Use CC_OIDC_ROLE secret for AWS role ARN
- Replace hardcoded AWS role ARN with CC_OIDC_ROLE secret - Improves security by not exposing AWS account details in workflow - Makes the workflow more portable and configurable
This commit is contained in:
Derek Slenk
parent
cb164b8255
commit
9619cf2bf9
1 changed files with 1 additions and 1 deletions
2
.github/workflows/nextjs.yml
vendored
2
.github/workflows/nextjs.yml
vendored
|
|
@ -56,7 +56,7 @@ jobs:
|
|||
- name: Configure AWS credentials
|
||||
uses: aws-actions/configure-aws-credentials@v4
|
||||
with:
|
||||
role-to-assume: arn:aws:iam::499518182498:role/cheatingchelsea-github-deployment
|
||||
role-to-assume: ${{ secrets.CC_OIDC_ROLE }}
|
||||
aws-region: us-east-2
|
||||
|
||||
- name: Deploy to S3
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue