search

Azure / arm-deploy

ARM action to deploy an Azure Resource Manager (ARM) template to all the deployment scopes
MIT License
84 stars 39 forks source link

ARM template outputs containing resource ids sanitized #94

Closed stephenmahood closed 2 years ago

stephenmahood commented 2 years ago

When using the Azure Login GitHub action with the creds parameter:

    - name: Login via Az module
      uses: azure/login@v1
      with:
        creds: ${{secrets.AZURE_CREDENTIALS}}

secrets.AZURE_CREDENTIALS:

{
    "clientId": "<GUID>",
    "clientSecret": "<GUID>",
    "subscriptionId": "<GUID>",
    "tenantId": "<GUID>",
    (...)
  }

and then deploying an ARM template with the arm-deploy action that returns a resourceId as a template output, GitHub sanitizes the step output due to the subscriptionId within the resourceId being present within the AZURE_CREDENTIALS secret.

aparna-ravindra commented 2 years ago

Hey @stephenmahood , In general, all secrets are sanitised by Github Actions when printing on the console. But you should still be able to use the output in a dependent step/job. Could you please clarify your question/requirement? Sharing a use case or an example will help as well.

aparna-ravindra commented 2 years ago

@stephenmahood 👋🏽 Gentle reminder.

aparna-ravindra commented 2 years ago

Hey @stephenmahood , Please re-open the issue if you want further help.

t-dedah commented 2 years ago

Closing this for now. Reopen if you are need further assistance.