPath: '.github/workflows/ms.network.azurefirewalls.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.bastionhosts.yml b/.github/workflows/ms.network.bastionhosts.yml index 836dd1d620..570712ea16 100644 --- a/.github/workflows/ms.network.bastionhosts.yml +++ b/.github/workflows/ms.network.bastionhosts.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/bastionHosts' workflowPath: '.github/workflows/ms.network.bastionhosts.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.connections.yml b/.github/workflows/ms.network.connections.yml index a76b008037..a02c797374 100644 --- a/.github/workflows/ms.network.connections.yml +++ b/.github/workflows/ms.network.connections.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/connections' workflowPath: '.github/workflows/ms.network.connections.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.ddosprotectionplans.yml b/.github/workflows/ms.network.ddosprotectionplans.yml index e59853fab3..cc0f2975c9 100644 --- a/.github/workflows/ms.network.ddosprotectionplans.yml +++ b/.github/workflows/ms.network.ddosprotectionplans.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/ddosProtectionPlans' workflowPath: '.github/workflows/ms.network.ddosprotectionplans.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.expressroutecircuits.yml b/.github/workflows/ms.network.expressroutecircuits.yml index 75bc323064..5ee84b6b2d 100644 --- a/.github/workflows/ms.network.expressroutecircuits.yml +++ b/.github/workflows/ms.network.expressroutecircuits.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/expressRouteCircuits' workflowPath: '.github/workflows/ms.network.expressroutecircuits.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.firewallpolicies.yml b/.github/workflows/ms.network.firewallpolicies.yml index 0cacfc1664..0e242b1ce7 100644 --- a/.github/workflows/ms.network.firewallpolicies.yml +++ b/.github/workflows/ms.network.firewallpolicies.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/firewallPolicies' workflowPath: '.github/workflows/ms.network.firewallpolicies.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.frontdoors.yml b/.github/workflows/ms.network.frontdoors.yml index 8632b6d558..a7dbe4addc 100644 --- a/.github/workflows/ms.network.frontdoors.yml +++ b/.github/workflows/ms.network.frontdoors.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/frontDoors' workflowPath: '.github/workflows/ms.network.frontdoors.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.ipgroups.yml b/.github/workflows/ms.network.ipgroups.yml index 98c4306715..67e775d881 100644 --- a/.github/workflows/ms.network.ipgroups.yml +++ b/.github/workflows/ms.network.ipgroups.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/ipGroups' workflowPath: '.github/workflows/ms.network.ipgroups.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.loadbalancers.yml b/.github/workflows/ms.network.loadbalancers.yml index 556af5a7ae..787686e6d6 100644 --- a/.github/workflows/ms.network.loadbalancers.yml +++ b/.github/workflows/ms.network.loadbalancers.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/loadBalancers' workflowPath: '.github/workflows/ms.network.loadbalancers.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.localnetworkgateways.yml b/.github/workflows/ms.network.localnetworkgateways.yml index 4ba87b67fb..f39102ce10 100644 --- a/.github/workflows/ms.network.localnetworkgateways.yml +++ b/.github/workflows/ms.network.localnetworkgateways.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/localNetworkGateways' workflowPath: '.github/workflows/ms.network.localnetworkgateways.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.natgateways.yml b/.github/workflows/ms.network.natgateways.yml index f8edf88f88..480e3780c1 100644 --- a/.github/workflows/ms.network.natgateways.yml +++ b/.github/workflows/ms.network.natgateways.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/natGateways' workflowPath: '.github/workflows/ms.network.natgateways.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.networkinterfaces.yml b/.github/workflows/ms.network.networkinterfaces.yml index 302148a0a2..ec6cfd5657 100644 --- a/.github/workflows/ms.network.networkinterfaces.yml +++ b/.github/workflows/ms.network.networkinterfaces.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/networkInterfaces' workflowPath: '.github/workflows/ms.network.networkinterfaces.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.networksecuritygroups.yml b/.github/workflows/ms.network.networksecuritygroups.yml index e5ca5ce1bb..5be6ba447f 100644 --- a/.github/workflows/ms.network.networksecuritygroups.yml +++ b/.github/workflows/ms.network.networksecuritygroups.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/networkSecurityGroups' workflowPath: '.github/workflows/ms.network.networksecuritygroups.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.networkwatchers.yml b/.github/workflows/ms.network.networkwatchers.yml index 1172d1dc09..7630067e2d 100644 --- a/.github/workflows/ms.network.networkwatchers.yml +++ b/.github/workflows/ms.network.networkwatchers.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/networkWatchers' workflowPath: '.github/workflows/ms.network.networkwatchers.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.privatednszones.yml b/.github/workflows/ms.network.privatednszones.yml index 700cef7a58..7d68250bef 100644 --- a/.github/workflows/ms.network.privatednszones.yml +++ b/.github/workflows/ms.network.privatednszones.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/privateDnsZones' workflowPath: '.github/workflows/ms.network.privatednszones.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.privateendpoints.yml b/.github/workflows/ms.network.privateendpoints.yml index a75f1c8c21..a16ff3e727 100644 --- a/.github/workflows/ms.network.privateendpoints.yml +++ b/.github/workflows/ms.network.privateendpoints.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/privateEndpoints' workflowPath: '.github/workflows/ms.network.privateendpoints.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.publicipaddresses.yml b/.github/workflows/ms.network.publicipaddresses.yml index 702ed08b86..cbab23d6a1 100644 --- a/.github/workflows/ms.network.publicipaddresses.yml +++ b/.github/workflows/ms.network.publicipaddresses.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/publicIPAddresses' workflowPath: '.github/workflows/ms.network.publicipaddresses.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.publicipprefixes.yml b/.github/workflows/ms.network.publicipprefixes.yml index 04608a1334..dec6c7245b 100644 --- a/.github/workflows/ms.network.publicipprefixes.yml +++ b/.github/workflows/ms.network.publicipprefixes.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/publicIPPrefixes' workflowPath: '.github/workflows/ms.network.publicipprefixes.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.routetables.yml b/.github/workflows/ms.network.routetables.yml index c0f729ddb7..eb51d4e44e 100644 --- a/.github/workflows/ms.network.routetables.yml +++ b/.github/workflows/ms.network.routetables.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/routeTables' workflowPath: '.github/workflows/ms.network.routetables.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.trafficmanagerprofiles.yml b/.github/workflows/ms.network.trafficmanagerprofiles.yml index d6c0eecf56..66a324ecae 100644 --- a/.github/workflows/ms.network.trafficmanagerprofiles.yml +++ b/.github/workflows/ms.network.trafficmanagerprofiles.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/trafficmanagerprofiles' workflowPath: '.github/workflows/ms.network.trafficmanagerprofiles.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.virtualhubs.yml b/.github/workflows/ms.network.virtualhubs.yml index 921c1d92c6..b256f4ce3e 100644 --- a/.github/workflows/ms.network.virtualhubs.yml +++ b/.github/workflows/ms.network.virtualhubs.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/virtualHubs' workflowPath: '.github/workflows/ms.network.virtualhubs.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.virtualnetworkgateways.yml b/.github/workflows/ms.network.virtualnetworkgateways.yml index 8fc41b1042..a7c78f1883 100644 --- a/.github/workflows/ms.network.virtualnetworkgateways.yml +++ b/.github/workflows/ms.network.virtualnetworkgateways.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/virtualNetworkGateways' workflowPath: '.github/workflows/ms.network.virtualnetworkgateways.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.virtualnetworks.yml b/.github/workflows/ms.network.virtualnetworks.yml index 5b15bc988c..c591fe43dc 100644 --- a/.github/workflows/ms.network.virtualnetworks.yml +++ b/.github/workflows/ms.network.virtualnetworks.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/virtualNetworks' workflowPath: '.github/workflows/ms.network.virtualnetworks.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.virtualwans.yml b/.github/workflows/ms.network.virtualwans.yml index ccbbc9fe21..fb3623b00b 100644 --- a/.github/workflows/ms.network.virtualwans.yml +++ b/.github/workflows/ms.network.virtualwans.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/virtualWans' workflowPath: '.github/workflows/ms.network.virtualwans.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.vpngateways.yml b/.github/workflows/ms.network.vpngateways.yml index 6c8d144745..b7389862e9 100644 --- a/.github/workflows/ms.network.vpngateways.yml +++ b/.github/workflows/ms.network.vpngateways.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/vpnGateways' workflowPath: '.github/workflows/ms.network.vpngateways.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.network.vpnsites.yml b/.github/workflows/ms.network.vpnsites.yml index b21f7348d4..5b0b4a3625 100644 --- a/.github/workflows/ms.network.vpnsites.yml +++ b/.github/workflows/ms.network.vpnsites.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/vpnSites' workflowPath: '.github/workflows/ms.network.vpnsites.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.operationalinsights.workspaces.yml b/.github/workflows/ms.operationalinsights.workspaces.yml index 6317043718..06c4a47700 100644 --- a/.github/workflows/ms.operationalinsights.workspaces.yml +++ b/.github/workflows/ms.operationalinsights.workspaces.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.OperationalInsights/workspaces' workflowPath: '.github/workflows/ms.operationalinsights.workspaces.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.operationsmanagement.solutions.yml b/.github/workflows/ms.operationsmanagement.solutions.yml index db74fec086..e11f833c65 100644 --- a/.github/workflows/ms.operationsmanagement.solutions.yml +++ b/.github/workflows/ms.operationsmanagement.solutions.yml @@ -25,14 +25,20 @@ on: - 'utilities/pipelines/**' - '!utilities/pipelines/dependencies/**' +permissions: + id-token: write # OIDC + contents: read # OIDC + checks: write # enricomi/publish-unit-test-result-action + pull-requests: write # enricomi/publish-unit-test-result-action + env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.OperationsManagement/solutions' workflowPath: '.github/workflows/ms.operationsmanagement.solutions.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -42,6 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -67,6 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -83,6 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -106,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -115,6 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.recoveryservices.vaults.yml b/.github/workflows/ms.recoveryservices.vaults.yml index c89b73e566..e1b0e630e2 100644 --- a/.github/workflows/ms.recoveryservices.vaults.yml +++ b/.github/workflows/ms.recoveryservices.vaults.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.RecoveryServices/vaults' workflowPath: '.github/workflows/ms.recoveryservices.vaults.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.resources.deploymentscripts.yml b/.github/workflows/ms.resources.deploymentscripts.yml index 521ae352c6..a45d588624 100644 --- a/.github/workflows/ms.resources.deploymentscripts.yml +++ b/.github/workflows/ms.resources.deploymentscripts.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Resources/deploymentScripts' workflowPath: '.github/workflows/ms.resources.deploymentscripts.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.resources.resourcegroups.yml b/.github/workflows/ms.resources.resourcegroups.yml index cd92d146f5..3572c335db 100644 --- a/.github/workflows/ms.resources.resourcegroups.yml +++ b/.github/workflows/ms.resources.resourcegroups.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Resources/resourceGroups' workflowPath: '.github/workflows/ms.resources.resourcegroups.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.resources.tags.yml b/.github/workflows/ms.resources.tags.yml index eaf739cc68..128e8b07ce 100644 --- a/.github/workflows/ms.resources.tags.yml +++ b/.github/workflows/ms.resources.tags.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Resources/tags' workflowPath: '.github/workflows/ms.resources.tags.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.security.azuresecuritycenter.yml b/.github/workflows/ms.security.azuresecuritycenter.yml index 3a94a47029..35c8f54814 100644 --- a/.github/workflows/ms.security.azuresecuritycenter.yml +++ b/.github/workflows/ms.security.azuresecuritycenter.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Security/azureSecurityCenter' workflowPath: '.github/workflows/ms.security.azuresecuritycenter.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.servicebus.namespaces.yml b/.github/workflows/ms.servicebus.namespaces.yml index 3f40b3e897..c672f632cf 100644 --- a/.github/workflows/ms.servicebus.namespaces.yml +++ b/.github/workflows/ms.servicebus.namespaces.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.ServiceBus/namespaces' workflowPath: '.github/workflows/ms.servicebus.namespaces.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.servicefabric.clusters.yml b/.github/workflows/ms.servicefabric.clusters.yml index efac82cb56..7d77900c31 100644 --- a/.github/workflows/ms.servicefabric.clusters.yml +++ b/.github/workflows/ms.servicefabric.clusters.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.ServiceFabric/clusters' workflowPath: '.github/workflows/ms.servicefabric.clusters.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.sql.managedinstances.yml b/.github/workflows/ms.sql.managedinstances.yml index 3e41384fe0..2fe35bfdad 100644 --- a/.github/workflows/ms.sql.managedinstances.yml +++ b/.github/workflows/ms.sql.managedinstances.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Sql/managedInstances' workflowPath: '.github/workflows/ms.sql.managedinstances.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.sql.servers.yml b/.github/workflows/ms.sql.servers.yml index 8987157a35..51b81d6c47 100644 --- a/.github/workflows/ms.sql.servers.yml +++ b/.github/workflows/ms.sql.servers.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Sql/servers' workflowPath: '.github/workflows/ms.sql.servers.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.storage.storageaccounts.yml b/.github/workflows/ms.storage.storageaccounts.yml index f8e7532864..2035cf23a8 100644 --- a/.github/workflows/ms.storage.storageaccounts.yml +++ b/.github/workflows/ms.storage.storageaccounts.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Storage/storageAccounts' workflowPath: '.github/workflows/ms.storage.storageaccounts.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.synapse.privatelinkhubs.yml b/.github/workflows/ms.synapse.privatelinkhubs.yml index e60bce6d02..07343426b0 100644 --- a/.github/workflows/ms.synapse.privatelinkhubs.yml +++ b/.github/workflows/ms.synapse.privatelinkhubs.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Synapse/privateLinkHubs' workflowPath: '.github/workflows/ms.synapse.privatelinkhubs.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.virtualmachineimages.imagetemplates.yml b/.github/workflows/ms.virtualmachineimages.imagetemplates.yml index e576b977b4..ab842e56e0 100644 --- a/.github/workflows/ms.virtualmachineimages.imagetemplates.yml +++ b/.github/workflows/ms.virtualmachineimages.imagetemplates.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.VirtualMachineImages/imageTemplates' workflowPath: '.github/workflows/ms.virtualmachineimages.imagetemplates.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.web.connections.yml b/.github/workflows/ms.web.connections.yml index d16ce02346..b2d204e1e0 100644 --- a/.github/workflows/ms.web.connections.yml +++ b/.github/workflows/ms.web.connections.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Web/connections' workflowPath: '.github/workflows/ms.web.connections.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.web.hostingenvironments.yml b/.github/workflows/ms.web.hostingenvironments.yml index aadb87dbe1..d666793c33 100644 --- a/.github/workflows/ms.web.hostingenvironments.yml +++ b/.github/workflows/ms.web.hostingenvironments.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Web/hostingEnvironments' workflowPath: '.github/workflows/ms.web.hostingenvironments.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.web.serverfarms.yml b/.github/workflows/ms.web.serverfarms.yml index 089886e920..968b040864 100644 --- a/.github/workflows/ms.web.serverfarms.yml +++ b/.github/workflows/ms.web.serverfarms.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Web/serverfarms' workflowPath: '.github/workflows/ms.web.serverfarms.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.web.sites.yml b/.github/workflows/ms.web.sites.yml index fd3f543b75..002af53433 100644 --- a/.github/workflows/ms.web.sites.yml +++ b/.github/workflows/ms.web.sites.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Web/sites' workflowPath: '.github/workflows/ms.web.sites.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/ms.web.staticsites.yml b/.github/workflows/ms.web.staticsites.yml index 2cd9132c78..3c5bbeeaa4 100644 --- a/.github/workflows/ms.web.staticsites.yml +++ b/.github/workflows/ms.web.staticsites.yml @@ -35,10 +35,10 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Web/staticSites' workflowPath: '.github/workflows/ms.web.staticsites.yml' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -48,7 +48,7 @@ jobs: job_initialize_pipeline: runs-on: ubuntu-20.04 name: 'Initialize pipeline' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -74,7 +74,7 @@ jobs: job_module_pester_validation: runs-on: ubuntu-20.04 name: 'Static validation' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -91,7 +91,7 @@ jobs: job_module_deploy_validation: runs-on: ubuntu-20.04 name: 'Deployment validation' - environment: 'Engineering' + environment: 'Validation' needs: - job_initialize_pipeline - job_module_pester_validation @@ -115,7 +115,7 @@ jobs: parameterFilePath: '${{ env.modulePath }}/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ needs.job_initialize_pipeline.outputs.removeDeployment }}' @@ -124,7 +124,7 @@ jobs: ################## job_publish_module: name: 'Publishing' - environment: 'Engineering' + environment: 'Publishing' if: github.ref == 'refs/heads/main' || github.ref == 'refs/heads/master' || github.event.inputs.prerelease == 'true' runs-on: ubuntu-20.04 needs: diff --git a/.github/workflows/platform.dependencies.yml b/.github/workflows/platform.dependencies.yml index 1a8d07d92b..d0c677226b 100644 --- a/.github/workflows/platform.dependencies.yml +++ b/.github/workflows/platform.dependencies.yml @@ -34,10 +34,10 @@ env: resourceGroupNameArtifacts: 'artifacts-rg' removeDeployment: 'false' dependencyPath: 'utilities/pipelines/dependencies' - ARM_CLIENT_ID: ${{ secrets.ARM_CLIENT_ID }} - ARM_SUBSCRIPTION_ID: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' - ARM_TENANT_ID: '${{ secrets.ARM_TENANT_ID }}' + AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' jobs: @@ -49,7 +49,8 @@ jobs: strategy: fail-fast: false matrix: - parameterFilePaths: ['validation.parameters.json', 'locks.parameters.json'] + parameterFilePaths: + ['validation.parameters.json', 'locks.parameters.json'] environment: 'Engineering' steps: - name: 'Checkout' @@ -63,7 +64,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' @@ -92,7 +93,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' @@ -124,7 +125,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' @@ -164,7 +165,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' @@ -193,7 +194,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' @@ -222,7 +223,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' @@ -251,7 +252,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' @@ -266,7 +267,12 @@ jobs: fail-fast: false matrix: parameterFilePaths: - ['appi.parameters.json', 'aut.parameters.json', 'sol.parameters.json', 'parameters.json'] + [ + 'appi.parameters.json', + 'aut.parameters.json', + 'sol.parameters.json', + 'parameters.json', + ] environment: 'Engineering' steps: - name: 'Checkout' @@ -281,7 +287,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' @@ -311,7 +317,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' @@ -346,9 +352,9 @@ jobs: - name: Azure Login uses: azure/login@v1 with: - client-id: ${{ env.ARM_CLIENT_ID }} - tenant-id: ${{ env.ARM_TENANT_ID }} - subscription-id: ${{ env.ARM_SUBSCRIPTION_ID }} + client-id: ${{ env.AZURE_CLIENT_ID }} + tenant-id: ${{ env.AZURE_TENANT_ID }} + subscription-id: ${{ env.AZURE_SUBSCRIPTION_ID }} enable-AzPSSession: true - name: Run PowerShell @@ -423,7 +429,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' @@ -458,7 +464,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' @@ -511,9 +517,9 @@ jobs: - name: Azure Login uses: azure/login@v1 with: - client-id: ${{ env.ARM_CLIENT_ID }} - tenant-id: ${{ env.ARM_TENANT_ID }} - subscription-id: ${{ env.ARM_SUBSCRIPTION_ID }} + client-id: ${{ env.AZURE_CLIENT_ID }} + tenant-id: ${{ env.AZURE_TENANT_ID }} + subscription-id: ${{ env.AZURE_SUBSCRIPTION_ID }} enable-AzPSSession: true - name: 'Trigger building new image' @@ -625,7 +631,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' @@ -654,7 +660,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' @@ -683,7 +689,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' @@ -713,7 +719,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' @@ -751,7 +757,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' @@ -783,7 +789,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' @@ -823,7 +829,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' @@ -854,7 +860,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' @@ -885,7 +891,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' @@ -916,7 +922,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' @@ -948,7 +954,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' customParameterFileTokens: '{"msiPrincipalId":"${{ needs.job_deploy_msi.outputs.msiPrincipalId }}"}' @@ -982,7 +988,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' customParameterFileTokens: '{"msiPrincipalId":"${{ needs.job_deploy_msi.outputs.msiPrincipalId }}"}' @@ -1019,9 +1025,9 @@ jobs: - name: Azure Login uses: azure/login@v1 with: - client-id: ${{ env.ARM_CLIENT_ID }} - tenant-id: ${{ env.ARM_TENANT_ID }} - subscription-id: ${{ env.ARM_SUBSCRIPTION_ID }} + client-id: ${{ env.AZURE_CLIENT_ID }} + tenant-id: ${{ env.AZURE_TENANT_ID }} + subscription-id: ${{ env.AZURE_SUBSCRIPTION_ID }} enable-AzPSSession: true - name: 'Set key vault secrets keys and certificates' @@ -1166,7 +1172,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' customParameterFileTokens: '{"msiPrincipalId":"${{ needs.job_deploy_msi.outputs.msiPrincipalId }}"}' @@ -1203,9 +1209,9 @@ jobs: - name: Azure Login uses: azure/login@v1 with: - client-id: ${{ env.ARM_CLIENT_ID }} - tenant-id: ${{ env.ARM_TENANT_ID }} - subscription-id: ${{ env.ARM_SUBSCRIPTION_ID }} + client-id: ${{ env.AZURE_CLIENT_ID }} + tenant-id: ${{ env.AZURE_TENANT_ID }} + subscription-id: ${{ env.AZURE_SUBSCRIPTION_ID }} enable-AzPSSession: true - name: 'Set sqlmi key vault secrets and keys' @@ -1292,7 +1298,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' @@ -1321,7 +1327,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' customParameterFileTokens: '{"msiPrincipalId":"${{ needs.job_deploy_msi.outputs.msiPrincipalId }}"}' @@ -1350,7 +1356,7 @@ jobs: '11.azfw.parameters.json', '12.bastion.parameters.json', '13.bastion.parameters.json', - 'parameters.json' + 'parameters.json', ] environment: 'Engineering' steps: @@ -1366,7 +1372,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' @@ -1397,7 +1403,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' @@ -1426,7 +1432,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' @@ -1457,7 +1463,7 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' @@ -1486,6 +1492,6 @@ jobs: parameterFilePath: '${{ env.dependencyPath }}/${{ env.namespace }}/parameters/${{ matrix.parameterFilePaths }}' location: '${{ env.location }}' resourceGroupName: '${{ env.defaultResourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: '${{ env.removeDeployment }}' diff --git a/docs/wiki/Getting started - Scenario 2 Onboard module library and CI environment.md b/docs/wiki/Getting started - Scenario 2 Onboard module library and CI environment.md index 19b5ec3c7d..d8ead5fae2 100644 --- a/docs/wiki/Getting started - Scenario 2 Onboard module library and CI environment.md +++ b/docs/wiki/Getting started - Scenario 2 Onboard module library and CI environment.md @@ -127,11 +127,12 @@ For _GitHub_, you have to perform the following environment-specific steps: To use the environment's pipelines you should use the information you gathered during the [Azure setup](#1-configure-your-azure-environment) to set up the following repository secrets: + | Secret Name | Example | Description | | - | - | - | | `ARM_MGMTGROUP_ID` | `de33a0e7-64d9-4a94-8fe9-b018cedf1e05` | The group ID of the management group to