github: Use IAM Roles to push files on AWS S3 #45

alessio-perugini · 2024-12-12T11:43:31Z

For security reasons long lived credentials are not considered secure.
To overcome this issue we can configure Github Workflows to use AWS OpenID Connect instead:
For further details: https://docs.github.com/en/actions/deployment/security-hardening-your-deployments/about-security-hardening-with-openid-connect

I'm unable to this this as it seems it tries to authenticate with my user which seems to not have the perms to read from the container registry

For security reasons long lived credentials are not considered secure. To overcome this issue we can configure Github Workflows to use AWS OpenID Connect instead: For further details: https://docs.github.com/en/actions/deployment/security-hardening-your-deployments/about-security-hardening-with-openid-connect

alessio-perugini self-assigned this Dec 13, 2024

alessio-perugini marked this pull request as ready for review December 13, 2024 12:50

alessio-perugini requested a review from Xayton December 13, 2024 12:50

Xayton approved these changes Dec 13, 2024

View reviewed changes

alessio-perugini merged commit e21fd39 into master Dec 13, 2024
41 of 49 checks passed

alessio-perugini deleted the iam-roles branch December 13, 2024 14:58

Provide feedback