Open blueprismo opened 3 months ago
Did anybody has a solution to this? Thank you
Did anybody has a solution to this? Thank you
I have the mental note to do it at some point in time in a forked repo / on my own! Will keep you updated :)
@pintxxo What about this: https://registry.terraform.io/modules/blueprismo/github-oidc-provider/aws/latest? :)
Bug Report
When I try to set up a simple OIDC provisioning, the policy document only considerates the condition for the
token.githubusercontent.com:sub
and does not include the*:aud
as explicitly stated in the doc (https://docs.github.com/en/actions/deployment/security-hardening-your-deployments/configuring-openid-connect-in-amazon-web-services#configuring-the-role-and-trust-policy)Steps to Reproduce:
Just apply anywhere the role
Expected Result:
Actual Result: