Well, rewrite the whole thing to auth to azure instead #45
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Store submission on release | |
on: | |
workflow_dispatch: | |
#release: | |
# types: [published] | |
jobs: | |
microsoft_store: | |
name: Publish Microsoft Store | |
environment: store | |
runs-on: ubuntu-latest | |
steps: | |
- name: Log in to Azure | |
uses: azure/login@v2 | |
with: | |
client-id: ${{ secrets.AZURE_CLIENT_ID }} | |
tenant-id: ${{ secrets.AZURE_TENANT_ID }} | |
subscription-id: ${{ secrets.AZURE_SUBSCRIPTION_ID }} | |
enable-AzPSSession: true | |
- name: Get latest URL from public releases | |
id: releaseVars | |
run: | | |
release=$(curl https://api.github.com/repos/Microsoft/PowerToys/releases | jq '[.[]|select(.name | contains("Release"))][0]') | |
assets=$(jq -n "$release" | jq '.assets') | |
powerToysSetup=$(jq -n "$assets" | jq '[.[]|select(.name | contains("PowerToysSetup"))]') | |
echo ::set-output name=powerToysInstallerX64Url::$(jq -n "$powerToysSetup" | jq -r '[.[]|select(.name | contains("x64"))][0].browser_download_url') | |
echo ::set-output name=powerToysInstallerArm64Url::$(jq -n "$powerToysSetup" | jq -r '[.[]|select(.name | contains("arm64"))][0].browser_download_url') | |
- uses: microsoft/setup-msstore-cli | |
- name: Fetch Store Credential | |
uses: azure/cli@v2 | |
with: | |
azcliversion: latest | |
inlineScript: |- | |
az keyvault secret download --vault-name ${{ vars.AKV_NAME }} -n ${{ vars.CERT_NAME }} -f cert.pfx | |
- name: Configure Store Credentials | |
run: |- | |
msstore-cli reconfigure -cfp cert.pfx -c ${{ secrets.AZURE_CLIENT_ID }} -t ${{ secrets.AZURE_TENANT_ID }} -s ${{ secrets.SELLER_ID }} | |
- name: Update draft submission | |
run: |- | |
msstore-cli submission update ${{ secrets.PRODUCT_ID } '{ | |
"packages":[ | |
{ | |
"packageUrl":"${{ steps.releaseVars.outputs.powerToysInstallerX64Url }}", | |
"languages":["zh-hans", "zh-hant", "en", "cs", "nl", "fr", "pt", "pt-br", "de", "hu", "it", "ja", "ko", "pl", "ru", "es", "tr"], | |
"architectures":["X64"], | |
"installerParameters":"/quiet /norestart", | |
"isSilentInstall":true | |
}, | |
{ | |
"packageUrl":"${{ steps.releaseVars.outputs.powerToysInstallerArm64Url }}", | |
"languages":["zh-hans", "zh-hant", "en", "cs", "nl", "fr", "pt", "pt-br", "de", "hu", "it", "ja", "ko", "pl", "ru", "es", "tr"], | |
"architectures":["Arm64"], | |
"installerParameters":"/quiet /norestart", | |
"isSilentInstall":true | |
} | |
] | |
}' | |
# - name: Publish Submission | |
# run: |- | |
# msstore-cli submission publish ${{ secrets.PRODUCT_ID }} | |
- name: Clean up auth certificate | |
if: always() | |
run: |- | |
rm -f cert.pfx |