Microsoft/vscode
1
0
Fork 0
mirror of https://github.com/microsoft/vscode.git synced 2026-06-29 10:56:24 +01:00
Code Issues Packages Projects Releases Wiki Activity

Fetch oidc token just before uploading

Browse Source
This commit is contained in:
Henning Dieterichs
2026-06-22 11:49:29 +02:00
committed by Henning Dieterichs
parent d1a5e5ecf2
commit a4f90ca16a
1 changed files with 16 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files
.github/workflows/css-order-scan.yml
+16 -14
View File
@@ -87,20 +87,6 @@ jobs:
cat /tmp/serve-out.log
exit 1
- name: Get OIDC token
id: oidc
run: |
TOKEN=$(curl -sS -H "Authorization: bearer $ACTIONS_ID_TOKEN_REQUEST_TOKEN" \
"$ACTIONS_ID_TOKEN_REQUEST_URL&audience=https://hediet-screenshots.azurewebsites.net" \
| jq -r .value)
echo "::add-mask::$TOKEN"
echo "token=$TOKEN" >> "$GITHUB_OUTPUT"
- name: Generate random commit SHA
id: random_sha
run: |
RANDOM_SHA=$(node -e "const { randomBytes } = require('node:crypto'); process.stdout.write(randomBytes(20).toString('hex'));")
echo "sha=$RANDOM_SHA" >> "$GITHUB_OUTPUT"
- name: Run CSS order scan
run: |
@@ -108,6 +94,12 @@ jobs:
--fixture-id-regex ".*" \
--image-base-url "https://hediet-screenshots.azurewebsites.net/images"
- name: Generate random commit SHA
id: random_sha
run: |
RANDOM_SHA=$(node -e "const { randomBytes } = require('node:crypto'); process.stdout.write(randomBytes(20).toString('hex'));")
echo "sha=$RANDOM_SHA" >> "$GITHUB_OUTPUT"
- name: Prepare CSS order upload payload
id: prepare_upload
run: |
@@ -189,6 +181,16 @@ jobs:
UPLOAD_DIR: /tmp/css-order-upload
RANDOM_SHA: ${{ steps.random_sha.outputs.sha }}
- name: Get OIDC token
id: oidc
if: steps.prepare_upload.outputs.fixture_count != '0'
run: |
TOKEN=$(curl -sS -H "Authorization: bearer $ACTIONS_ID_TOKEN_REQUEST_TOKEN" \
"$ACTIONS_ID_TOKEN_REQUEST_URL&audience=https://hediet-screenshots.azurewebsites.net" \
| jq -r .value)
echo "::add-mask::$TOKEN"
echo "token=$TOKEN" >> "$GITHUB_OUTPUT"
- name: Upload CSS order images to service
if: steps.prepare_upload.outputs.fixture_count != '0'
run: |