Skip to content

Commit a9cc1db

Browse files
ASPactoresASPactores
authored
Merge pull request #3 from DurianPy-Davao-Python-User-Group/3-upgrade-techtix-service-to-python-311
chore(deploy_backend.yml): add additional permission and audience
2 parents c2a43d6 + 7f5187a commit a9cc1db

1 file changed

Lines changed: 5 additions & 0 deletions

File tree

.github/workflows/deploy_backend.yml

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -7,6 +7,10 @@ on:
77
- main
88
- stage
99

10+
permissions:
11+
id-token: write
12+
contents: read
13+
1014
jobs:
1115
deploy:
1216
runs-on: ubuntu-latest
@@ -18,6 +22,7 @@ jobs:
1822
- name: Configure AWS Credentials
1923
uses: aws-actions/configure-aws-credentials@v4.1.0
2024
with:
25+
audience: sts.amazonaws.com
2126
aws-region: ap-southeast-1
2227
role-to-assume: arn:aws:iam::285637954943:role/techtix-github-action-oidc-role
2328
role-session-name: GithubActionSession

0 commit comments

Comments
 (0)