diff --git a/.github/workflows/deploy.yml b/.github/workflows/deploy.yml index 04a77d58d7..b58fed782f 100644 --- a/.github/workflows/deploy.yml +++ b/.github/workflows/deploy.yml @@ -6,11 +6,6 @@ on: env: PREFIX: "ct-staff" SHA: ${{ github.event.pull_request.head.sha || github.sha }} - KUBE_NAMESPACE: ${{ secrets.KUBE_NAMESPACE }} - KUBE_CERT: ${{ secrets.KUBE_CERT }} - KUBE_TOKEN: ${{ secrets.KUBE_TOKEN }} - KUBE_CLUSTER: ${{ secrets.KUBE_CLUSTER }} - concurrency: group: deploy-${{ github.ref }} cancel-in-progress: true @@ -71,6 +66,12 @@ jobs: id-token: write # This is required for requesting the JWT contents: read # This is required for actions/checkout + env: + KUBE_NAMESPACE: ${{ secrets.KUBE_NAMESPACE }} + KUBE_CERT: ${{ secrets.KUBE_CERT }} + KUBE_TOKEN: ${{ secrets.KUBE_TOKEN }} + KUBE_CLUSTER: ${{ secrets.KUBE_CLUSTER }} + steps: - name: Checkout uses: actions/checkout@v4 @@ -135,6 +136,12 @@ jobs: id-token: write # This is required for requesting the JWT contents: read # This is required for actions/checkout + env: + KUBE_NAMESPACE: ${{ secrets.KUBE_NAMESPACE }} + KUBE_CERT: ${{ secrets.KUBE_CERT }} + KUBE_TOKEN: ${{ secrets.KUBE_TOKEN }} + KUBE_CLUSTER: ${{ secrets.KUBE_CLUSTER }} + steps: - name: Checkout uses: actions/checkout@v4 @@ -199,6 +206,12 @@ jobs: id-token: write # This is required for requesting the JWT contents: read # This is required for actions/checkout + env: + KUBE_NAMESPACE: ${{ secrets.KUBE_NAMESPACE }} + KUBE_CERT: ${{ secrets.KUBE_CERT }} + KUBE_TOKEN: ${{ secrets.KUBE_TOKEN }} + KUBE_CLUSTER: ${{ secrets.KUBE_CLUSTER }} + steps: - name: Checkout uses: actions/checkout@v4 @@ -264,6 +277,12 @@ jobs: id-token: write # This is required for requesting the JWT contents: read # This is required for actions/checkout + env: + KUBE_NAMESPACE: ${{ secrets.KUBE_NAMESPACE }} + KUBE_CERT: ${{ secrets.KUBE_CERT }} + KUBE_TOKEN: ${{ secrets.KUBE_TOKEN }} + KUBE_CLUSTER: ${{ secrets.KUBE_CLUSTER }} + steps: - name: Checkout uses: actions/checkout@v4