ChrisRomp/azure-pipelines.yml

## azure-pipelines.yml
trigger:
- main

pool:
  vmImage: windows-latest

steps:
# Get OpenSSL Version
- powershell: openssl version -a
  displayName: Get OpenSSL Version

# OpenSSL Check LetsEncrypt (fail)
- powershell: openssl s_client -verify_return_error -showcerts -connect letsencrypt.org:443
  displayName: OpenSSL Check LetsEncrypt (fail)
  failOnStderr: false

# Download ISRG Root X1 Cert to temp (or could load from Key Vault)
- powershell: Invoke-WebRequest -Uri https://letsencrypt.org/certs/isrgrootx1.pem -OutFile $env:TEMP\isrgrootx1.pem
  displayName: Download ISRG Root X1 Cert to temp

# Set SSL_CERT_FILE for openssl to use
- powershell: |
    Write-Host "##vso[task.setvariable variable=SSL_CERT_FILE;]$env:TEMP\isrgrootx1.pem"
  displayName: Set SSL_CERT_FILE environment variable

# OpenSSL Check LetsEncrypt (pass)
- powershell: openssl s_client -verify_return_error -showcerts -connect letsencrypt.org:443
  displayName: OpenSSL Check LetsEncrypt (pass)
	trigger:
	- main

	pool:
	vmImage: windows-latest

	steps:
	# Get OpenSSL Version
	- powershell: openssl version -a
	displayName: Get OpenSSL Version

	# OpenSSL Check LetsEncrypt (fail)
	- powershell: openssl s_client -verify_return_error -showcerts -connect letsencrypt.org:443
	displayName: OpenSSL Check LetsEncrypt (fail)
	failOnStderr: false

	# Download ISRG Root X1 Cert to temp (or could load from Key Vault)
	- powershell: Invoke-WebRequest -Uri https://letsencrypt.org/certs/isrgrootx1.pem -OutFile $env:TEMP\isrgrootx1.pem
	displayName: Download ISRG Root X1 Cert to temp

	# Set SSL_CERT_FILE for openssl to use
	- powershell: \|
	Write-Host "##vso[task.setvariable variable=SSL_CERT_FILE;]$env:TEMP\isrgrootx1.pem"
	displayName: Set SSL_CERT_FILE environment variable

	# OpenSSL Check LetsEncrypt (pass)
	- powershell: openssl s_client -verify_return_error -showcerts -connect letsencrypt.org:443
	displayName: OpenSSL Check LetsEncrypt (pass)