aws-actions/configure-aws-credentials: Pull-mirror of github.com/aws-actions/configure-aws-credentials

mirror of synced 2026-06-05 19:08:19 +00:00

Pull-mirror of github.com/aws-actions/configure-aws-credentials

TypeScript 100%

Find a file

Matt Bullock 25960ab095 feat: add support for assuming a role (#17 ) * first draft attempt at adding role assumption option * refinements * const not var * clean up asserts * set explicit sts endpoint and clarify required inputs error message * streamline mocks * add new inputs to Action definition * ignore .idea directory * add initial assume role test * make tests fail usefully when not in GitHub Actions * add logic to handle suppression of stack trace * pull credentials exports out into function * convert environment variable patching to use object for source and add needed members * add test for STS call * compartmentalization and use custom user agent in role assumption STS client * change DO_NOT_SUPRESS_STACK_TRACE to SHOW_STACK_TRACE * update role-to-assume input description		2020-01-22 11:04:03 -08:00
.dependabot	Add dependabot config	2019-11-01 21:09:42 -07:00
.github	chore: Automated packaging commit uses a conventional commit message	2020-01-01 15:17:20 -08:00
dist	chore: Update dist	2020-01-06 20:38:44 +00:00
.eslintrc.json	Add initial implementation	2019-11-01 10:32:13 -07:00
.gitignore	feat: add support for assuming a role (#17 )	2020-01-22 11:04:03 -08:00
action.yml	feat: add support for assuming a role (#17 )	2020-01-22 11:04:03 -08:00
CODE_OF_CONDUCT.md	Creating initial file from template	2019-10-30 15:33:01 -07:00
CONTRIBUTING.md	Update URLs, upgrade deps	2019-11-07 21:15:05 -08:00
index.js	feat: add support for assuming a role (#17 )	2020-01-22 11:04:03 -08:00
index.test.js	feat: add support for assuming a role (#17 )	2020-01-22 11:04:03 -08:00
LICENSE	Creating initial file from template	2019-10-30 15:32:59 -07:00
package-lock.json	chore: Bump aws-sdk from 2.597.0 to 2.598.0	2020-01-06 12:37:55 -08:00
package.json	chore: Bump aws-sdk from 2.597.0 to 2.598.0	2020-01-06 12:37:55 -08:00
README.md	fixes link to GitHub Actions secrets	2019-12-27 16:53:09 -08:00
THIRD-PARTY	Add third-party attributions	2019-11-01 22:09:26 -07:00

README.md

"Configure AWS Credentials" Action For GitHub Actions

Configure AWS credential and region environment variables for use in other GitHub Actions. The environment variables will be detected by both the AWS SDKs and the AWS CLI to determine the credentials and region to use for AWS API calls.

Usage

Add the following step to your workflow:

    - name: Configure AWS Credentials
      uses: aws-actions/configure-aws-credentials@v1
      with:
        aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
        aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
        aws-region: us-east-2

See action.yml for the full documentation for this action's inputs and outputs.

Credentials

We recommend following Amazon IAM best practices for the AWS credentials used in GitHub Actions workflows, including:

Do not store credentials in your repository's code. You may use GitHub Actions secrets to store credentials and redact credentials from GitHub Actions workflow logs.
Create an individual IAM user with an access key for use in GitHub Actions workflows, preferably one per repository. Do not use the AWS account root user access key.
Grant least privilege to the credentials used in GitHub Actions workflows. Grant only the permissions required to perform the actions in your GitHub Actions workflows.
Rotate the credentials used in GitHub Actions workflows regularly.
Monitor the activity of the credentials used in GitHub Actions workflows.

License Summary

This code is made available under the MIT license.