diff --git a/.github/workflows/deploy.yml b/.github/workflows/deploy.yml index 4f20977..c09e44b 100644 --- a/.github/workflows/deploy.yml +++ b/.github/workflows/deploy.yml @@ -10,3 +10,5 @@ jobs: uses: ./.github/workflows/helpers-deploy-argo.yaml secrets: GH_PAT: ${{ secrets.GH_PAT }} + with: + aws-role-arn: ${{ github.ref == 'refs/heads/production' && secrets.PRODUCTION_ECR_ROLE_ARN || secrets.STAGING_ECR_ROLE_ARN }} diff --git a/.github/workflows/helpers-deploy-argo.yaml b/.github/workflows/helpers-deploy-argo.yaml index 26d3194..73375ea 100644 --- a/.github/workflows/helpers-deploy-argo.yaml +++ b/.github/workflows/helpers-deploy-argo.yaml @@ -5,6 +5,11 @@ name: helpers-deploy-argo on: workflow_call: + inputs: + aws-role-arn: + description: "The AWS role to assume for ECR" + required: true + type: string secrets: GH_PAT: description: "The GitHub Personal Access Token to use for checking out the helm-config repository" @@ -20,7 +25,7 @@ jobs: uses: ./.github/workflows/helpers-build-docker-image.yaml name: Build Docker image with: - aws-role-arn: ${{ github.ref == 'refs/heads/production' && vars.PRODUCTION_ECR_ROLE_ARN || vars.STAGING_ECR_ROLE_ARN }} + aws-role-arn: ${{ inputs.aws-role-arn }} docker_file_path: Dockerfile update-helm-values: