Azure 使用带有Pulumi配置中的连接信息的服务主体登录时出现Pulumi错误
我正在使用GitHub操作运行Azure 使用带有Pulumi配置中的连接信息的服务主体登录时出现Pulumi错误,azure,pulumi,Azure,Pulumi,我正在使用GitHub操作运行pulumi-pr.yml 我希望能够基于堆栈部署到不同的订阅 我创建了一个az广告服务原则,并使用以下方法将信息放入Pulumi配置中: pulumi config set azure:clientId <clientID> pulumi config set azure:clientSecret <clientSecret> --secret pulumi config set azure:tenantId <tenantID>
pulumi-pr.yml
我希望能够基于堆栈部署到不同的订阅
我创建了一个az广告服务原则,并使用以下方法将信息放入Pulumi配置中:
pulumi config set azure:clientId <clientID>
pulumi config set azure:clientSecret <clientSecret> --secret
pulumi config set azure:tenantId <tenantID>
pulumi config set azure:subscriptionId <subscriptionId>
以下是整个yaml:
name: Pulumi Preview
on:
pull_request:
branches:
- main
workflow_dispatch:
jobs:
preview:
runs-on: windows-latest
steps:
- uses: actions/checkout@v2
with:
fetch-depth: 1
- name: Install Pulumi CLI
uses: pulumi/action-install-pulumi-cli@v1
- uses: pulumi/actions@v3
with:
command: preview
stack-name: trinsic/Cramer
work-dir: infrastructure/Source/Trinsic.Okapi
env:
PULUMI_ACCESS_TOKEN: ${{ secrets.PULUMI_ACCESS_TOKEN }}
将秘密传递给环境变量,就像pulumi访问一样token@TomislavMarkovski如果我们将秘密传递给环境变量,那么在Pulumi config?灵活性中设置它们有什么意义?Env变量影响整个系统,而config可以按照shell进程或配置文件运行。
name: Pulumi Preview
on:
pull_request:
branches:
- main
workflow_dispatch:
jobs:
preview:
runs-on: windows-latest
steps:
- uses: actions/checkout@v2
with:
fetch-depth: 1
- name: Install Pulumi CLI
uses: pulumi/action-install-pulumi-cli@v1
- uses: pulumi/actions@v3
with:
command: preview
stack-name: trinsic/Cramer
work-dir: infrastructure/Source/Trinsic.Okapi
env:
PULUMI_ACCESS_TOKEN: ${{ secrets.PULUMI_ACCESS_TOKEN }}