{"id":37823302,"url":"https://github.com/armakuni/terraform-aws-github-actions-oidc-role","last_synced_at":"2026-01-16T15:43:35.721Z","repository":{"id":194898157,"uuid":"692134194","full_name":"armakuni/terraform-aws-github-actions-oidc-role","owner":"armakuni","description":"This module creates the required roles in AWS to authenticate GitHub modules with AWS via OIDC.","archived":false,"fork":false,"pushed_at":"2025-09-04T12:13:49.000Z","size":58,"stargazers_count":1,"open_issues_count":1,"forks_count":0,"subscribers_count":6,"default_branch":"main","last_synced_at":"2025-09-08T14:58:12.781Z","etag":null,"topics":["aws","github-actions","infrastructure","oidc","terraform"],"latest_commit_sha":null,"homepage":"https://registry.terraform.io/modules/armakuni/github-actions-oidc-role/aws/latest","language":"HCL","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/armakuni.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2023-09-15T16:26:51.000Z","updated_at":"2025-02-26T08:21:48.000Z","dependencies_parsed_at":"2023-09-15T17:23:35.419Z","dependency_job_id":"49b53aba-9c2a-4c52-95c4-ddf86c0ebee3","html_url":"https://github.com/armakuni/terraform-aws-github-actions-oidc-role","commit_stats":null,"previous_names":["armakuni/terraform-aws-github-actions-oidc","armakuni/terraform-aws-github-actions-oidc-role"],"tags_count":6,"template":false,"template_full_name":null,"purl":"pkg:github/armakuni/terraform-aws-github-actions-oidc-role","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/armakuni%2Fterraform-aws-github-actions-oidc-role","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/armakuni%2Fterraform-aws-github-actions-oidc-role/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/armakuni%2Fterraform-aws-github-actions-oidc-role/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/armakuni%2Fterraform-aws-github-actions-oidc-role/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/armakuni","download_url":"https://codeload.github.com/armakuni/terraform-aws-github-actions-oidc-role/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/armakuni%2Fterraform-aws-github-actions-oidc-role/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":28479409,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-01-16T11:59:17.896Z","status":"ssl_error","status_checked_at":"2026-01-16T11:55:55.838Z","response_time":107,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["aws","github-actions","infrastructure","oidc","terraform"],"created_at":"2026-01-16T15:43:35.630Z","updated_at":"2026-01-16T15:43:35.705Z","avatar_url":"https://github.com/armakuni.png","language":"HCL","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Github Actions AWS OIDC Terraform Module\n\nThis module creates the required roles in AWS to authenticate GitHub modules with AWS via OIDC.\n\nYou provide you GitHub organisation/username and repository name as variables to the module.\nIt will create a role name `\u003crepository name\u003e-github-actions` which you can use to authenticate with AWS in your GitHub actions like so:\n\n```yaml\n- name: Configure AWS credentials\n  uses: aws-actions/configure-aws-credentials@v3\n  with:\n    role-to-assume: arn:aws:iam::\u003caws account id\u003e:role/\u003crepository name\u003e-github-actions\n    role-session-name: aws-login\n    aws-region: eu-west-3\n```\n\n\u003c!-- BEGIN_TF_DOCS --\u003e\n## Requirements\n\nNo requirements.\n\n## Providers\n\n| Name | Version |\n|------|---------|\n| \u003ca name=\"provider_aws\"\u003e\u003c/a\u003e [aws](#provider\\_aws) | n/a |\n\n## Modules\n\nNo modules.\n\n## Resources\n\n| Name | Type |\n|------|------|\n| [aws_iam_policy.custom_policy](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_policy) | resource |\n| [aws_iam_role.this](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_role) | resource |\n| [aws_iam_role_policy_attachment.custom_policy_attachment](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_role_policy_attachment) | resource |\n| [aws_iam_role_policy_attachment.policy](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_role_policy_attachment) | resource |\n| [aws_iam_openid_connect_provider.oicd_provider](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/iam_openid_connect_provider) | data source |\n\n## Inputs\n\n| Name | Description | Type | Default | Required |\n|------|-------------|------|---------|:--------:|\n| \u003ca name=\"input_custom_policy\"\u003e\u003c/a\u003e [custom\\_policy](#input\\_custom\\_policy) | A custom policy to attach to your role if you want more fine grained permissions | \u003cpre\u003eobject(\u003cbr\u003e    {\u003cbr\u003e      Version   = string\u003cbr\u003e      Statement = list(any)\u003cbr\u003e    }\u003cbr\u003e  )\u003c/pre\u003e | `null` | no |\n| \u003ca name=\"input_git_ref\"\u003e\u003c/a\u003e [git\\_ref](#input\\_git\\_ref) | The git refs for branches which can assume this role | `string` | `\"refs/heads/main\"` | no |\n| \u003ca name=\"input_github_owner\"\u003e\u003c/a\u003e [github\\_owner](#input\\_github\\_owner) | The Github user or organisation name that owns repository to add the role for | `string` | n/a | yes |\n| \u003ca name=\"input_github_repository\"\u003e\u003c/a\u003e [github\\_repository](#input\\_github\\_repository) | The name of the Github repository to add the role for | `string` | n/a | yes |\n| \u003ca name=\"input_oicd_provider_arn\"\u003e\u003c/a\u003e [oicd\\_provider\\_arn](#input\\_oicd\\_provider\\_arn) | The ARN of the Github Actions OIDC provider (if not provided, the module will use a data provider to find it) | `string` | `null` | no |\n| \u003ca name=\"input_policy_arn_list\"\u003e\u003c/a\u003e [policy\\_arn\\_list](#input\\_policy\\_arn\\_list) | A list of policy ARNs to attach to the role (there are the AWS permissions that your Github Actions pipeline will have) | `list(string)` | `[]` | no |\n\n## Outputs\n\n| Name | Description |\n|------|-------------|\n| \u003ca name=\"output_role\"\u003e\u003c/a\u003e [role](#output\\_role) | The attributes from the aws\\_iam\\_role resource |\n\u003c!-- END_TF_DOCS --\u003e\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Farmakuni%2Fterraform-aws-github-actions-oidc-role","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Farmakuni%2Fterraform-aws-github-actions-oidc-role","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Farmakuni%2Fterraform-aws-github-actions-oidc-role/lists"}