-
Notifications
You must be signed in to change notification settings - Fork 214
/
azure-pipelines.yml
36 lines (34 loc) · 1.37 KB
/
azure-pipelines.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
trigger:
branches:
include:
- '*'
- refs/tags/*
pool:
vmImage: ubuntu-latest
steps:
- task: NodeTool@0
inputs:
versionSpec: '16.4.2'
- script: npm install
- script: npm run compile
- task: DownloadSecureFile@1
name: githubPEM
displayName: 'Download Github PEM'
inputs:
secureFile: 'rp-azure-pipeline-github.pem'
- bash: |
eval $(ruby -e "require 'openssl'; require 'jwt'; private_pem = File.read(ENV['GITHUB_PEM_PATH']); private_key = OpenSSL::PKey::RSA.new(private_pem); payload = { iat: Time.now.to_i - 60, exp: Time.now.to_i + (10 * 60), iss: ENV['GITHUB_APP_ID'] }; jwt = JWT.encode(payload, private_key, 'RS256'); puts 'PUSH_JWT='+jwt;")
TOKEN=$(curl -s -X POST \
-H "Authorization: Bearer $PUSH_JWT" \
-H "Accept: application/vnd.github.v3+json" \
https://api.github.com/app/installations/$GITHUB_APP_INSTALLATION_ID/access_tokens \
| jq -r '.token')
git remote add github https://x-access-token:[email protected]/rocket-pool/$REPO_NAME
git fetch github
git push github HEAD:$(Build.SourceBranch) -f --verbose
git push github HEAD:$(Build.SourceBranch) -f --tags --verbose
displayName: 'Push to Github'
env:
GITHUB_PEM_PATH: $(githubPEM.secureFilePath)
GITHUB_APP_ID: $(GITHUB_APP_ID)
GITHUB_APP_INSTALLATION_ID: $(GITHUB_APP_INSTALLATION_ID)