Skip to content
This repository has been archived by the owner on Aug 28, 2024. It is now read-only.

Update main.yml

Update main.yml #19

Workflow file for this run

name: Deploy to Azure Container Apps
on:
workflow_dispatch:
push:
branches:
- master
permissions:
id-token: write
contents: read
jobs:
build:
runs-on: ubuntu-latest
env:
AZURE_CLIENT_ID: ${{ vars.AZURE_CLIENT_ID }}
AZURE_TENANT_ID: ${{ vars.AZURE_TENANT_ID }}
AZURE_SUBSCRIPTION_ID: ${{ vars.AZURE_SUBSCRIPTION_ID }}
AZURE_RESOURCE_GROUP: ${{ vars.AZURE_RESOURCE_GROUP }}
AZURE_LOCATION: ${{ vars.AZURE_LOCATION }}
AZURE_ENV_NAME: ${{ vars.AZURE_ENV_NAME }}
steps:
- name: Checkout
uses: actions/checkout@v3
- name: Set up JDK 17
uses: actions/setup-java@v3
with:
java-version: '17'
distribution: 'temurin'
- name: Set yml file
uses: microsoft/variable-substitution@v1
with:
files: src/main/resources/application.yml
env:
spring.datasource.url: ${{ secrets.DB_URL }}
spring.datasource.username: ${{ secrets.DB_USERNAME }}
spring.datasource.password: ${{ secrets.DB_PASSWORD }}
app.jwt.secretKey: ${{ secrets.TOKEN_SECRET_KEY }}
app.jwt.accessExpire: ${{ secrets.ACCESS_EXPIRE }}
app.jwt.refreshExpire: ${{ secrets.REFRESH_EXPIRE }}
- name: Grant execute permission for gradlew
run: chmod +x gradlew
- name: Build with Gradle
run: ./gradlew build
- name: Docker build
run: |
echo ${{ secrets.DOCKER_PASSWORD }} | docker login -u ${{ secrets.DOCKER_USERNAME }} --password-stdin
docker build -t ${{ secrets.DOCKER_USERNAME }}/sodam .
docker push ${{ secrets.DOCKER_USERNAME }}/sodam:latest
- name: Install azd
uses: Azure/[email protected]
- name: Log in with Azure (Federated Credentials)
if: ${{ env.AZURE_CLIENT_ID != '' }}
run: |
azd auth login \
--client-id "${{ env.AZURE_CLIENT_ID }}" \
--federated-credential-provider "github" \
--tenant-id "${{ env.AZURE_TENANT_ID }}"
- name: Log in with Azure (Client Credentials)
if: ${{ env.AZURE_CREDENTIALS != '' }}
run: |
$info = $Env:AZURE_CREDENTIALS | ConvertFrom-Json -AsHashtable
Write-Host "::add-mask::$($info.clientSecret)"
azd auth login \
--client-id "$($info.clientId)" \
--client-secret "$($info.clientSecret)" \
--tenant-id "$($info.tenantId)"
shell: pwsh
env:
AZURE_CREDENTIALS: ${{ env.AZURE_CREDENTIALS }}
- name: Provision Infrastructure
run: |
azd provision --environment ${{ env.AZURE_ENV_NAME }} --no-prompt
env:
AZD_INITIAL_ENVIRONMENT_CONFIG: ${{ secrets.AZD_INITIAL_ENVIRONMENT_CONFIG }}
- name: Deploy Application
run: |
azd deploy --environment ${{ env.AZURE_ENV_NAME }} --no-prompt