We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
The Renew Lets Encrypt Certificates GitHub Action is broken...
Fixing this by adding the following line to env vars on line 38 of the lets_encrypt.yml:
AZURE_ENVIRONMENT= ${{ vars.AZURE_ENVIRONMENT }}
Fixing the above then produces the next issue...
Looking more closely at the yaml, it looks like SUBCRIPTION_ID and TENANT_ID have their values mixed up:
AzureTRE/.github/workflows/lets_encrypt.yml
Lines 41 to 42 in 1ffb09b
The error above is produced by the following lines:
AzureTRE/core/terraform/outputs.sh
Lines 8 to 15 in 1ffb09b
Appears that the env vars and not making into the terraform initialize command...
TF_VAR_mgmt_resource_group_name TF_VAR_mgmt_storage_account_name TF_VAR_terraform_state_container_name
Changing the following lines in letsencrypt.yaml from:
Lines 44 to 47 in 1ffb09b
to:
TF_VAR_terraform_state_container_name: ${{ secrets.TERRAFORM_STATE_CONTAINER_NAME || 'tfstate' }} TF_VAR_mgmt_resource_group_name: ${{ secrets.MGMT_RESOURCE_GROUP_NAME }} TF_VAR_mgmt_storage_account_name: ${{ secrets.MGMT_STORAGE_ACCOUNT_NAME }}
fixes issue 3, and allows a certificate to be generated.
The text was updated successfully, but these errors were encountered:
In summary the following fixes are required to lets_encrypt.yaml:
Make the following changes under the env section of the Renew Certificates job step:
env
ARM_SUBSCRIPTION_ID: ${{ fromJSON(secrets.AZURE_CREDENTIALS).tenantId }} ARM_TENANT_ID: ${{ fromJSON(secrets.AZURE_CREDENTIALS).subscriptionId }}
To:
ARM_SUBSCRIPTION_ID: ${{ fromJSON(secrets.AZURE_CREDENTIALS).subscriptionId }} ARM_TENANT_ID: ${{ fromJSON(secrets.AZURE_CREDENTIALS).tenantId }}
TERRAFORM_STATE_CONTAINER_NAME: ${{ secrets.TERRAFORM_STATE_CONTAINER_NAME && secrets.TERRAFORM_STATE_CONTAINER_NAME || 'tfstate' }} MGMT_RESOURCE_GROUP_NAME: ${{ secrets.MGMT_RESOURCE_GROUP_NAME }} MGMT_STORAGE_ACCOUNT_NAME: ${{ secrets.MGMT_STORAGE_ACCOUNT_NAME }}
Sorry, something went wrong.
Successfully merging a pull request may close this issue.
The Renew Lets Encrypt Certificates GitHub Action is broken...
1. Fails with AZURE_ENVIRONMENT: unbound variable
Fixing this by adding the following line to env vars on line 38 of the lets_encrypt.yml:
AZURE_ENVIRONMENT= ${{ vars.AZURE_ENVIRONMENT }}
Fixing the above then produces the next issue...
2. Fails on Azure login with tenant not found error
Looking more closely at the yaml, it looks like SUBCRIPTION_ID and TENANT_ID have their values mixed up:
AzureTRE/.github/workflows/lets_encrypt.yml
Lines 41 to 42 in 1ffb09b
Fixing the above then produces the next issue...
3. Fails to initialise terraform backend
The error above is produced by the following lines:
AzureTRE/core/terraform/outputs.sh
Lines 8 to 15 in 1ffb09b
Appears that the env vars and not making into the terraform initialize command...
Changing the following lines in letsencrypt.yaml from:
AzureTRE/.github/workflows/lets_encrypt.yml
Lines 44 to 47 in 1ffb09b
to:
fixes issue 3, and allows a certificate to be generated.
The text was updated successfully, but these errors were encountered: