microsoft/openvmm
Publicmirrored fromhttps://github.com/microsoft/openvmmAvailable
.github/workflows/refresh-mirror.yml
44lines · modecode
| 1 | name: Refresh VSO Mirror |
| 2 | on: |
| 3 | workflow_dispatch: |
| 4 | push: |
| 5 | branches: |
| 6 | - main |
| 7 | |
| 8 | permissions: |
| 9 | id-token: write |
| 10 | contents: read |
| 11 | |
| 12 | jobs: |
| 13 | QueueBuild: |
| 14 | runs-on: ubuntu-latest |
| 15 | steps: |
| 16 | - uses: Azure/login@v1 |
| 17 | with: |
| 18 | # These secrets describe the HvLite-GitHub service principal and associated Azure subscription, |
| 19 | # which, along with the GITHUB_TOKEN, are used to authenticate GitHub Actions to Azure with OpenID Connect. |
| 20 | # The service principal has federated identity credentials configured describing which branches and |
| 21 | # scenarios can be authenticated. |
| 22 | client-id: ${{ secrets.OPENVMM_CLIENT_ID }} |
| 23 | tenant-id: ${{ secrets.OPENVMM_TENANT_ID }} |
| 24 | subscription-id: ${{ secrets.OPENVMM_SUBSCRIPTION_ID }} |
| 25 | |
| 26 | - name: Pull Azure Key Vault secrets |
| 27 | uses: Azure/get-keyvault-secrets@v1 |
| 28 | with: |
| 29 | keyvault: 'HvLite-PATs' |
| 30 | secrets: 'HvliteMirrorPAT' |
| 31 | id: AzureKeyVault |
| 32 | |
| 33 | - name: Checkout actions |
| 34 | uses: actions/checkout@v4 |
| 35 | with: |
| 36 | fetch-depth: 0 |
| 37 | |
| 38 | - name: Install dependencies |
| 39 | shell: bash |
| 40 | run: pip install --user -r .github/scripts/refresh_mirror/requirements.txt |
| 41 | |
| 42 | - name: Refresh VSO Mirror |
| 43 | shell: bash |
| 44 | run: python .github/scripts/refresh_mirror/refresh-mirror.py 149443 ${{ steps.AzureKeyVault.outputs.HvliteMirrorPAT }} |