test-deploy modules in. | -| `ARM_SUBSCRIPTION_ID` | `d0312b25-9160-4550-914f-8738d9b5caf5` | The ID of the subscription to test-deploy modules in. | -| `ARM_TENANT_ID` | `9734cec9-4384-445b-bbb6-767e7be6e5ec` | The tenant ID of the Azure Active Directory tenant to test-deploy modules in. | +| `AZURE_SUBSCRIPTION_ID` | `d0312b25-9160-4550-914f-8738d9b5caf5` | The ID of the subscription to test-deploy modules in. | +| `AZURE_TENANT_ID` | `9734cec9-4384-445b-bbb6-767e7be6e5ec` | The tenant ID of the Azure Active Directory tenant to test-deploy modules in. | | `DEPLOYMENT_SP_ID` | `de33a0e7-64d9-4a94-8fe9-b018cedf1e05` | The service principal ID (Object ID) of the principal used as the Azure service connection. Also used for test Role Assignments when modules are being deployed into Azure. | | `AZURE_CREDENTIALS` | `{"clientId": "4ce8ce4c-cac0-48eb-b815-65e5763e2929", "clientSecret": "", "subscriptionId": "d0312b25-9160-4550-914f-8738d9b5caf5", "tenantId": "9734cec9-4384-445b-bbb6-767e7be6e5ec" }` | The login credentials of the deployment principal used to log into the target Azure environment to test in. The format is described [here](https://github.com/Azure/login#configure-deployment-credentials). | | `PLATFORM_REPO_UPDATE_PAT` | `` | A private access token (PAT) with enough permissions assigned to it to push into the main branch. This PAT is leveraged by pipelines that automatically generate ReadMe files to keep them up to date. | @@ -261,8 +262,8 @@ Based on the information you gathered in the [Azure setup](#1-configure-your-azu | Secret Name | Example | Description | | - | - | - | | `ARM_MGMTGROUP_ID` | `de33a0e7-64d9-4a94-8fe9-b018cedf1e05` | The group ID of the management group to test-deploy modules in. | -| `ARM_SUBSCRIPTION_ID` | `d0312b25-9160-4550-914f-8738d9b5caf5` | The ID of the subscription to test-deploy modules in. | -| `ARM_TENANT_ID` | `9734cec9-4384-445b-bbb6-767e7be6e5ec` | The tenant ID of the Azure Active Directory tenant to test-deploy modules in. | +| `AZURE_SUBSCRIPTION_ID` | `d0312b25-9160-4550-914f-8738d9b5caf5` | The ID of the subscription to test-deploy modules in. | +| `AZURE_TENANT_ID` | `9734cec9-4384-445b-bbb6-767e7be6e5ec` | The tenant ID of the Azure Active Directory tenant to test-deploy modules in. | | `DEPLOYMENT_SP_ID` | `de33a0e7-64d9-4a94-8fe9-b018cedf1e05` | The service principal ID (Object ID) of the principal used as the Azure service connection. Also used for test Role Assignments when modules are being deployed into Azure. | Make sure its name matches the `group` reference used in the module pipelines. For example diff --git a/docs/wiki/Solution creation.md b/docs/wiki/Solution creation.md index 28457e4137..fc4d3fbbb8 100644 --- a/docs/wiki/Solution creation.md +++ b/docs/wiki/Solution creation.md @@ -446,7 +446,7 @@ jobs: parameterFilePath: './MultiRepoTestParentFolder/network-hub-rg/Parameters/ResourceGroup/parameters.json' location: '${{ env.defaultLocation }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: $(removeDeployment) @@ -457,7 +457,7 @@ jobs: parameterFilePath: './MultiRepoTestParentFolder/network-hub-rg/Parameters/NetworkSecurityGroups/parameters.json' location: '${{ env.defaultLocation }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: $(removeDeployment) @@ -468,7 +468,7 @@ jobs: parameterFilePath: './MultiRepoTestParentFolder/network-hub-rg/Parameters/VirtualNetwork/vnet-A.parameters.json' location: '${{ env.defaultLocation }}' resourceGroupName: '${{ env.resourceGroupName }}' - subscriptionId: '${{ secrets.ARM_SUBSCRIPTION_ID }}' + subscriptionId: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' managementGroupId: '${{ secrets.ARM_MGMTGROUP_ID }}' removeDeployment: $(removeDeployment) ``` From 47d86a05e8fd1d025f038db4b236b022dbdd3989 Mon Sep 17 00:00:00 2001 From: SeSeicht <48480298+SeSeicht@users.noreply.github.com> Date: Sun, 26 Jun 2022 16:04:29 +0200 Subject: [PATCH 03/18] [Pipeline] Users/seseicht/adjust publish (#1472) * enable publishing in different subscription Co-authored-by: Marius Storhaug --- .../pipelineTemplates/jobs.publishModule.yml | 14 +- .../jobs.validateModuleDeployment.yml | 24 +-- .../jobs.validateModulePester.yml | 12 +- .../platform.dependencies.yml | 10 +- .github/workflows/platform.dependencies.yml | 174 +++++++++--------- ...board module library and CI environment.md | 7 +- global.variables.yml | 3 +- .../Publish-ModuleToPrivateBicepRegistry.ps1 | 11 +- .../Publish-ModuleToTemplateSpec.ps1 | 13 +- 9 files changed, 147 insertions(+), 121 deletions(-) diff --git a/.azuredevops/pipelineTemplates/jobs.publishModule.yml b/.azuredevops/pipelineTemplates/jobs.publishModule.yml index 622e05a8e5..f057dd1fbf 100644 --- a/.azuredevops/pipelineTemplates/jobs.publishModule.yml +++ b/.azuredevops/pipelineTemplates/jobs.publishModule.yml @@ -21,8 +21,9 @@ ## |======================================================================================================================================================================================================================| ## | Parameter | Default Value | Description | Example | ## |---------------------------------|--------------------------------------|---------------------------------------------------------------------------------------------------------|-----------------------------------| -## | displayName | 'Publishing' | Name for the pipeline job | 'Publish KeyVault' | -## | serviceConnection | '$(serviceConnection)' | The service connection that connects to Azure | 'demo-internal' | +## | displayName | 'Publishing' | Name for the pipeline job | 'Publish KeyVault' | +## | serviceConnectionPublish | '$(serviceConnectionPublish)' | The service connection that connects to Azure | 'demo-internal' | +## | subscriptionId | '$(ARM_PUBLISH_SUBSCRIPTION_ID)' | The id of the subscription to deploy into when using a Management group service connection | 'aed7c000-6387-412e-bed0-24dfddf4bbc6'| ## | poolName | '$(poolName)' | You can provide either a [poolname] or [vmImage] to run the job on | 'Custom Deployment Pool' | ## | vmImage | '$(vmImage)' | You can provide either a [poolname] or [vmImage] to run the job on | 'ubuntu20.04' | ## | defaultJobTimeoutInMinutes | 120 | The timeout for the job in this pipeline | 120 | @@ -47,11 +48,12 @@ parameters: # Pipeline-related parameters checkoutRepositories: '' displayName: 'Publishing' - serviceConnection: '$(serviceConnection)' + serviceConnectionPublish: '$(serviceConnectionPublish)' poolName: '$(poolName)' vmImage: '$(vmImage)' defaultJobTimeoutInMinutes: 120 modulesRepository: '$(modulesRepository)' + subscriptionId: '$(ARM_PUBLISH_SUBSCRIPTION_ID)' # Logic-related parameters ## Module-related @@ -207,7 +209,7 @@ jobs: ) enabled: true inputs: - azureSubscription: '${{ parameters.serviceConnection }}' + azureSubscription: '${{ parameters.serviceConnectionPublish }}' azurePowerShellVersion: ${{ parameters.azurePowerShellVersion }} preferredAzurePowerShellVersion: ${{ parameters.preferredAzurePowerShellVersion }} pwsh: true @@ -243,6 +245,7 @@ jobs: TemplateSpecsRgName = '${{ parameters.templateSpecsRgName }}' TemplateSpecsRgLocation = '${{ parameters.templateSpecsRgLocation }}' TemplateSpecsDescription = '${{ parameters.templateSpecsDescription }}' + subscriptionId = '${{ parameters.subscriptionId }}' ModuleVersion = $ModuleToPublish.Version } @@ -263,7 +266,7 @@ jobs: ) inputs: addSpnToEnvironment: true - azureSubscription: '${{ parameters.serviceConnection }}' + azureSubscription: '${{ parameters.serviceConnectionPublish }}' scriptType: pscore scriptLocation: inlineScript inlineScript: | @@ -303,6 +306,7 @@ jobs: BicepRegistryName = '${{ parameters.bicepRegistryName }}' BicepRegistryRgName = '${{ parameters.bicepRegistryRgName }}' BicepRegistryRgLocation = '${{ parameters.bicepRegistryRgLocation }}' + subscriptionId = '${{ parameters.subscriptionId }}' ModuleVersion = $ModuleToPublish.Version } diff --git a/.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml b/.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml index 7c1bf8a4d5..829b0dd8e9 100644 --- a/.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml +++ b/.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml @@ -24,7 +24,7 @@ ## |=================================================================================================================================================================================================================================| ## | Parameter | Default Value | Description | Example | ## |---------------------------------|--------------------------------------|-----------------------------------------------------------------------------------------------------------|--------------------------------------------| -## | serviceConnection | '$(serviceConnection)' | The service connection that connects to Azure | 'demo-internal' | +## | serviceConnectionValidation | '$(serviceConnectionValidation)' | The service connection that connects to Azure | 'demo-internal' | ## | removeDeployment | '$(removeDeployment)' | Set to [true] to flag resource for removal. If not provided, defaults to false. | 'true' | ## | poolName | '$(poolName)' | You can provide either a [poolname] or [vmImage] to run the job on | 'Custom Deployment Pool' | ## | vmImage | '$(vmImage)' | You can provide either a [poolname] or [vmImage] to run the job on | 'ubuntu20.04' | @@ -34,7 +34,7 @@ ## | deploymentBlocks | | The parameter file(s) to deploy with. Must be provided | path: 'C:/parameters.json' | ## | location | '$(location)' | The location to deploy with | 'EastUs2' | ## | resourceGroupName | '$(resourceGroupName)' | The resourcegroup to deploy into. Required only for Resource-Group-Level deployments | 'validation-rg' | -## | subscriptionId | '$(AZURE_SUBSCRIPTION_ID)' | The id of the subscription to deploy into when using a Management group service connection | 'aed7c000-6387-412e-bed0-24dfddf4bbc6' | +## | subscriptionId | '$(ARM_VALIDATION_SUBSCRIPTION_ID)' | The id of the subscription to deploy into when using a Management group service connection | 'aed7c000-6387-412e-bed0-24dfddf4bbc6' | ## | managementGroupId | '$(ARM_MGMTGROUP_ID)' | The id of the management group to deploy into. Required only for Management-Group-Level deployments | '6ycc9620-cb01-454f-9ebc-fc6b1df48d64' | ## | parametersRepository | '$(Build.Repository.Name)' | The respository with the parameter files. Defaults to the triggering repository | 'Solutions' | ## | modulesRepository | '$(modulesRepository)' | The respository with the modules. | 'Components' | @@ -46,7 +46,7 @@ parameters: # Pipeline-related parameters - serviceConnection: '$(serviceConnection)' + serviceConnectionValidation: '$(serviceConnectionValidation)' poolName: '$(poolName)' vmImage: '$(vmImage)' defaultJobTimeoutInMinutes: 120 @@ -58,7 +58,7 @@ parameters: deploymentBlocks: '' location: '$(location)' resourceGroupName: '$(resourceGroupName)' - subscriptionId: '$(AZURE_SUBSCRIPTION_ID)' + subscriptionId: '$(ARM_VALIDATION_SUBSCRIPTION_ID)' managementGroupId: '$(ARM_MGMTGROUP_ID)' parametersRepository: '$(Build.Repository.Name)' modulesRepository: '$(modulesRepository)' @@ -153,9 +153,9 @@ jobs: # [Agent] Replace tokens #----------------------- - task: AzurePowerShell@5 - displayName: 'Replace Tokens [${{ deploymentBlock.path }}] via connection [${{ parameters.serviceConnection }}]' + displayName: 'Replace Tokens [${{ deploymentBlock.path }}] via connection [${{ parameters.serviceConnectionValidation }}]' inputs: - azureSubscription: ${{ parameters.serviceConnection }} + azureSubscription: ${{ parameters.serviceConnectionValidation }} azurePowerShellVersion: ${{ parameters.azurePowerShellVersion }} preferredAzurePowerShellVersion: ${{ parameters.preferredAzurePowerShellVersion }} ScriptType: InlineScript @@ -207,9 +207,9 @@ jobs: # [Validation] task(s) #--------------------- - task: AzurePowerShell@5 - displayName: 'Validate [${{ deploymentBlock.path }}] via connection [${{ parameters.serviceConnection }}]' + displayName: 'Validate [${{ deploymentBlock.path }}] via connection [${{ parameters.serviceConnectionValidation }}]' inputs: - azureSubscription: ${{ parameters.serviceConnection }} + azureSubscription: ${{ parameters.serviceConnectionValidation }} azurePowerShellVersion: ${{ parameters.azurePowerShellVersion }} preferredAzurePowerShellVersion: ${{ parameters.preferredAzurePowerShellVersion }} ScriptType: InlineScript @@ -258,10 +258,10 @@ jobs: # [Deployment] task(s) #--------------------- - task: AzurePowerShell@5 - displayName: 'Deploy [${{ deploymentBlock.path }}] via connection [${{ parameters.serviceConnection }}]' + displayName: 'Deploy [${{ deploymentBlock.path }}] via connection [${{ parameters.serviceConnectionValidation }}]' name: 'DeployModule' inputs: - azureSubscription: ${{ parameters.serviceConnection }} + azureSubscription: ${{ parameters.serviceConnectionValidation }} azurePowerShellVersion: ${{ parameters.azurePowerShellVersion }} preferredAzurePowerShellVersion: ${{ parameters.preferredAzurePowerShellVersion }} pwsh: true @@ -332,10 +332,10 @@ jobs: # [Removal] task(s) #------------------ - task: AzurePowerShell@5 - displayName: 'Remove deployed resources via [${{ parameters.serviceConnection }}]' + displayName: 'Remove deployed resources via [${{ parameters.serviceConnectionValidation }}]' condition: and(succeededOrFailed(), eq( '${{ parameters.removeDeployment }}', 'true'), not(eq(variables['deploymentName'],''))) inputs: - azureSubscription: ${{ parameters.serviceConnection }} + azureSubscription: ${{ parameters.serviceConnectionValidation }} azurePowerShellVersion: ${{ parameters.azurePowerShellVersion }} preferredAzurePowerShellVersion: ${{ parameters.preferredAzurePowerShellVersion }} ScriptType: InlineScript diff --git a/.azuredevops/pipelineTemplates/jobs.validateModulePester.yml b/.azuredevops/pipelineTemplates/jobs.validateModulePester.yml index 13fd23b3ac..d5fa16219f 100644 --- a/.azuredevops/pipelineTemplates/jobs.validateModulePester.yml +++ b/.azuredevops/pipelineTemplates/jobs.validateModulePester.yml @@ -24,7 +24,7 @@ ## |=============================================================================================================================================================================================================================| ## | Parameter | Default Value | Description | Example | ## |---------------------------------|--------------------------------------|-----------------------------------------------------------------------------------------------------------|----------------------------------------| -## | serviceConnection | '$(serviceConnection)' | The service connection that connects to Azure | 'demo-internal' | +## | serviceConnectionValidation | '$(serviceConnectionValidation)' | The service connection that connects to Azure | 'demo-internal' | ## | poolName | '$(poolName)' | You can provide either a [poolname] or [vmImage] to run the job on | 'Custom Deployment Pool' | ## | vmImage | '$(vmImage)' | You can provide either a [poolname] or [vmImage] to run the job on | 'ubuntu20.04' | ## | defaultJobTimeoutInMinutes | 120 | The timeout for the job in this pipeline | 120 | @@ -32,7 +32,7 @@ ## | modulePath | '$(modulePath)' | The path to the module to deploy. E.g. [c:/KeyVault] | 'c:/KeyVault' | ## | location | '$(location)' | The location to validate with | 'France Central' | ## | resourceGroupName | '$(resourceGroupName)' | The resourcegroup to validate into. Required only for Resource-Group-Level validations | 'validation-rg' | -## | subscriptionId | '$(AZURE_SUBSCRIPTION_ID)' | The id of the subscription to validate with when using a Management group service connection | 'aed7c000-6387-412e-bed0-24dfddf4bbc6' | +## | subscriptionId | '$(ARM_VALIDATION_SUBSCRIPTION_ID)' | The id of the subscription to validate with when using a Management group service connection | 'aed7c000-6387-412e-bed0-24dfddf4bbc6' | ## | managementGroupId | '$(ARM_MGMTGROUP_ID)' | The id of the management group to validate with. Required only for Management-Group-Level validations | '477c9620-cb01-454f-9ebc-fc6b1df48c14' | ## | parametersRepository | '$(Build.Repository.Name)' | The respository with the parameter files. Defaults to the triggering repository | 'Solutions' | ## | modulesRepository | '$(modulesRepository)' | The respository with the modules. | 'Components' | @@ -44,7 +44,7 @@ parameters: # Pipeline-related parameters - serviceConnection: '$(serviceConnection)' + serviceConnectionValidation: '$(serviceConnectionValidation)' poolName: '$(poolName)' vmImage: '$(vmImage)' defaultJobTimeoutInMinutes: 120 @@ -54,7 +54,7 @@ parameters: parametersRepository: '$(Build.Repository.Name)' location: '$(location)' resourceGroupName: '$(resourceGroupName)' - subscriptionId: '$(AZURE_SUBSCRIPTION_ID)' + subscriptionId: '$(ARM_VALIDATION_SUBSCRIPTION_ID)' managementGroupId: '$(ARM_MGMTGROUP_ID)' modulesRepository: '$(modulesRepository)' # Azure PowerShell Version parameter @@ -128,9 +128,9 @@ jobs: # [Module Pester Test] task(s) #----------------------------- - task: AzurePowerShell@5 - displayName: 'Run general tests via (Pester) via connection [${{ parameters.serviceConnection }}]' + displayName: 'Run general tests via (Pester) via connection [${{ parameters.serviceConnectionValidation }}]' inputs: - azureSubscription: ${{ parameters.serviceConnection }} + azureSubscription: ${{ parameters.serviceConnectionValidation }} azurePowerShellVersion: ${{ parameters.azurePowerShellVersion }} preferredAzurePowerShellVersion: ${{ parameters.preferredAzurePowerShellVersion }} ScriptType: InlineScript diff --git a/.azuredevops/platformPipelines/platform.dependencies.yml b/.azuredevops/platformPipelines/platform.dependencies.yml index 33013e95ea..52cabb42a5 100644 --- a/.azuredevops/platformPipelines/platform.dependencies.yml +++ b/.azuredevops/platformPipelines/platform.dependencies.yml @@ -238,7 +238,7 @@ stages: - task: AzurePowerShell@5 displayName: Upload files to storage account inputs: - azureSubscription: $(serviceConnection) + azureSubscription: $(serviceConnectionValidation) ScriptType: 'InlineScript' Inline: | $parameterFilePath = Join-Path '$(Build.SourcesDirectory)' '$(dependencyPath)' '$(resourceType)' 'parameters' 'parameters.json' @@ -350,7 +350,7 @@ stages: - task: AzurePowerShell@5 displayName: Trigger building new image inputs: - azureSubscription: $(serviceConnection) + azureSubscription: $(serviceConnectionValidation) ScriptType: 'InlineScript' Inline: | # Retrieving parameters from previous job outputs @@ -366,7 +366,7 @@ stages: - task: AzurePowerShell@5 displayName: Copy baked vhd to a storage account inputs: - azureSubscription: $(serviceConnection) + azureSubscription: $(serviceConnectionValidation) ScriptType: 'InlineScript' Inline: | @@ -687,7 +687,7 @@ stages: - task: AzurePowerShell@5 displayName: Set key vault secrets keys and certificates inputs: - azureSubscription: $(serviceConnection) + azureSubscription: $(serviceConnectionValidation) ScriptType: 'InlineScript' Inline: | $parameterFilePath = Join-Path '$(Build.SourcesDirectory)' '$(dependencyPath)' '$(resourceType)' 'parameters' 'parameters.json' @@ -825,7 +825,7 @@ stages: - task: AzurePowerShell@5 displayName: Set sqlmi key vault secrets and keys inputs: - azureSubscription: $(serviceConnection) + azureSubscription: $(serviceConnectionValidation) ScriptType: 'InlineScript' Inline: | diff --git a/.github/workflows/platform.dependencies.yml b/.github/workflows/platform.dependencies.yml index d0c677226b..9dcd1eee91 100644 --- a/.github/workflows/platform.dependencies.yml +++ b/.github/workflows/platform.dependencies.yml @@ -1,16 +1,16 @@ -name: '.Platform: Dependencies' +name: ".Platform: Dependencies" on: workflow_dispatch: inputs: deploySqlMiDependencies: type: boolean - description: 'Enable SqlMi dependencies deployment' + description: "Enable SqlMi dependencies deployment" required: false default: false deployVhdDependencies: type: boolean - description: 'Enable deployment of a vhd stored in a blob container' + description: "Enable deployment of a vhd stored in a blob container" required: false default: false @@ -43,7 +43,7 @@ env: jobs: job_deploy_rg: runs-on: ubuntu-20.04 - name: 'Deploy resource group' + name: "Deploy resource group" env: namespace: 'Microsoft.Resources\resourceGroups' strategy: @@ -53,11 +53,11 @@ jobs: ['validation.parameters.json', 'locks.parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 - - name: 'Deploy module' + - name: "Deploy module" uses: ./.github/actions/templates/validateModuleDeployment with: templateFilePath: 'arm/${{ env.namespace }}/deploy.bicep' @@ -70,7 +70,7 @@ jobs: job_deploy_ppg: runs-on: ubuntu-20.04 - name: 'Deploy proximity placement group' + name: "Deploy proximity placement group" env: namespace: 'Microsoft.Compute\proximityPlacementGroups' needs: @@ -81,7 +81,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -99,7 +99,7 @@ jobs: job_deploy_msi: runs-on: ubuntu-20.04 - name: 'Deploy user assigned identity' + name: "Deploy user assigned identity" env: namespace: 'Microsoft.ManagedIdentity\userAssignedIdentities' needs: @@ -112,7 +112,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -138,13 +138,13 @@ jobs: $msiPrincipalId = (ConvertFrom-Json $deploymentOutput).principalId Write-Verbose "msiPrincipalId: $msiPrincipalId" -Verbose Write-Output ('::set-output name={0}::{1}' -f 'msiPrincipalId', $msiPrincipalId) - azPSVersion: 'latest' + azPSVersion: "latest" job_deploy_sf: runs-on: ubuntu-20.04 - name: 'Deploy server farm' + name: "Deploy server farm" env: - namespace: 'Microsoft.Web/serverfarms' + namespace: "Microsoft.Web/serverfarms" needs: - job_deploy_rg strategy: @@ -153,7 +153,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -171,9 +171,9 @@ jobs: job_deploy_app: runs-on: ubuntu-20.04 - name: 'Deploy app' + name: "Deploy app" env: - namespace: 'Microsoft.Web/sites' + namespace: "Microsoft.Web/sites" needs: - job_deploy_sf strategy: @@ -182,7 +182,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -200,7 +200,7 @@ jobs: job_deploy_pa: runs-on: ubuntu-20.04 - name: 'Deploy policy assignment' + name: "Deploy policy assignment" env: namespace: 'Microsoft.Authorization\policyAssignments' needs: @@ -211,7 +211,7 @@ jobs: parameterFilePaths: ['mg.parameters.json', 'sub.parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -229,7 +229,7 @@ jobs: job_deploy_evh: runs-on: ubuntu-20.04 - name: 'Deploy eventhub' + name: "Deploy eventhub" env: namespace: 'Microsoft.EventHub\namespaces' needs: @@ -240,7 +240,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -258,7 +258,7 @@ jobs: job_deploy_law: runs-on: ubuntu-20.04 - name: 'Deploy log analytics workspace' + name: "Deploy log analytics workspace" env: namespace: 'Microsoft.OperationalInsights\workspaces' needs: @@ -275,7 +275,7 @@ jobs: ] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -293,7 +293,7 @@ jobs: job_deploy_sa: runs-on: ubuntu-20.04 - name: 'Deploy storage account' + name: "Deploy storage account" env: namespace: 'Microsoft.Storage\storageAccounts' needs: @@ -305,7 +305,7 @@ jobs: ['fa.parameters.json', 'law.parameters.json', 'parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -323,14 +323,14 @@ jobs: job_sa_upload_storage_files: runs-on: ubuntu-20.04 - name: 'Upload files to storage account' + name: "Upload files to storage account" env: namespace: 'Microsoft.Storage\storageAccounts' needs: - job_deploy_sa environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -402,11 +402,11 @@ jobs: Write-Verbose ($functionInput | ConvertTo-Json | Out-String) -Verbose Export-ContentToBlob @functionInput -Verbose - azPSVersion: 'latest' + azPSVersion: "latest" job_deploy_sig: runs-on: ubuntu-20.04 - name: 'Deploy shared image gallery and definition' + name: "Deploy shared image gallery and definition" env: namespace: 'Microsoft.Compute\galleries' needs: @@ -417,7 +417,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -435,7 +435,7 @@ jobs: job_deploy_imgt: runs-on: ubuntu-20.04 - name: 'Deploy image template' + name: "Deploy image template" if: github.event.inputs.deployVhdDependencies == 'true' env: namespace: 'Microsoft.VirtualMachineImages\imageTemplates' @@ -451,7 +451,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -480,11 +480,11 @@ jobs: Write-Verbose "imageTemplateResourceGroup: $imageTemplateResourceGroup" -Verbose Write-Output ('::set-output name={0}::{1}' -f 'imageTemplateName', $imageTemplateName) Write-Output ('::set-output name={0}::{1}' -f 'imageTemplateResourceGroup', $imageTemplateResourceGroup) - azPSVersion: 'latest' + azPSVersion: "latest" job_deploy_vhd_to_sa: runs-on: ubuntu-20.04 - name: 'Trigger vhd build and store it to a storage account blob container' + name: "Trigger vhd build and store it to a storage account blob container" if: github.event.inputs.deployVhdDependencies == 'true' env: imgtNamespace: 'Microsoft.VirtualMachineImages\imageTemplates' @@ -494,7 +494,7 @@ jobs: - job_deploy_sa environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -604,11 +604,11 @@ jobs: Force = $true } Start-AzStorageBlobCopy @resourceActionInputObject - azPSVersion: 'latest' + azPSVersion: "latest" job_deploy_ag: runs-on: ubuntu-20.04 - name: 'Deploy action groups' + name: "Deploy action groups" env: namespace: 'Microsoft.Insights\actionGroups' needs: @@ -619,7 +619,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -637,7 +637,7 @@ jobs: job_deploy_asg: runs-on: ubuntu-20.04 - name: 'Deploy application security groups' + name: "Deploy application security groups" env: namespace: 'Microsoft.Network\applicationSecurityGroups' needs: @@ -648,7 +648,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -666,7 +666,7 @@ jobs: job_deploy_udr: runs-on: ubuntu-20.04 - name: 'Deploy route tables' + name: "Deploy route tables" env: namespace: 'Microsoft.Network\routeTables' needs: @@ -677,7 +677,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -695,7 +695,7 @@ jobs: job_deploy_sqlmi_udr: runs-on: ubuntu-20.04 - name: 'Deploy sqlmi route tables' + name: "Deploy sqlmi route tables" if: github.event.inputs.deploySqlMiDependencies == 'true' env: namespace: 'Microsoft.Network\routeTables' @@ -707,7 +707,7 @@ jobs: parameterFilePaths: ['sqlMi.parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -725,7 +725,7 @@ jobs: job_deploy_nsg: runs-on: ubuntu-20.04 - name: 'Deploy network security groups' + name: "Deploy network security groups" env: namespace: 'Microsoft.Network\networkSecurityGroups' needs: @@ -737,15 +737,15 @@ jobs: matrix: parameterFilePaths: [ - 'apgw.parameters.json', - 'ase.parameters.json', - 'bastion.parameters.json', - 'aadds.parameters.json', - 'parameters.json', + "apgw.parameters.json", + "ase.parameters.json", + "bastion.parameters.json", + "aadds.parameters.json", + "parameters.json", ] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -763,7 +763,7 @@ jobs: job_deploy_sqlmi_nsg: runs-on: ubuntu-20.04 - name: 'Deploy sqlmi network security group' + name: "Deploy sqlmi network security group" if: github.event.inputs.deploySqlMiDependencies == 'true' env: namespace: 'Microsoft.Network\networkSecurityGroups' @@ -777,7 +777,7 @@ jobs: parameterFilePaths: ['sqlmi.parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -795,7 +795,7 @@ jobs: job_deploy_pip: runs-on: ubuntu-20.04 - name: 'Deploy public IP addresses' + name: "Deploy public IP addresses" env: namespace: 'Microsoft.Network\publicIPAddresses' needs: @@ -817,7 +817,7 @@ jobs: ] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -835,7 +835,7 @@ jobs: job_deploy_appi: runs-on: ubuntu-20.04 - name: 'Deploy application insight' + name: "Deploy application insight" env: namespace: 'Microsoft.Insights\components' needs: @@ -848,7 +848,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -866,7 +866,7 @@ jobs: job_deploy_aut: runs-on: ubuntu-20.04 - name: 'Deploy automation account' + name: "Deploy automation account" env: namespace: 'Microsoft.Automation\automationAccounts' needs: @@ -879,7 +879,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -897,7 +897,7 @@ jobs: job_deploy_avdhp: runs-on: ubuntu-20.04 - name: 'Deploy AVD host pool' + name: "Deploy AVD host pool" env: namespace: 'Microsoft.DesktopVirtualization\hostpools' needs: @@ -910,7 +910,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -928,7 +928,7 @@ jobs: job_deploy_rsv: runs-on: ubuntu-20.04 - name: 'Deploy recovery services vault' + name: "Deploy recovery services vault" env: namespace: 'Microsoft.RecoveryServices\vaults' needs: @@ -942,7 +942,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -961,7 +961,7 @@ jobs: job_deploy_kv: runs-on: ubuntu-20.04 - name: 'Deploy key vaults' + name: "Deploy key vaults" env: namespace: 'Microsoft.KeyVault\vaults' needs: @@ -976,7 +976,7 @@ jobs: ['parameters.json', 'pe.parameters.json', 'nopr.parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -996,14 +996,14 @@ jobs: job_deploy_kv_secrets: # Must run on windows as the used `New-SelfSignedCertificate` function is not available on linux runs-on: windows-2022 - name: 'Set key vault secrets keys and certificates' + name: "Set key vault secrets keys and certificates" env: namespace: 'Microsoft.KeyVault\vaults' needs: - job_deploy_kv environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -1141,11 +1141,11 @@ jobs: Write-Verbose ('Added key [{0}] to key vault [{1}]' -f $_.name, $noprKeyVaultName) -Verbose } - azPSVersion: 'latest' + azPSVersion: "latest" job_deploy_sqlmi_kv: runs-on: ubuntu-20.04 - name: 'Deploy sqlmi key vault' + name: "Deploy sqlmi key vault" if: github.event.inputs.deploySqlMiDependencies == 'true' env: namespace: 'Microsoft.KeyVault\vaults' @@ -1160,7 +1160,7 @@ jobs: parameterFilePaths: ['sqlmi.parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -1179,7 +1179,7 @@ jobs: job_deploy_sqlmi_kv_secrets: runs-on: ubuntu-20.04 - name: 'Set sqlmi key vault secrets and keys' + name: "Set sqlmi key vault secrets and keys" if: github.event.inputs.deploySqlMiDependencies == 'true' needs: - job_deploy_sqlmi_kv @@ -1187,7 +1187,7 @@ jobs: namespace: 'Microsoft.KeyVault\vaults' environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -1271,11 +1271,11 @@ jobs: $null = Add-AzKeyVaultKey -VaultName $keyVaultName -Name $_.name -Destination $_.Destination Write-Verbose ('Added key [{0}] to key vault [{1}]' -f $_.name, $keyVaultName) -Verbose } - azPSVersion: 'latest' + azPSVersion: "latest" job_deploy_avdag: runs-on: ubuntu-20.04 - name: 'Deploy AVD application group' + name: "Deploy AVD application group" env: namespace: 'Microsoft.DesktopVirtualization\applicationgroups' needs: @@ -1286,7 +1286,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -1304,7 +1304,7 @@ jobs: job_deploy_rolea: runs-on: ubuntu-20.04 - name: 'Deploy role assignments' + name: "Deploy role assignments" env: namespace: 'Microsoft.Authorization\roleAssignments' needs: @@ -1315,7 +1315,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -1334,7 +1334,7 @@ jobs: job_deploy_vnet: runs-on: ubuntu-20.04 - name: 'Deploy virtual networks' + name: "Deploy virtual networks" env: namespace: 'Microsoft.Network\virtualNetworks' needs: @@ -1360,7 +1360,7 @@ jobs: ] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -1378,7 +1378,7 @@ jobs: job_deploy_sqlmi_vnet: runs-on: ubuntu-20.04 - name: 'Deploy sqlmi virtual network' + name: "Deploy sqlmi virtual network" if: github.event.inputs.deploySqlMiDependencies == 'true' env: namespace: 'Microsoft.Network\virtualNetworks' @@ -1391,7 +1391,7 @@ jobs: parameterFilePaths: ['6.sqlmi.parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -1409,7 +1409,7 @@ jobs: job_deploy_dnszone: runs-on: ubuntu-20.04 - name: 'Deploy private DNS zones' + name: "Deploy private DNS zones" env: namespace: 'Microsoft.Network\privateDnsZones' needs: @@ -1420,7 +1420,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -1438,7 +1438,7 @@ jobs: job_deploy_vm: runs-on: ubuntu-20.04 - name: 'Deploy virtual machines' + name: "Deploy virtual machines" env: namespace: 'Microsoft.Compute\virtualMachines' needs: @@ -1451,7 +1451,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 @@ -1469,7 +1469,7 @@ jobs: job_deploy_lb: runs-on: ubuntu-20.04 - name: 'Deploy load balancers' + name: "Deploy load balancers" env: namespace: 'Microsoft.Network\loadBalancers' needs: @@ -1480,7 +1480,7 @@ jobs: parameterFilePaths: ['internal.parameters.json'] environment: 'Engineering' steps: - - name: 'Checkout' + - name: "Checkout" uses: actions/checkout@v2 with: fetch-depth: 0 diff --git a/docs/wiki/Getting started - Scenario 2 Onboard module library and CI environment.md b/docs/wiki/Getting started - Scenario 2 Onboard module library and CI environment.md index d8ead5fae2..d634ec984f 100644 --- a/docs/wiki/Getting started - Scenario 2 Onboard module library and CI environment.md +++ b/docs/wiki/Getting started - Scenario 2 Onboard module library and CI environment.md @@ -259,12 +259,13 @@ The variable group `PLATFORM_VARIABLES` must be set up in Azure DevOps as descri Based on the information you gathered in the [Azure setup](#1-configure-your-azure-environment), you must configure the following secrets in the variable group: + | Secret Name | Example | Description | | - | - | - | | `ARM_MGMTGROUP_ID` | `de33a0e7-64d9-4a94-8fe9-b018cedf1e05` | The group ID of the management group to test-deploy modules in. | -| `AZURE_SUBSCRIPTION_ID` | `d0312b25-9160-4550-914f-8738d9b5caf5` | The ID of the subscription to test-deploy modules in. | -| `AZURE_TENANT_ID` | `9734cec9-4384-445b-bbb6-767e7be6e5ec` | The tenant ID of the Azure Active Directory tenant to test-deploy modules in. | -| `DEPLOYMENT_SP_ID` | `de33a0e7-64d9-4a94-8fe9-b018cedf1e05` | The service principal ID (Object ID) of the principal used as the Azure service connection. Also used for test Role Assignments when modules are being deployed into Azure. | +| `ARM_VALIDATION_SUBSCRIPTION_ID` | `d0312b25-9160-4550-914f-8738d9b5caf5` | The ID of the subscription to test-deploy modules in. | +| `ARM_TENANT_ID` | `9734cec9-4384-445b-bbb6-767e7be6e5ec` | The tenant ID of the tenant to test-deploy modules in. | +| `DEPLOYMENT_SP_ID` | `de33a0e7-64d9-4a94-8fe9-b018cedf1e05` | The service principal ID (Object ID) of the principal used as the Azure service connection. Also used for test Role Assignments when modules are being deployed into Azure | Make sure its name matches the `group` reference used in the module pipelines. For example diff --git a/global.variables.yml b/global.variables.yml index 7fed8d13f9..fbd9dcefb3 100644 --- a/global.variables.yml +++ b/global.variables.yml @@ -38,7 +38,8 @@ variables: vmImage: 'ubuntu-latest' # Use this for Microsoft-hosted agents poolName: '' # Use this for self-hosted agents - serviceConnection: 'CARML-CSU-Tenant-Connection' + serviceConnectionValidation: 'CARML-CSU-Tenant-Connection' + serviceConnectionPublish: 'CARML-CSU-Tenant-Connection' ###################################### # Source diff --git a/utilities/pipelines/resourcePublish/Publish-ModuleToPrivateBicepRegistry.ps1 b/utilities/pipelines/resourcePublish/Publish-ModuleToPrivateBicepRegistry.ps1 index 584582b4e1..55abdfbb61 100644 --- a/utilities/pipelines/resourcePublish/Publish-ModuleToPrivateBicepRegistry.ps1 +++ b/utilities/pipelines/resourcePublish/Publish-ModuleToPrivateBicepRegistry.ps1 @@ -47,7 +47,10 @@ function Publish-ModuleToPrivateBicepRegistry { [string] $BicepRegistryRgName, [Parameter(Mandatory = $false)] - [string] $BicepRegistryRgLocation + [string] $BicepRegistryRgLocation, + + [Parameter(Mandatory = $false)] + [string] $subscriptionId ) begin { @@ -62,6 +65,12 @@ function Publish-ModuleToPrivateBicepRegistry { throw "The template in path [$TemplateFilePath] is no bicep template." } + # set AzContext + if (-not [String]::IsNullOrEmpty($subscriptionId)) { + Write-Verbose ('Setting context to subscription [{0}]' -f $subscriptionId) + $null = Set-AzContext -Subscription $subscriptionId + } + # Resource Group if (-not (Get-AzResourceGroup -Name $BicepRegistryRgName -ErrorAction 'SilentlyContinue')) { if ($PSCmdlet.ShouldProcess("Resource group [$BicepRegistryRgName] to location [$BicepRegistryRgLocation]", 'Deploy')) { diff --git a/utilities/pipelines/resourcePublish/Publish-ModuleToTemplateSpec.ps1 b/utilities/pipelines/resourcePublish/Publish-ModuleToTemplateSpec.ps1 index 1a0a883a5f..76cf37fbc8 100644 --- a/utilities/pipelines/resourcePublish/Publish-ModuleToTemplateSpec.ps1 +++ b/utilities/pipelines/resourcePublish/Publish-ModuleToTemplateSpec.ps1 @@ -48,7 +48,10 @@ function Publish-ModuleToTemplateSpec { [string] $TemplateSpecsRgLocation, [Parameter(Mandatory)] - [string] $TemplateSpecsDescription + [string] $TemplateSpecsDescription, + + [Parameter(Mandatory = $false)] + [string] $subscriptionId ) begin { @@ -68,6 +71,14 @@ function Publish-ModuleToTemplateSpec { } } + ############################# + ## set AzContext ## + ############################# + if (-not [String]::IsNullOrEmpty($subscriptionId)) { + Write-Verbose ('Setting context to subscription [{0}]' -f $subscriptionId) + $null = Set-AzContext -Subscription $subscriptionId + } + ################################ ## Create template spec ## ################################ From 20a13804d55e87b44790997c61dbd7dc4180657e Mon Sep 17 00:00:00 2001 From: Marius Storhaug Date: Sun, 26 Jun 2022 16:07:31 +0200 Subject: [PATCH 04/18] Update dependency workflow to use validation env --- .github/workflows/platform.dependencies.yml | 70 ++++++++++----------- 1 file changed, 35 insertions(+), 35 deletions(-) diff --git a/.github/workflows/platform.dependencies.yml b/.github/workflows/platform.dependencies.yml index d0c677226b..2ac9fbe02b 100644 --- a/.github/workflows/platform.dependencies.yml +++ b/.github/workflows/platform.dependencies.yml @@ -51,7 +51,7 @@ jobs: matrix: parameterFilePaths: ['validation.parameters.json', 'locks.parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -79,7 +79,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -110,7 +110,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -151,7 +151,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -180,7 +180,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -209,7 +209,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['mg.parameters.json', 'sub.parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -238,7 +238,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -273,7 +273,7 @@ jobs: 'sol.parameters.json', 'parameters.json', ] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -303,7 +303,7 @@ jobs: matrix: parameterFilePaths: ['fa.parameters.json', 'law.parameters.json', 'parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -328,7 +328,7 @@ jobs: namespace: 'Microsoft.Storage\storageAccounts' needs: - job_deploy_sa - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -415,7 +415,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -449,7 +449,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -492,7 +492,7 @@ jobs: needs: - job_deploy_imgt - job_deploy_sa - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -617,7 +617,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -646,7 +646,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -675,7 +675,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -705,7 +705,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['sqlMi.parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -743,7 +743,7 @@ jobs: 'aadds.parameters.json', 'parameters.json', ] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -775,7 +775,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['sqlmi.parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -815,7 +815,7 @@ jobs: 'fw.parameters.json', 'fw.additional.parameters.json', ] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -846,7 +846,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -877,7 +877,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -908,7 +908,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -940,7 +940,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -974,7 +974,7 @@ jobs: matrix: parameterFilePaths: ['parameters.json', 'pe.parameters.json', 'nopr.parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -1001,7 +1001,7 @@ jobs: namespace: 'Microsoft.KeyVault\vaults' needs: - job_deploy_kv - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -1158,7 +1158,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['sqlmi.parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -1185,7 +1185,7 @@ jobs: - job_deploy_sqlmi_kv env: namespace: 'Microsoft.KeyVault\vaults' - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -1284,7 +1284,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -1313,7 +1313,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -1358,7 +1358,7 @@ jobs: '13.bastion.parameters.json', 'parameters.json', ] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -1389,7 +1389,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['6.sqlmi.parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -1418,7 +1418,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -1449,7 +1449,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 @@ -1478,7 +1478,7 @@ jobs: fail-fast: false matrix: parameterFilePaths: ['internal.parameters.json'] - environment: 'Engineering' + environment: 'Validation' steps: - name: 'Checkout' uses: actions/checkout@v2 From 0cad50c8c0be8287448ed6e673d1eeb1ab168a7d Mon Sep 17 00:00:00 2001 From: Marius Storhaug Date: Sun, 26 Jun 2022 16:12:32 +0200 Subject: [PATCH 05/18] Fix todo tags and automationaccount --- .github/workflows/ms.automation.automationaccounts.yml | 2 +- ...- Scenario 2 Onboard module library and CI environment.md | 5 +++-- docs/wiki/Solution creation.md | 2 +- 3 files changed, 5 insertions(+), 4 deletions(-) diff --git a/.github/workflows/ms.automation.automationaccounts.yml b/.github/workflows/ms.automation.automationaccounts.yml index 765b81524f..06a5238d4d 100644 --- a/.github/workflows/ms.automation.automationaccounts.yml +++ b/.github/workflows/ms.automation.automationaccounts.yml @@ -36,7 +36,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Automation/automationAccounts' workflowPath: '.github/workflows/ms.automation.automationaccounts.yml' - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} AZURE_SUBSCRIPTION_ID: ${{ secrets.AZURE_SUBSCRIPTION_ID }} ARM_MGMTGROUP_ID: ${{ secrets.ARM_MGMTGROUP_ID }} AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/docs/wiki/Getting started - Scenario 2 Onboard module library and CI environment.md b/docs/wiki/Getting started - Scenario 2 Onboard module library and CI environment.md index d634ec984f..490012854e 100644 --- a/docs/wiki/Getting started - Scenario 2 Onboard module library and CI environment.md +++ b/docs/wiki/Getting started - Scenario 2 Onboard module library and CI environment.md @@ -127,7 +127,7 @@ For _GitHub_, you have to perform the following environment-specific steps: To use the environment's pipelines you should use the information you gathered during the [Azure setup](#1-configure-your-azure-environment) to set up the following repository secrets: - + | Secret Name | Example | Description | | - | - | - | | `ARM_MGMTGROUP_ID` | `de33a0e7-64d9-4a94-8fe9-b018cedf1e05` | The group ID of the management group to test-deploy modules in. | @@ -158,6 +158,7 @@ To use the environment's pipelines you should use the information you gathered d

+ > Special case: `AZURE_CREDENTIALS`, > This secret represent the service connection to Azure, and its value is a compressed JSON object that must match the following format: > @@ -259,7 +260,7 @@ The variable group `PLATFORM_VARIABLES` must be set up in Azure DevOps as descri Based on the information you gathered in the [Azure setup](#1-configure-your-azure-environment), you must configure the following secrets in the variable group: - + | Secret Name | Example | Description | | - | - | - | | `ARM_MGMTGROUP_ID` | `de33a0e7-64d9-4a94-8fe9-b018cedf1e05` | The group ID of the management group to test-deploy modules in. | diff --git a/docs/wiki/Solution creation.md b/docs/wiki/Solution creation.md index fc4d3fbbb8..cb099ef001 100644 --- a/docs/wiki/Solution creation.md +++ b/docs/wiki/Solution creation.md @@ -412,7 +412,7 @@ permissions: pull-requests: write # enricomi/publish-unit-test-result-action env: - AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} + AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} # TODO: Update this to use OIDC removeDeployment: false variablesPath: 'global.variables.yml' From b1726a4247701faf2237d88ce59eaee45e2cb895 Mon Sep 17 00:00:00 2001 From: Marius Storhaug Date: Sun, 26 Jun 2022 16:22:07 +0200 Subject: [PATCH 06/18] fix for workflows --- .../templates/publishModule/action.yml | 6 +- .../validateModuleDeployment/action.yml | 6 +- .../templates/validateModulePester/action.yml | 6 +- .github/workflows/ms.aad.domainservices.yml | 2 +- .../workflows/ms.analysisservices.servers.yml | 2 +- .../workflows/ms.apimanagement.service.yml | 2 +- ...s.appconfiguration.configurationstores.yml | 2 +- .github/workflows/ms.authorization.locks.yml | 2 +- .../ms.authorization.policyassignments.yml | 2 +- .../ms.authorization.policydefinitions.yml | 2 +- .../ms.authorization.policyexemptions.yml | 2 +- .../ms.authorization.policysetdefinitions.yml | 2 +- .../ms.authorization.roleassignments.yml | 2 +- .../ms.authorization.roledefinitions.yml | 2 +- .../ms.automation.automationaccounts.yml | 6 +- .github/workflows/ms.batch.batchaccounts.yml | 2 +- .../ms.cognitiveservices.accounts.yml | 2 +- .../workflows/ms.compute.availabilitysets.yml | 2 +- .../ms.compute.diskencryptionsets.yml | 2 +- .github/workflows/ms.compute.disks.yml | 2 +- .github/workflows/ms.compute.galleries.yml | 2 +- .github/workflows/ms.compute.images.yml | 2 +- .../ms.compute.proximityplacementgroups.yml | 2 +- .../workflows/ms.compute.virtualmachines.yml | 2 +- .../ms.compute.virtualmachinescalesets.yml | 2 +- .github/workflows/ms.consumption.budgets.yml | 2 +- .../ms.containerinstance.containergroups.yml | 2 +- .../ms.containerregistry.registries.yml | 2 +- .../ms.containerservice.managedclusters.yml | 2 +- .../workflows/ms.databricks.workspaces.yml | 2 +- .../workflows/ms.datafactory.factories.yml | 2 +- .../ms.dataprotection.backupvaults.yml | 2 +- ...esktopvirtualization.applicationgroups.yml | 2 +- .../ms.desktopvirtualization.hostpools.yml | 2 +- .../ms.desktopvirtualization.scalingplans.yml | 2 +- .../ms.desktopvirtualization.workspaces.yml | 2 +- .../ms.documentdb.databaseaccounts.yml | 2 +- .../workflows/ms.eventgrid.systemtopics.yml | 2 +- .github/workflows/ms.eventgrid.topics.yml | 2 +- .github/workflows/ms.eventhub.namespaces.yml | 2 +- .github/workflows/ms.healthbot.healthbots.yml | 2 +- .../workflows/ms.insights.actiongroups.yml | 2 +- .../ms.insights.activitylogalerts.yml | 2 +- .github/workflows/ms.insights.components.yml | 2 +- .../ms.insights.diagnosticsettings.yml | 2 +- .../workflows/ms.insights.metricalerts.yml | 2 +- .../ms.insights.privatelinkscopes.yml | 2 +- .../ms.insights.scheduledqueryrules.yml | 2 +- .github/workflows/ms.keyvault.vaults.yml | 2 +- .../ms.kubernetesconfiguration.extensions.yml | 2 +- ...rnetesconfiguration.fluxconfigurations.yml | 2 +- .github/workflows/ms.logic.workflows.yml | 2 +- .../ms.machinelearningservices.workspaces.yml | 2 +- ...managedidentity.userassignedidentities.yml | 2 +- ...anagedservices.registrationdefinitions.yml | 2 +- .../ms.management.managementgroups.yml | 2 +- .../workflows/ms.netapp.netappaccounts.yml | 2 +- .../ms.network.applicationgateways.yml | 2 +- .../ms.network.applicationsecuritygroups.yml | 2 +- .../workflows/ms.network.azurefirewalls.yml | 2 +- .github/workflows/ms.network.bastionhosts.yml | 2 +- .github/workflows/ms.network.connections.yml | 2 +- .../ms.network.ddosprotectionplans.yml | 2 +- .../ms.network.expressroutecircuits.yml | 2 +- .../workflows/ms.network.firewallpolicies.yml | 2 +- .github/workflows/ms.network.frontdoors.yml | 2 +- .github/workflows/ms.network.ipgroups.yml | 2 +- .../workflows/ms.network.loadbalancers.yml | 2 +- .../ms.network.localnetworkgateways.yml | 2 +- .github/workflows/ms.network.natgateways.yml | 2 +- .../ms.network.networkinterfaces.yml | 2 +- .../ms.network.networksecuritygroups.yml | 2 +- .../workflows/ms.network.networkwatchers.yml | 2 +- .../workflows/ms.network.privatednszones.yml | 2 +- .../workflows/ms.network.privateendpoints.yml | 2 +- .../ms.network.publicipaddresses.yml | 2 +- .../workflows/ms.network.publicipprefixes.yml | 2 +- .github/workflows/ms.network.routetables.yml | 2 +- .../ms.network.trafficmanagerprofiles.yml | 2 +- .github/workflows/ms.network.virtualhubs.yml | 2 +- .../ms.network.virtualnetworkgateways.yml | 2 +- .../workflows/ms.network.virtualnetworks.yml | 2 +- .github/workflows/ms.network.virtualwans.yml | 2 +- .github/workflows/ms.network.vpngateways.yml | 2 +- .github/workflows/ms.network.vpnsites.yml | 2 +- .../ms.operationalinsights.workspaces.yml | 2 +- .../ms.operationsmanagement.solutions.yml | 2 +- .../workflows/ms.recoveryservices.vaults.yml | 2 +- .../ms.resources.deploymentscripts.yml | 2 +- .../workflows/ms.resources.resourcegroups.yml | 2 +- .github/workflows/ms.resources.tags.yml | 2 +- .../ms.security.azuresecuritycenter.yml | 2 +- .../workflows/ms.servicebus.namespaces.yml | 2 +- .../workflows/ms.servicefabric.clusters.yml | 2 +- .github/workflows/ms.sql.managedinstances.yml | 2 +- .github/workflows/ms.sql.servers.yml | 2 +- .../workflows/ms.storage.storageaccounts.yml | 2 +- .../workflows/ms.synapse.privatelinkhubs.yml | 2 +- ...ms.virtualmachineimages.imagetemplates.yml | 2 +- .github/workflows/ms.web.connections.yml | 2 +- .../workflows/ms.web.hostingenvironments.yml | 2 +- .github/workflows/ms.web.serverfarms.yml | 2 +- .github/workflows/ms.web.sites.yml | 2 +- .github/workflows/ms.web.staticsites.yml | 2 +- .github/workflows/platform.dependencies.yml | 200 +++++++++--------- 105 files changed, 212 insertions(+), 212 deletions(-) diff --git a/.github/actions/templates/publishModule/action.yml b/.github/actions/templates/publishModule/action.yml index 9c06910205..c1fa533080 100644 --- a/.github/actions/templates/publishModule/action.yml +++ b/.github/actions/templates/publishModule/action.yml @@ -88,9 +88,9 @@ runs: - name: Azure Login uses: Azure/login@v1 with: - client-id: ${{ env.AZURE_CLIENT_ID }} - tenant-id: ${{ env.AZURE_TENANT_ID }} - subscription-id: ${{ env.AZURE_SUBSCRIPTION_ID }} + client-id: '${{ env.AZURE_CLIENT_ID }}' + tenant-id: '${{ env.AZURE_TENANT_ID }}' + subscription-id: '${{ env.AZURE_SUBSCRIPTION_ID }}' enable-AzPSSession: true - name: 'Publish module to template specs' diff --git a/.github/actions/templates/validateModuleDeployment/action.yml b/.github/actions/templates/validateModuleDeployment/action.yml index 09486cf1f2..1c4f4c39cb 100644 --- a/.github/actions/templates/validateModuleDeployment/action.yml +++ b/.github/actions/templates/validateModuleDeployment/action.yml @@ -113,9 +113,9 @@ runs: - name: Azure Login uses: Azure/login@v1 with: - client-id: ${{ env.AZURE_CLIENT_ID }} - tenant-id: ${{ env.AZURE_TENANT_ID }} - subscription-id: ${{ env.AZURE_SUBSCRIPTION_ID }} + client-id: '${{ env.AZURE_CLIENT_ID }}' + tenant-id: '${{ env.AZURE_TENANT_ID }}' + subscription-id: '${{ env.AZURE_SUBSCRIPTION_ID }}' enable-AzPSSession: true # [Token replacement] task(s) diff --git a/.github/actions/templates/validateModulePester/action.yml b/.github/actions/templates/validateModulePester/action.yml index 85005eaae6..a364f0620f 100644 --- a/.github/actions/templates/validateModulePester/action.yml +++ b/.github/actions/templates/validateModulePester/action.yml @@ -55,9 +55,9 @@ runs: - name: 'Azure Login' uses: Azure/login@v1 with: - client-id: ${{ env.AZURE_CLIENT_ID }} - tenant-id: ${{ env.AZURE_TENANT_ID }} - subscription-id: ${{ env.AZURE_SUBSCRIPTION_ID }} + client-id: '${{ env.AZURE_CLIENT_ID }}' + tenant-id: '${{ env.AZURE_TENANT_ID }}' + subscription-id: '${{ env.AZURE_SUBSCRIPTION_ID }}' enable-AzPSSession: true # [Module Pester Test] task(s) diff --git a/.github/workflows/ms.aad.domainservices.yml b/.github/workflows/ms.aad.domainservices.yml index 8e1fdddf9a..248e9d1947 100644 --- a/.github/workflows/ms.aad.domainservices.yml +++ b/.github/workflows/ms.aad.domainservices.