-
Notifications
You must be signed in to change notification settings - Fork 1
47 lines (40 loc) · 1.8 KB
/
fss-post-action.yml
File metadata and controls
47 lines (40 loc) · 1.8 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
name: Post-Action-Automated-Deploy
# Controls when the action will run.
on:
# Triggers the workflow on push or pull request events but only for the main branch
# push:
# branches: [ main ]
# Allows you to run this workflow manually from the Actions tab
workflow_dispatch:
# A workflow run is made up of one or more jobs that can run sequentially or in parallel
jobs:
# This workflow contains a single job called "build"
build:
# The type of runner that the job will run on
runs-on: ubuntu-latest
# Steps represent a sequence of tasks that will be executed as part of the job
steps:
# Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it
- uses: actions/checkout@v2
- name: AWS Credentials
uses: aws-actions/configure-aws-credentials@v1
with:
aws-access-key-id: ${{ secrets.aws_access_key_id }}
aws-secret-access-key: ${{ secrets.aws_secret_access_key }}
aws-region: us-east-1
- name: Setup Python
uses: actions/setup-python@v2
with:
python-version: 3.8
# Runs a single command using the runners shell
- name: Run The fss-post-actions.sh script and Deploy the File Storage Security Post Action Capability
working-directory: ./Post-Actions
run: ./fss-post-actions.sh
env:
allinone_stackname: ${{ secrets.allinone_stackname }}
bucket_to_promote_name: ${{ secrets.bucket_to_promote_name}}
bucket_to_quarantine_name: ${{ secrets.bucket_to_quarantine_name }}
function_name: ${{ secrets.function_name }}
bucket_to_scan_arn: ${{ secrets.bucket_to_scan_arn }}
bucket_to_promote_arn: ${{ secrets.bucket_to_promote_arn }}
bucket_to_quarantine_arn: ${{ secrets.bucket_to_quarantine_arn }}