github · GitHub Actions Docs
Actions Configuring OpenID Connect in Amazon Web Services - GitHub Docs
Configures a secure connection between GitHub Actions and Amazon Web Services using OpenID Connect to eliminate the need for long-lived AWS credentials.
Derived skill
Files assembled from official documentation
Viewing SKILL.md
Actions Configuring OpenID Connect in Amazon Web Services - GitHub Docs
Configures a secure connection between GitHub Actions and Amazon Web Services using OpenID Connect to eliminate the need for long-lived AWS credentials.
When To Use
Use when you need to set up passwordless authentication for GitHub Actions workflows to access AWS resources securely.
Reference Files
| File | Contains | Use For |
|---|---|---|
SKILL.md | Entry point: scope, routing table, and workflow. | Start here. |
docs/actions-how-tos-secure-your-work-configuring-openid-connect-in-amazon-we-workflow-guide.md | A guide detailing the steps to configure OpenID Connect between GitHub Actions and Amazon Web Services to secure deployments. | Questions about a guide detailing the steps to configure OpenID Connect between GitHub Actions and Amazon Web Services to secure depl... |
examples/actions-how-tos-secure-your-work-configuring-openid-connect-in-amazon-we.text | A JSON trust policy configuration for an AWS IAM role that allows GitHub Actions to authenticate via OpenID Connect. | Exact payloads, commands, or snippets shown in A JSON trust policy configuration for an AWS IAM role that allows GitHub Actions to authenticate via OpenID Connect. |
examples/actions-how-tos-secure-your-work-configuring-openid-connect-in-amazon-we-2.text | A JSON trust policy configuration for an AWS IAM role to allow GitHub Actions to authenticate via OpenID Connect. | Exact payloads, commands, or snippets shown in A JSON trust policy configuration for an AWS IAM role to allow GitHub Actions to authenticate via OpenID Connect. |
examples/actions-how-tos-secure-your-work-configuring-openid-connect-in-amazon-we-3.text | An AWS IAM trust policy JSON configuration that allows GitHub Actions to assume a role using OpenID Connect. | Exact payloads, commands, or snippets shown in An AWS IAM trust policy JSON configuration that allows GitHub Actions to assume a role using OpenID Connect. |
examples/actions-how-tos-secure-your-work-configuring-openid-connect-in-amazon-we-4.text | A GitHub Actions workflow YAML configuration that uses OpenID Connect to authenticate with AWS and deploy a static website to an Amazon S3 bucket. | Exact payloads, commands, or snippets shown in A GitHub Actions workflow YAML configuration that uses OpenID Connect to authenticate with AWS and deploy a static we... |
What This Skill Covers
-
- GitHub Actions / - How-tos / - Secure your work / - Security harden deployments / - OIDC in AWS
- Main sections:
In this article,Overview,Prerequisites,Adding the identity provider to AWS,Configuring the role and trust policy.
Workflow
- Open the most relevant file under
docs/for the exact documented workflow and wording. - Open
schemas/files for exact structured contracts. - Open
examples/files for concrete requests, commands, snippets, and manifests. - Do not add behavior or configuration that is not present in the attached source files.
Canonical source: https://docs.github.com/en/actions/how-tos/secure-your-work/security-harden-deployments/oidc-in-aws