Comments (2)
here is my own current cheat sheet for CICD installation:
- Fork https://github.com/microsoft/AzureTRE-Deployment (and not the default AzureTre repository ;) )
- Open it in Visual studio Code - run container
- Fill in /templates/core/.env and /devops/.env following TRE documentation https://microsoft.github.io/AzureTRE/tre-admins/setup-instructions/pre-deployment-steps/ and https://microsoft.github.io/AzureTRE/tre-admins/auth/##create_authentication_assets
- Run az login & make auth
- Create a service principal for github : az ad sp create-for-rbac --name "RandomAppName"--role owner --scopes /subscriptions/SUBSCRIPTIONID --sdk-auth
- Download Github Cli https://github.com/cli/cli/releases
- Fill in and run the following Powershell script
$repo = "your forked repo"
$env = "githubenv"
$Secrets = @{
TRE_ID = "";
AAD_TENANT_ID ="";
LOCATION = "";
AUTO_WORKSPACE_APP_REGISTRATION="";
AUTO_WORKSPACE_GROUP_CREATION="";
CORE_ADDRESS_SPACE="";
TRE_ADDRESS_SPACE="";
MGMT_RESOURCE_GROUP_NAME="";
MGMT_STORAGE_ACCOUNT_NAME="";
TERRAFORM_STATE_CONTAINER_NAME="";
ACR_NAME = "";
APPLICATION_ADMIN_CLIENT_ID="";
APPLICATION_ADMIN_CLIENT_SECRET="";
TEST_ACCOUNT_CLIENT_ID="";
TEST_ACCOUNT_CLIENT_SECRET="";
API_CLIENT_ID="";
API_CLIENT_SECRET="";
SWAGGER_UI_CLIENT_ID=""
CORE_APP_SERVICE_PLAN_SKU=""
AZURE_CREDENTIALS="";
}
$Secrets.keys | ForEach-Object{ gh secret set $_ -b $Secrets[$_] --repo $repo --env $env}
Note 1 : I provided an order to the parameters to remember easily where the values come from:
a. The first 11 comes from your config files you previously set up
b. Next 7 comes from the make auth result stored in /devops/auth.env
c. Core app service plan sku is official app service SKU, I choosed "P1v2" as value
d. Last one AZURE_CREDENTIALS comes from the result of the previous command
Note 2 : you might struggle with AZURE_CREDENTIALS multiline secret, you may add this one manually.
https://learn.microsoft.com/en-us/azure/developer/github/github-key-vault#define-a-service-principal
Note 3 : you might want to double check the expected the env variables within the workflow to make sure there aren't new ones
If you forgot one, the process will fail in the middle #31
- Consider removing the cron schedule from the deploy_tre.yml (this is more for dev purposes and a user should only redeploy for a new release)
- Run Github Action "Deploy Azure TRE"
- You may have to rerun some steps that fails due to timeout at first try:
a. Keyvault TLS certificate creation (this may force you to delete it before rerun)
b. ACR pulling - Setup is complete.
- Add yourself as "TRE administrators" within the AAD Enterprise Application "TREID API"
- Connect to https://TREID.LOCATION.cloudapp.azure.com/ to manage your Azure TRE
from azuretre-deployment.
Recent documentation updates made deployment simpler and cleared.
from azuretre-deployment.
Related Issues (20)
- Prep for Release v0.17.0
- Dockerfile out of date with main AzureTRE repo
- ENABLE_SWAGGER HOT 6
- Authentication error HOT 2
- We have deployed TRE, but not able to authenticate API from .Net core application HOT 1
- Upgrade to AzureTRE v0.10.0 release HOT 1
- CICD fails at ACR Login on first attempt HOT 2
- PR Bot functionality for validating deployment configuration/custom templates before merge
- Makefile contents should provide additional guidance for building custom bundles
- Markdown files should be linted
- Upgrade to version 12 HOT 1
- Update to release 0.13.0
- az acr login issue HOT 4
- Release 0.14.0
- Update to Azure TRE release 15.1
- Update for release 0.15.2
- Parameterise the Azure TRE OSS repository location to allow easier repointing to fork HOT 2
- Update for release 0.16.0
- Issues with Building the Deployment Dev Container on a Remote Server HOT 1
- Dockerfile Porter version
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from azuretre-deployment.