Bri*_* C. 22 google-cloud-platform github-actions
在 github 操作中,我正在运行一个尝试使用 github 到 GCP 联合 ID 的操作:
# see https://github.com/marketplace/actions/authenticate-to-google-cloud#setup
- id: 'auth'
name: 'Authenticate to Google Cloud'
uses: 'google-github-actions/auth@v0'
with:
workload_identity_provider: 'projects/1234/locations/global/workloadIdentityPools/my-github-pool/providers/my-github-oidc-provider'
service_account: 'my-github-sa@projxyz.iam.gserviceaccount.com'
我越来越:
Run google-github-actions/auth@v0
Error: google-github-actions/auth failed with: retry function failed after 1 attempt:
gitHub Actions did not inject $ACTIONS_ID_TOKEN_REQUEST_TOKEN or
$ACTIONS_ID_TOKEN_REQUEST_URL into this job.
This most likely means the GitHub Actions workflow permissions are incorrect, or this job is being run from a fork.
For more information, please see https://docs.github.com/en/actions/security-guides/automatic-
token-authentication#permissions-for-the-github_token
我正在查看引用的文档,但没有看到任何有用的内容。
如何让 GH 注入这些值?
Bri*_* C. 33
我需要添加:
jobs:
my_job:
# Need to add these 3 lines to add "id-token" with the intended permissions.
permissions:
contents: 'read'
id-token: 'write'
这记录在此处: https: //github.com/google-github-actions/auth#usage
| 归档时间: |
|
| 查看次数: |
6833 次 |
| 最近记录: |