-
Notifications
You must be signed in to change notification settings - Fork 1
53 lines (45 loc) · 1.54 KB
/
azure-bicep.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
# https://learn.microsoft.com/ja-jp/azure/azure-resource-manager/bicep/deploy-github-actions
name: Azure Bicep
on:
workflow_dispatch:
inputs:
delete-group:
description: 'Delete resource group after deployment'
type: boolean
default: true
required: true
permissions:
id-token: write
contents: read
jobs:
deploy-bicep:
runs-on: ubuntu-latest
environment: Production
steps:
- uses: actions/checkout@v4
- name: Set up Azure CLI
uses: azure/login@v2
with:
client-id: ${{ secrets.AZURE_CLIENT_ID }}
tenant-id: ${{ secrets.AZURE_TENANT_ID }}
subscription-id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
- name: Create resource group
id: resourceGroup
run: |
RESOURCE_GROUP=rg-bicep-from-actions-$RANDOM
echo "group-name=$RESOURCE_GROUP" >> $GITHUB_OUTPUT
az group create --name $RESOURCE_GROUP --location japaneast
- name: Deploy Bicep
uses: azure/arm-deploy@v2
with:
subscriptionId: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
resourceGroupName: ${{ steps.resourceGroup.outputs.group-name }}
template: ./bicep/main.bicep
parameters: 'storagePrefix=yuta storageSKU=Standard_LRS'
failOnStdErr: false
- name: Delete resource group
if: ${{ github.event.inputs.delete-group }}
run: |
az group delete --name ${{ steps.resourceGroup.outputs.group-name }} --yes --no-wait
- name: Az CLI Logout
run: az logout