Fix Azure Login in pr-check (#171)

* Don't use AZURE_CREDENTIALS * Add workflow permissions * Fix secrets names
Azure · Mar 10, 2023 · 36c52fa · 36c52fa
1 parent a5476bf
commit 36c52fa
Showing 1 changed file with 6 additions and 1 deletion.
diff --git a/.github/workflows/pr-check.yml b/.github/workflows/pr-check.yml
@@ -9,6 +9,9 @@ on:
     paths:
       - '.github/workflows/pr-check.yml'
 
+permissions:
+  id-token: write # This is needed for Azure login with OIDC
+
 jobs:
   deploy:
     environment: Automation test # this environment requires approval before running the action
@@ -45,7 +48,9 @@ jobs:
     - name: Azure Login
       uses: azure/login@v1
       with:
-        creds: ${{ secrets.AZURE_CREDENTIALS }}
+        client-id: ${{ secrets.AZURE_CLIENT_ID }}
+        tenant-id: ${{ secrets.AZURE_TENANT_ID }}
+        subscription-id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
 
     # Deploy a DACPAC with only a table to server
     - name: Test DACPAC Action