Deploy Azure TRE #160
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- | |
| name: Deploy Azure TRE | |
| # This workflow is the integration build run for pushes to the main branch | |
| # It also runs on a schedule, serving as the nightly build | |
| on: # yamllint disable-line rule:truthy | |
| schedule: | |
| # midnight every day https://crontab.guru/#0_0_*_*_* | |
| - cron: "0 0 * * *" | |
| push: | |
| branches: [main] | |
| workflow_dispatch: | |
| inputs: | |
| environment: | |
| description: The environment to run this workflow in | |
| type: environment | |
| required: true | |
| # This will prevent multiple runs of this entire workflow. | |
| # We should NOT cancel in progress runs as that can destabilize the environment. | |
| concurrency: "${{ github.workflow }}-${{ github.ref }}" | |
| jobs: | |
| run-deploy-tre-main: | |
| name: "Deploy main" | |
| if: github.ref == 'refs/heads/main' | |
| uses: ./.github/workflows/deploy_tre_reusable.yml | |
| permissions: | |
| checks: write | |
| contents: read | |
| pull-requests: write | |
| with: | |
| ciGitRef: ${{ github.ref }} | |
| e2eTestsCustomSelector: >- | |
| ${{ (github.event_name == 'push' && 'extended or extended_aad') | |
| || 'extended or extended_aad or shared_services or airlock' }} | |
| environmentName: ${{ github.event.inputs.environment || 'CICD' }} | |
| E2E_TESTS_NUMBER_PROCESSES: 1 | |
| DEVCONTAINER_TAG: 'latest' | |
| secrets: | |
| AAD_TENANT_ID: ${{ secrets.AAD_TENANT_ID }} | |
| ACR_NAME: ${{ secrets.ACR_NAME }} | |
| AZURE_CREDENTIALS: ${{ secrets.AZURE_CREDENTIALS }} | |
| API_CLIENT_ID: ${{ secrets.API_CLIENT_ID }} | |
| API_CLIENT_SECRET: ${{ secrets.API_CLIENT_SECRET }} | |
| APPLICATION_ADMIN_CLIENT_ID: ${{ secrets.APPLICATION_ADMIN_CLIENT_ID }} | |
| APPLICATION_ADMIN_CLIENT_SECRET: ${{ secrets.APPLICATION_ADMIN_CLIENT_SECRET }} | |
| MGMT_RESOURCE_GROUP_NAME: ${{ secrets.MGMT_RESOURCE_GROUP_NAME }} | |
| MS_TEAMS_WEBHOOK_URI: ${{ secrets.MS_TEAMS_WEBHOOK_URI }} | |
| MGMT_STORAGE_ACCOUNT_NAME: ${{ secrets.MGMT_STORAGE_ACCOUNT_NAME }} | |
| SWAGGER_UI_CLIENT_ID: ${{ secrets.SWAGGER_UI_CLIENT_ID }} | |
| TEST_APP_ID: ${{ secrets.TEST_APP_ID }} | |
| TEST_WORKSPACE_APP_ID: ${{ secrets.TEST_WORKSPACE_APP_ID }} | |
| TEST_WORKSPACE_APP_SECRET: "${{ secrets.TEST_WORKSPACE_APP_SECRET }}" | |
| TEST_ACCOUNT_CLIENT_ID: "${{ secrets.TEST_ACCOUNT_CLIENT_ID }}" | |
| TEST_ACCOUNT_CLIENT_SECRET: "${{ secrets.TEST_ACCOUNT_CLIENT_SECRET }}" | |
| TRE_ID: ${{ secrets.TRE_ID }} | |
| CI_CACHE_ACR_NAME: ${{ secrets.ACR_NAME }} |