From a6586e1c014db51f68f73f6f8f85e168d1fbcff0 Mon Sep 17 00:00:00 2001 From: Kiyoshi Mizumaru Date: Wed, 18 Sep 2024 13:08:27 +0900 Subject: [PATCH] settings for workload identity federation (gcs) --- .github/workflows/clientLibraryConfig-github.json | 14 -------------- .github/workflows/python-package.yml | 6 +++--- 2 files changed, 3 insertions(+), 17 deletions(-) delete mode 100644 .github/workflows/clientLibraryConfig-github.json diff --git a/.github/workflows/clientLibraryConfig-github.json b/.github/workflows/clientLibraryConfig-github.json deleted file mode 100644 index a81f9005..00000000 --- a/.github/workflows/clientLibraryConfig-github.json +++ /dev/null @@ -1,14 +0,0 @@ -{ - "universe_domain": "googleapis.com", - "type": "external_account", - "audience": "//iam.googleapis.com/projects/1097862457753/locations/global/workloadIdentityPools/github-actions-pfio-ci-tasks/providers/github", - "subject_token_type": "urn:ietf:params:oauth:token-type:jwt", - "token_url": "https://sts.googleapis.com/v1/token", - "credential_source": { - "file": "${GOOGLE_GHA_CREDS_PATH}", - "format": { - "type": "json", - "subject_token_field_name": "access_token" - } - } -} \ No newline at end of file diff --git a/.github/workflows/python-package.yml b/.github/workflows/python-package.yml index 3c57ec29..4bf3e746 100644 --- a/.github/workflows/python-package.yml +++ b/.github/workflows/python-package.yml @@ -29,9 +29,9 @@ jobs: workload_identity_provider: 'projects/1097862457753/locations/global/workloadIdentityPools/github-actions-pfio-ci-tasks/providers/github' - name: 'Set up Google Cloud SDK' uses: 'google-github-actions/setup-gcloud@v2' - - name: 'Set up Application Default Credentials' - run: | - gcloud auth login --cred-file=.github/workflows/clientLibraryConfig-github.json + # - name: 'Set up Application Default Credentials' + # run: | + # gcloud auth login --cred-file=.github/workflows/clientLibraryConfig-github.json - name: 'Check Bucket accessibility' run: | gcloud storage buckets describe gs://pfn-pfio-test-bucket