sparse-intern-71089
01/04/2023, 11:31 AMechoing-dinner-19531
01/04/2023, 11:56 AMacoustic-dress-83560
01/04/2023, 12:09 PMconfig-map
string, which "seems" to get me a little further. I'm going to play around a bit more with it after lunch and will update on here!echoing-dinner-19531
01/04/2023, 12:26 PM${{ secrets.AZURE_DETAILS.clientSecret }}
to "secret"
or just secret
and you'd need the former if its in JSON style.acoustic-dress-83560
01/04/2023, 1:13 PMacoustic-dress-83560
01/04/2023, 2:39 PMDiagnostics:
azure-native:resources:ResourceGroup (rg-myrg-):
error: obtain subscription() from Azure CLI: parsing json result from the Azure CLI: waiting for the Azure CLI: exit status 1: ERROR: Please run 'az login' to setup account.
I would take this over to the azure channel, but when I comment out config-map
, Pulumi updates work on existing stacks.
I've also noticed that the inputs seem to be empty where GitHub secrets are defined:
Run pulumi/actions@v3
with:
command: update
stack-name: company/mystack
work-dir: iac/pulumi
upsert: true
config-map: ***azure-native:clientId: ***value: '$ARM_CLIENT_ID', secret: false***, azure-native:clientSecret: ***value: '', secret: true***, azure-native:location: ***value: 'westeurope', secret: false***, ...
I don't think this is normal behaviour in GitHub from what I can see online.echoing-dinner-19531
01/04/2023, 3:36 PMacoustic-dress-83560
01/04/2023, 4:09 PMacoustic-dress-83560
01/04/2023, 4:23 PM- name: Deploy with pulumi
uses: pulumi/actions@v3
with:
command: preview
stack-name: dev
work-dir: infra
config-map: "{
azure-native:clientId: {value: '${{ secrets.AZURE_DETAILS_CLIENT_ID }}', secret: false},
azure-native:clientSecret: {value: '${{ secrets.AZURE_DETAILS_CLIENT_SECRET }}', secret: true},
azure-native:location: {value: 'westeurope', secret: false},
azure-native:subscriptionId: {value: '${{ secrets.AZURE_DETAILS_SUBSCRIPTION_ID }}', secret: false},
azure-native:tenantId: {value: '${{ secrets.AZURE_DETAILS_TENANT_ID }}', secret: false},
environment:size: {value: 'xs', secret: false},
environment:type: {value: 'testing', secret: false}
}"
You can use multi-line double-quoted strings to help make it easier on the eyes.
When expanding GitHub variables, wrap them in single-quotes.