Skip to content

Commit

Permalink
ER-709: Azure - Stop overriding GitHub Action Permissions (#760)
Browse files Browse the repository at this point in the history 
* ER-709: Azure Staging - GitHub Actions Workflow

* ER-709: Omit permissions override

---------

Co-authored-by: Sunny Sidhu <[email protected]>
  • Loading branch information
@sunny-sidhu-and
sunny-sidhu-and and sunny-sidhu-and authored Aug 9, 2023
1 parent 98e60db commit 58b297f
Show file tree
Hide file tree
Showing 5 changed files with 1 addition and 26 deletions.
5 changes: 0 additions & 5 deletions .github/workflows/azure-deploy-dev.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -19,11 +19,6 @@ on:
- terraform-azure/**
- uml/*

# Permissions for OIDC authentication
permissions:
id-token: write
contents: read

env:
ARM_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }}
ARM_SUBSCRIPTION_ID: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
Expand Down
5 changes: 0 additions & 5 deletions .github/workflows/azure-deploy-review-teardown.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,11 +5,6 @@ on:
types:
- closed

# Permissions for OIDC authentication
permissions:
id-token: write
contents: read

env:
ARM_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }}
ARM_SUBSCRIPTION_ID: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
Expand Down
5 changes: 0 additions & 5 deletions .github/workflows/azure-deploy-review.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -20,11 +20,6 @@ on:
- terraform-azure
- uml/*

# Permissions for OIDC authentication
permissions:
id-token: write
contents: read

env:
ARM_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }}
ARM_SUBSCRIPTION_ID: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
Expand Down
7 changes: 1 addition & 6 deletions .github/workflows/azure-deploy-stage.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -15,12 +15,7 @@ on:
push:
tags:
- rc*

# Permissions for OIDC authentication
permissions:
id-token: write
contents: read

-
env:
ARM_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }}
ARM_SUBSCRIPTION_ID: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
Expand Down
5 changes: 0 additions & 5 deletions .github/workflows/tf-azure-deploy.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,11 +23,6 @@ defaults:
run:
working-directory: ./terraform-azure

# Permissions for OIDC authentication
permissions:
id-token: write
contents: read

env:
ARM_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }}
ARM_SUBSCRIPTION_ID: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
Expand Down

0 comments on commit 58b297f

Please sign in to comment.