Wind010/azure-pipelines.yml

## azure-pipelines.yml
trigger:
- master

resources:
- repo: self

variables:
  azureSubscription: '<azure-subscription>'
  dockerRegistryServiceConnection: '<service-connection>'
  imageRepository: '<repository-name>'
  containerRegistry: '<registry>.azurecr.io'
  dockerfilePath: '$(Build.SourcesDirectory)/Dockerfile'
  tag: '$(Build.BuildId)'
  vmImageName: 'ubuntu-latest'

stages:
- stage: Build
  displayName: Build and push stage
  jobs:
  - job: Build
    displayName: Build
    pool:
      vmImage: $(vmImageName)
    steps:
    - task: AzureCLI@2
      name:
      displayName: 'Add agent IP to firewall whitelist'
      inputs:
        azureSubscription: $(azureSubscription)
        scriptType: 'bash'
        scriptLocation: 'inlineScript'
        inlineScript: |
          AGENT_IP="$(dig +short myip.opendns.com @resolver1.opendns.com)"

          if [ -z "$(az acr network-rule list --name $(containerRegistry) | grep ${AGENT_IP})"]
          then
            echo "Adding agent IP '${AGENT_IP}' to Azure Container Registry '$(containerRegistry)' firewall whitelist"
            az acr network-rule add --name $(containerRegistry) --ip-address $AGENT_IP
          else
            echo "Agent is already whitelisted; skipping."
          fi
    - task: Docker@2
      displayName: Build and push an image to container registry
      inputs:
        command: buildAndPush
        repository: $(imageRepository)
        dockerfile: $(dockerfilePath)
        containerRegistry: $(dockerRegistryServiceConnection)
        tags: |
          $(tag)
    - task: AzureCLI@2
      displayName: 'Remove agent IP from firewall whitelist'
      condition: always()
      inputs:
        azureSubscription: $(azureSubscription)
        scriptType: 'bash'
        scriptLocation: 'inlineScript'
        inlineScript: |
          AGENT_IP="$(dig +short myip.opendns.com @resolver1.opendns.com)"

          echo "Removing agent IP '${AGENT_IP}' from Azure Container Registry '$(containerRegistry)' firewall whitelist"
          az acr network-rule remove --name $(containerRegistry) --ip-address $AGENT_IP --only-show-errors --output none
	trigger:
	- master

	resources:
	- repo: self

	variables:
	azureSubscription: '<azure-subscription>'
	dockerRegistryServiceConnection: '<service-connection>'
	imageRepository: '<repository-name>'
	containerRegistry: '<registry>.azurecr.io'
	dockerfilePath: '$(Build.SourcesDirectory)/Dockerfile'
	tag: '$(Build.BuildId)'
	vmImageName: 'ubuntu-latest'

	stages:
	- stage: Build
	displayName: Build and push stage
	jobs:
	- job: Build
	displayName: Build
	pool:
	vmImage: $(vmImageName)
	steps:
	- task: AzureCLI@2
	name:
	displayName: 'Add agent IP to firewall whitelist'
	inputs:
	azureSubscription: $(azureSubscription)
	scriptType: 'bash'
	scriptLocation: 'inlineScript'
	inlineScript: \|
	AGENT_IP="$(dig +short myip.opendns.com @resolver1.opendns.com)"

	if [ -z "$(az acr network-rule list --name $(containerRegistry) \| grep ${AGENT_IP})"]
	then
	echo "Adding agent IP '${AGENT_IP}' to Azure Container Registry '$(containerRegistry)' firewall whitelist"
	az acr network-rule add --name $(containerRegistry) --ip-address $AGENT_IP
	else
	echo "Agent is already whitelisted; skipping."
	fi
	- task: Docker@2
	displayName: Build and push an image to container registry
	inputs:
	command: buildAndPush
	repository: $(imageRepository)
	dockerfile: $(dockerfilePath)
	containerRegistry: $(dockerRegistryServiceConnection)
	tags: \|
	$(tag)
	- task: AzureCLI@2
	displayName: 'Remove agent IP from firewall whitelist'
	condition: always()
	inputs:
	azureSubscription: $(azureSubscription)
	scriptType: 'bash'
	scriptLocation: 'inlineScript'
	inlineScript: \|
	AGENT_IP="$(dig +short myip.opendns.com @resolver1.opendns.com)"

	echo "Removing agent IP '${AGENT_IP}' from Azure Container Registry '$(containerRegistry)' firewall whitelist"
	az acr network-rule remove --name $(containerRegistry) --ip-address $AGENT_IP --only-show-errors --output none