Closed threat-punter closed 2 weeks ago
Hi there @threat-punter :wave:!
Thank you for opening an issue. Our team will triage this as soon as we can. Please take a moment to review the troubleshooting steps which lists common error messages and their resolution steps.
Hi @threat-punter - can you attach the debug logs? That will help me see whether the header is actually being set on the appropriate API call. Have you enabled CAL and DAL?
Hey @threat-punter - any luck after those various changes?
I see X-Goog-Request-Reason
is being logged by the GitHub Actions workflow now.
I'm not sure what Data Access audit log setting(s) to enable though so that this is logged in my Google Cloud project. 🤔
It should be sts.googleapis.com
I'll try and find the appropriate setting(s) and report back here. Cheers
I have data access audit logging enabled for the Security Token Service API. I can't find the request reason in my logs. Is it logged for you?
TL;DR
I configured this GitHub Action with a
request_reason
value, but cannot find it in any events in Cloud Audit Logs.Expected behavior
I set a value for
request_reason
in my GitHub Actions workflow file and validated that authentication works successfully.I can't find the
request_reason
field or the value that I set in any my Cloud Audit Logs. Do you know where this should be logged? Do you have an example query I can use in Logs Explorer to find the events?https://github.com/google-github-actions/auth/blob/c8788cc4c52eba6566baf085281fec298f1a1146/README.md?plain=1#L287-L291
Observed behavior
Unable to find
request_reason
or the value that I set in any of my Cloud Audit Logs after the GitHub Action authenticates successfully.Action YAML