github: Use IAM Roles to push files on AWS S3 #106

alessio-perugini · 2024-12-12T09:40:08Z

For security reasons long lived credentials are not considered secure.
To overcome this issue we can configure Github Workflows to use AWS OpenID Connect instead:
For further details: https://docs.github.com/en/actions/deployment/security-hardening-your-deployments/about-security-hardening-with-openid-connect

For security reasons long lived credentials are not considered secure. To overcome this issue we can configure Github Workflows to use AWS OpenID Connect instead: For further details: https://docs.github.com/en/actions/deployment/security-hardening-your-deployments/about-security-hardening-with-openid-connect

per1234 · 2025-08-07T01:33:22Z

@alessio-perugini please provide an explanation of why you closed this. As far as I know, this change is mandatory.

alessio-perugini self-assigned this Dec 12, 2024

alessio-perugini had a problem deploying to production December 12, 2024 14:17 — with GitHub Actions Failure

alessio-perugini had a problem deploying to production December 12, 2024 14:23 — with GitHub Actions Failure

alessio-perugini added topic: infrastructure Related to project infrastructure type: enhancement Proposed improvement labels Dec 12, 2024

alessio-perugini had a problem deploying to production December 12, 2024 17:10 — with GitHub Actions Failure

alessio-perugini had a problem deploying to production December 13, 2024 08:25 — with GitHub Actions Failure

alessio-perugini had a problem deploying to production December 17, 2024 11:32 — with GitHub Actions Failure

update workflow to match the workflow-template

cfef6a1

alessio-perugini had a problem deploying to production December 17, 2024 11:39 — with GitHub Actions Failure

update DistTasks.yml to match workflow-template

c481201

alessio-perugini closed this Aug 6, 2025

alessio-perugini deleted the iam-roles branch August 6, 2025 19:51

Provide feedback