Setup Logic App [prod] #25
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Setup Logic App | |
| run-name: Setup Logic App [${{inputs.selected_environment}}] | |
| on: | |
| workflow_dispatch: | |
| inputs: | |
| selected_environment: | |
| type: environment | |
| description: Select environment | |
| default: test | |
| jobs: | |
| setup-logic-app-resource: | |
| runs-on: ubuntu-latest | |
| outputs: | |
| accountName: ${{steps.deploy_main_bicep.outputs.accountName}} | |
| destination: ${{steps.deploy_main_bicep.outputs.destination}} | |
| logicAppName: ${{steps.deploy_main_bicep.outputs.logicAppName}} | |
| fileShare: ${{steps.deploy_main_bicep.outputs.fileShare}} | |
| environment: ${{ github.event.inputs.selected_environment }} | |
| steps: | |
| - uses: actions/checkout@v2 | |
| - name: Login Azure | |
| uses: azure/login@v2 | |
| with: | |
| creds: ${{ secrets.AZURE_CREDENTIALS }} | |
| enable-AzPSSession: true | |
| - name: Setup Workflow Parameters | |
| uses: microsoft/variable-substitution@v1 | |
| with: | |
| files: ./.bicep/logicapps/parameters.json | |
| env: | |
| parameters.env.value: ${{ vars.HOME_URL }} | |
| parameters.appsettings.value.Workflows.CommunityOrganizationsScan.FlowState: ${{ vars.WORKFLOWS_COMMUNITY_ORGANIZATIONS_SCAN_FLOWSTATE }} | |
| parameters.appSettings.value.Workflows.CleanupOrganization.FlowState: ${{ vars.WORKFLOWS_CLEANUP_ORGANIZATION_FLOWSTATE }} | |
| parameters.appSettings.value.Workflows.ExpiringInvitation.FlowState: ${{ vars.WORKFLOWS_EXPIRING_INVITATION_FLOWSTATE }} | |
| parameters.appSettings.value.Workflows.IndexOrgRepos.FlowState: ${{ vars.WORKFLOWS_INDEX_ORG_REPOS_FLOWSTATE }} | |
| parameters.appSettings.value.Workflows.InnersourceCheckOutsideCollaborators.FlowState: ${{ vars.WORKFLOWS_INNERSOURCE_CHECK_OUTSIDE_COLLABORATORS_FLOWSTATE }} | |
| parameters.appSettings.value.Workflows.OpensourceCheckOutsideCollaborators.FlowState: ${{ vars.WORKFLOWS_OPENSOURCE_CHECK_OUTSIDE_COLLABORATORS_FLOWSTATE }} | |
| parameters.appSettings.value.Workflows.RecurringApproval.FlowState: ${{ vars.WORKFLOWS_RECURRING_APPROVAL_FLOWSTATE }} | |
| parameters.appSettings.value.Workflows.RepoOwnerScan.FlowState: ${{ vars.WORKFLOWS_REPO_OWNER_SCAN_FLOWSTATE }} | |
| - name: Deploy Bicep File | |
| uses: azure/arm-deploy@v1 | |
| id: deploy_main_bicep | |
| with: | |
| subscriptionId: ${{ fromJSON(secrets.AZURE_CREDENTIALS)['subscriptionId'] }} | |
| resourceGroupName: ${{ secrets.AZURE_RESOURCE_GROUP }} | |
| template: ./.bicep/logicapps/deployGhMgmtLogicApp.bicep | |
| parameters: ./.bicep/logicapps/parameters.json env=${{ github.event.inputs.selected_environment }} laManageIdentityName=${{ secrets.LOGIC_APP_MANAGE_IDENTITY }} | |
| failOnStdErr: false | |
| scope: resourcegroup | |
| deploy-logic-app-workflows: | |
| runs-on: ubuntu-latest | |
| needs: [setup-logic-app-resource] | |
| environment: ${{ github.event.inputs.selected_environment }} | |
| steps: | |
| - uses: actions/checkout@v2 | |
| - name: Login Azure | |
| uses: azure/login@v2 | |
| with: | |
| creds: ${{ secrets.AZURE_CREDENTIALS }} | |
| enable-AzPSSession: true | |
| - name: Setup Workflow Parameters | |
| uses: microsoft/variable-substitution@v1 | |
| with: | |
| files: ./.bicep/logicapps/workflows/parameters.json | |
| env: | |
| GHMgmDomain.value: ${{ vars.HOME_URL }} | |
| ManagedIdentityName.value: ${{ secrets.LOGIC_APP_MANAGE_IDENTITY }} | |
| ApprovalSystemDomain.value: ${{ vars.APPROVAL_SYSTEM_APP_URL }} | |
| - name: Upload Logic App Workflows | |
| uses: azure/CLI@v1 | |
| with: | |
| azcliversion: 2.44.1 | |
| inlineScript: | | |
| chmod +x ./.bicep/logicapps/upload_workflows.sh | |
| ./.bicep/logicapps/upload_workflows.sh ${{needs.setup-logic-app-resource.outputs.accountName}} ${{needs.setup-logic-app-resource.outputs.destination}} ./.bicep/logicapps/workflows | |
| - name: Deploy Connection Bicep File | |
| uses: azure/arm-deploy@v1 | |
| id: deploy_connection_bicep | |
| with: | |
| subscriptionId: ${{ fromJSON(secrets.AZURE_CREDENTIALS)['subscriptionId'] }} | |
| resourceGroupName: ${{ secrets.AZURE_RESOURCE_GROUP }} | |
| template: ./.bicep/logicapps/connection.bicep | |
| parameters: env=${{ github.event.inputs.selected_environment }} storageAccountName=${{needs.setup-logic-app-resource.outputs.accountName}} logicAppName=${{needs.setup-logic-app-resource.outputs.logicAppName}} laManageIdentityName=${{ secrets.LOGIC_APP_MANAGE_IDENTITY }} | |
| failOnStdErr: false | |
| scope: resourcegroup | |
| - name: Deploy connection to storage file system | |
| uses: azure/powershell@v1 | |
| with: | |
| inlineScript: | | |
| . ./.bicep/logicapps/deploy_connection.ps1 | |
| New-WorkflowConnection ` | |
| -ResourceGroup ${{secrets.AZURE_RESOURCE_GROUP}} ` | |
| -StorageAccount ${{needs.setup-logic-app-resource.outputs.accountName}} ` | |
| -Api ${{steps.deploy_connection_bicep.outputs.api}} ` | |
| -Id ${{steps.deploy_connection_bicep.outputs.id}} ` | |
| -RuntimeUrl ${{steps.deploy_connection_bicep.outputs.connectionRuntimeUrl}} ` | |
| -FileShareName ${{needs.setup-logic-app-resource.outputs.fileShare}} | |
| azPSVersion: "latest" |