diff --git a/.github/workflows/pr_check_webapp_dotnet_windows.yml b/.github/workflows/pr_check_webapp_dotnet_windows.yml index dd2c9f425..798487e58 100644 --- a/.github/workflows/pr_check_webapp_dotnet_windows.yml +++ b/.github/workflows/pr_check_webapp_dotnet_windows.yml @@ -12,6 +12,9 @@ on: - master - 'releases/*' +permissions: + id-token: write + # CONFIGURATION # For help, go to https://github.com/Azure/Actions # @@ -75,9 +78,11 @@ jobs: } - name: Azure authentication - uses: azure/login@v1 + uses: azure/login@v2 with: - creds: ${{ secrets.AZURE_WEBAPP_SPN }} + client-id: ${{ secrets.AZURE_CLIENT_ID }} + tenant-id: ${{ secrets.AZURE_TENANT_ID }} + subscription-id: ${{ secrets.AZURE_SUBSCRIPTION_ID }} - name: 'Deploy to Azure WebApp' uses: ./webapps-deploy/ diff --git a/.github/workflows/pr_check_windows_container_pubprofile.yml b/.github/workflows/pr_check_windows_container_pubprofile.yml index 0b62d46e2..dee691160 100644 --- a/.github/workflows/pr_check_windows_container_pubprofile.yml +++ b/.github/workflows/pr_check_windows_container_pubprofile.yml @@ -12,6 +12,9 @@ on: - master - 'releases/*' +permissions: + id-token: write + env: AZURE_WEBAPP_NAME: wincontainerswebapp # set this to your application's name CONTAINER_REGISTRY: webdeployprtestscontainerregistry.azurecr.io # set secret with Container Registry URL, example : xyz.azurecr.io @@ -31,9 +34,11 @@ jobs: path: 'python_container_App' - name: Azure authentication - uses: azure/login@v1 + uses: azure/login@v2 with: - creds: ${{ secrets.AZURE_WEBAPP_SPN }} + client-id: ${{ secrets.AZURE_CLIENT_ID }} + tenant-id: ${{ secrets.AZURE_TENANT_ID }} + subscription-id: ${{ secrets.AZURE_SUBSCRIPTION_ID }} - name: Logout from Azure Container Registry run: |