github-action icon indicating copy to clipboard operation
github-action copied to clipboard
verified publisher icon serverless

Support role assumption from long term creds

Open shortjared opened this issue 7 years ago • 2 comments

Instead of encouraging privileged long term creds, we should encourage long term creds with permissions only to assume an IAM role. Even better if we can restrict them to only GitHub action runner IP ranges.

shortjared avatar Dec 22 '18 06:12 shortjared

I think this is supported. See https://github.com/serverless/github-action/issues/66#issuecomment-1316746468

nitrocode avatar Jan 23 '24 22:01 nitrocode

You can pass AWS_SECRET_KEY_ID and AWS_SECRET_ACCESS_KEY environment variables with --use-local-credentials

ryanlawson avatar May 18 '24 22:05 ryanlawson