From f736008cb3357cd2347653bbe196b252f2266464 Mon Sep 17 00:00:00 2001
From: Micaiah Martin <77340197+mimartin12@users.noreply.github.com>
Date: Thu, 21 Jul 2022 14:36:40 +0000
Subject: [PATCH] Update workflows for SCIM support (#2133)

---
 .github/workflows/build.yml   |  2 ++
 .github/workflows/release.yml | 12 +++++++++++-
 2 files changed, 13 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index b5acd8febf..deac19f67d 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -237,6 +237,7 @@ jobs:
             base_path: ./bitwarden_license/src
             docker_repos: [bitwarden, bitwardenqa.azurecr.io]
             dotnet: true
+            skip_dct: true
     steps:
       - name: Checkout repo
         uses: actions/checkout@a12a3943b4bdde767164f792f33f40b04645d846
@@ -341,6 +342,7 @@ jobs:
           && (github.ref == 'refs/heads/master' ||
             github.ref == 'refs/heads/rc' ||
             github.ref == 'refs/heads/hotfix-rc')
+          && (!matrix.skip_dct)
         env:
           DCT_DELEGATION_KEY_ID: "c9bde8ec820701516491e5e03d3a6354e7bd66d05fa3df2b0062f68b116dc59c"
           DCT_DELEGATE_KEY: ${{ steps.retrieve-secrets.outputs.dct-delegate-2-key }}
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 9950411cc2..57d55eecde 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -166,6 +166,7 @@ jobs:
           - service_name: Setup
           - service_name: Sso
           - service_name: Scim
+            skip_dct: true
     steps:
       - name: Print environment
         env:
@@ -196,6 +197,15 @@ jobs:
           azure-creds: ${{ secrets.AZURE_PROD_KV_CREDENTIALS }}
           azure-keyvault-name: "bitwarden-prod-kv"
 
+      - name: Check for DCT value
+        id: check-matrix-dct
+        run: |
+          if [[ "${{ matrix.skip_dct }}" == "true" ]]; then
+            echo "::set-output name=dct_enabled::0"
+          else
+            echo "::set-output name=dct_enabled::1"
+          fi
+
       - name: Pull latest selfhost image
         env:
           SERVICE_NAME: ${{ steps.setup.outputs.service_name }}
@@ -219,7 +229,7 @@ jobs:
       - name: Push version and latest image
         if: ${{ github.event.inputs.release_type != 'Dry Run' }}
         env:
-          DOCKER_CONTENT_TRUST: 1
+          DOCKER_CONTENT_TRUST: ${{ steps.check-matrix-dct.outputs.dct_enabled }}
           DOCKER_CONTENT_TRUST_REPOSITORY_PASSPHRASE: ${{ steps.setup-dct.outputs.dct-delegate-repo-passphrase }}
           SERVICE_NAME: ${{ steps.setup.outputs.service_name }}
         run: |