convert to use oidc as e2e testing authentication method
This commit is contained in:
zjhe
parent
76d27fa498
commit
07093a38f1
17
.github/workflows/e2e.yaml
vendored
17
.github/workflows/e2e.yaml
vendored
@ -1,6 +1,6 @@
|
|||||||
name: E2E Test Check
|
name: E2E Test Check
|
||||||
on:
|
on:
|
||||||
pull_request:
|
pull_request_target:
|
||||||
types: ['opened', 'synchronize']
|
types: ['opened', 'synchronize']
|
||||||
paths:
|
paths:
|
||||||
- '.github/**'
|
- '.github/**'
|
||||||
@ -11,9 +11,13 @@ permissions:
|
|||||||
|
|
||||||
jobs:
|
jobs:
|
||||||
e2e-check:
|
e2e-check:
|
||||||
runs-on: [self-hosted, 1ES.Pool=terraform-azurerm-doc]
|
runs-on: ubuntu-latest
|
||||||
environment:
|
environment:
|
||||||
name: acctests
|
name: acctests
|
||||||
|
env:
|
||||||
|
ARM_SUBSCRIPTION_ID: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
|
||||||
|
ARM_TENANT_ID: ${{ secrets.AZURE_TENANT_ID }}
|
||||||
|
ARM_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }}
|
||||||
steps:
|
steps:
|
||||||
- name: checkout
|
- name: checkout
|
||||||
uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 #v3.6.0
|
uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 #v3.6.0
|
||||||
@ -31,12 +35,9 @@ jobs:
|
|||||||
ALL_CHANGED_FILES: ${{ steps.changed-files.outputs.all_changed_files }}
|
ALL_CHANGED_FILES: ${{ steps.changed-files.outputs.all_changed_files }}
|
||||||
run: |
|
run: |
|
||||||
echo "change files" $ALL_CHANGED_FILES
|
echo "change files" $ALL_CHANGED_FILES
|
||||||
az login --identity --username $MSI_ID > /dev/null
|
export ARM_OIDC_REQUEST_TOKEN=$ACTIONS_ID_TOKEN_REQUEST_TOKEN
|
||||||
export ARM_SUBSCRIPTION_ID=$(az login --identity --username $MSI_ID | jq -r '.[0] | .id')
|
export ARM_OIDC_REQUEST_URL=$ACTIONS_ID_TOKEN_REQUEST_URL
|
||||||
export ARM_TENANT_ID=$(az login --identity --username $MSI_ID | jq -r '.[0] | .tenantId')
|
docker run --rm -v $(pwd):/src -w /src/test --network=host -e ARM_SUBSCRIPTION_ID -e ARM_TENANT_ID -e ARM_CLIENT_ID -e ARM_OIDC_REQUEST_TOKEN -e ARM_OIDC_REQUEST_URL -e ARM_USE_OIDC=true -e CHANGED_FOLDERS mcr.microsoft.com/azterraform:latest sh -c "pkenv install 1.10.2 && go mod tidy && go test -timeout=360m -v ./e2e"
|
||||||
ARM_CLIENT_ID=$(az identity list | jq -r --arg MSI_ID "$MSI_ID" '.[] | select(.principalId == $MSI_ID) | .clientId')
|
|
||||||
export CHANGED_FOLDERS="${{ steps.changed-files.outputs.all_changed_files }}"
|
|
||||||
docker run --rm -v $(pwd):/src -w /src/test --network=host -e MSI_ID -e ARM_SUBSCRIPTION_ID -e ARM_TENANT_ID -e ARM_CLIENT_ID -e ARM_USE_MSI=true -e CHANGED_FOLDERS mcr.microsoft.com/azterraform:latest sh -c "pkenv install 1.10.2 && go mod tidy && go test -timeout=360m -v ./e2e"
|
|
||||||
- uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 #v3.1.3
|
- uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 #v3.1.3
|
||||||
with:
|
with:
|
||||||
name: TestRecord-${{ github.event.number }}
|
name: TestRecord-${{ github.event.number }}
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user