search

morpho-org / morpho-optimizers

Core contracts of Morpho V1 Optimizers.
https://app.morpho.org
GNU Affero General Public License v3.0
137 stars 22 forks source link

refactor(ci): use of OpenID Connect #1660

Closed julien-devatom closed 1 year ago

julien-devatom commented 1 year ago

Pull Request

The role is scoped to the docs environment with the following trust relationship:

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Principal": {
                "Federated": "arn:aws:iam::<account-i>:oidc-provider/token.actions.githubusercontent.com"
            },
            "Action": "sts:AssumeRoleWithWebIdentity",
            "Condition": {
                "StringEquals": {
                    "token.actions.githubusercontent.com:aud": "sts.amazonaws.com",
                    "token.actions.githubusercontent.com:sub": "repo:morpho-org/morpho-v1:environment:docs"
                }
            }
        }
    ]
}

docs environment is also scoped to the main branch image