|
1 | | -name: Azure Template Validation |
| 1 | +name: Azure Dev Deploy |
2 | 2 | on: |
3 | 3 | workflow_dispatch: |
4 | | - push: |
5 | | - branches: |
6 | | - - main |
7 | 4 |
|
8 | 5 | permissions: |
9 | 6 | contents: read |
10 | 7 | id-token: write |
11 | | - pull-requests: write |
12 | 8 |
|
13 | 9 | jobs: |
14 | | - template_validation_job: |
| 10 | + deploy: |
15 | 11 | runs-on: ubuntu-latest |
| 12 | + name: azd deploy |
16 | 13 | environment: production |
17 | | - name: Template validation |
18 | | - |
| 14 | + env: |
| 15 | + AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} |
| 16 | + AZURE_TENANT_ID: ${{ secrets.AZURE_TENANT_ID }} |
| 17 | + AZURE_SUBSCRIPTION_ID: ${{ secrets.AZURE_SUBSCRIPTION_ID }} |
| 18 | + AZURE_ENV_NAME: ${{ secrets.AZURE_ENV_NAME }} |
| 19 | + AZURE_LOCATION: ${{ secrets.AZURE_LOCATION }} |
| 20 | + AZURE_ENV_OPENAI_LOCATION: ${{ secrets.AZURE_ENV_OPENAI_LOCATION }} |
| 21 | + AZURE_ENV_LOG_ANALYTICS_WORKSPACE_ID: ${{ secrets.AZURE_ENV_LOG_ANALYTICS_WORKSPACE_ID }} |
| 22 | + AZURE_EXISTING_AI_PROJECT_RESOURCE_ID: ${{ secrets.AZURE_EXISTING_AI_PROJECT_RESOURCE_ID }} |
| 23 | + AZURE_DEV_COLLECT_TELEMETRY: ${{ vars.AZURE_DEV_COLLECT_TELEMETRY }} |
| 24 | + |
19 | 25 | steps: |
20 | | - # Step 1: Checkout the code from your repository |
21 | | - - name: Checkout code |
| 26 | + - name: Checkout Code |
22 | 27 | uses: actions/checkout@v4 |
23 | 28 |
|
24 | | - # Step 2: Pre-authenticate Azure for azd validation |
| 29 | + - name: Install azd |
| 30 | + uses: Azure/setup-azd@v2 |
| 31 | + |
25 | 32 | - name: Login to Azure |
| 33 | + uses: azure/login@v2 |
| 34 | + with: |
| 35 | + client-id: ${{ secrets.AZURE_CLIENT_ID }} |
| 36 | + tenant-id: ${{ secrets.AZURE_TENANT_ID }} |
| 37 | + subscription-id: ${{ secrets.AZURE_SUBSCRIPTION_ID }} |
| 38 | + |
| 39 | + - name: Login to AZD |
26 | 40 | shell: bash |
27 | 41 | run: | |
28 | | - az login --service-principal -u "${{ secrets.AZURE_CLIENT_ID }}" -p "${{ secrets.AZURE_CLIENT_SECRET }}" --tenant "${{ secrets.AZURE_TENANT_ID }}" |
29 | | - az account set --subscription "${{ secrets.AZURE_SUBSCRIPTION_ID }}" |
30 | | - |
31 | | - # Step 3: Validate the Azure template using microsoft/template-validation-action |
32 | | - - name: Validate Azure Template |
33 | | - uses: microsoft/template-validation-action@v0.4.3 |
34 | | - with: |
35 | | - workingDirectory: . |
36 | | - validateAzd: ${{ vars.TEMPLATE_VALIDATE_AZD }} |
37 | | - useDevContainer: ${{ vars.TEMPLATE_USE_DEV_CONTAINER }} |
38 | | - validateTests: ${{ vars.TEMPLATE_VALIDATE_TESTS }} |
39 | | - id: validation |
40 | | - env: |
41 | | - AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} |
42 | | - AZURE_TENANT_ID: ${{ secrets.AZURE_TENANT_ID }} |
43 | | - AZURE_CLIENT_SECRET: ${{ secrets.AZURE_CLIENT_SECRET }} |
44 | | - AZURE_SUBSCRIPTION_ID: ${{ secrets.AZURE_SUBSCRIPTION_ID }} |
45 | | - AZURE_ENV_NAME: ${{ secrets.AZURE_ENV_NAME }} |
46 | | - AZURE_LOCATION: ${{ secrets.AZURE_LOCATION }} |
47 | | - AZURE_ENV_OPENAI_LOCATION: ${{ secrets.AZURE_ENV_OPENAI_LOCATION }} |
48 | | - GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} |
49 | | - |
50 | | - # Step 4: Print the result of the validation |
51 | | - - name: Print result |
52 | | - run: cat ${{ steps.validation.outputs.resultFile }} |
| 42 | + azd auth login \ |
| 43 | + --client-id "$AZURE_CLIENT_ID" \ |
| 44 | + --federated-credential-provider "github" \ |
| 45 | + --tenant-id "$AZURE_TENANT_ID" |
| 46 | +
|
| 47 | + - name: Provision and Deploy |
| 48 | + shell: bash |
| 49 | + run: | |
| 50 | + set -euo pipefail |
| 51 | +
|
| 52 | + if ! azd env select "$AZURE_ENV_NAME"; then |
| 53 | + azd env new "$AZURE_ENV_NAME" --subscription "$AZURE_SUBSCRIPTION_ID" --location "$AZURE_LOCATION" --no-prompt |
| 54 | + fi |
| 55 | + azd up --no-prompt |
0 commit comments