Skip to content

Commit

Permalink
Merge pull request #649 from rust-lang/chore-ci-staging-add-openid-co…
Browse files Browse the repository at this point in the history
…nnect-provider-for-gh-actions

chore(ci-staging): add openid connect provider for gh actions
  • Loading branch information
MarcoIeni authored Dec 13, 2024
2 parents b3643c2 + ef9b79c commit f70eade
Showing 1 changed file with 9 additions and 0 deletions.
9 changes: 9 additions & 0 deletions terragrunt/modules/ci-runners/gh_oidc.tf
Original file line number Diff line number Diff line change
@@ -0,0 +1,9 @@
// Docs: https://aws.amazon.com/blogs/security/use-iam-roles-to-connect-github-actions-to-actions-in-aws/
resource "aws_iam_openid_connect_provider" "github_actions_provider" {
url = "https://token.actions.githubusercontent.com"

client_id_list = ["sts.amazonaws.com"]

// unused
thumbprint_list = ["1c58a3a8518e8759bf075b76b750d4f2df264fcd"]
}

0 comments on commit f70eade

Please sign in to comment.