ER=697: Workflow permissions

DFE-Digital · Aug 10, 2023 · f35ce31 · f35ce31
1 parent 194ab3b
commit f35ce31
Show file tree

Hide file tree

Showing 4 changed files with 7 additions and 0 deletions.
diff --git a/.github/workflows/azure-deploy-dev.yml b/.github/workflows/azure-deploy-dev.yml
@@ -22,6 +22,8 @@ on:
 # Permissions for OIDC authentication
 permissions:
   id-token: write
+  contents: write
+  packages: write
 
 env:
   ARM_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }}

diff --git a/.github/workflows/azure-deploy-review.yml b/.github/workflows/azure-deploy-review.yml
@@ -23,6 +23,8 @@ on:
 # Permissions for OIDC authentication
 permissions:
   id-token: write
+  contents: write
+  packages: write
 
 env:
   ARM_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }}

diff --git a/.github/workflows/azure-deploy-stage.yml b/.github/workflows/azure-deploy-stage.yml
@@ -19,6 +19,8 @@ on:
 # Permissions for OIDC authentication
 permissions:
   id-token: write
+  contents: write
+  packages: write
 
 env:
   ARM_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }}

diff --git a/.github/workflows/tf-azure-deploy.yml b/.github/workflows/tf-azure-deploy.yml
@@ -26,6 +26,7 @@ defaults:
 # Permissions for OIDC authentication
 permissions:
   id-token: write
+  contents: write
 
 env:
   ARM_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }}