25960ab095
* first draft attempt at adding role assumption option * refinements * const not var * clean up asserts * set explicit sts endpoint and clarify required inputs error message * streamline mocks * add new inputs to Action definition * ignore .idea directory * add initial assume role test * make tests fail usefully when not in GitHub Actions * add logic to handle suppression of stack trace * pull credentials exports out into function * convert environment variable patching to use object for source and add needed members * add test for STS call * compartmentalization and use custom user agent in role assumption STS client * change DO_NOT_SUPRESS_STACK_TRACE to SHOW_STACK_TRACE * update role-to-assume input description
33 lines
1.2 KiB
YAML
33 lines
1.2 KiB
YAML
name: '"Configure AWS Credentials" Action For GitHub Actions'
|
|
description: 'Configure AWS credential and region environment variables for use with the AWS CLI and AWS SDKs'
|
|
branding:
|
|
icon: 'cloud'
|
|
color: 'orange'
|
|
inputs:
|
|
aws-access-key-id:
|
|
description: 'AWS Access Key ID'
|
|
required: true
|
|
aws-secret-access-key:
|
|
description: 'AWS Secret Access Key'
|
|
required: true
|
|
aws-session-token:
|
|
description: 'AWS Session Token'
|
|
required: false
|
|
aws-region:
|
|
description: 'AWS Region, e.g. us-east-2'
|
|
required: true
|
|
mask-aws-account-id:
|
|
description: "Whether to set the AWS account ID for these credentials as a secret value, so that it is masked in logs. Valid values are 'true' and 'false'. Defaults to true"
|
|
required: false
|
|
role-to-assume:
|
|
description: "Use the provided credentials to assume a Role and output the assumed credentials for that Role rather than the provided credentials"
|
|
required: false
|
|
role-duration-seconds:
|
|
description: "Role duration in seconds (default: 6 hours)"
|
|
required: false
|
|
outputs:
|
|
aws-account-id:
|
|
description: 'The AWS account ID for the provided credentials'
|
|
runs:
|
|
using: 'node12'
|
|
main: 'dist/index.js'
|