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.AAD/DomainServices' workflowPath: '.github/workflows/ms.aad.domainservices.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.analysisservices.servers.yml b/.github/workflows/ms.analysisservices.servers.yml index 52a6794e30..80a619ee0e 100644 --- a/.github/workflows/ms.analysisservices.servers.yml +++ b/.github/workflows/ms.analysisservices.servers.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.AnalysisServices/servers' workflowPath: '.github/workflows/ms.analysisservices.servers.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.apimanagement.service.yml b/.github/workflows/ms.apimanagement.service.yml index 86fed08e2a..b0bbf37267 100644 --- a/.github/workflows/ms.apimanagement.service.yml +++ b/.github/workflows/ms.apimanagement.service.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.ApiManagement/service' workflowPath: '.github/workflows/ms.apimanagement.service.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.appconfiguration.configurationstores.yml b/.github/workflows/ms.appconfiguration.configurationstores.yml index 2bb8e53306..e12803b14d 100644 --- a/.github/workflows/ms.appconfiguration.configurationstores.yml +++ b/.github/workflows/ms.appconfiguration.configurationstores.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.AppConfiguration/configurationStores' workflowPath: '.github/workflows/ms.appconfiguration.configurationstores.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.authorization.locks.yml b/.github/workflows/ms.authorization.locks.yml index 636d35c455..9e0a713c19 100644 --- a/.github/workflows/ms.authorization.locks.yml +++ b/.github/workflows/ms.authorization.locks.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Authorization/locks' workflowPath: '.github/workflows/ms.authorization.locks.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.authorization.policyassignments.yml b/.github/workflows/ms.authorization.policyassignments.yml index c8c3c59b48..11dff11f46 100644 --- a/.github/workflows/ms.authorization.policyassignments.yml +++ b/.github/workflows/ms.authorization.policyassignments.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Authorization/policyAssignments' workflowPath: '.github/workflows/ms.authorization.policyassignments.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.authorization.policydefinitions.yml b/.github/workflows/ms.authorization.policydefinitions.yml index d8c740e13f..1a61e6348c 100644 --- a/.github/workflows/ms.authorization.policydefinitions.yml +++ b/.github/workflows/ms.authorization.policydefinitions.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Authorization/policyDefinitions' workflowPath: '.github/workflows/ms.authorization.policydefinitions.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.authorization.policyexemptions.yml b/.github/workflows/ms.authorization.policyexemptions.yml index f8c4363cea..4a6462c7e7 100644 --- a/.github/workflows/ms.authorization.policyexemptions.yml +++ b/.github/workflows/ms.authorization.policyexemptions.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Authorization/policyExemptions' workflowPath: '.github/workflows/ms.authorization.policyexemptions.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.authorization.policysetdefinitions.yml b/.github/workflows/ms.authorization.policysetdefinitions.yml index fe64d6958b..88fafbf14c 100644 --- a/.github/workflows/ms.authorization.policysetdefinitions.yml +++ b/.github/workflows/ms.authorization.policysetdefinitions.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Authorization/policySetDefinitions' workflowPath: '.github/workflows/ms.authorization.policysetdefinitions.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.authorization.roleassignments.yml b/.github/workflows/ms.authorization.roleassignments.yml index dfeef0f4f5..565db6be24 100644 --- a/.github/workflows/ms.authorization.roleassignments.yml +++ b/.github/workflows/ms.authorization.roleassignments.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Authorization/roleAssignments' workflowPath: '.github/workflows/ms.authorization.roleassignments.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.authorization.roledefinitions.yml b/.github/workflows/ms.authorization.roledefinitions.yml index 8a0a64cf18..4af2ff1fad 100644 --- a/.github/workflows/ms.authorization.roledefinitions.yml +++ b/.github/workflows/ms.authorization.roledefinitions.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Authorization/roleDefinitions' workflowPath: '.github/workflows/ms.authorization.roledefinitions.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.automation.automationaccounts.yml b/.github/workflows/ms.automation.automationaccounts.yml index 06a5238d4d..499720c0a7 100644 --- a/.github/workflows/ms.automation.automationaccounts.yml +++ b/.github/workflows/ms.automation.automationaccounts.yml @@ -36,9 +36,9 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Automation/automationAccounts' workflowPath: '.github/workflows/ms.automation.automationaccounts.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} - AZURE_SUBSCRIPTION_ID: ${{ secrets.AZURE_SUBSCRIPTION_ID }} - ARM_MGMTGROUP_ID: ${{ secrets.ARM_MGMTGROUP_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' + AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' + ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' DEPLOYMENT_SP_ID: '${{ secrets.DEPLOYMENT_SP_ID }}' diff --git a/.github/workflows/ms.batch.batchaccounts.yml b/.github/workflows/ms.batch.batchaccounts.yml index 72719775db..2e354f3a27 100644 --- a/.github/workflows/ms.batch.batchaccounts.yml +++ b/.github/workflows/ms.batch.batchaccounts.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Batch/batchAccounts' workflowPath: '.github/workflows/ms.batch.batchaccounts.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.cognitiveservices.accounts.yml b/.github/workflows/ms.cognitiveservices.accounts.yml index 937dda72dc..9d6d2d2f43 100644 --- a/.github/workflows/ms.cognitiveservices.accounts.yml +++ b/.github/workflows/ms.cognitiveservices.accounts.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.CognitiveServices/accounts' workflowPath: '.github/workflows/ms.cognitiveservices.accounts.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.compute.availabilitysets.yml b/.github/workflows/ms.compute.availabilitysets.yml index 024e2320af..abadc4907a 100644 --- a/.github/workflows/ms.compute.availabilitysets.yml +++ b/.github/workflows/ms.compute.availabilitysets.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Compute/availabilitySets' workflowPath: '.github/workflows/ms.compute.availabilitysets.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.compute.diskencryptionsets.yml b/.github/workflows/ms.compute.diskencryptionsets.yml index 2623f85f94..686902ddc4 100644 --- a/.github/workflows/ms.compute.diskencryptionsets.yml +++ b/.github/workflows/ms.compute.diskencryptionsets.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Compute/diskEncryptionSets' workflowPath: '.github/workflows/ms.compute.diskencryptionsets.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.compute.disks.yml b/.github/workflows/ms.compute.disks.yml index 42d4af497c..25539e4457 100644 --- a/.github/workflows/ms.compute.disks.yml +++ b/.github/workflows/ms.compute.disks.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Compute/disks' workflowPath: '.github/workflows/ms.compute.disks.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.compute.galleries.yml b/.github/workflows/ms.compute.galleries.yml index 6604e9dbd5..0f675f76a5 100644 --- a/.github/workflows/ms.compute.galleries.yml +++ b/.github/workflows/ms.compute.galleries.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Compute/galleries' workflowPath: '.github/workflows/ms.compute.galleries.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.compute.images.yml b/.github/workflows/ms.compute.images.yml index 2c01f5d6d6..3de958e333 100644 --- a/.github/workflows/ms.compute.images.yml +++ b/.github/workflows/ms.compute.images.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Compute/images' workflowPath: '.github/workflows/ms.compute.images.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.compute.proximityplacementgroups.yml b/.github/workflows/ms.compute.proximityplacementgroups.yml index a739c23f25..9e892770c9 100644 --- a/.github/workflows/ms.compute.proximityplacementgroups.yml +++ b/.github/workflows/ms.compute.proximityplacementgroups.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Compute/proximityPlacementGroups' workflowPath: '.github/workflows/ms.compute.proximityplacementgroups.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.compute.virtualmachines.yml b/.github/workflows/ms.compute.virtualmachines.yml index e439a3c49e..9ad9d4dac3 100644 --- a/.github/workflows/ms.compute.virtualmachines.yml +++ b/.github/workflows/ms.compute.virtualmachines.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Compute/virtualMachines' workflowPath: '.github/workflows/ms.compute.virtualmachines.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.compute.virtualmachinescalesets.yml b/.github/workflows/ms.compute.virtualmachinescalesets.yml index 2b2fcacdb2..05b68e1346 100644 --- a/.github/workflows/ms.compute.virtualmachinescalesets.yml +++ b/.github/workflows/ms.compute.virtualmachinescalesets.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Compute/virtualMachineScaleSets' workflowPath: '.github/workflows/ms.compute.virtualmachinescalesets.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.consumption.budgets.yml b/.github/workflows/ms.consumption.budgets.yml index d95f52f476..c36ca6b978 100644 --- a/.github/workflows/ms.consumption.budgets.yml +++ b/.github/workflows/ms.consumption.budgets.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Consumption/budgets' workflowPath: '.github/workflows/ms.consumption.budgets.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.containerinstance.containergroups.yml b/.github/workflows/ms.containerinstance.containergroups.yml index 80a0f9a29d..7619393178 100644 --- a/.github/workflows/ms.containerinstance.containergroups.yml +++ b/.github/workflows/ms.containerinstance.containergroups.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.ContainerInstance/containerGroups' workflowPath: '.github/workflows/ms.containerinstance.containergroups.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.containerregistry.registries.yml b/.github/workflows/ms.containerregistry.registries.yml index 9616737b3e..144af0816d 100644 --- a/.github/workflows/ms.containerregistry.registries.yml +++ b/.github/workflows/ms.containerregistry.registries.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.ContainerRegistry/registries' workflowPath: '.github/workflows/ms.containerregistry.registries.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.containerservice.managedclusters.yml b/.github/workflows/ms.containerservice.managedclusters.yml index abebccd661..c9a4564354 100644 --- a/.github/workflows/ms.containerservice.managedclusters.yml +++ b/.github/workflows/ms.containerservice.managedclusters.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.ContainerService/managedClusters' workflowPath: '.github/workflows/ms.containerservice.managedclusters.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.databricks.workspaces.yml b/.github/workflows/ms.databricks.workspaces.yml index f04e020004..baf631661f 100644 --- a/.github/workflows/ms.databricks.workspaces.yml +++ b/.github/workflows/ms.databricks.workspaces.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Databricks/workspaces' workflowPath: '.github/workflows/ms.databricks.workspaces.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.datafactory.factories.yml b/.github/workflows/ms.datafactory.factories.yml index fb8deee195..653d9b65bb 100644 --- a/.github/workflows/ms.datafactory.factories.yml +++ b/.github/workflows/ms.datafactory.factories.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.DataFactory/factories' workflowPath: '.github/workflows/ms.datafactory.factories.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.dataprotection.backupvaults.yml b/.github/workflows/ms.dataprotection.backupvaults.yml index ca5da8428a..559279fb27 100644 --- a/.github/workflows/ms.dataprotection.backupvaults.yml +++ b/.github/workflows/ms.dataprotection.backupvaults.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.DataProtection/backupVaults' workflowPath: '.github/workflows/ms.dataprotection.backupvaults.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.desktopvirtualization.applicationgroups.yml b/.github/workflows/ms.desktopvirtualization.applicationgroups.yml index c511c19561..f4fd972212 100644 --- a/.github/workflows/ms.desktopvirtualization.applicationgroups.yml +++ b/.github/workflows/ms.desktopvirtualization.applicationgroups.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.DesktopVirtualization/applicationgroups' workflowPath: '.github/workflows/ms.desktopvirtualization.applicationgroups.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.desktopvirtualization.hostpools.yml b/.github/workflows/ms.desktopvirtualization.hostpools.yml index 8e03c92f68..6ac8026474 100644 --- a/.github/workflows/ms.desktopvirtualization.hostpools.yml +++ b/.github/workflows/ms.desktopvirtualization.hostpools.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.DesktopVirtualization/hostpools' workflowPath: '.github/workflows/ms.desktopvirtualization.hostpools.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.desktopvirtualization.scalingplans.yml b/.github/workflows/ms.desktopvirtualization.scalingplans.yml index c4f18b4078..ed44af16f5 100644 --- a/.github/workflows/ms.desktopvirtualization.scalingplans.yml +++ b/.github/workflows/ms.desktopvirtualization.scalingplans.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.DesktopVirtualization/scalingplans' workflowPath: '.github/workflows/ms.desktopvirtualization.scalingplans.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.desktopvirtualization.workspaces.yml b/.github/workflows/ms.desktopvirtualization.workspaces.yml index 111662753c..95266b821d 100644 --- a/.github/workflows/ms.desktopvirtualization.workspaces.yml +++ b/.github/workflows/ms.desktopvirtualization.workspaces.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.DesktopVirtualization/workspaces' workflowPath: '.github/workflows/ms.desktopvirtualization.workspaces.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.documentdb.databaseaccounts.yml b/.github/workflows/ms.documentdb.databaseaccounts.yml index 62f8143c8e..c468c62487 100644 --- a/.github/workflows/ms.documentdb.databaseaccounts.yml +++ b/.github/workflows/ms.documentdb.databaseaccounts.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.DocumentDB/databaseAccounts' workflowPath: '.github/workflows/ms.documentdb.databaseaccounts.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.eventgrid.systemtopics.yml b/.github/workflows/ms.eventgrid.systemtopics.yml index 662f3a6300..829351e546 100644 --- a/.github/workflows/ms.eventgrid.systemtopics.yml +++ b/.github/workflows/ms.eventgrid.systemtopics.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.EventGrid/systemTopics' workflowPath: '.github/workflows/ms.eventgrid.systemtopics.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.eventgrid.topics.yml b/.github/workflows/ms.eventgrid.topics.yml index 798c9e25a7..22d542293a 100644 --- a/.github/workflows/ms.eventgrid.topics.yml +++ b/.github/workflows/ms.eventgrid.topics.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.EventGrid/topics' workflowPath: '.github/workflows/ms.eventgrid.topics.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.eventhub.namespaces.yml b/.github/workflows/ms.eventhub.namespaces.yml index 711be280af..18fc6f786b 100644 --- a/.github/workflows/ms.eventhub.namespaces.yml +++ b/.github/workflows/ms.eventhub.namespaces.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.EventHub/namespaces' workflowPath: '.github/workflows/ms.eventhub.namespaces.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.healthbot.healthbots.yml b/.github/workflows/ms.healthbot.healthbots.yml index d977057eaf..cd3bf1b765 100644 --- a/.github/workflows/ms.healthbot.healthbots.yml +++ b/.github/workflows/ms.healthbot.healthbots.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.HealthBot/healthBots' workflowPath: '.github/workflows/ms.healthbot.healthbots.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.insights.actiongroups.yml b/.github/workflows/ms.insights.actiongroups.yml index 2e2b9246cd..8c39a8dfac 100644 --- a/.github/workflows/ms.insights.actiongroups.yml +++ b/.github/workflows/ms.insights.actiongroups.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Insights/actionGroups' workflowPath: '.github/workflows/ms.insights.actiongroups.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.insights.activitylogalerts.yml b/.github/workflows/ms.insights.activitylogalerts.yml index ed2b0be465..9f12cd0993 100644 --- a/.github/workflows/ms.insights.activitylogalerts.yml +++ b/.github/workflows/ms.insights.activitylogalerts.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Insights/activityLogAlerts' workflowPath: '.github/workflows/ms.insights.activitylogalerts.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.insights.components.yml b/.github/workflows/ms.insights.components.yml index 107c814dfd..2e3f31d244 100644 --- a/.github/workflows/ms.insights.components.yml +++ b/.github/workflows/ms.insights.components.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Insights/components' workflowPath: '.github/workflows/ms.insights.components.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.insights.diagnosticsettings.yml b/.github/workflows/ms.insights.diagnosticsettings.yml index d2f747f420..2ed56a2a77 100644 --- a/.github/workflows/ms.insights.diagnosticsettings.yml +++ b/.github/workflows/ms.insights.diagnosticsettings.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Insights/diagnosticSettings' workflowPath: '.github/workflows/ms.insights.diagnosticsettings.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.insights.metricalerts.yml b/.github/workflows/ms.insights.metricalerts.yml index f6d53b6c7f..006279d618 100644 --- a/.github/workflows/ms.insights.metricalerts.yml +++ b/.github/workflows/ms.insights.metricalerts.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Insights/metricAlerts' workflowPath: '.github/workflows/ms.insights.metricalerts.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.insights.privatelinkscopes.yml b/.github/workflows/ms.insights.privatelinkscopes.yml index 2b118d3a11..c72c84a817 100644 --- a/.github/workflows/ms.insights.privatelinkscopes.yml +++ b/.github/workflows/ms.insights.privatelinkscopes.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Insights/privateLinkScopes' workflowPath: '.github/workflows/ms.insights.privatelinkscopes.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.insights.scheduledqueryrules.yml b/.github/workflows/ms.insights.scheduledqueryrules.yml index ba1f2fea6a..af519e10cd 100644 --- a/.github/workflows/ms.insights.scheduledqueryrules.yml +++ b/.github/workflows/ms.insights.scheduledqueryrules.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Insights/scheduledQueryRules' workflowPath: '.github/workflows/ms.insights.scheduledqueryrules.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.keyvault.vaults.yml b/.github/workflows/ms.keyvault.vaults.yml index 354127b339..5a9ce3d748 100644 --- a/.github/workflows/ms.keyvault.vaults.yml +++ b/.github/workflows/ms.keyvault.vaults.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.KeyVault/vaults' workflowPath: '.github/workflows/ms.keyvault.vaults.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.kubernetesconfiguration.extensions.yml b/.github/workflows/ms.kubernetesconfiguration.extensions.yml index 323516f7b9..feb39afdf9 100644 --- a/.github/workflows/ms.kubernetesconfiguration.extensions.yml +++ b/.github/workflows/ms.kubernetesconfiguration.extensions.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.KubernetesConfiguration/extensions' workflowPath: '.github/workflows/ms.kubernetesconfiguration.extensions.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.kubernetesconfiguration.fluxconfigurations.yml b/.github/workflows/ms.kubernetesconfiguration.fluxconfigurations.yml index 4d0ac8377d..425a531f5d 100644 --- a/.github/workflows/ms.kubernetesconfiguration.fluxconfigurations.yml +++ b/.github/workflows/ms.kubernetesconfiguration.fluxconfigurations.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.KubernetesConfiguration/fluxConfigurations' workflowPath: '.github/workflows/ms.kubernetesconfiguration.fluxconfigurations.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.logic.workflows.yml b/.github/workflows/ms.logic.workflows.yml index 5e3d5b7f0c..c42c1a14f3 100644 --- a/.github/workflows/ms.logic.workflows.yml +++ b/.github/workflows/ms.logic.workflows.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Logic/workflows' workflowPath: '.github/workflows/ms.logic.workflows.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.machinelearningservices.workspaces.yml b/.github/workflows/ms.machinelearningservices.workspaces.yml index c2cf3151d7..977a209c85 100644 --- a/.github/workflows/ms.machinelearningservices.workspaces.yml +++ b/.github/workflows/ms.machinelearningservices.workspaces.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.MachineLearningServices/workspaces' workflowPath: '.github/workflows/ms.machinelearningservices.workspaces.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.managedidentity.userassignedidentities.yml b/.github/workflows/ms.managedidentity.userassignedidentities.yml index a446ad9b6c..20d776f4d1 100644 --- a/.github/workflows/ms.managedidentity.userassignedidentities.yml +++ b/.github/workflows/ms.managedidentity.userassignedidentities.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.ManagedIdentity/userAssignedIdentities' workflowPath: '.github/workflows/ms.managedidentity.userassignedidentities.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.managedservices.registrationdefinitions.yml b/.github/workflows/ms.managedservices.registrationdefinitions.yml index c1ffc4ce49..aaa5a6e98f 100644 --- a/.github/workflows/ms.managedservices.registrationdefinitions.yml +++ b/.github/workflows/ms.managedservices.registrationdefinitions.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.ManagedServices/registrationDefinitions' workflowPath: '.github/workflows/ms.managedservices.registrationdefinitions.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.management.managementgroups.yml b/.github/workflows/ms.management.managementgroups.yml index 8600960bd7..5a179a8e31 100644 --- a/.github/workflows/ms.management.managementgroups.yml +++ b/.github/workflows/ms.management.managementgroups.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Management/managementGroups' workflowPath: '.github/workflows/ms.management.managementgroups.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.netapp.netappaccounts.yml b/.github/workflows/ms.netapp.netappaccounts.yml index c15bc0574b..b7b2e70cf6 100644 --- a/.github/workflows/ms.netapp.netappaccounts.yml +++ b/.github/workflows/ms.netapp.netappaccounts.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.NetApp/netAppAccounts' workflowPath: '.github/workflows/ms.netapp.netappaccounts.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.applicationgateways.yml b/.github/workflows/ms.network.applicationgateways.yml index 82458bcc21..8ff4b33c9e 100644 --- a/.github/workflows/ms.network.applicationgateways.yml +++ b/.github/workflows/ms.network.applicationgateways.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/applicationGateways' workflowPath: '.github/workflows/ms.network.applicationgateways.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.applicationsecuritygroups.yml b/.github/workflows/ms.network.applicationsecuritygroups.yml index ecfa2b5673..1017b9eef4 100644 --- a/.github/workflows/ms.network.applicationsecuritygroups.yml +++ b/.github/workflows/ms.network.applicationsecuritygroups.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/applicationSecurityGroups' workflowPath: '.github/workflows/ms.network.applicationsecuritygroups.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.azurefirewalls.yml b/.github/workflows/ms.network.azurefirewalls.yml index 712aaec4ae..ce45f6997b 100644 --- a/.github/workflows/ms.network.azurefirewalls.yml +++ b/.github/workflows/ms.network.azurefirewalls.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/azureFirewalls' workflowPath: '.github/workflows/ms.network.azurefirewalls.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.bastionhosts.yml b/.github/workflows/ms.network.bastionhosts.yml index 570712ea16..ae52a03bc1 100644 --- a/.github/workflows/ms.network.bastionhosts.yml +++ b/.github/workflows/ms.network.bastionhosts.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/bastionHosts' workflowPath: '.github/workflows/ms.network.bastionhosts.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.connections.yml b/.github/workflows/ms.network.connections.yml index a02c797374..a7c442e58d 100644 --- a/.github/workflows/ms.network.connections.yml +++ b/.github/workflows/ms.network.connections.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/connections' workflowPath: '.github/workflows/ms.network.connections.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.ddosprotectionplans.yml b/.github/workflows/ms.network.ddosprotectionplans.yml index cc0f2975c9..54eefbffe0 100644 --- a/.github/workflows/ms.network.ddosprotectionplans.yml +++ b/.github/workflows/ms.network.ddosprotectionplans.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/ddosProtectionPlans' workflowPath: '.github/workflows/ms.network.ddosprotectionplans.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.expressroutecircuits.yml b/.github/workflows/ms.network.expressroutecircuits.yml index 5ee84b6b2d..d67f67d5cd 100644 --- a/.github/workflows/ms.network.expressroutecircuits.yml +++ b/.github/workflows/ms.network.expressroutecircuits.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/expressRouteCircuits' workflowPath: '.github/workflows/ms.network.expressroutecircuits.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.firewallpolicies.yml b/.github/workflows/ms.network.firewallpolicies.yml index 0e242b1ce7..e672cd1b2b 100644 --- a/.github/workflows/ms.network.firewallpolicies.yml +++ b/.github/workflows/ms.network.firewallpolicies.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/firewallPolicies' workflowPath: '.github/workflows/ms.network.firewallpolicies.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.frontdoors.yml b/.github/workflows/ms.network.frontdoors.yml index a7dbe4addc..dcbdf86130 100644 --- a/.github/workflows/ms.network.frontdoors.yml +++ b/.github/workflows/ms.network.frontdoors.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/frontDoors' workflowPath: '.github/workflows/ms.network.frontdoors.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.ipgroups.yml b/.github/workflows/ms.network.ipgroups.yml index 67e775d881..13237e9bd5 100644 --- a/.github/workflows/ms.network.ipgroups.yml +++ b/.github/workflows/ms.network.ipgroups.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/ipGroups' workflowPath: '.github/workflows/ms.network.ipgroups.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.loadbalancers.yml b/.github/workflows/ms.network.loadbalancers.yml index 787686e6d6..87b3b93fd8 100644 --- a/.github/workflows/ms.network.loadbalancers.yml +++ b/.github/workflows/ms.network.loadbalancers.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/loadBalancers' workflowPath: '.github/workflows/ms.network.loadbalancers.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.localnetworkgateways.yml b/.github/workflows/ms.network.localnetworkgateways.yml index f39102ce10..0fdb189efd 100644 --- a/.github/workflows/ms.network.localnetworkgateways.yml +++ b/.github/workflows/ms.network.localnetworkgateways.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/localNetworkGateways' workflowPath: '.github/workflows/ms.network.localnetworkgateways.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.natgateways.yml b/.github/workflows/ms.network.natgateways.yml index 480e3780c1..ca9b84fc78 100644 --- a/.github/workflows/ms.network.natgateways.yml +++ b/.github/workflows/ms.network.natgateways.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/natGateways' workflowPath: '.github/workflows/ms.network.natgateways.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.networkinterfaces.yml b/.github/workflows/ms.network.networkinterfaces.yml index ec6cfd5657..ca53d1f33a 100644 --- a/.github/workflows/ms.network.networkinterfaces.yml +++ b/.github/workflows/ms.network.networkinterfaces.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/networkInterfaces' workflowPath: '.github/workflows/ms.network.networkinterfaces.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.networksecuritygroups.yml b/.github/workflows/ms.network.networksecuritygroups.yml index 5be6ba447f..f5e2e518eb 100644 --- a/.github/workflows/ms.network.networksecuritygroups.yml +++ b/.github/workflows/ms.network.networksecuritygroups.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/networkSecurityGroups' workflowPath: '.github/workflows/ms.network.networksecuritygroups.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.networkwatchers.yml b/.github/workflows/ms.network.networkwatchers.yml index 7630067e2d..4b282226c4 100644 --- a/.github/workflows/ms.network.networkwatchers.yml +++ b/.github/workflows/ms.network.networkwatchers.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/networkWatchers' workflowPath: '.github/workflows/ms.network.networkwatchers.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.privatednszones.yml b/.github/workflows/ms.network.privatednszones.yml index 7d68250bef..6de76564a8 100644 --- a/.github/workflows/ms.network.privatednszones.yml +++ b/.github/workflows/ms.network.privatednszones.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/privateDnsZones' workflowPath: '.github/workflows/ms.network.privatednszones.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.privateendpoints.yml b/.github/workflows/ms.network.privateendpoints.yml index a16ff3e727..14db9dfcac 100644 --- a/.github/workflows/ms.network.privateendpoints.yml +++ b/.github/workflows/ms.network.privateendpoints.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/privateEndpoints' workflowPath: '.github/workflows/ms.network.privateendpoints.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.publicipaddresses.yml b/.github/workflows/ms.network.publicipaddresses.yml index cbab23d6a1..a5b42b3d35 100644 --- a/.github/workflows/ms.network.publicipaddresses.yml +++ b/.github/workflows/ms.network.publicipaddresses.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/publicIPAddresses' workflowPath: '.github/workflows/ms.network.publicipaddresses.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.publicipprefixes.yml b/.github/workflows/ms.network.publicipprefixes.yml index dec6c7245b..b95419b5a9 100644 --- a/.github/workflows/ms.network.publicipprefixes.yml +++ b/.github/workflows/ms.network.publicipprefixes.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/publicIPPrefixes' workflowPath: '.github/workflows/ms.network.publicipprefixes.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.routetables.yml b/.github/workflows/ms.network.routetables.yml index eb51d4e44e..e45377d56e 100644 --- a/.github/workflows/ms.network.routetables.yml +++ b/.github/workflows/ms.network.routetables.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/routeTables' workflowPath: '.github/workflows/ms.network.routetables.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.trafficmanagerprofiles.yml b/.github/workflows/ms.network.trafficmanagerprofiles.yml index 66a324ecae..85d698f662 100644 --- a/.github/workflows/ms.network.trafficmanagerprofiles.yml +++ b/.github/workflows/ms.network.trafficmanagerprofiles.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/trafficmanagerprofiles' workflowPath: '.github/workflows/ms.network.trafficmanagerprofiles.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.virtualhubs.yml b/.github/workflows/ms.network.virtualhubs.yml index b256f4ce3e..f15add149d 100644 --- a/.github/workflows/ms.network.virtualhubs.yml +++ b/.github/workflows/ms.network.virtualhubs.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/virtualHubs' workflowPath: '.github/workflows/ms.network.virtualhubs.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.virtualnetworkgateways.yml b/.github/workflows/ms.network.virtualnetworkgateways.yml index a7c78f1883..21f5ff44c7 100644 --- a/.github/workflows/ms.network.virtualnetworkgateways.yml +++ b/.github/workflows/ms.network.virtualnetworkgateways.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/virtualNetworkGateways' workflowPath: '.github/workflows/ms.network.virtualnetworkgateways.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.virtualnetworks.yml b/.github/workflows/ms.network.virtualnetworks.yml index c591fe43dc..f3220cf2a0 100644 --- a/.github/workflows/ms.network.virtualnetworks.yml +++ b/.github/workflows/ms.network.virtualnetworks.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/virtualNetworks' workflowPath: '.github/workflows/ms.network.virtualnetworks.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.virtualwans.yml b/.github/workflows/ms.network.virtualwans.yml index fb3623b00b..cfe69b7636 100644 --- a/.github/workflows/ms.network.virtualwans.yml +++ b/.github/workflows/ms.network.virtualwans.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/virtualWans' workflowPath: '.github/workflows/ms.network.virtualwans.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.vpngateways.yml b/.github/workflows/ms.network.vpngateways.yml index b7389862e9..0ea97774c9 100644 --- a/.github/workflows/ms.network.vpngateways.yml +++ b/.github/workflows/ms.network.vpngateways.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/vpnGateways' workflowPath: '.github/workflows/ms.network.vpngateways.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.network.vpnsites.yml b/.github/workflows/ms.network.vpnsites.yml index 5b0b4a3625..f90c8d9b93 100644 --- a/.github/workflows/ms.network.vpnsites.yml +++ b/.github/workflows/ms.network.vpnsites.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Network/vpnSites' workflowPath: '.github/workflows/ms.network.vpnsites.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.operationalinsights.workspaces.yml b/.github/workflows/ms.operationalinsights.workspaces.yml index 06c4a47700..888a5a46d7 100644 --- a/.github/workflows/ms.operationalinsights.workspaces.yml +++ b/.github/workflows/ms.operationalinsights.workspaces.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.OperationalInsights/workspaces' workflowPath: '.github/workflows/ms.operationalinsights.workspaces.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.operationsmanagement.solutions.yml b/.github/workflows/ms.operationsmanagement.solutions.yml index e11f833c65..62c122acfa 100644 --- a/.github/workflows/ms.operationsmanagement.solutions.yml +++ b/.github/workflows/ms.operationsmanagement.solutions.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.OperationsManagement/solutions' workflowPath: '.github/workflows/ms.operationsmanagement.solutions.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.recoveryservices.vaults.yml b/.github/workflows/ms.recoveryservices.vaults.yml index e1b0e630e2..0cadb9b804 100644 --- a/.github/workflows/ms.recoveryservices.vaults.yml +++ b/.github/workflows/ms.recoveryservices.vaults.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.RecoveryServices/vaults' workflowPath: '.github/workflows/ms.recoveryservices.vaults.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.resources.deploymentscripts.yml b/.github/workflows/ms.resources.deploymentscripts.yml index a45d588624..fb33273e17 100644 --- a/.github/workflows/ms.resources.deploymentscripts.yml +++ b/.github/workflows/ms.resources.deploymentscripts.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Resources/deploymentScripts' workflowPath: '.github/workflows/ms.resources.deploymentscripts.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.resources.resourcegroups.yml b/.github/workflows/ms.resources.resourcegroups.yml index 3572c335db..7c20be848d 100644 --- a/.github/workflows/ms.resources.resourcegroups.yml +++ b/.github/workflows/ms.resources.resourcegroups.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Resources/resourceGroups' workflowPath: '.github/workflows/ms.resources.resourcegroups.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.resources.tags.yml b/.github/workflows/ms.resources.tags.yml index 128e8b07ce..f79dcfd717 100644 --- a/.github/workflows/ms.resources.tags.yml +++ b/.github/workflows/ms.resources.tags.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Resources/tags' workflowPath: '.github/workflows/ms.resources.tags.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.security.azuresecuritycenter.yml b/.github/workflows/ms.security.azuresecuritycenter.yml index 35c8f54814..5887a12694 100644 --- a/.github/workflows/ms.security.azuresecuritycenter.yml +++ b/.github/workflows/ms.security.azuresecuritycenter.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Security/azureSecurityCenter' workflowPath: '.github/workflows/ms.security.azuresecuritycenter.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.servicebus.namespaces.yml b/.github/workflows/ms.servicebus.namespaces.yml index c672f632cf..09b75512a4 100644 --- a/.github/workflows/ms.servicebus.namespaces.yml +++ b/.github/workflows/ms.servicebus.namespaces.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.ServiceBus/namespaces' workflowPath: '.github/workflows/ms.servicebus.namespaces.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.servicefabric.clusters.yml b/.github/workflows/ms.servicefabric.clusters.yml index 7d77900c31..f81fc7cc7e 100644 --- a/.github/workflows/ms.servicefabric.clusters.yml +++ b/.github/workflows/ms.servicefabric.clusters.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.ServiceFabric/clusters' workflowPath: '.github/workflows/ms.servicefabric.clusters.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.sql.managedinstances.yml b/.github/workflows/ms.sql.managedinstances.yml index 2fe35bfdad..39566dbd94 100644 --- a/.github/workflows/ms.sql.managedinstances.yml +++ b/.github/workflows/ms.sql.managedinstances.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Sql/managedInstances' workflowPath: '.github/workflows/ms.sql.managedinstances.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.sql.servers.yml b/.github/workflows/ms.sql.servers.yml index 51b81d6c47..2cae612b9d 100644 --- a/.github/workflows/ms.sql.servers.yml +++ b/.github/workflows/ms.sql.servers.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Sql/servers' workflowPath: '.github/workflows/ms.sql.servers.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.storage.storageaccounts.yml b/.github/workflows/ms.storage.storageaccounts.yml index 2035cf23a8..cc0a8337df 100644 --- a/.github/workflows/ms.storage.storageaccounts.yml +++ b/.github/workflows/ms.storage.storageaccounts.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Storage/storageAccounts' workflowPath: '.github/workflows/ms.storage.storageaccounts.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.synapse.privatelinkhubs.yml b/.github/workflows/ms.synapse.privatelinkhubs.yml index 07343426b0..83d7941408 100644 --- a/.github/workflows/ms.synapse.privatelinkhubs.yml +++ b/.github/workflows/ms.synapse.privatelinkhubs.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Synapse/privateLinkHubs' workflowPath: '.github/workflows/ms.synapse.privatelinkhubs.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.virtualmachineimages.imagetemplates.yml b/.github/workflows/ms.virtualmachineimages.imagetemplates.yml index ab842e56e0..1256fdffa8 100644 --- a/.github/workflows/ms.virtualmachineimages.imagetemplates.yml +++ b/.github/workflows/ms.virtualmachineimages.imagetemplates.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.VirtualMachineImages/imageTemplates' workflowPath: '.github/workflows/ms.virtualmachineimages.imagetemplates.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.web.connections.yml b/.github/workflows/ms.web.connections.yml index b2d204e1e0..79f54f1bc2 100644 --- a/.github/workflows/ms.web.connections.yml +++ b/.github/workflows/ms.web.connections.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Web/connections' workflowPath: '.github/workflows/ms.web.connections.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.web.hostingenvironments.yml b/.github/workflows/ms.web.hostingenvironments.yml index d666793c33..2e6fd6bbc5 100644 --- a/.github/workflows/ms.web.hostingenvironments.yml +++ b/.github/workflows/ms.web.hostingenvironments.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Web/hostingEnvironments' workflowPath: '.github/workflows/ms.web.hostingenvironments.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.web.serverfarms.yml b/.github/workflows/ms.web.serverfarms.yml index 968b040864..a910f60297 100644 --- a/.github/workflows/ms.web.serverfarms.yml +++ b/.github/workflows/ms.web.serverfarms.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Web/serverfarms' workflowPath: '.github/workflows/ms.web.serverfarms.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.web.sites.yml b/.github/workflows/ms.web.sites.yml index 002af53433..7fde8cdba8 100644 --- a/.github/workflows/ms.web.sites.yml +++ b/.github/workflows/ms.web.sites.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Web/sites' workflowPath: '.github/workflows/ms.web.sites.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/ms.web.staticsites.yml b/.github/workflows/ms.web.staticsites.yml index 3c5bbeeaa4..0ddd8fae21 100644 --- a/.github/workflows/ms.web.staticsites.yml +++ b/.github/workflows/ms.web.staticsites.yml @@ -35,7 +35,7 @@ env: variablesPath: 'global.variables.yml' modulePath: 'arm/Microsoft.Web/staticSites' workflowPath: '.github/workflows/ms.web.staticsites.yml' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' diff --git a/.github/workflows/platform.dependencies.yml b/.github/workflows/platform.dependencies.yml index de7f6f3bd9..f24958e886 100644 --- a/.github/workflows/platform.dependencies.yml +++ b/.github/workflows/platform.dependencies.yml @@ -1,16 +1,16 @@ -name: ".Platform: Dependencies" +name: '.Platform: Dependencies' on: workflow_dispatch: inputs: deploySqlMiDependencies: type: boolean - description: "Enable SqlMi dependencies deployment" + description: 'Enable SqlMi dependencies deployment' required: false default: false deployVhdDependencies: type: boolean - description: "Enable deployment of a vhd stored in a blob container" + description: 'Enable deployment of a vhd stored in a blob container' required: false default: false @@ -34,7 +34,7 @@ env: resourceGroupNameArtifacts: 'artifacts-rg' removeDeployment: 'false' dependencyPath: 'utilities/pipelines/dependencies' - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} + AZURE_CLIENT_ID: '${{ secrets.AZURE_CLIENT_ID }}' AZURE_SUBSCRIPTION_ID: '${{ secrets.AZURE_SUBSCRIPTION_ID }}' ARM_MGMTGROUP_ID: '${{ secrets.ARM_MGMTGROUP_ID }}' AZURE_TENANT_ID: '${{ secrets.AZURE_TENANT_ID }}' @@ -43,7 +43,7 @@ env: jobs: job_deploy_rg: runs-on: ubuntu-20.04 - name: "Deploy resource group" + name: 'Deploy resource group' env: namespace: 'Microsoft.Resources\resourceGroups' strategy: @@ -53,11 +53,11 @@ jobs: ['validation.parameters.json', 'locks.parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 - - name: "Deploy module" + - name: 'Deploy module' uses: ./.github/actions/templates/validateModuleDeployment with: templateFilePath: 'arm/${{ env.namespace }}/deploy.bicep' @@ -70,7 +70,7 @@ jobs: job_deploy_ppg: runs-on: ubuntu-20.04 - name: "Deploy proximity placement group" + name: 'Deploy proximity placement group' env: namespace: 'Microsoft.Compute\proximityPlacementGroups' needs: @@ -81,7 +81,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -99,7 +99,7 @@ jobs: job_deploy_msi: runs-on: ubuntu-20.04 - name: "Deploy user assigned identity" + name: 'Deploy user assigned identity' env: namespace: 'Microsoft.ManagedIdentity\userAssignedIdentities' needs: @@ -112,7 +112,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -138,13 +138,13 @@ jobs: $msiPrincipalId = (ConvertFrom-Json $deploymentOutput).principalId Write-Verbose "msiPrincipalId: $msiPrincipalId" -Verbose Write-Output ('::set-output name={0}::{1}' -f 'msiPrincipalId', $msiPrincipalId) - azPSVersion: "latest" + azPSVersion: 'latest' job_deploy_sf: runs-on: ubuntu-20.04 - name: "Deploy server farm" + name: 'Deploy server farm' env: - namespace: "Microsoft.Web/serverfarms" + namespace: 'Microsoft.Web/serverfarms' needs: - job_deploy_rg strategy: @@ -153,7 +153,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -171,9 +171,9 @@ jobs: job_deploy_app: runs-on: ubuntu-20.04 - name: "Deploy app" + name: 'Deploy app' env: - namespace: "Microsoft.Web/sites" + namespace: 'Microsoft.Web/sites' needs: - job_deploy_sf strategy: @@ -182,7 +182,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -200,7 +200,7 @@ jobs: job_deploy_pa: runs-on: ubuntu-20.04 - name: "Deploy policy assignment" + name: 'Deploy policy assignment' env: namespace: 'Microsoft.Authorization\policyAssignments' needs: @@ -211,7 +211,7 @@ jobs: parameterFilePaths: ['mg.parameters.json', 'sub.parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -229,7 +229,7 @@ jobs: job_deploy_evh: runs-on: ubuntu-20.04 - name: "Deploy eventhub" + name: 'Deploy eventhub' env: namespace: 'Microsoft.EventHub\namespaces' needs: @@ -240,7 +240,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -258,7 +258,7 @@ jobs: job_deploy_law: runs-on: ubuntu-20.04 - name: "Deploy log analytics workspace" + name: 'Deploy log analytics workspace' env: namespace: 'Microsoft.OperationalInsights\workspaces' needs: @@ -275,7 +275,7 @@ jobs: ] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -293,7 +293,7 @@ jobs: job_deploy_sa: runs-on: ubuntu-20.04 - name: "Deploy storage account" + name: 'Deploy storage account' env: namespace: 'Microsoft.Storage\storageAccounts' needs: @@ -305,7 +305,7 @@ jobs: ['fa.parameters.json', 'law.parameters.json', 'parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -323,14 +323,14 @@ jobs: job_sa_upload_storage_files: runs-on: ubuntu-20.04 - name: "Upload files to storage account" + name: 'Upload files to storage account' env: namespace: 'Microsoft.Storage\storageAccounts' needs: - job_deploy_sa environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -352,9 +352,9 @@ jobs: - name: Azure Login uses: azure/login@v1 with: - client-id: ${{ env.AZURE_CLIENT_ID }} - tenant-id: ${{ env.AZURE_TENANT_ID }} - subscription-id: ${{ env.AZURE_SUBSCRIPTION_ID }} + client-id: '${{ env.AZURE_CLIENT_ID }}' + tenant-id: '${{ env.AZURE_TENANT_ID }}' + subscription-id: '${{ env.AZURE_SUBSCRIPTION_ID }}' enable-AzPSSession: true - name: Run PowerShell @@ -402,11 +402,11 @@ jobs: Write-Verbose ($functionInput | ConvertTo-Json | Out-String) -Verbose Export-ContentToBlob @functionInput -Verbose - azPSVersion: "latest" + azPSVersion: 'latest' job_deploy_sig: runs-on: ubuntu-20.04 - name: "Deploy shared image gallery and definition" + name: 'Deploy shared image gallery and definition' env: namespace: 'Microsoft.Compute\galleries' needs: @@ -417,7 +417,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -435,7 +435,7 @@ jobs: job_deploy_imgt: runs-on: ubuntu-20.04 - name: "Deploy image template" + name: 'Deploy image template' if: github.event.inputs.deployVhdDependencies == 'true' env: namespace: 'Microsoft.VirtualMachineImages\imageTemplates' @@ -451,7 +451,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -480,11 +480,11 @@ jobs: Write-Verbose "imageTemplateResourceGroup: $imageTemplateResourceGroup" -Verbose Write-Output ('::set-output name={0}::{1}' -f 'imageTemplateName', $imageTemplateName) Write-Output ('::set-output name={0}::{1}' -f 'imageTemplateResourceGroup', $imageTemplateResourceGroup) - azPSVersion: "latest" + azPSVersion: 'latest' job_deploy_vhd_to_sa: runs-on: ubuntu-20.04 - name: "Trigger vhd build and store it to a storage account blob container" + name: 'Trigger vhd build and store it to a storage account blob container' if: github.event.inputs.deployVhdDependencies == 'true' env: imgtNamespace: 'Microsoft.VirtualMachineImages\imageTemplates' @@ -494,7 +494,7 @@ jobs: - job_deploy_sa environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -517,9 +517,9 @@ jobs: - name: Azure Login uses: azure/login@v1 with: - client-id: ${{ env.AZURE_CLIENT_ID }} - tenant-id: ${{ env.AZURE_TENANT_ID }} - subscription-id: ${{ env.AZURE_SUBSCRIPTION_ID }} + client-id: '${{ env.AZURE_CLIENT_ID }}' + tenant-id: '${{ env.AZURE_TENANT_ID }}' + subscription-id: '${{ env.AZURE_SUBSCRIPTION_ID }}' enable-AzPSSession: true - name: 'Trigger building new image' @@ -604,11 +604,11 @@ jobs: Force = $true } Start-AzStorageBlobCopy @resourceActionInputObject - azPSVersion: "latest" + azPSVersion: 'latest' job_deploy_ag: runs-on: ubuntu-20.04 - name: "Deploy action groups" + name: 'Deploy action groups' env: namespace: 'Microsoft.Insights\actionGroups' needs: @@ -619,7 +619,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -637,7 +637,7 @@ jobs: job_deploy_asg: runs-on: ubuntu-20.04 - name: "Deploy application security groups" + name: 'Deploy application security groups' env: namespace: 'Microsoft.Network\applicationSecurityGroups' needs: @@ -648,7 +648,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -666,7 +666,7 @@ jobs: job_deploy_udr: runs-on: ubuntu-20.04 - name: "Deploy route tables" + name: 'Deploy route tables' env: namespace: 'Microsoft.Network\routeTables' needs: @@ -677,7 +677,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -695,7 +695,7 @@ jobs: job_deploy_sqlmi_udr: runs-on: ubuntu-20.04 - name: "Deploy sqlmi route tables" + name: 'Deploy sqlmi route tables' if: github.event.inputs.deploySqlMiDependencies == 'true' env: namespace: 'Microsoft.Network\routeTables' @@ -707,7 +707,7 @@ jobs: parameterFilePaths: ['sqlMi.parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -725,7 +725,7 @@ jobs: job_deploy_nsg: runs-on: ubuntu-20.04 - name: "Deploy network security groups" + name: 'Deploy network security groups' env: namespace: 'Microsoft.Network\networkSecurityGroups' needs: @@ -737,15 +737,15 @@ jobs: matrix: parameterFilePaths: [ - "apgw.parameters.json", - "ase.parameters.json", - "bastion.parameters.json", - "aadds.parameters.json", - "parameters.json", + 'apgw.parameters.json', + 'ase.parameters.json', + 'bastion.parameters.json', + 'aadds.parameters.json', + 'parameters.json', ] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -763,7 +763,7 @@ jobs: job_deploy_sqlmi_nsg: runs-on: ubuntu-20.04 - name: "Deploy sqlmi network security group" + name: 'Deploy sqlmi network security group' if: github.event.inputs.deploySqlMiDependencies == 'true' env: namespace: 'Microsoft.Network\networkSecurityGroups' @@ -777,7 +777,7 @@ jobs: parameterFilePaths: ['sqlmi.parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -795,7 +795,7 @@ jobs: job_deploy_pip: runs-on: ubuntu-20.04 - name: "Deploy public IP addresses" + name: 'Deploy public IP addresses' env: namespace: 'Microsoft.Network\publicIPAddresses' needs: @@ -817,7 +817,7 @@ jobs: ] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -835,7 +835,7 @@ jobs: job_deploy_appi: runs-on: ubuntu-20.04 - name: "Deploy application insight" + name: 'Deploy application insight' env: namespace: 'Microsoft.Insights\components' needs: @@ -848,7 +848,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -866,7 +866,7 @@ jobs: job_deploy_aut: runs-on: ubuntu-20.04 - name: "Deploy automation account" + name: 'Deploy automation account' env: namespace: 'Microsoft.Automation\automationAccounts' needs: @@ -879,7 +879,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -897,7 +897,7 @@ jobs: job_deploy_avdhp: runs-on: ubuntu-20.04 - name: "Deploy AVD host pool" + name: 'Deploy AVD host pool' env: namespace: 'Microsoft.DesktopVirtualization\hostpools' needs: @@ -910,7 +910,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -928,7 +928,7 @@ jobs: job_deploy_rsv: runs-on: ubuntu-20.04 - name: "Deploy recovery services vault" + name: 'Deploy recovery services vault' env: namespace: 'Microsoft.RecoveryServices\vaults' needs: @@ -942,7 +942,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -961,7 +961,7 @@ jobs: job_deploy_kv: runs-on: ubuntu-20.04 - name: "Deploy key vaults" + name: 'Deploy key vaults' env: namespace: 'Microsoft.KeyVault\vaults' needs: @@ -976,7 +976,7 @@ jobs: ['parameters.json', 'pe.parameters.json', 'nopr.parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -996,14 +996,14 @@ jobs: job_deploy_kv_secrets: # Must run on windows as the used `New-SelfSignedCertificate` function is not available on linux runs-on: windows-2022 - name: "Set key vault secrets keys and certificates" + name: 'Set key vault secrets keys and certificates' env: namespace: 'Microsoft.KeyVault\vaults' needs: - job_deploy_kv environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -1025,9 +1025,9 @@ jobs: - name: Azure Login uses: azure/login@v1 with: - client-id: ${{ env.AZURE_CLIENT_ID }} - tenant-id: ${{ env.AZURE_TENANT_ID }} - subscription-id: ${{ env.AZURE_SUBSCRIPTION_ID }} + client-id: '${{ env.AZURE_CLIENT_ID }}' + tenant-id: '${{ env.AZURE_TENANT_ID }}' + subscription-id: '${{ env.AZURE_SUBSCRIPTION_ID }}' enable-AzPSSession: true - name: 'Set key vault secrets keys and certificates' @@ -1141,11 +1141,11 @@ jobs: Write-Verbose ('Added key [{0}] to key vault [{1}]' -f $_.name, $noprKeyVaultName) -Verbose } - azPSVersion: "latest" + azPSVersion: 'latest' job_deploy_sqlmi_kv: runs-on: ubuntu-20.04 - name: "Deploy sqlmi key vault" + name: 'Deploy sqlmi key vault' if: github.event.inputs.deploySqlMiDependencies == 'true' env: namespace: 'Microsoft.KeyVault\vaults' @@ -1160,7 +1160,7 @@ jobs: parameterFilePaths: ['sqlmi.parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -1179,7 +1179,7 @@ jobs: job_deploy_sqlmi_kv_secrets: runs-on: ubuntu-20.04 - name: "Set sqlmi key vault secrets and keys" + name: 'Set sqlmi key vault secrets and keys' if: github.event.inputs.deploySqlMiDependencies == 'true' needs: - job_deploy_sqlmi_kv @@ -1187,7 +1187,7 @@ jobs: namespace: 'Microsoft.KeyVault\vaults' environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -1209,9 +1209,9 @@ jobs: - name: Azure Login uses: azure/login@v1 with: - client-id: ${{ env.AZURE_CLIENT_ID }} - tenant-id: ${{ env.AZURE_TENANT_ID }} - subscription-id: ${{ env.AZURE_SUBSCRIPTION_ID }} + client-id: '${{ env.AZURE_CLIENT_ID }}' + tenant-id: '${{ env.AZURE_TENANT_ID }}' + subscription-id: '${{ env.AZURE_SUBSCRIPTION_ID }}' enable-AzPSSession: true - name: 'Set sqlmi key vault secrets and keys' @@ -1271,11 +1271,11 @@ jobs: $null = Add-AzKeyVaultKey -VaultName $keyVaultName -Name $_.name -Destination $_.Destination Write-Verbose ('Added key [{0}] to key vault [{1}]' -f $_.name, $keyVaultName) -Verbose } - azPSVersion: "latest" + azPSVersion: 'latest' job_deploy_avdag: runs-on: ubuntu-20.04 - name: "Deploy AVD application group" + name: 'Deploy AVD application group' env: namespace: 'Microsoft.DesktopVirtualization\applicationgroups' needs: @@ -1286,7 +1286,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -1304,7 +1304,7 @@ jobs: job_deploy_rolea: runs-on: ubuntu-20.04 - name: "Deploy role assignments" + name: 'Deploy role assignments' env: namespace: 'Microsoft.Authorization\roleAssignments' needs: @@ -1315,7 +1315,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -1334,7 +1334,7 @@ jobs: job_deploy_vnet: runs-on: ubuntu-20.04 - name: "Deploy virtual networks" + name: 'Deploy virtual networks' env: namespace: 'Microsoft.Network\virtualNetworks' needs: @@ -1360,7 +1360,7 @@ jobs: ] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -1378,7 +1378,7 @@ jobs: job_deploy_sqlmi_vnet: runs-on: ubuntu-20.04 - name: "Deploy sqlmi virtual network" + name: 'Deploy sqlmi virtual network' if: github.event.inputs.deploySqlMiDependencies == 'true' env: namespace: 'Microsoft.Network\virtualNetworks' @@ -1391,7 +1391,7 @@ jobs: parameterFilePaths: ['6.sqlmi.parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -1409,7 +1409,7 @@ jobs: job_deploy_dnszone: runs-on: ubuntu-20.04 - name: "Deploy private DNS zones" + name: 'Deploy private DNS zones' env: namespace: 'Microsoft.Network\privateDnsZones' needs: @@ -1420,7 +1420,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -1438,7 +1438,7 @@ jobs: job_deploy_vm: runs-on: ubuntu-20.04 - name: "Deploy virtual machines" + name: 'Deploy virtual machines' env: namespace: 'Microsoft.Compute\virtualMachines' needs: @@ -1451,7 +1451,7 @@ jobs: parameterFilePaths: ['parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 @@ -1469,7 +1469,7 @@ jobs: job_deploy_lb: runs-on: ubuntu-20.04 - name: "Deploy load balancers" + name: 'Deploy load balancers' env: namespace: 'Microsoft.Network\loadBalancers' needs: @@ -1480,7 +1480,7 @@ jobs: parameterFilePaths: ['internal.parameters.json'] environment: 'Validation' steps: - - name: "Checkout" + - name: 'Checkout' uses: actions/checkout@v2 with: fetch-depth: 0 From 61a1935a8a005134d4094ed2434f4035b05c2523 Mon Sep 17 00:00:00 2001 From: Marius Storhaug Date: Sun, 26 Jun 2022 16:34:14 +0200 Subject: [PATCH 07/18] whitespace --- .../pipelineTemplates/jobs.publishModule.yml | 46 +++++++++---------- 1 file changed, 23 insertions(+), 23 deletions(-) diff --git a/.azuredevops/pipelineTemplates/jobs.publishModule.yml b/.azuredevops/pipelineTemplates/jobs.publishModule.yml index f057dd1fbf..b1cb993860 100644 --- a/.azuredevops/pipelineTemplates/jobs.publishModule.yml +++ b/.azuredevops/pipelineTemplates/jobs.publishModule.yml @@ -18,29 +18,29 @@ ## ## NOTE: If you don't need to overwrite a shared value, you can IGNORE this section ## -## |======================================================================================================================================================================================================================| -## | Parameter | Default Value | Description | Example | -## |---------------------------------|--------------------------------------|---------------------------------------------------------------------------------------------------------|-----------------------------------| -## | displayName | 'Publishing' | Name for the pipeline job | 'Publish KeyVault' | -## | serviceConnectionPublish | '$(serviceConnectionPublish)' | The service connection that connects to Azure | 'demo-internal' | -## | subscriptionId | '$(ARM_PUBLISH_SUBSCRIPTION_ID)' | The id of the subscription to deploy into when using a Management group service connection | 'aed7c000-6387-412e-bed0-24dfddf4bbc6'| -## | poolName | '$(poolName)' | You can provide either a [poolname] or [vmImage] to run the job on | 'Custom Deployment Pool' | -## | vmImage | '$(vmImage)' | You can provide either a [poolname] or [vmImage] to run the job on | 'ubuntu20.04' | -## | defaultJobTimeoutInMinutes | 120 | The timeout for the job in this pipeline | 120 | -## | modulePath | '$(modulePath)' | The path to the module to deploy. E.g. [c:/KeyVault] | 'c:/KeyVault' | -## | templateSpecsRGName | '$(templateSpecsRGName)' | Required to publish to template spec. ResourceGroup of the template spec to publish to | 'mgmt-rg' | -## | templateSpecsRGLocation | '$(templateSpecsRGLocation)' | Required to publish to template spec. Location of the template spec resource group | 'West Europe' | -## | templateSpecsDescription | '$(templateSpecsDescription)' | Required to publish to template spec. Description of the template spec to publish to | 'IaCs module' | -## | vstsFeedToken | '$(vstsFeedToken)' | Required to publish to a DevOps feed. Token with access to the feed to publish to. | '...' | -## | vstsFeedName | '$(vstsFeedName)' | Required to publish to a DevOps feed. Name to the feed to publish to. | 'modules' | -## | vstsFeedProject | '$(vstsFeedProject)' | Required to publish to a DevOps feed. Name of the project hosting the artifacts feed. May be empty. | 'iacs' | -## | bicepRegistryName | '$(bicepRegistryName)' | Required to publish to the private bicep registry. Name of the hosting container registry | 'adpsxxazacrx001' | -## | bicepRegistryRGName | '$(bicepRegistryRGName)' | Required to publish to the private bicep registry. Resource group of the hosting container registry | 'artifacts-rg' | -## | bicepRegistryRgLocation | '$(bicepRegistryRgLocation)' | Required to publish to the private bicep registry. Location of the RG of the hosting container registry | 'West Europe' | -## | vstsOrganizationUri | '$(vstsOrganizationUri)' | Required to publish to a DevOps feed. Name of the organization hosting the artifacts feed. | 'servicescode' | -## | azurePowerShellVersion | '$(azurePowerShellVersion)' | Used for configuring the Azure PowerShell Version, one of the example values. | 'latestVersion' or 'OtherVersion' | -## | preferredAzurePowerShellVersion | '$(preferredAzurePowerShellVersion)' | Used for configuring the Azure PowerShell Version, either an empty string or specific version. | '4.4.0' | -## |======================================================================================================================================================================================================================| +## |===========================================================================================================================================================================================================================| +## | Parameter | Default Value | Description | Example | +## |---------------------------------|--------------------------------------|---------------------------------------------------------------------------------------------------------|----------------------------------------| +## | displayName | 'Publishing' | Name for the pipeline job | 'Publish KeyVault' | +## | serviceConnectionPublish | '$(serviceConnectionPublish)' | The service connection that connects to Azure | 'demo-internal' | +## | subscriptionId | '$(ARM_PUBLISH_SUBSCRIPTION_ID)' | The id of the subscription to deploy into when using a Management group service connection | 'aed7c000-6387-412e-bed0-24dfddf4bbc6' | +## | poolName | '$(poolName)' | You can provide either a [poolname] or [vmImage] to run the job on | 'Custom Deployment Pool' | +## | vmImage | '$(vmImage)' | You can provide either a [poolname] or [vmImage] to run the job on | 'ubuntu20.04' | +## | defaultJobTimeoutInMinutes | 120 | The timeout for the job in this pipeline | 120 | +## | modulePath | '$(modulePath)' | The path to the module to deploy. E.g. [c:/KeyVault] | 'c:/KeyVault' | +## | templateSpecsRGName | '$(templateSpecsRGName)' | Required to publish to template spec. ResourceGroup of the template spec to publish to | 'mgmt-rg' | +## | templateSpecsRGLocation | '$(templateSpecsRGLocation)' | Required to publish to template spec. Location of the template spec resource group | 'West Europe' | +## | templateSpecsDescription | '$(templateSpecsDescription)' | Required to publish to template spec. Description of the template spec to publish to | 'IaCs module' | +## | vstsFeedToken | '$(vstsFeedToken)' | Required to publish to a DevOps feed. Token with access to the feed to publish to. | '...' | +## | vstsFeedName | '$(vstsFeedName)' | Required to publish to a DevOps feed. Name to the feed to publish to. | 'modules' | +## | vstsFeedProject | '$(vstsFeedProject)' | Required to publish to a DevOps feed. Name of the project hosting the artifacts feed. May be empty. | 'iacs' | +## | bicepRegistryName | '$(bicepRegistryName)' | Required to publish to the private bicep registry. Name of the hosting container registry | 'adpsxxazacrx001' | +## | bicepRegistryRGName | '$(bicepRegistryRGName)' | Required to publish to the private bicep registry. Resource group of the hosting container registry | 'artifacts-rg' | +## | bicepRegistryRgLocation | '$(bicepRegistryRgLocation)' | Required to publish to the private bicep registry. Location of the RG of the hosting container registry | 'West Europe' | +## | vstsOrganizationUri | '$(vstsOrganizationUri)' | Required to publish to a DevOps feed. Name of the organization hosting the artifacts feed. | 'servicescode' | +## | azurePowerShellVersion | '$(azurePowerShellVersion)' | Used for configuring the Azure PowerShell Version, one of the example values. | 'latestVersion' or 'OtherVersion' | +## | preferredAzurePowerShellVersion | '$(preferredAzurePowerShellVersion)' | Used for configuring the Azure PowerShell Version, either an empty string or specific version. | '4.4.0' | +## |===========================================================================================================================================================================================================================| ## ##---------------------------------------------## From c7fca0de24305be300ad678457a80f0905682a64 Mon Sep 17 00:00:00 2001 From: Marius Storhaug Date: Sun, 26 Jun 2022 16:55:41 +0200 Subject: [PATCH 08/18] Fix params for templates --- .../pipelineTemplates/jobs.publishModule.yml | 8 ++++---- .../jobs.validateModuleDeployment.yml | 20 +++++++++---------- .../jobs.validateModulePester.yml | 8 ++++---- 3 files changed, 18 insertions(+), 18 deletions(-) diff --git a/.azuredevops/pipelineTemplates/jobs.publishModule.yml b/.azuredevops/pipelineTemplates/jobs.publishModule.yml index b1cb993860..09b1f52401 100644 --- a/.azuredevops/pipelineTemplates/jobs.publishModule.yml +++ b/.azuredevops/pipelineTemplates/jobs.publishModule.yml @@ -22,7 +22,7 @@ ## | Parameter | Default Value | Description | Example | ## |---------------------------------|--------------------------------------|---------------------------------------------------------------------------------------------------------|----------------------------------------| ## | displayName | 'Publishing' | Name for the pipeline job | 'Publish KeyVault' | -## | serviceConnectionPublish | '$(serviceConnectionPublish)' | The service connection that connects to Azure | 'demo-internal' | +## | serviceConnection | '$(serviceConnectionPublish)' | The service connection that connects to Azure | 'demo-internal' | ## | subscriptionId | '$(ARM_PUBLISH_SUBSCRIPTION_ID)' | The id of the subscription to deploy into when using a Management group service connection | 'aed7c000-6387-412e-bed0-24dfddf4bbc6' | ## | poolName | '$(poolName)' | You can provide either a [poolname] or [vmImage] to run the job on | 'Custom Deployment Pool' | ## | vmImage | '$(vmImage)' | You can provide either a [poolname] or [vmImage] to run the job on | 'ubuntu20.04' | @@ -48,7 +48,7 @@ parameters: # Pipeline-related parameters checkoutRepositories: '' displayName: 'Publishing' - serviceConnectionPublish: '$(serviceConnectionPublish)' + serviceConnection: '$(serviceConnectionPublish)' poolName: '$(poolName)' vmImage: '$(vmImage)' defaultJobTimeoutInMinutes: 120 @@ -209,7 +209,7 @@ jobs: ) enabled: true inputs: - azureSubscription: '${{ parameters.serviceConnectionPublish }}' + azureSubscription: '${{ parameters.serviceConnection }}' azurePowerShellVersion: ${{ parameters.azurePowerShellVersion }} preferredAzurePowerShellVersion: ${{ parameters.preferredAzurePowerShellVersion }} pwsh: true @@ -266,7 +266,7 @@ jobs: ) inputs: addSpnToEnvironment: true - azureSubscription: '${{ parameters.serviceConnectionPublish }}' + azureSubscription: '${{ parameters.serviceConnection }}' scriptType: pscore scriptLocation: inlineScript inlineScript: | diff --git a/.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml b/.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml index 829b0dd8e9..6f0ed46015 100644 --- a/.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml +++ b/.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml @@ -24,7 +24,7 @@ ## |=================================================================================================================================================================================================================================| ## | Parameter | Default Value | Description | Example | ## |---------------------------------|--------------------------------------|-----------------------------------------------------------------------------------------------------------|--------------------------------------------| -## | serviceConnectionValidation | '$(serviceConnectionValidation)' | The service connection that connects to Azure | 'demo-internal' | +## | serviceConnection | '$(serviceConnectionValidation)' | The service connection that connects to Azure | 'demo-internal' | ## | removeDeployment | '$(removeDeployment)' | Set to [true] to flag resource for removal. If not provided, defaults to false. | 'true' | ## | poolName | '$(poolName)' | You can provide either a [poolname] or [vmImage] to run the job on | 'Custom Deployment Pool' | ## | vmImage | '$(vmImage)' | You can provide either a [poolname] or [vmImage] to run the job on | 'ubuntu20.04' | @@ -46,7 +46,7 @@ parameters: # Pipeline-related parameters - serviceConnectionValidation: '$(serviceConnectionValidation)' + serviceConnection: '$(serviceConnectionValidation)' poolName: '$(poolName)' vmImage: '$(vmImage)' defaultJobTimeoutInMinutes: 120 @@ -153,9 +153,9 @@ jobs: # [Agent] Replace tokens #----------------------- - task: AzurePowerShell@5 - displayName: 'Replace Tokens [${{ deploymentBlock.path }}] via connection [${{ parameters.serviceConnectionValidation }}]' + displayName: 'Replace Tokens [${{ deploymentBlock.path }}] via connection [${{ parameters.serviceConnection }}]' inputs: - azureSubscription: ${{ parameters.serviceConnectionValidation }} + azureSubscription: ${{ parameters.serviceConnection }} azurePowerShellVersion: ${{ parameters.azurePowerShellVersion }} preferredAzurePowerShellVersion: ${{ parameters.preferredAzurePowerShellVersion }} ScriptType: InlineScript @@ -207,9 +207,9 @@ jobs: # [Validation] task(s) #--------------------- - task: AzurePowerShell@5 - displayName: 'Validate [${{ deploymentBlock.path }}] via connection [${{ parameters.serviceConnectionValidation }}]' + displayName: 'Validate [${{ deploymentBlock.path }}] via connection [${{ parameters.serviceConnection }}]' inputs: - azureSubscription: ${{ parameters.serviceConnectionValidation }} + azureSubscription: ${{ parameters.serviceConnection }} azurePowerShellVersion: ${{ parameters.azurePowerShellVersion }} preferredAzurePowerShellVersion: ${{ parameters.preferredAzurePowerShellVersion }} ScriptType: InlineScript @@ -258,10 +258,10 @@ jobs: # [Deployment] task(s) #--------------------- - task: AzurePowerShell@5 - displayName: 'Deploy [${{ deploymentBlock.path }}] via connection [${{ parameters.serviceConnectionValidation }}]' + displayName: 'Deploy [${{ deploymentBlock.path }}] via connection [${{ parameters.serviceConnection }}]' name: 'DeployModule' inputs: - azureSubscription: ${{ parameters.serviceConnectionValidation }} + azureSubscription: ${{ parameters.serviceConnection }} azurePowerShellVersion: ${{ parameters.azurePowerShellVersion }} preferredAzurePowerShellVersion: ${{ parameters.preferredAzurePowerShellVersion }} pwsh: true @@ -332,10 +332,10 @@ jobs: # [Removal] task(s) #------------------ - task: AzurePowerShell@5 - displayName: 'Remove deployed resources via [${{ parameters.serviceConnectionValidation }}]' + displayName: 'Remove deployed resources via [${{ parameters.serviceConnection }}]' condition: and(succeededOrFailed(), eq( '${{ parameters.removeDeployment }}', 'true'), not(eq(variables['deploymentName'],''))) inputs: - azureSubscription: ${{ parameters.serviceConnectionValidation }} + azureSubscription: ${{ parameters.serviceConnection }} azurePowerShellVersion: ${{ parameters.azurePowerShellVersion }} preferredAzurePowerShellVersion: ${{ parameters.preferredAzurePowerShellVersion }} ScriptType: InlineScript diff --git a/.azuredevops/pipelineTemplates/jobs.validateModulePester.yml b/.azuredevops/pipelineTemplates/jobs.validateModulePester.yml index d5fa16219f..d1c8f27b2d 100644 --- a/.azuredevops/pipelineTemplates/jobs.validateModulePester.yml +++ b/.azuredevops/pipelineTemplates/jobs.validateModulePester.yml @@ -24,7 +24,7 @@ ## |=============================================================================================================================================================================================================================| ## | Parameter | Default Value | Description | Example | ## |---------------------------------|--------------------------------------|-----------------------------------------------------------------------------------------------------------|----------------------------------------| -## | serviceConnectionValidation | '$(serviceConnectionValidation)' | The service connection that connects to Azure | 'demo-internal' | +## | serviceConnection | '$(serviceConnectionValidation)' | The service connection that connects to Azure | 'demo-internal' | ## | poolName | '$(poolName)' | You can provide either a [poolname] or [vmImage] to run the job on | 'Custom Deployment Pool' | ## | vmImage | '$(vmImage)' | You can provide either a [poolname] or [vmImage] to run the job on | 'ubuntu20.04' | ## | defaultJobTimeoutInMinutes | 120 | The timeout for the job in this pipeline | 120 | @@ -44,7 +44,7 @@ parameters: # Pipeline-related parameters - serviceConnectionValidation: '$(serviceConnectionValidation)' + serviceConnection: '$(serviceConnectionValidation)' poolName: '$(poolName)' vmImage: '$(vmImage)' defaultJobTimeoutInMinutes: 120 @@ -128,9 +128,9 @@ jobs: # [Module Pester Test] task(s) #----------------------------- - task: AzurePowerShell@5 - displayName: 'Run general tests via (Pester) via connection [${{ parameters.serviceConnectionValidation }}]' + displayName: 'Run general tests via (Pester) via connection [${{ parameters.serviceConnection }}]' inputs: - azureSubscription: ${{ parameters.serviceConnectionValidation }} + azureSubscription: ${{ parameters.serviceConnection }} azurePowerShellVersion: ${{ parameters.azurePowerShellVersion }} preferredAzurePowerShellVersion: ${{ parameters.preferredAzurePowerShellVersion }} ScriptType: InlineScript From f44300dd64386d479e77e2d5497034f81cf13a79 Mon Sep 17 00:00:00 2001 From: Marius Storhaug Date: Sun, 26 Jun 2022 17:07:05 +0200 Subject: [PATCH 09/18] Updated name of subscription var --- .azuredevops/pipelineTemplates/jobs.publishModule.