teststestste #6
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Generate and Upload SSL Certificate | |
| on: | |
| push: | |
| branches: | |
| - feature/fg-137 | |
| workflow_dispatch: | |
| jobs: | |
| generate-and-upload-cert: | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Checkout code | |
| uses: actions/checkout@v2 | |
| - name: Log in to Azure | |
| uses: azure/login@v1 | |
| with: | |
| creds: ${{ secrets.AZURE_CREDENTIALS }} | |
| - name: Generate SSL certificate with Certbot | |
| env: | |
| DOMAIN: backend.masus.no | |
| CERTBOT_EMAIL: [email protected] | |
| run: | | |
| sudo apt-get update | |
| sudo apt-get install -y certbot | |
| certbot certonly --standalone -d $DOMAIN --email $CERTBOT_EMAIL --agree-tos -n \ | |
| --config-dir ./certbot/config --work-dir ./certbot/work --logs-dir ./certbot/logs | |
| openssl pkcs12 -export -out cert.pfx -inkey ./certbot/config/live/$DOMAIN/privkey.pem \ | |
| -in ./certbot/config/live/$DOMAIN/fullchain.pem -passout pass:$PFX_PASSWORD | |
| - name: Upload certificate to Azure Application Gateway | |
| env: | |
| AZURE_SUBSCRIPTION_ID: ${{ secrets.AZURE_SUBSCRIPTION_ID }} | |
| AZURE_RESOURCE_GROUP: hilfling-backend_group | |
| AZURE_APPLICATION_GATEWAY_NAME: hilfling-gateway | |
| PFX_PASSWORD: ${{ secrets.PFX_PASSWORD }} | |
| run: | | |
| # Create the SSL certificate in Azure Application Gateway | |
| az network application-gateway ssl-cert create \ | |
| --resource-group $AZURE_RESOURCE_GROUP \ | |
| --gateway-name $AZURE_APPLICATION_GATEWAY_NAME \ | |
| --name app-gateway-cert \ | |
| --cert-file cert.pfx \ | |
| --cert-password $PFX_PASSWORD |