chore: creds

Author: Cameron Meissner

.github/workflows/oidc.yaml

@@ -1,5 +1,5 @@
-name: Run Azure Login with OIDC
 on:
+  # workflow_call: {}
   push:
     branches:
       - cameissner/oidc
@@ -9,7 +9,7 @@ permissions:
   id-token: write
   contents: read
 jobs:
-  build-and-deploy:
+  get-app-credentials:
     runs-on: ubuntu-latest
     steps:
       - name: Azure login
@@ -19,9 +19,11 @@ jobs:
           tenant-id: ${{ secrets.AZURE_KV_TENANT_ID }}
           subscription-id: ${{ secrets.AZURE_KV_SUBSCRIPTION_ID }}
 
-      - name: Azure CLI script
+      - name: Get app credentials
         uses: azure/cli@v2
         with:
           azcliversion: latest
           inlineScript: |
-            az account show
+            CLIENT_ID=$(az keyvault secret show --vault-name ${{ secrets.VAULT_NAME }} -n ${{ secrets.APP_CLIENT_ID_SECRET_NAME }} | jq -r '.value')
+            echo "::add-mask::$CLIENT_ID"
+            echo "::set-output name=APP_CLIENT_ID::$CLIENT_ID"