{"id":19371416,"url":"https://github.com/michael-ortiz/terraform-aws-github-actions-oidc","last_synced_at":"2026-06-02T16:03:15.392Z","repository":{"id":213427747,"uuid":"734125254","full_name":"michael-ortiz/terraform-aws-github-actions-oidc","owner":"michael-ortiz","description":"A simple module that create all the necessary infrastructure to allow GitHub Actions to access your AWS account by using an OIDC role.","archived":false,"fork":false,"pushed_at":"2024-07-12T12:56:51.000Z","size":16,"stargazers_count":1,"open_issues_count":0,"forks_count":0,"subscribers_count":2,"default_branch":"main","last_synced_at":"2025-01-07T00:38:09.637Z","etag":null,"topics":["aws","github-actions","module","oidc","oidc-role","terraform"],"latest_commit_sha":null,"homepage":"","language":"HCL","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/michael-ortiz.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2023-12-20T23:45:09.000Z","updated_at":"2024-07-12T12:59:20.000Z","dependencies_parsed_at":"2024-02-05T00:21:49.330Z","dependency_job_id":"3f5650e7-b46f-40d7-95e5-67a93616c599","html_url":"https://github.com/michael-ortiz/terraform-aws-github-actions-oidc","commit_stats":null,"previous_names":["michael-ortiz/terraform-aws-github-actions-oidc"],"tags_count":4,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/michael-ortiz%2Fterraform-aws-github-actions-oidc","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/michael-ortiz%2Fterraform-aws-github-actions-oidc/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/michael-ortiz%2Fterraform-aws-github-actions-oidc/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/michael-ortiz%2Fterraform-aws-github-actions-oidc/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/michael-ortiz","download_url":"https://codeload.github.com/michael-ortiz/terraform-aws-github-actions-oidc/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":240495022,"owners_count":19810535,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["aws","github-actions","module","oidc","oidc-role","terraform"],"created_at":"2024-11-10T08:18:22.452Z","updated_at":"2026-06-02T16:03:15.351Z","avatar_url":"https://github.com/michael-ortiz.png","language":"HCL","funding_links":[],"categories":[],"sub_categories":[],"readme":"# terraform-aws-github-actions-oidc\n\nA simple module that creates a single OIDC Role to be assumed by GitHub Actions to have access to your AWS Account.\n\n## Usage:\n\n```\nmodule \"github-actions-oidc\" {\n  source  = \"michael-ortiz/github-actions-oidc/aws\"\n  version = \"~\u003e 1.0\"\n\n  create_oidc_provider = true\n\n  repositories            = [\"Organization/RepositoryName\"]\n  oidc_role_policies_arns = [\"YOUR_POLICY_ARN\"]\n}\n```\n\n## Resources\n\n| Name | Type |\n|------|------|\n| [aws_iam_openid_connect_provider.provider](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_openid_connect_provider) | resource |\n| [aws_iam_role.github_actions_role](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_role) | resource |\n| [aws_iam_role_policy_attachment.attachment](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_role_policy_attachment) | resource |\n| [aws_iam_policy_document.policy_document](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/iam_policy_document) | data source |\n\n## Inputs\n\n| Name | Description | Type | Default | Required |\n|------|-------------|------|---------|:--------:|\n| \u003ca name=\"create_oidc_provider\"\u003e\u003c/a\u003e [create\\_oidc\\_provider](#input\\_create\\_oidc\\_provider) | Should create or not the OIDC provider. | `bool` | `true` | no |\n| \u003ca name=\"input_github_thumbprints\"\u003e\u003c/a\u003e [github\\_thumbprint](#input\\_github\\_thumbprint) | GitHub OpenID TLS certificate thumbprints. | `list(string)` | `6938fd4d98bab03faadb97b34396831e3780aea1`, `1c58a3a8518e8759bf075b76b750d4f2df264fcd` | no |\n| \u003ca name=\"input_max_session_duration\"\u003e\u003c/a\u003e [max\\_session\\_duration](#input\\_max\\_session\\_duration) | Maximum session duration in seconds. | `number` | `3600` | no |\n| \u003ca name=\"oidc_role_policies_arns\"\u003e\u003c/a\u003e [oidc\\_role\\_policies\\_arns](#input\\_oidc\\_role\\_attach\\_policies) | Policy ARNs to be attached to the role. | `list(string)` | `[]` | no |\n| \u003ca name=\"input_repositories\"\u003e\u003c/a\u003e [repositories](#input\\_repositories) | List of GitHub organization/repository names authorized to assume the role. | `list(string)` | `[]` | no |\n| \u003ca name=\"input_tags\"\u003e\u003c/a\u003e [tags](#input\\_tags) | Tags to be applied to resources. | `map(string)` | `{}` | no |\n| \u003ca name=\"input_role_name\"\u003e\u003c/a\u003e [role\\_name](#input\\_role\\_name) | Name of the GitHub Actions OIDC role. | `string` | `github-actions-oidc-role` | no |\n\n\n## Outputs\n\n| Name | Description |\n|------|-------------|\n| \u003ca name=\"output_oidc_provider_arn\"\u003e\u003c/a\u003e [oidc\\_provider\\_arn](#output\\_oidc\\_provider\\_arn) | OIDC provider ARN |\n| \u003ca name=\"output_oidc_role\"\u003e\u003c/a\u003e [oidc\\_role\\_arn](#output\\_oidc\\_role) | GitHub Actions OIDC role ARN |\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmichael-ortiz%2Fterraform-aws-github-actions-oidc","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fmichael-ortiz%2Fterraform-aws-github-actions-oidc","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmichael-ortiz%2Fterraform-aws-github-actions-oidc/lists"}