* Allow to pass inline session policy as a parameter
Update the action file
Regenerate the dist/ content
Add test
* Fix typos
* Fix stylistic error
* Move the inline policy logic to allow assumeRole to use it as well; Update and add tests
* Add an option for managed policies
* Regenerate the dist/ files
* Use multiline input for managed policies
* Update readme
* Update readme
---------
Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
The default audience for the GitHub OIDC uses sts.amazonaws.com, but there are
situations when it would be desirable to allow different audience names to be
used instead. Allow this to be specified as an argument to the action.
* Revert "chore: Update dist"
This reverts commit 9815921334.
* Revert "fix: Updated token retrieval to use new API (#270)"
This reverts commit 20ce4e5ba1.
* feat: Add the ability to use a web identity token file
* mark web identity token file as not required
* fix indentation
* better docs and added support for relative vs absolute paths
* bind sts context and adjust fs calls
* exclude tags if using web identity token file
* fix readme aand adjust tag removal logic
* undo re-ordering of lines
Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
* fix:making role session tagging optional
* test:improve test coverage
Add test to cover error thrown if access key exists and no secret key provided
* docs: Update README.md
Add details about skipping session tagging during role assumption
Co-authored-by: KeifferCulbreth <KeifferCulbreth@users.noreply.github.com>
Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
* feat: Refresh and validate credentials after setting env var creds
* Positive test case
Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>
* 1. Add 'role-session-name' variable to action.yml
2. Configure roleSessionName with role-session-name from action or default value (GitHubActions)
* Add description on README.md
* update README.md
* update dist/index.js
* add test code
* update context based on comments
* Sanitize github actor tag
* Add some tests
* Sanitize Github actions workflow name
* Change sanitization character to an asterisk
* Update readme about assuming a role
* Tidy up assume role readme entry more
* Align sanitize spelling to use -ize
* typo: environement -> environment
* first draft attempt at adding role assumption option
* refinements
* const not var
* clean up asserts
* set explicit sts endpoint and clarify required inputs error message
* streamline mocks
* add new inputs to Action definition
* ignore .idea directory
* add initial assume role test
* make tests fail usefully when not in GitHub Actions
* add logic to handle suppression of stack trace
* pull credentials exports out into function
* convert environment variable patching to use object for source and add needed members
* add test for STS call
* compartmentalization and use custom user agent in role assumption STS client
* change DO_NOT_SUPRESS_STACK_TRACE to SHOW_STACK_TRACE
* update role-to-assume input description
