From 10045f0f97c0f923d23fa6a7c3af0bd701d2ba42 Mon Sep 17 00:00:00 2001 From: Todd Anderson <127344469+tanderson-ld@users.noreply.github.com> Date: Thu, 20 Jun 2024 15:19:24 -0500 Subject: [PATCH] ci: retrieving snk for sdk/client docs signing (#10) --- .github/actions/full-release/action.yml | 2 +- .github/workflows/publish-docs.yml | 9 ++++++++- .github/workflows/sdk-client-ci.yml | 7 ++----- .github/workflows/sdk-server-ci.yml | 2 +- .github/workflows/telemetry-ci.yml | 2 +- 5 files changed, 13 insertions(+), 9 deletions(-) diff --git a/.github/actions/full-release/action.yml b/.github/actions/full-release/action.yml index b4197b1b..0058e76e 100644 --- a/.github/actions/full-release/action.yml +++ b/.github/actions/full-release/action.yml @@ -39,7 +39,7 @@ runs: project_file: ${{ inputs.project_file }} test_project_file: ${{ inputs.test_project_file }} - - uses: launchdarkly/gh-actions/actions/release-secrets@release-secrets-v1.1.0 + - uses: launchdarkly/gh-actions/actions/release-secrets@release-secrets-v1.2.0 name: Get secrets with: aws_assume_role: ${{ inputs.aws_role }} diff --git a/.github/workflows/publish-docs.yml b/.github/workflows/publish-docs.yml index b9b5ca22..0686d938 100644 --- a/.github/workflows/publish-docs.yml +++ b/.github/workflows/publish-docs.yml @@ -15,7 +15,8 @@ jobs: build-publish: runs-on: macos-latest permissions: - contents: write # Needed in this case to write github pages. + id-token: write + contents: write steps: - uses: actions/checkout@v4 @@ -23,6 +24,12 @@ jobs: shell: bash run: echo "$(cat ${{ inputs.pkg_workspace }}/github_actions.env)" >> $GITHUB_ENV + - uses: launchdarkly/gh-actions/actions/release-secrets@release-secrets-v1.2.0 + name: Get secrets + with: + aws_assume_role: ${{ vars.AWS_ROLE_ARN }} + s3_path_pairs: 'launchdarkly-releaser/dotnet/LaunchDarkly.ClientSdk.snk = LaunchDarkly.ClientSdk.snk' + - id: build name: Build and Test SDK uses: ./.github/actions/ci diff --git a/.github/workflows/sdk-client-ci.yml b/.github/workflows/sdk-client-ci.yml index 9320ec66..e3bff57c 100644 --- a/.github/workflows/sdk-client-ci.yml +++ b/.github/workflows/sdk-client-ci.yml @@ -26,14 +26,11 @@ jobs: shell: bash run: echo "$(cat pkgs/sdk/client/github_actions.env)" >> $GITHUB_ENV - - uses: launchdarkly/gh-actions/actions/release-secrets@release-secrets-v1.0.1 + - uses: launchdarkly/gh-actions/actions/release-secrets@release-secrets-v1.2.0 name: Get secrets with: aws_assume_role: ${{ vars.AWS_ROLE_ARN }} - - - name: Download snk - shell: bash - run: aws s3 cp s3://launchdarkly-releaser/dotnet/LaunchDarkly.ClientSdk.snk LaunchDarkly.ClientSdk.snk + s3_path_pairs: 'launchdarkly-releaser/dotnet/LaunchDarkly.ClientSdk.snk = LaunchDarkly.ClientSdk.snk' - uses: ./.github/actions/ci with: diff --git a/.github/workflows/sdk-server-ci.yml b/.github/workflows/sdk-server-ci.yml index 4fddae42..a2fd78e5 100644 --- a/.github/workflows/sdk-server-ci.yml +++ b/.github/workflows/sdk-server-ci.yml @@ -26,7 +26,7 @@ jobs: shell: bash run: echo "$(cat pkgs/sdk/server/github_actions.env)" >> $GITHUB_ENV - - uses: launchdarkly/gh-actions/actions/release-secrets@release-secrets-v1.0.1 + - uses: launchdarkly/gh-actions/actions/release-secrets@release-secrets-v1.2.0 name: Get secrets with: aws_assume_role: ${{ vars.AWS_ROLE_ARN }} diff --git a/.github/workflows/telemetry-ci.yml b/.github/workflows/telemetry-ci.yml index 00c2eb19..64351710 100644 --- a/.github/workflows/telemetry-ci.yml +++ b/.github/workflows/telemetry-ci.yml @@ -26,7 +26,7 @@ jobs: shell: bash run: echo "$(cat pkgs/telemetry/github_actions.env)" >> $GITHUB_ENV - - uses: launchdarkly/gh-actions/actions/release-secrets@release-secrets-v1.0.1 + - uses: launchdarkly/gh-actions/actions/release-secrets@release-secrets-v1.2.0 name: Get secrets with: aws_assume_role: ${{ vars.AWS_ROLE_ARN }}