Closed Darjusch closed 4 months ago
The problem was our trust policy only allowing the main branch build to AWS, I added our dev branch aswell now it works.
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Principal": {
"Federated": "arn:aws:iam::897331788878:oidc-provider/token.actions.githubusercontent.com"
},
"Action": "sts:AssumeRoleWithWebIdentity",
"Condition": {
"StringEquals": {
"token.actions.githubusercontent.com:aud": "sts.amazonaws.com",
"token.actions.githubusercontent.com:sub": [
"repo:KitaPlatzZentrale/kpz:ref:refs/heads/main",
"repo:KitaPlatzZentrale/kpz:ref:refs/heads/dev" <----- This part is new
]
}
}
}
]
}
Link to failed run: https://github.com/KitaPlatzZentrale/kpz/actions/runs/8721139914/job/23924198823#step:4:15