search

unfunco / terraform-aws-oidc-github

Terraform module to configure GitHub Actions as an IAM OIDC identity provider in AWS.
https://registry.terraform.io/modules/unfunco/oidc-github/aws/latest
Apache License 2.0
91 stars 51 forks source link

add token.actions.githubusercontent.com:aud condition #22

Closed martijnvdp closed 1 year ago

martijnvdp commented 1 year ago

add the recommended condition to the iam role "token.actions.githubusercontent.com:aud": "[sts.amazonaws.com](http://sts.amazonaws.com/)"

see aws documentation

unfunco commented 1 year ago

Thanks @martijnvdp – I'm going to make a small amendment to change StringLike to StringEquals since no wildcards are used, and then I'll create a new release later today.