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.azuredevops/pipelineTemplates/jobs.publishModule.yml b/.azuredevops/pipelineTemplates/jobs.publishModule.yml index 09b1f52401..73481fd024 100644 --- a/.azuredevops/pipelineTemplates/jobs.publishModule.yml +++ b/.azuredevops/pipelineTemplates/jobs.publishModule.yml @@ -23,7 +23,7 @@ ## |---------------------------------|--------------------------------------|---------------------------------------------------------------------------------------------------------|----------------------------------------| ## | displayName | 'Publishing' | Name for the pipeline job | 'Publish KeyVault' | ## | serviceConnection | '$(serviceConnectionPublish)' | The service connection that connects to Azure | 'demo-internal' | -## | subscriptionId | '$(ARM_PUBLISH_SUBSCRIPTION_ID)' | The id of the subscription to deploy into when using a Management group service connection | 'aed7c000-6387-412e-bed0-24dfddf4bbc6' | +## | subscriptionId | '$(ARM_PUBLISHING_SUBSCRIPTION_ID)' | The id of the subscription to deploy into when using a Management group service connection | 'aed7c000-6387-412e-bed0-24dfddf4bbc6' | ## | poolName | '$(poolName)' | You can provide either a [poolname] or [vmImage] to run the job on | 'Custom Deployment Pool' | ## | vmImage | '$(vmImage)' | You can provide either a [poolname] or [vmImage] to run the job on | 'ubuntu20.04' | ## | defaultJobTimeoutInMinutes | 120 | The timeout for the job in this pipeline | 120 | @@ -53,7 +53,7 @@ parameters: vmImage: '$(vmImage)' defaultJobTimeoutInMinutes: 120 modulesRepository: '$(modulesRepository)' - subscriptionId: '$(ARM_PUBLISH_SUBSCRIPTION_ID)' + subscriptionId: '$(ARM_PUBLISHING_SUBSCRIPTION_ID)' # Logic-related parameters ## Module-related From b0d20b3c3aae0490394db724e0bd24d846334bbd Mon Sep 17 00:00:00 2001 From: Marius Storhaug Date: Sun, 26 Jun 2022 17:24:48 +0200 Subject: [PATCH 10/18] Corrected capitalization --- .../pipelineTemplates/jobs.publishModule.yml | 4 ++-- .../Publish-ModuleToPrivateBicepRegistry.ps1 | 12 ++++++++---- .../resourcePublish/Publish-ModuleToTemplateSpec.ps1 | 12 ++++++++---- 3 files changed, 18 insertions(+), 10 deletions(-) diff --git a/.azuredevops/pipelineTemplates/jobs.publishModule.yml b/.azuredevops/pipelineTemplates/jobs.publishModule.yml index 73481fd024..c1993559ec 100644 --- a/.azuredevops/pipelineTemplates/jobs.publishModule.yml +++ b/.azuredevops/pipelineTemplates/jobs.publishModule.yml @@ -245,7 +245,7 @@ jobs: TemplateSpecsRgName = '${{ parameters.templateSpecsRgName }}' TemplateSpecsRgLocation = '${{ parameters.templateSpecsRgLocation }}' TemplateSpecsDescription = '${{ parameters.templateSpecsDescription }}' - subscriptionId = '${{ parameters.subscriptionId }}' + SubscriptionId = '${{ parameters.subscriptionId }}' ModuleVersion = $ModuleToPublish.Version } @@ -306,7 +306,7 @@ jobs: BicepRegistryName = '${{ parameters.bicepRegistryName }}' BicepRegistryRgName = '${{ parameters.bicepRegistryRgName }}' BicepRegistryRgLocation = '${{ parameters.bicepRegistryRgLocation }}' - subscriptionId = '${{ parameters.subscriptionId }}' + SubscriptionId = '${{ parameters.subscriptionId }}' ModuleVersion = $ModuleToPublish.Version } diff --git a/utilities/pipelines/resourcePublish/Publish-ModuleToPrivateBicepRegistry.ps1 b/utilities/pipelines/resourcePublish/Publish-ModuleToPrivateBicepRegistry.ps1 index 55abdfbb61..d3a52befb6 100644 --- a/utilities/pipelines/resourcePublish/Publish-ModuleToPrivateBicepRegistry.ps1 +++ b/utilities/pipelines/resourcePublish/Publish-ModuleToPrivateBicepRegistry.ps1 @@ -25,6 +25,10 @@ Example: 'artifacts-rg' Optional. The location of the resourceGroup the private bicep registry is deployed to. Required if the resource group is not yet existing. Example: 'West Europe' +.PARAMETER SubscriptionId +Optional. SubscriptionId to use for the bicep registry. If not specified, the default context/subscription is used. +Example: 'a6d228a7-0321-4099-9ef5-b3bcf0605c89' + .EXAMPLE Publish-ModuleToPrivateBicepRegistry -TemplateFilePath 'C:\arm\Microsoft.KeyVault\vaults\deploy.bicep' -ModuleVersion '3.0.0-alpha' -BicepRegistryName 'adpsxxazacrx001' -BicepRegistryRgName 'artifacts-rg' @@ -50,7 +54,7 @@ function Publish-ModuleToPrivateBicepRegistry { [string] $BicepRegistryRgLocation, [Parameter(Mandatory = $false)] - [string] $subscriptionId + [string] $SubscriptionId ) begin { @@ -66,9 +70,9 @@ function Publish-ModuleToPrivateBicepRegistry { } # set AzContext - if (-not [String]::IsNullOrEmpty($subscriptionId)) { - Write-Verbose ('Setting context to subscription [{0}]' -f $subscriptionId) - $null = Set-AzContext -Subscription $subscriptionId + if (-not [String]::IsNullOrEmpty($SubscriptionId)) { + Write-Verbose ('Setting context to subscription [{0}]' -f $SubscriptionId) + $null = Set-AzContext -Subscription $SubscriptionId } # Resource Group diff --git a/utilities/pipelines/resourcePublish/Publish-ModuleToTemplateSpec.ps1 b/utilities/pipelines/resourcePublish/Publish-ModuleToTemplateSpec.ps1 index 76cf37fbc8..73137412f7 100644 --- a/utilities/pipelines/resourcePublish/Publish-ModuleToTemplateSpec.ps1 +++ b/utilities/pipelines/resourcePublish/Publish-ModuleToTemplateSpec.ps1 @@ -26,6 +26,10 @@ Example: 'West Europe' Mandatory. The description of the parent template spec. Example: 'iacs key vault' +.PARAMETER SubscriptionId +Optional. SubscriptionId to publish the template spec to. If not specified, the default context/subscription is used. +Example: 'a6d228a7-0321-4099-9ef5-b3bcf0605c89' + .EXAMPLE Publish-ModuleToTemplateSpec -TemplateFilePath 'C:\arm\Microsoft.KeyVault\vaults\deploy.bicep' -ModuleVersion '3.0.0-alpha' -TemplateSpecsRgName 'artifacts-rg' -TemplateSpecsRgLocation 'West Europe' -TemplateSpecsDescription 'iacs key vault' @@ -51,7 +55,7 @@ function Publish-ModuleToTemplateSpec { [string] $TemplateSpecsDescription, [Parameter(Mandatory = $false)] - [string] $subscriptionId + [string] $SubscriptionId ) begin { @@ -74,9 +78,9 @@ function Publish-ModuleToTemplateSpec { ############################# ## set AzContext ## ############################# - if (-not [String]::IsNullOrEmpty($subscriptionId)) { - Write-Verbose ('Setting context to subscription [{0}]' -f $subscriptionId) - $null = Set-AzContext -Subscription $subscriptionId + if (-not [String]::IsNullOrEmpty($SubscriptionId)) { + Write-Verbose ('Setting context to subscription [{0}]' -f $SubscriptionId) + $null = Set-AzContext -Subscription $SubscriptionId } ################################ From 695075448896bb36b4d4723294384ac855f06bfb Mon Sep 17 00:00:00 2001 From: Marius Storhaug Date: Sun, 26 Jun 2022 17:35:07 +0200 Subject: [PATCH 11/18] update for serviceconnections --- .azuredevops/pipelineTemplates/jobs.publishModule.yml | 4 ++-- global.variables.yml | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.azuredevops/pipelineTemplates/jobs.publishModule.yml b/.azuredevops/pipelineTemplates/jobs.publishModule.yml index c1993559ec..812e08c12b 100644 --- a/.azuredevops/pipelineTemplates/jobs.publishModule.yml +++ b/.azuredevops/pipelineTemplates/jobs.publishModule.yml @@ -22,7 +22,7 @@ ## | Parameter | Default Value | Description | Example | ## |---------------------------------|--------------------------------------|---------------------------------------------------------------------------------------------------------|----------------------------------------| ## | displayName | 'Publishing' | Name for the pipeline job | 'Publish KeyVault' | -## | serviceConnection | '$(serviceConnectionPublish)' | The service connection that connects to Azure | 'demo-internal' | +## | serviceConnection | '$(serviceConnectionPublishing)' | The service connection that connects to Azure | 'demo-internal' | ## | subscriptionId | '$(ARM_PUBLISHING_SUBSCRIPTION_ID)' | The id of the subscription to deploy into when using a Management group service connection | 'aed7c000-6387-412e-bed0-24dfddf4bbc6' | ## | poolName | '$(poolName)' | You can provide either a [poolname] or [vmImage] to run the job on | 'Custom Deployment Pool' | ## | vmImage | '$(vmImage)' | You can provide either a [poolname] or [vmImage] to run the job on | 'ubuntu20.04' | @@ -48,7 +48,7 @@ parameters: # Pipeline-related parameters checkoutRepositories: '' displayName: 'Publishing' - serviceConnection: '$(serviceConnectionPublish)' + serviceConnection: '$(serviceConnectionPublishing)' poolName: '$(poolName)' vmImage: '$(vmImage)' defaultJobTimeoutInMinutes: 120 diff --git a/global.variables.yml b/global.variables.yml index fbd9dcefb3..3dc3eff660 100644 --- a/global.variables.yml +++ b/global.variables.yml @@ -38,8 +38,8 @@ variables: vmImage: 'ubuntu-latest' # Use this for Microsoft-hosted agents poolName: '' # Use this for self-hosted agents - serviceConnectionValidation: 'CARML-CSU-Tenant-Connection' - serviceConnectionPublish: 'CARML-CSU-Tenant-Connection' + serviceConnectionValidation: 'validation-svccon' + serviceConnectionPublishing: 'publishing-svccon' ###################################### # Source From 70e4a23d9d0d07f92f103bac7da95e23ee94dfc3 Mon Sep 17 00:00:00 2001 From: Marius Storhaug Date: Sun, 26 Jun 2022 17:44:44 +0200 Subject: [PATCH 12/18] added some text to show svccon in use --- .azuredevops/pipelineTemplates/jobs.publishModule.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.azuredevops/pipelineTemplates/jobs.publishModule.yml b/.azuredevops/pipelineTemplates/jobs.publishModule.yml index 812e08c12b..5a8737848e 100644 --- a/.azuredevops/pipelineTemplates/jobs.publishModule.yml +++ b/.azuredevops/pipelineTemplates/jobs.publishModule.yml @@ -202,7 +202,7 @@ jobs: # [template-spec publish] task(s) #-------------------------------- - task: AzurePowerShell@5 - displayName: 'Publish module to template specs' + displayName: 'Publish module to template specs via connection [${{ parameters.serviceConnection }}]' condition: and( eq(variables['templateSpecsDoPublish'], true), succeeded() @@ -259,7 +259,7 @@ jobs: # [private bicep registry publish] task(s) #------------------------------------------- - task: AzureCLI@2 - displayName: 'Publish module to private bicep registry' + displayName: 'Publish module to private bicep registry via connection [${{ parameters.serviceConnection }}]' condition: and( eq(variables['bicepRegistryDoPublish'], true), succeeded() From aa10be51f10ede388ac50d5539afb4f9987a9393 Mon Sep 17 00:00:00 2001 From: Marius Storhaug Date: Sun, 26 Jun 2022 18:00:00 +0200 Subject: [PATCH 13/18] Dependency deploy validation svccon --- .../platform.dependencies.yml | 28 +++++++++++++++++++ 1 file changed, 28 insertions(+) diff --git a/.azuredevops/platformPipelines/platform.dependencies.yml b/.azuredevops/platformPipelines/platform.dependencies.yml index 52cabb42a5..c2731dc42d 100644 --- a/.azuredevops/platformPipelines/platform.dependencies.yml +++ b/.azuredevops/platformPipelines/platform.dependencies.yml @@ -43,6 +43,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/validation.parameters.json templateFilePath: $(templateFilePath) @@ -61,6 +62,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -76,6 +78,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -114,6 +117,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -129,6 +133,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -144,6 +149,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/mg.parameters.json templateFilePath: $(templateFilePath) @@ -162,6 +168,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -177,6 +184,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -198,6 +206,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -294,6 +303,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -313,6 +323,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -447,6 +458,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -462,6 +474,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -477,6 +490,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -498,6 +512,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -531,6 +546,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/apgw.parameters.json templateFilePath: $(templateFilePath) @@ -553,6 +569,7 @@ stages: - path: $(dependencyPath)/$(resourceType)/parameters/bas.additional.parameters.json templateFilePath: $(templateFilePath) displayName: Bastion Additional Public IP + - stage: deploy_appi displayName: Deploy application insight dependsOn: @@ -565,6 +582,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -582,6 +600,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -599,6 +618,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -618,6 +638,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -638,6 +659,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -891,6 +913,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -907,6 +930,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -925,6 +949,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -981,6 +1006,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -998,6 +1024,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -1013,6 +1040,7 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: + serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/internal.parameters.json templateFilePath: $(templateFilePath) From dcdb32fa0d937b903897e165f8a58a1e95630a6e Mon Sep 17 00:00:00 2001 From: Marius Storhaug Date: Sun, 26 Jun 2022 18:29:08 +0200 Subject: [PATCH 14/18] bump batch for test --- arm/Microsoft.Batch/batchAccounts/version.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/arm/Microsoft.Batch/batchAccounts/version.json b/arm/Microsoft.Batch/batchAccounts/version.json index 56f8d9ca40..badc0a2285 100644 --- a/arm/Microsoft.Batch/batchAccounts/version.json +++ b/arm/Microsoft.Batch/batchAccounts/version.json @@ -1,4 +1,4 @@ { "$schema": "https://raw.githubusercontent.com/dotnet/Nerdbank.GitVersioning/master/src/NerdBank.GitVersioning/version.schema.json", - "version": "0.4" + "version": "0.5" } From 6393e1d1d1edef3bab283bc273a9fe2d8e49560f Mon Sep 17 00:00:00 2001 From: Marius Storhaug Date: Sun, 26 Jun 2022 19:05:45 +0200 Subject: [PATCH 15/18] test --- arm/Microsoft.Batch/batchAccounts/version.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/arm/Microsoft.Batch/batchAccounts/version.json b/arm/Microsoft.Batch/batchAccounts/version.json index badc0a2285..56f8d9ca40 100644 --- a/arm/Microsoft.Batch/batchAccounts/version.json +++ b/arm/Microsoft.Batch/batchAccounts/version.json @@ -1,4 +1,4 @@ { "$schema": "https://raw.githubusercontent.com/dotnet/Nerdbank.GitVersioning/master/src/NerdBank.GitVersioning/version.schema.json", - "version": "0.5" + "version": "0.4" } From acf6cf9b63c80572505630415b0b209ed4870230 Mon Sep 17 00:00:00 2001 From: Marius Storhaug Date: Mon, 27 Jun 2022 21:52:41 +0200 Subject: [PATCH 16/18] Update based on feedback from MrM --- .github/workflows/ms.aad.domainservices.yml | 4 ++-- .github/workflows/ms.analysisservices.servers.yml | 4 ++-- .github/workflows/ms.apimanagement.service.yml | 4 ++-- .../workflows/ms.appconfiguration.configurationstores.yml | 4 ++-- .github/workflows/ms.authorization.locks.yml | 4 ++-- .github/workflows/ms.authorization.policyassignments.yml | 4 ++-- .github/workflows/ms.authorization.policydefinitions.yml | 4 ++-- .github/workflows/ms.authorization.policyexemptions.yml | 4 ++-- .github/workflows/ms.authorization.policysetdefinitions.yml | 4 ++-- .github/workflows/ms.authorization.roleassignments.yml | 4 ++-- .github/workflows/ms.authorization.roledefinitions.yml | 4 ++-- .github/workflows/ms.automation.automationaccounts.yml | 4 ++-- .github/workflows/ms.batch.batchaccounts.yml | 4 ++-- .github/workflows/ms.cognitiveservices.accounts.yml | 4 ++-- .github/workflows/ms.compute.availabilitysets.yml | 4 ++-- .github/workflows/ms.compute.diskencryptionsets.yml | 4 ++-- .github/workflows/ms.compute.disks.yml | 4 ++-- .github/workflows/ms.compute.galleries.yml | 4 ++-- .github/workflows/ms.compute.images.yml | 4 ++-- .github/workflows/ms.compute.proximityplacementgroups.yml | 4 ++-- .github/workflows/ms.compute.virtualmachines.yml | 4 ++-- .github/workflows/ms.compute.virtualmachinescalesets.yml | 4 ++-- .github/workflows/ms.consumption.budgets.yml | 4 ++-- .github/workflows/ms.containerinstance.containergroups.yml | 4 ++-- .github/workflows/ms.containerregistry.registries.yml | 4 ++-- .github/workflows/ms.containerservice.managedclusters.yml | 4 ++-- .github/workflows/ms.databricks.workspaces.yml | 4 ++-- .github/workflows/ms.datafactory.factories.yml | 4 ++-- .github/workflows/ms.dataprotection.backupvaults.yml | 4 ++-- .../ms.desktopvirtualization.applicationgroups.yml | 4 ++-- .github/workflows/ms.desktopvirtualization.hostpools.yml | 4 ++-- .github/workflows/ms.desktopvirtualization.scalingplans.yml | 4 ++-- .github/workflows/ms.desktopvirtualization.workspaces.yml | 4 ++-- .github/workflows/ms.documentdb.databaseaccounts.yml | 4 ++-- .github/workflows/ms.eventgrid.systemtopics.yml | 4 ++-- .github/workflows/ms.eventgrid.topics.yml | 4 ++-- .github/workflows/ms.eventhub.namespaces.yml | 4 ++-- .github/workflows/ms.healthbot.healthbots.yml | 4 ++-- .github/workflows/ms.insights.actiongroups.yml | 4 ++-- .github/workflows/ms.insights.activitylogalerts.yml | 4 ++-- .github/workflows/ms.insights.components.yml | 4 ++-- .github/workflows/ms.insights.diagnosticsettings.yml | 4 ++-- .github/workflows/ms.insights.metricalerts.yml | 4 ++-- .github/workflows/ms.insights.privatelinkscopes.yml | 4 ++-- .github/workflows/ms.insights.scheduledqueryrules.yml | 4 ++-- .github/workflows/ms.keyvault.vaults.yml | 4 ++-- .github/workflows/ms.kubernetesconfiguration.extensions.yml | 4 ++-- .../ms.kubernetesconfiguration.fluxconfigurations.yml | 4 ++-- .github/workflows/ms.logic.workflows.yml | 4 ++-- .github/workflows/ms.machinelearningservices.workspaces.yml | 4 ++-- .../workflows/ms.managedidentity.userassignedidentities.yml | 4 ++-- .../ms.managedservices.registrationdefinitions.yml | 4 ++-- .github/workflows/ms.management.managementgroups.yml | 4 ++-- .github/workflows/ms.netapp.netappaccounts.yml | 4 ++-- .github/workflows/ms.network.applicationgateways.yml | 4 ++-- .github/workflows/ms.network.applicationsecuritygroups.yml | 4 ++-- .github/workflows/ms.network.azurefirewalls.yml | 4 ++-- .github/workflows/ms.network.bastionhosts.yml | 4 ++-- .github/workflows/ms.network.connections.yml | 4 ++-- .github/workflows/ms.network.ddosprotectionplans.yml | 4 ++-- .github/workflows/ms.network.expressroutecircuits.yml | 4 ++-- .github/workflows/ms.network.firewallpolicies.yml | 4 ++-- .github/workflows/ms.network.frontdoors.yml | 4 ++-- .github/workflows/ms.network.ipgroups.yml | 4 ++-- .github/workflows/ms.network.loadbalancers.yml | 4 ++-- .github/workflows/ms.network.localnetworkgateways.yml | 4 ++-- .github/workflows/ms.network.natgateways.yml | 4 ++-- .github/workflows/ms.network.networkinterfaces.yml | 4 ++-- .github/workflows/ms.network.networksecuritygroups.yml | 4 ++-- .github/workflows/ms.network.networkwatchers.yml | 4 ++-- .github/workflows/ms.network.privatednszones.yml | 4 ++-- .github/workflows/ms.network.privateendpoints.yml | 4 ++-- .github/workflows/ms.network.publicipaddresses.yml | 4 ++-- .github/workflows/ms.network.publicipprefixes.yml | 4 ++-- .github/workflows/ms.network.routetables.yml | 4 ++-- .github/workflows/ms.network.trafficmanagerprofiles.yml | 4 ++-- .github/workflows/ms.network.virtualhubs.yml | 4 ++-- .github/workflows/ms.network.virtualnetworkgateways.yml | 4 ++-- .github/workflows/ms.network.virtualnetworks.yml | 4 ++-- .github/workflows/ms.network.virtualwans.yml | 4 ++-- .github/workflows/ms.network.vpngateways.yml | 4 ++-- .github/workflows/ms.network.vpnsites.yml | 4 ++-- .github/workflows/ms.operationalinsights.workspaces.yml | 4 ++-- .github/workflows/ms.operationsmanagement.solutions.yml | 4 ++-- .github/workflows/ms.recoveryservices.vaults.yml | 4 ++-- .github/workflows/ms.resources.deploymentscripts.yml | 4 ++-- .github/workflows/ms.resources.resourcegroups.yml | 4 ++-- .github/workflows/ms.resources.tags.yml | 4 ++-- .github/workflows/ms.security.azuresecuritycenter.yml | 4 ++-- .github/workflows/ms.servicebus.namespaces.yml | 4 ++-- .github/workflows/ms.servicefabric.clusters.yml | 4 ++-- .github/workflows/ms.sql.managedinstances.yml | 4 ++-- .github/workflows/ms.sql.servers.yml | 4 ++-- .github/workflows/ms.storage.storageaccounts.yml | 4 ++-- .github/workflows/ms.synapse.privatelinkhubs.yml | 4 ++-- .../workflows/ms.virtualmachineimages.imagetemplates.yml | 4 ++-- .github/workflows/ms.web.connections.yml | 4 ++-- .github/workflows/ms.web.hostingenvironments.yml | 4 ++-- .github/workflows/ms.web.serverfarms.yml | 4 ++-- .github/workflows/ms.web.sites.yml | 4 ++-- .github/workflows/ms.web.staticsites.yml | 4 ++-- .github/workflows/platform.dependencies.yml | 4 ++-- docs/wiki/Solution creation.md | 6 ++---- 103 files changed, 206 insertions(+), 208 deletions(-) diff --git a/.github/workflows/ms.aad.domainservices.yml b/.github/workflows/ms.aad.domainservices.yml index bb60cf6e6b..bfef6cf9f5 100644 --- a/.github/workflows/ms.aad.domainservices.yml +++ b/.github/workflows/ms.aad.domainservices.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.analysisservices.servers.yml b/.github/workflows/ms.analysisservices.servers.yml index f16fa57fce..1839000d1c 100644 --- a/.github/workflows/ms.analysisservices.servers.yml +++ b/.github/workflows/ms.analysisservices.servers.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.apimanagement.service.yml b/.github/workflows/ms.apimanagement.service.yml index 1f2ef8c180..bf43ea50f3 100644 --- a/.github/workflows/ms.apimanagement.service.yml +++ b/.github/workflows/ms.apimanagement.service.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.appconfiguration.configurationstores.yml b/.github/workflows/ms.appconfiguration.configurationstores.yml index 51641904db..f4741e6e92 100644 --- a/.github/workflows/ms.appconfiguration.configurationstores.yml +++ b/.github/workflows/ms.appconfiguration.configurationstores.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.authorization.locks.yml b/.github/workflows/ms.authorization.locks.yml index 0b0a3151d7..1ec08f6382 100644 --- a/.github/workflows/ms.authorization.locks.yml +++ b/.github/workflows/ms.authorization.locks.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.authorization.policyassignments.yml b/.github/workflows/ms.authorization.policyassignments.yml index e9fd927db7..714b20bb40 100644 --- a/.github/workflows/ms.authorization.policyassignments.yml +++ b/.github/workflows/ms.authorization.policyassignments.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.authorization.policydefinitions.yml b/.github/workflows/ms.authorization.policydefinitions.yml index 034c66fd28..f72e21891f 100644 --- a/.github/workflows/ms.authorization.policydefinitions.yml +++ b/.github/workflows/ms.authorization.policydefinitions.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.authorization.policyexemptions.yml b/.github/workflows/ms.authorization.policyexemptions.yml index f32acd730c..de2b25394b 100644 --- a/.github/workflows/ms.authorization.policyexemptions.yml +++ b/.github/workflows/ms.authorization.policyexemptions.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.authorization.policysetdefinitions.yml b/.github/workflows/ms.authorization.policysetdefinitions.yml index 33e6280075..30af07577e 100644 --- a/.github/workflows/ms.authorization.policysetdefinitions.yml +++ b/.github/workflows/ms.authorization.policysetdefinitions.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.authorization.roleassignments.yml b/.github/workflows/ms.authorization.roleassignments.yml index b346a24f93..8871119d47 100644 --- a/.github/workflows/ms.authorization.roleassignments.yml +++ b/.github/workflows/ms.authorization.roleassignments.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.authorization.roledefinitions.yml b/.github/workflows/ms.authorization.roledefinitions.yml index 19b24233e1..3323186074 100644 --- a/.github/workflows/ms.authorization.roledefinitions.yml +++ b/.github/workflows/ms.authorization.roledefinitions.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.automation.automationaccounts.yml b/.github/workflows/ms.automation.automationaccounts.yml index 9dbcd86ed8..9a8bb01f77 100644 --- a/.github/workflows/ms.automation.automationaccounts.yml +++ b/.github/workflows/ms.automation.automationaccounts.yml @@ -27,8 +27,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.batch.batchaccounts.yml b/.github/workflows/ms.batch.batchaccounts.yml index 9e4aaafd16..f86125dd1d 100644 --- a/.github/workflows/ms.batch.batchaccounts.yml +++ b/.github/workflows/ms.batch.batchaccounts.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.cognitiveservices.accounts.yml b/.github/workflows/ms.cognitiveservices.accounts.yml index 5bc286b2f8..df01948d81 100644 --- a/.github/workflows/ms.cognitiveservices.accounts.yml +++ b/.github/workflows/ms.cognitiveservices.accounts.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.compute.availabilitysets.yml b/.github/workflows/ms.compute.availabilitysets.yml index ab91c2ec14..28c4455349 100644 --- a/.github/workflows/ms.compute.availabilitysets.yml +++ b/.github/workflows/ms.compute.availabilitysets.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.compute.diskencryptionsets.yml b/.github/workflows/ms.compute.diskencryptionsets.yml index d6ab86721b..e149984b37 100644 --- a/.github/workflows/ms.compute.diskencryptionsets.yml +++ b/.github/workflows/ms.compute.diskencryptionsets.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.compute.disks.yml b/.github/workflows/ms.compute.disks.yml index 6ca83abd5b..2697bb16e1 100644 --- a/.github/workflows/ms.compute.disks.yml +++ b/.github/workflows/ms.compute.disks.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.compute.galleries.yml b/.github/workflows/ms.compute.galleries.yml index dd4d49df9d..8aa0c2f1ba 100644 --- a/.github/workflows/ms.compute.galleries.yml +++ b/.github/workflows/ms.compute.galleries.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.compute.images.yml b/.github/workflows/ms.compute.images.yml index f2f4b04ea0..496ddc68ff 100644 --- a/.github/workflows/ms.compute.images.yml +++ b/.github/workflows/ms.compute.images.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.compute.proximityplacementgroups.yml b/.github/workflows/ms.compute.proximityplacementgroups.yml index 65f3b781ae..a52c544115 100644 --- a/.github/workflows/ms.compute.proximityplacementgroups.yml +++ b/.github/workflows/ms.compute.proximityplacementgroups.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.compute.virtualmachines.yml b/.github/workflows/ms.compute.virtualmachines.yml index 9a7e00b015..4b592562d6 100644 --- a/.github/workflows/ms.compute.virtualmachines.yml +++ b/.github/workflows/ms.compute.virtualmachines.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.compute.virtualmachinescalesets.yml b/.github/workflows/ms.compute.virtualmachinescalesets.yml index ea70254331..bb4b15d64f 100644 --- a/.github/workflows/ms.compute.virtualmachinescalesets.yml +++ b/.github/workflows/ms.compute.virtualmachinescalesets.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.consumption.budgets.yml b/.github/workflows/ms.consumption.budgets.yml index 17f7874233..3c843fbd4a 100644 --- a/.github/workflows/ms.consumption.budgets.yml +++ b/.github/workflows/ms.consumption.budgets.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.containerinstance.containergroups.yml b/.github/workflows/ms.containerinstance.containergroups.yml index 867411b1d3..24fe9027c3 100644 --- a/.github/workflows/ms.containerinstance.containergroups.yml +++ b/.github/workflows/ms.containerinstance.containergroups.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.containerregistry.registries.yml b/.github/workflows/ms.containerregistry.registries.yml index 3845881f5c..a10f438d9f 100644 --- a/.github/workflows/ms.containerregistry.registries.yml +++ b/.github/workflows/ms.containerregistry.registries.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.containerservice.managedclusters.yml b/.github/workflows/ms.containerservice.managedclusters.yml index c221c4ce3e..c337b80cbd 100644 --- a/.github/workflows/ms.containerservice.managedclusters.yml +++ b/.github/workflows/ms.containerservice.managedclusters.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.databricks.workspaces.yml b/.github/workflows/ms.databricks.workspaces.yml index 1c08f4a592..2cd2df8e94 100644 --- a/.github/workflows/ms.databricks.workspaces.yml +++ b/.github/workflows/ms.databricks.workspaces.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.datafactory.factories.yml b/.github/workflows/ms.datafactory.factories.yml index 6d5895e561..1026e8e89f 100644 --- a/.github/workflows/ms.datafactory.factories.yml +++ b/.github/workflows/ms.datafactory.factories.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.dataprotection.backupvaults.yml b/.github/workflows/ms.dataprotection.backupvaults.yml index c068f56163..5599a34245 100644 --- a/.github/workflows/ms.dataprotection.backupvaults.yml +++ b/.github/workflows/ms.dataprotection.backupvaults.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.desktopvirtualization.applicationgroups.yml b/.github/workflows/ms.desktopvirtualization.applicationgroups.yml index e12494b1ba..021e5ada47 100644 --- a/.github/workflows/ms.desktopvirtualization.applicationgroups.yml +++ b/.github/workflows/ms.desktopvirtualization.applicationgroups.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.desktopvirtualization.hostpools.yml b/.github/workflows/ms.desktopvirtualization.hostpools.yml index 04cbcfa8a0..1e6029909c 100644 --- a/.github/workflows/ms.desktopvirtualization.hostpools.yml +++ b/.github/workflows/ms.desktopvirtualization.hostpools.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.desktopvirtualization.scalingplans.yml b/.github/workflows/ms.desktopvirtualization.scalingplans.yml index 8b487657e1..ec376d94d8 100644 --- a/.github/workflows/ms.desktopvirtualization.scalingplans.yml +++ b/.github/workflows/ms.desktopvirtualization.scalingplans.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.desktopvirtualization.workspaces.yml b/.github/workflows/ms.desktopvirtualization.workspaces.yml index 54639dbd57..072c095b9e 100644 --- a/.github/workflows/ms.desktopvirtualization.workspaces.yml +++ b/.github/workflows/ms.desktopvirtualization.workspaces.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.documentdb.databaseaccounts.yml b/.github/workflows/ms.documentdb.databaseaccounts.yml index 34aa3c46bc..54eba4c06b 100644 --- a/.github/workflows/ms.documentdb.databaseaccounts.yml +++ b/.github/workflows/ms.documentdb.databaseaccounts.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.eventgrid.systemtopics.yml b/.github/workflows/ms.eventgrid.systemtopics.yml index 4218970183..8c12336ede 100644 --- a/.github/workflows/ms.eventgrid.systemtopics.yml +++ b/.github/workflows/ms.eventgrid.systemtopics.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.eventgrid.topics.yml b/.github/workflows/ms.eventgrid.topics.yml index 93c12df1a7..ffe3bb3507 100644 --- a/.github/workflows/ms.eventgrid.topics.yml +++ b/.github/workflows/ms.eventgrid.topics.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.eventhub.namespaces.yml b/.github/workflows/ms.eventhub.namespaces.yml index 9349fa45c3..398ab1befb 100644 --- a/.github/workflows/ms.eventhub.namespaces.yml +++ b/.github/workflows/ms.eventhub.namespaces.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.healthbot.healthbots.yml b/.github/workflows/ms.healthbot.healthbots.yml index f32d77b0f2..09e633f58e 100644 --- a/.github/workflows/ms.healthbot.healthbots.yml +++ b/.github/workflows/ms.healthbot.healthbots.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.insights.actiongroups.yml b/.github/workflows/ms.insights.actiongroups.yml index b951da25d7..8348a2e693 100644 --- a/.github/workflows/ms.insights.actiongroups.yml +++ b/.github/workflows/ms.insights.actiongroups.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.insights.activitylogalerts.yml b/.github/workflows/ms.insights.activitylogalerts.yml index e618cf549c..8b9cfc8a1d 100644 --- a/.github/workflows/ms.insights.activitylogalerts.yml +++ b/.github/workflows/ms.insights.activitylogalerts.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.insights.components.yml b/.github/workflows/ms.insights.components.yml index 7b3bd0b930..c6adf248fd 100644 --- a/.github/workflows/ms.insights.components.yml +++ b/.github/workflows/ms.insights.components.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.insights.diagnosticsettings.yml b/.github/workflows/ms.insights.diagnosticsettings.yml index 20a31904ce..045abeffb5 100644 --- a/.github/workflows/ms.insights.diagnosticsettings.yml +++ b/.github/workflows/ms.insights.diagnosticsettings.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.insights.metricalerts.yml b/.github/workflows/ms.insights.metricalerts.yml index 376c8de8b7..6e22b6b476 100644 --- a/.github/workflows/ms.insights.metricalerts.yml +++ b/.github/workflows/ms.insights.metricalerts.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.insights.privatelinkscopes.yml b/.github/workflows/ms.insights.privatelinkscopes.yml index 4336cf4d93..eab350b631 100644 --- a/.github/workflows/ms.insights.privatelinkscopes.yml +++ b/.github/workflows/ms.insights.privatelinkscopes.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.insights.scheduledqueryrules.yml b/.github/workflows/ms.insights.scheduledqueryrules.yml index efdfb8fc92..e3c0bd138a 100644 --- a/.github/workflows/ms.insights.scheduledqueryrules.yml +++ b/.github/workflows/ms.insights.scheduledqueryrules.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.keyvault.vaults.yml b/.github/workflows/ms.keyvault.vaults.yml index 8e3821505b..7ba1ea2fec 100644 --- a/.github/workflows/ms.keyvault.vaults.yml +++ b/.github/workflows/ms.keyvault.vaults.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.kubernetesconfiguration.extensions.yml b/.github/workflows/ms.kubernetesconfiguration.extensions.yml index 3a69928522..0532ee1d86 100644 --- a/.github/workflows/ms.kubernetesconfiguration.extensions.yml +++ b/.github/workflows/ms.kubernetesconfiguration.extensions.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.kubernetesconfiguration.fluxconfigurations.yml b/.github/workflows/ms.kubernetesconfiguration.fluxconfigurations.yml index e782cafeb0..14631903e6 100644 --- a/.github/workflows/ms.kubernetesconfiguration.fluxconfigurations.yml +++ b/.github/workflows/ms.kubernetesconfiguration.fluxconfigurations.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.logic.workflows.yml b/.github/workflows/ms.logic.workflows.yml index 489c38ca84..7a4909c672 100644 --- a/.github/workflows/ms.logic.workflows.yml +++ b/.github/workflows/ms.logic.workflows.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.machinelearningservices.workspaces.yml b/.github/workflows/ms.machinelearningservices.workspaces.yml index 71fd80586a..5496a8c301 100644 --- a/.github/workflows/ms.machinelearningservices.workspaces.yml +++ b/.github/workflows/ms.machinelearningservices.workspaces.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.managedidentity.userassignedidentities.yml b/.github/workflows/ms.managedidentity.userassignedidentities.yml index 57246305d6..3f0b911521 100644 --- a/.github/workflows/ms.managedidentity.userassignedidentities.yml +++ b/.github/workflows/ms.managedidentity.userassignedidentities.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.managedservices.registrationdefinitions.yml b/.github/workflows/ms.managedservices.registrationdefinitions.yml index 09b2f87149..417aeb3ec4 100644 --- a/.github/workflows/ms.managedservices.registrationdefinitions.yml +++ b/.github/workflows/ms.managedservices.registrationdefinitions.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.management.managementgroups.yml b/.github/workflows/ms.management.managementgroups.yml index b604233c98..5068517c7e 100644 --- a/.github/workflows/ms.management.managementgroups.yml +++ b/.github/workflows/ms.management.managementgroups.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.netapp.netappaccounts.yml b/.github/workflows/ms.netapp.netappaccounts.yml index 01b09e979b..dbb8144eba 100644 --- a/.github/workflows/ms.netapp.netappaccounts.yml +++ b/.github/workflows/ms.netapp.netappaccounts.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.applicationgateways.yml b/.github/workflows/ms.network.applicationgateways.yml index 3d4a0a978a..e655d667f8 100644 --- a/.github/workflows/ms.network.applicationgateways.yml +++ b/.github/workflows/ms.network.applicationgateways.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.applicationsecuritygroups.yml b/.github/workflows/ms.network.applicationsecuritygroups.yml index 1eee121f72..1feb6722f3 100644 --- a/.github/workflows/ms.network.applicationsecuritygroups.yml +++ b/.github/workflows/ms.network.applicationsecuritygroups.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.azurefirewalls.yml b/.github/workflows/ms.network.azurefirewalls.yml index c815fc1e81..cc44bfaf97 100644 --- a/.github/workflows/ms.network.azurefirewalls.yml +++ b/.github/workflows/ms.network.azurefirewalls.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.bastionhosts.yml b/.github/workflows/ms.network.bastionhosts.yml index ad7f94db19..dc8a4a5158 100644 --- a/.github/workflows/ms.network.bastionhosts.yml +++ b/.github/workflows/ms.network.bastionhosts.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.connections.yml b/.github/workflows/ms.network.connections.yml index 616e9fdb5a..bce5f1db13 100644 --- a/.github/workflows/ms.network.connections.yml +++ b/.github/workflows/ms.network.connections.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.ddosprotectionplans.yml b/.github/workflows/ms.network.ddosprotectionplans.yml index acae602f32..681932fea8 100644 --- a/.github/workflows/ms.network.ddosprotectionplans.yml +++ b/.github/workflows/ms.network.ddosprotectionplans.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.expressroutecircuits.yml b/.github/workflows/ms.network.expressroutecircuits.yml index b7a60831b9..d5abc9683e 100644 --- a/.github/workflows/ms.network.expressroutecircuits.yml +++ b/.github/workflows/ms.network.expressroutecircuits.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.firewallpolicies.yml b/.github/workflows/ms.network.firewallpolicies.yml index 761437392c..655eabc836 100644 --- a/.github/workflows/ms.network.firewallpolicies.yml +++ b/.github/workflows/ms.network.firewallpolicies.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.frontdoors.yml b/.github/workflows/ms.network.frontdoors.yml index 7c17f9bcc5..050118275b 100644 --- a/.github/workflows/ms.network.frontdoors.yml +++ b/.github/workflows/ms.network.frontdoors.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.ipgroups.yml b/.github/workflows/ms.network.ipgroups.yml index 0462d28865..222843a9b4 100644 --- a/.github/workflows/ms.network.ipgroups.yml +++ b/.github/workflows/ms.network.ipgroups.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.loadbalancers.yml b/.github/workflows/ms.network.loadbalancers.yml index ffb034f162..4cfee0e22b 100644 --- a/.github/workflows/ms.network.loadbalancers.yml +++ b/.github/workflows/ms.network.loadbalancers.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.localnetworkgateways.yml b/.github/workflows/ms.network.localnetworkgateways.yml index 5a09f022c8..c1aae47458 100644 --- a/.github/workflows/ms.network.localnetworkgateways.yml +++ b/.github/workflows/ms.network.localnetworkgateways.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.natgateways.yml b/.github/workflows/ms.network.natgateways.yml index 5136dbefe4..87719515ef 100644 --- a/.github/workflows/ms.network.natgateways.yml +++ b/.github/workflows/ms.network.natgateways.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.networkinterfaces.yml b/.github/workflows/ms.network.networkinterfaces.yml index 5147ae4735..12e3de6167 100644 --- a/.github/workflows/ms.network.networkinterfaces.yml +++ b/.github/workflows/ms.network.networkinterfaces.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.networksecuritygroups.yml b/.github/workflows/ms.network.networksecuritygroups.yml index 0a4c017455..c339977115 100644 --- a/.github/workflows/ms.network.networksecuritygroups.yml +++ b/.github/workflows/ms.network.networksecuritygroups.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.networkwatchers.yml b/.github/workflows/ms.network.networkwatchers.yml index 7a14f95036..5c7e8095de 100644 --- a/.github/workflows/ms.network.networkwatchers.yml +++ b/.github/workflows/ms.network.networkwatchers.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.privatednszones.yml b/.github/workflows/ms.network.privatednszones.yml index b12ecd2a80..0acefe2260 100644 --- a/.github/workflows/ms.network.privatednszones.yml +++ b/.github/workflows/ms.network.privatednszones.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.privateendpoints.yml b/.github/workflows/ms.network.privateendpoints.yml index 9d7cd1c7da..a80df2a83e 100644 --- a/.github/workflows/ms.network.privateendpoints.yml +++ b/.github/workflows/ms.network.privateendpoints.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.publicipaddresses.yml b/.github/workflows/ms.network.publicipaddresses.yml index e5f635ff55..c755dc69f5 100644 --- a/.github/workflows/ms.network.publicipaddresses.yml +++ b/.github/workflows/ms.network.publicipaddresses.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.publicipprefixes.yml b/.github/workflows/ms.network.publicipprefixes.yml index 8c5db5a29e..0105e5b4f5 100644 --- a/.github/workflows/ms.network.publicipprefixes.yml +++ b/.github/workflows/ms.network.publicipprefixes.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.routetables.yml b/.github/workflows/ms.network.routetables.yml index e68db33b31..3a7914b0b7 100644 --- a/.github/workflows/ms.network.routetables.yml +++ b/.github/workflows/ms.network.routetables.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.trafficmanagerprofiles.yml b/.github/workflows/ms.network.trafficmanagerprofiles.yml index e53d475512..9b840f0da5 100644 --- a/.github/workflows/ms.network.trafficmanagerprofiles.yml +++ b/.github/workflows/ms.network.trafficmanagerprofiles.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.virtualhubs.yml b/.github/workflows/ms.network.virtualhubs.yml index 3a11769166..b360232bfd 100644 --- a/.github/workflows/ms.network.virtualhubs.yml +++ b/.github/workflows/ms.network.virtualhubs.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.virtualnetworkgateways.yml b/.github/workflows/ms.network.virtualnetworkgateways.yml index 0af78f2ac8..c3f0998ccc 100644 --- a/.github/workflows/ms.network.virtualnetworkgateways.yml +++ b/.github/workflows/ms.network.virtualnetworkgateways.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.virtualnetworks.yml b/.github/workflows/ms.network.virtualnetworks.yml index 29225b932a..5d338bf191 100644 --- a/.github/workflows/ms.network.virtualnetworks.yml +++ b/.github/workflows/ms.network.virtualnetworks.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.virtualwans.yml b/.github/workflows/ms.network.virtualwans.yml index 54ef37e154..85e2332e22 100644 --- a/.github/workflows/ms.network.virtualwans.yml +++ b/.github/workflows/ms.network.virtualwans.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.vpngateways.yml b/.github/workflows/ms.network.vpngateways.yml index f620a0c12e..1664b4e452 100644 --- a/.github/workflows/ms.network.vpngateways.yml +++ b/.github/workflows/ms.network.vpngateways.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.network.vpnsites.yml b/.github/workflows/ms.network.vpnsites.yml index 2b5d090c21..610b3d6eef 100644 --- a/.github/workflows/ms.network.vpnsites.yml +++ b/.github/workflows/ms.network.vpnsites.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.operationalinsights.workspaces.yml b/.github/workflows/ms.operationalinsights.workspaces.yml index 335f57223b..054d8fbaf8 100644 --- a/.github/workflows/ms.operationalinsights.workspaces.yml +++ b/.github/workflows/ms.operationalinsights.workspaces.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.operationsmanagement.solutions.yml b/.github/workflows/ms.operationsmanagement.solutions.yml index a46d73167e..2fe57829d0 100644 --- a/.github/workflows/ms.operationsmanagement.solutions.yml +++ b/.github/workflows/ms.operationsmanagement.solutions.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.recoveryservices.vaults.yml b/.github/workflows/ms.recoveryservices.vaults.yml index 0b724be4ca..515a27a207 100644 --- a/.github/workflows/ms.recoveryservices.vaults.yml +++ b/.github/workflows/ms.recoveryservices.vaults.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.resources.deploymentscripts.yml b/.github/workflows/ms.resources.deploymentscripts.yml index d7f685488a..5d1ce534ed 100644 --- a/.github/workflows/ms.resources.deploymentscripts.yml +++ b/.github/workflows/ms.resources.deploymentscripts.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.resources.resourcegroups.yml b/.github/workflows/ms.resources.resourcegroups.yml index f736743eaf..91498f5c55 100644 --- a/.github/workflows/ms.resources.resourcegroups.yml +++ b/.github/workflows/ms.resources.resourcegroups.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.resources.tags.yml b/.github/workflows/ms.resources.tags.yml index 9d17a3b833..fed5022cc2 100644 --- a/.github/workflows/ms.resources.tags.yml +++ b/.github/workflows/ms.resources.tags.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.security.azuresecuritycenter.yml b/.github/workflows/ms.security.azuresecuritycenter.yml index 363c2f1f5b..795c1b8630 100644 --- a/.github/workflows/ms.security.azuresecuritycenter.yml +++ b/.github/workflows/ms.security.azuresecuritycenter.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.servicebus.namespaces.yml b/.github/workflows/ms.servicebus.namespaces.yml index 30b42c27e0..48c21f4b9e 100644 --- a/.github/workflows/ms.servicebus.namespaces.yml +++ b/.github/workflows/ms.servicebus.namespaces.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.servicefabric.clusters.yml b/.github/workflows/ms.servicefabric.clusters.yml index 0c849e2a95..0b12f7ff6d 100644 --- a/.github/workflows/ms.servicefabric.clusters.yml +++ b/.github/workflows/ms.servicefabric.clusters.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.sql.managedinstances.yml b/.github/workflows/ms.sql.managedinstances.yml index f549e768e4..8cff126b85 100644 --- a/.github/workflows/ms.sql.managedinstances.yml +++ b/.github/workflows/ms.sql.managedinstances.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.sql.servers.yml b/.github/workflows/ms.sql.servers.yml index 239e15ff0c..b67bab0183 100644 --- a/.github/workflows/ms.sql.servers.yml +++ b/.github/workflows/ms.sql.servers.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.storage.storageaccounts.yml b/.github/workflows/ms.storage.storageaccounts.yml index 1742e40aaf..4d7003b0a9 100644 --- a/.github/workflows/ms.storage.storageaccounts.yml +++ b/.github/workflows/ms.storage.storageaccounts.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.synapse.privatelinkhubs.yml b/.github/workflows/ms.synapse.privatelinkhubs.yml index 1f5df0f7b8..7b50538841 100644 --- a/.github/workflows/ms.synapse.privatelinkhubs.yml +++ b/.github/workflows/ms.synapse.privatelinkhubs.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.virtualmachineimages.imagetemplates.yml b/.github/workflows/ms.virtualmachineimages.imagetemplates.yml index 42ab5edc2b..2bb5da2f97 100644 --- a/.github/workflows/ms.virtualmachineimages.imagetemplates.yml +++ b/.github/workflows/ms.virtualmachineimages.imagetemplates.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.web.connections.yml b/.github/workflows/ms.web.connections.yml index 778e82b0b2..ca53a332e4 100644 --- a/.github/workflows/ms.web.connections.yml +++ b/.github/workflows/ms.web.connections.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.web.hostingenvironments.yml b/.github/workflows/ms.web.hostingenvironments.yml index 90d34a1c4c..aaf574827a 100644 --- a/.github/workflows/ms.web.hostingenvironments.yml +++ b/.github/workflows/ms.web.hostingenvironments.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.web.serverfarms.yml b/.github/workflows/ms.web.serverfarms.yml index 453b2ef8ed..b82541bc27 100644 --- a/.github/workflows/ms.web.serverfarms.yml +++ b/.github/workflows/ms.web.serverfarms.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.web.sites.yml b/.github/workflows/ms.web.sites.yml index 3e5d41a146..a0615cc3ab 100644 --- a/.github/workflows/ms.web.sites.yml +++ b/.github/workflows/ms.web.sites.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/ms.web.staticsites.yml b/.github/workflows/ms.web.staticsites.yml index 548396cb3a..eb8cd455b7 100644 --- a/.github/workflows/ms.web.staticsites.yml +++ b/.github/workflows/ms.web.staticsites.yml @@ -26,8 +26,8 @@ on: - '!utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC checks: write # enricomi/publish-unit-test-result-action pull-requests: write # enricomi/publish-unit-test-result-action diff --git a/.github/workflows/platform.dependencies.yml b/.github/workflows/platform.dependencies.yml index ce58e01690..87088afd13 100644 --- a/.github/workflows/platform.dependencies.yml +++ b/.github/workflows/platform.dependencies.yml @@ -23,8 +23,8 @@ on: # - 'utilities/pipelines/dependencies/**' permissions: - id-token: write # OIDC - contents: read # OIDC + id-token: write # Required for OIDC + contents: read # Required for OIDC env: location: 'WestEurope' diff --git a/docs/wiki/Solution creation.md b/docs/wiki/Solution creation.md index 1e0d2aee5f..47be435d4e 100644 --- a/docs/wiki/Solution creation.md +++ b/docs/wiki/Solution creation.md @@ -406,10 +406,8 @@ on: - '.github/workflows/network-hub.yml' permissions: - id-token: write # OIDC - contents: read # OIDC - checks: write # enricomi/publish-unit-test-result-action - pull-requests: write # enricomi/publish-unit-test-result-action + id-token: write # Required for OIDC + contents: read # Required for OIDC env: AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} # TODO: Update this to use OIDC From 35803c885e220b42676b2c4dbdf5da41eac67fcc Mon Sep 17 00:00:00 2001 From: Marius Storhaug Date: Mon, 27 Jun 2022 21:58:12 +0200 Subject: [PATCH 17/18] clean up default value in dependency pipeline --- .../platform.dependencies.yml | 28 ------------------- 1 file changed, 28 deletions(-) diff --git a/.azuredevops/platformPipelines/platform.dependencies.yml b/.azuredevops/platformPipelines/platform.dependencies.yml index a5480b2cdb..fc4b271d9e 100644 --- a/.azuredevops/platformPipelines/platform.dependencies.yml +++ b/.azuredevops/platformPipelines/platform.dependencies.yml @@ -43,7 +43,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/validation.parameters.json templateFilePath: $(templateFilePath) @@ -62,7 +61,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -78,7 +76,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -117,7 +114,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -133,7 +129,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -149,7 +144,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/mg.parameters.json templateFilePath: $(templateFilePath) @@ -168,7 +162,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -184,7 +177,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -206,7 +198,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -303,7 +294,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -323,7 +313,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -458,7 +447,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -474,7 +462,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -490,7 +477,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -512,7 +498,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -546,7 +531,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/apgw.parameters.json templateFilePath: $(templateFilePath) @@ -582,7 +566,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -600,7 +583,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -618,7 +600,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -638,7 +619,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -659,7 +639,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -850,7 +829,6 @@ stages: azureSubscription: $(serviceConnectionValidation) ScriptType: 'InlineScript' Inline: | - $parameterFilePath = Join-Path '$(Build.SourcesDirectory)' '$(dependencyPath)' '$(resourceType)' 'parameters' 'sqlmi.parameters.json' # Load used functions . (Join-Path '$(Build.SourcesDirectory)' 'utilities' 'pipelines' 'tokensReplacement' 'Convert-TokensInFile.ps1') @@ -913,7 +891,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -930,7 +907,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -949,7 +925,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -1006,7 +981,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -1024,7 +998,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/parameters.json templateFilePath: $(templateFilePath) @@ -1040,7 +1013,6 @@ stages: jobs: - template: /.azuredevops/pipelineTemplates/jobs.validateModuleDeployment.yml parameters: - serviceConnection: $(serviceConnectionValidation) deploymentBlocks: - path: $(dependencyPath)/$(resourceType)/parameters/internal.parameters.json templateFilePath: $(templateFilePath) From 358fdaa11a4d4aebf516521faa25eac2bf814390 Mon Sep 17 00:00:00 2001 From: Marius Storhaug Date: Mon, 27 Jun 2022 21:58:36 +0200 Subject: [PATCH 18/18] whitespace --- .azuredevops/platformPipelines/platform.dependencies.yml | 1 - 1 file changed, 1 deletion(-) diff --git a/.azuredevops/platformPipelines/platform.dependencies.yml b/.azuredevops/platformPipelines/platform.dependencies.yml index fc4b271d9e..d1f6fd79f3 100644 --- a/.azuredevops/platformPipelines/platform.dependencies.yml +++ b/.azuredevops/platformPipelines/platform.dependencies.yml @@ -369,7 +369,6 @@ stages: azureSubscription: $(serviceConnectionValidation) ScriptType: 'InlineScript' Inline: | - # Load used functions . (Join-Path '$(Build.SourcesDirectory)' 'utilities' 'pipelines' 'tokensReplacement' 'Convert-TokensInFile.ps1')