add the script to download certs and apply azure policy operation on …

…an AKS Signed-off-by: Shahram Kalantari <[email protected]>
ratify-project · Jan 31, 2025 · 911f222 · 911f222
1 parent d0eb4ff
commit 911f222
Showing 1 changed file with 12 additions and 0 deletions.
diff --git a/ratify-on-azure.sh b/ratify-on-azure.sh
@@ -0,0 +1,12 @@
+#!/bin/bash
+
+# Get AKS credentials
+az aks get-credentials --resource-group $RESOURCE_GROUP --name $CLUSTER_NAME --overwrite-existing --identity
+
+# install helm
+curl https://raw.githubusercontent.com/helm/helm/main/scripts/get-helm-3 | bash
+
+# Install Ratify using Helm
+helm repo add ratify https://deislabs.github.io/ratify
+helm repo update --namespace gatekeeper-system --create-namespace --set authProvider.azureWorkloadIdentity.clientID=$RATIFY_CLIENT_ID --set provider.enableMutation=$ENABLE_MUTATION --set featureFlags.RATIFY_CERT_ROTATION=$ENABLE_CERT_ROTATION
+