From 890a88642dcc9e5e7f71bf799965f472b270cab0 Mon Sep 17 00:00:00 2001 From: Alexander Slododanyuk Date: Thu, 16 May 2024 09:38:44 -0400 Subject: [PATCH] Add permissions --- .github/workflows/dockerimage.yml | 10 +++++++--- 1 file changed, 7 insertions(+), 3 deletions(-) diff --git a/.github/workflows/dockerimage.yml b/.github/workflows/dockerimage.yml index d26dce65..968a9dd5 100644 --- a/.github/workflows/dockerimage.yml +++ b/.github/workflows/dockerimage.yml @@ -34,6 +34,10 @@ jobs: name: Build and Push image runs-on: ubuntu-latest + permissions: + contents: 'read' + id-token: 'write' + steps: - name: Set Dfuse Version run: | @@ -78,9 +82,9 @@ jobs: name: 'Authenticate to Google Cloud' uses: 'google-github-actions/auth@v1' with: - token_format: 'access_token' - workload_identity_provider: '${{ secrets.REG_WIF }}' - service_account: 'wif-gar@ultra-registry.iam.gserviceaccount.com' + token_format: 'access_token' + workload_identity_provider: '${{ secrets.REG_WIF }}' + service_account: 'wif-gar@ultra-registry.iam.gserviceaccount.com' - name: Setup gcloud cli uses: google-github-actions/setup-gcloud@v1