azure-ad-b2c / deploy-trustframework-policy Goto Github PK

is it possible to use a federated identity for authentication?

on: push

env:
  clientId: 00000000-0000-0000-0000-000000000000
  tenantId: 11111111-1111-1111-1111-111111111111
  subscriptionId: 22222222-2222-2222-2222-222222222222
  tenant: my-tenant.onmicrosoft.com

jobs:
  build-and-deploy:
    runs-on: ubuntu-latest
    steps:
    - uses: actions/checkout@v4
    # azure creds using oidc
    - name: 'Az CLI login'
      uses: azure/login@v1
      with:
        client-id: ${{ env.clientId }}
        tenant-id: ${{ env.tenantId }}
        subscription-id: ${{ env.subscriptionId }}
    - name: 'Upload TrustFrameworkBase Policy'
      uses: azure-ad-b2c/deploy-trustframework-policy@v5
      with:
        folder: "./Policies"
        files: "TrustFrameworkBase.xml,TrustFrameworkExtensions.xml,SignUpOrSignin.xml"
        tenant: ${{ env.tenant }}
        clientId: ${{ env.clientId }}
        renumberSteps: false

something like this

Not sure if anyone is actively watching and willing to make changes, but... given that one will be testing these policies in a dev, qa, etc., environment prior to deploying to production, it would be useful to support having replaceable values in the action. A set of key=value pairs, maybe allow the specification of the "quotes" that surround the keys to replace?

We are uploading up to 13 policies and action randomly fails with error "Action failed: Unauthenticated" after uploading up to 5 policies.

We keep re0run jobs again and it's eventually works

Currently in

It will be good, if I can specify "B2C_1A_*.xml" instead of list each file individually

We are using azure-ad-b2c/deploy-trustframework-policy@v1 and it worked fine.
After some recent changes (changing secret ) deployment start to fail without error details

Error: Action failed: [object Object].
How can I see exception details?

Similar deployment to other B2C AAD continue to work.

Trying to use GitHub actions to deploy policies but getting "Error: {"message":"No HTTP resource was found that matches the request URI 'https://cpim.windows.net/graph/trustFramework/policies'.","messageDetail":"No action was found on the controller 'trustframework' that matches the request.","stackTrace":null}" error. From what I can see it seems like the correct URL is https://graph.microsoft.com/beta/trustFrameworkPolicies. Where do I change it? Should I even?

This still appears to be using Node 12, which reached the end of life for security updates at the end of April 2022. Can you please update this to using a later version of NodeJS. https://endoflife.date/nodejs

https://github.com/azure-ad-b2c/deploy-trustframework-policy/blob/main/action.yml#L36