diff --git a/.github/workflows/build-and-push-image.yml b/.github/workflows/build-and-push-image.yml index c860980..fb99b13 100644 --- a/.github/workflows/build-and-push-image.yml +++ b/.github/workflows/build-and-push-image.yml @@ -71,20 +71,26 @@ jobs: } deploy-image: + permissions: + id-token: write + contents: read + packages: write name: Deploy to environment needs: [ set-env ] - uses: DFE-Digital/deploy-azure-container-apps-action/.github/workflows/build-push-deploy.yml@v2.5.0 + uses: DFE-Digital/deploy-azure-container-apps-action/.github/workflows/build-push-deploy.yml@v3.0.0 with: docker-image-name: 'identapi-app' docker-build-file-name: 'docker/Dockerfile' environment: ${{ needs.set-env.outputs.environment }} annotate-release: ${{ needs.set-env.outputs.environment == 'development' }} secrets: - azure-acr-credentials: ${{ secrets.ACR_CREDENTIALS }} + azure-tenant-id: ${{ secrets.AZURE_TENANT_ID }} + azure-subscription-id: ${{ secrets.AZURE_SUBSCRIPTION_ID }} + azure-acr-client-id: ${{ secrets.ACR_CLIENT_ID }} azure-acr-name: ${{ secrets.ACR_NAME }} - azure-aca-credentials: ${{ secrets.AZURE_ACA_CREDENTIALS }} - azure-aca-name: ${{ secrets.AZURE_ACA_NAME }} - azure-aca-resource-group: ${{ secrets.AZURE_ACA_RESOURCE_GROUP }} + azure-aca-client-id: ${{ secrets.ACA_CLIENT_ID }} + azure-aca-name: ${{ secrets.ACA_CONTAINERAPP_NAME }} + azure-aca-resource-group: ${{ secrets.ACA_RESOURCE_GROUP }} cypress-tests: name: Run Cypress Tests