Skip to content

AWS OIDC: Remove App Server that uses the integration credentials #23036

AWS OIDC: Remove App Server that uses the integration credentials

AWS OIDC: Remove App Server that uses the integration credentials #23036

Workflow file for this run

# This workflow will create backport Pull Requests whenever a pull request with
# the appropriate labels is merged.
name: Backport
on:
pull_request:
types:
- closed
# Limit the permissions on the GitHub token for this workflow to the subset
# that is required. In this case, the backport workflow needs to be able to
# create branches and create/update PRs, so it needs write access to
# "pull-requests" and "contents" permissions.
permissions:
pull-requests: write
contents: write
jobs:
backport-pull-request:
name: Backport Pull Request
if: github.event.pull_request.merged == true
runs-on: ubuntu-latest
steps:
- name: Generate GitHub Token
id: generate_token
uses: actions/create-github-app-token@v1
with:
app-id: ${{ secrets.REVIEWERS_APP_ID }}
private-key: ${{ secrets.REVIEWERS_PRIVATE_KEY }}
- name: Checkout repository
uses: actions/checkout@v4
with:
ref: master
# Checkout main branch of shared-workflow repository.
- name: Checkout shared-workflow
uses: actions/checkout@v4
with:
repository: gravitational/shared-workflows
path: .github/shared-workflows
ref: main
- name: Installing Go
uses: actions/setup-go@v5
with:
go-version: 'stable'
# Run "check" subcommand on bot.
- name: Backport PR
run: ( cd .github/shared-workflows/bot && go build ) && .github/shared-workflows/bot/bot -workflow=backport -token="${{ steps.generate_token.outputs.token }}" -reviewers="${{ secrets.reviewers }}"