search

KitaPlatzZentrale / kpz

1 stars 0 forks source link

Outdated AWS SDK #105

Closed Darjusch closed 4 months ago

Darjusch commented 4 months ago

Link to failed run: https://github.com/KitaPlatzZentrale/kpz/actions/runs/8721139914/job/23924198823#step:4:15

Screenshot 2024-04-17 at 14 04 15
Darjusch commented 4 months ago

The problem was our trust policy only allowing the main branch build to AWS, I added our dev branch aswell now it works.


{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Principal": {
                "Federated": "arn:aws:iam::897331788878:oidc-provider/token.actions.githubusercontent.com"
            },
            "Action": "sts:AssumeRoleWithWebIdentity",
            "Condition": {
                "StringEquals": {
                    "token.actions.githubusercontent.com:aud": "sts.amazonaws.com",
                    "token.actions.githubusercontent.com:sub": [
                        "repo:KitaPlatzZentrale/kpz:ref:refs/heads/main",
                        "repo:KitaPlatzZentrale/kpz:ref:refs/heads/dev" <----- This part is new
                    ]
                }
            }
        }
    ]
}