2023-04-06 23:42:04 +00:00
# This workflow applies the latest configuration profiles (macOS settings) and macOS updates minimum version and deadline to the workstations team.
# It uses a Fleet instance also built and executed from source.
2023-03-10 17:23:10 +00:00
#
2023-04-06 23:42:04 +00:00
# It runs when the GitHub action is triggered manually
name : Apply latest configuration profiles and macOS updates
2023-03-10 17:23:10 +00:00
on :
push :
branches :
- main
paths :
2023-05-16 15:16:22 +00:00
- "mdm_profiles/**.mobileconfig"
2023-05-26 15:41:08 +00:00
- ".github/workflows/fleetctl-workstations.yml"
2023-03-10 17:23:10 +00:00
workflow_dispatch : # Manual
# This allows a subsequently queued workflow run to interrupt previous runs
concurrency :
group : ${{ github.workflow }}-${{ github.head_ref || github.run_id}}
cancel-in-progress : true
defaults :
run :
# fail-fast using bash -eo pipefail. See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#exit-codes-and-error-action-preference
shell : bash
permissions :
contents : read
env :
2023-03-21 17:51:41 +00:00
DOGFOOD_API_TOKEN : ${{ secrets.DOGFOOD_API_TOKEN }}
2023-03-10 17:23:10 +00:00
DOGFOOD_URL : ${{ secrets.DOGFOOD_URL }}
CLOUD_MANAGEMENT_ENROLLMENT_TOKEN : ${{ secrets.CLOUD_MANAGEMENT_ENROLLMENT_TOKEN }}
jobs :
apply-profiles :
2023-05-17 18:07:18 +00:00
timeout-minutes : 5
2023-03-10 17:23:10 +00:00
runs-on : ubuntu-latest
steps :
2023-05-17 18:07:18 +00:00
- name : Apply configuration profiles and updates
2023-08-31 17:09:21 +00:00
uses : fleetdm/fleet-mdm-gitops@15072f2739ef92c6357414ddd86e89b6bf302a2b # v1.1.0
2023-05-16 15:16:22 +00:00
with :
2023-05-17 18:07:18 +00:00
FLEET_API_TOKEN : $DOGFOOD_API_TOKEN
FLEET_URL : $DOGFOOD_URL
FLEET_TEAM_NAME : 💻 Workstations
MDM_CONFIG_REPO : fleetdm/fleet
MDM_CONFIG_DIRECTORY : mdm_profiles
2023-08-02 22:38:11 +00:00
MAC_OS_MIN_VERSION : "13.5"
MAC_OS_VERSION_DEADLINE : 2023-08-11
2023-05-17 18:07:18 +00:00
MAC_OS_ENABLE_DISK_ENCRYPTION : true
