constellation/.github/actions/login_gcp/action.yml

name: GCP login
description: "Login to GCP & configure gcloud CLI."
inputs:
  service_account:
    description: "GCP service account name. Format: <account-name>@<project-name>.iam.gserviceaccount.com"
    required: true
runs:
  using: "composite"
  steps:
    - name: Clean env to prevent warnings
      shell: bash
      run: |
        echo "CLOUDSDK_AUTH_CREDENTIAL_FILE_OVERRIDE=" >> "$GITHUB_ENV"
        echo "GOOGLE_APPLICATION_CREDENTIALS=" >> "$GITHUB_ENV"
        echo "GOOGLE_GHA_CREDS_PATH=" >> "$GITHUB_ENV"
        echo "CLOUDSDK_CORE_PROJECT=" >> "$GITHUB_ENV"
        echo "CLOUDSDK_PROJECT=" >> "$GITHUB_ENV"
        echo "GCLOUD_PROJECT=" >> "$GITHUB_ENV"
        echo "GCP_PROJECT=" >> "$GITHUB_ENV"
        echo "GOOGLE_CLOUD_PROJECT=" >> "$GITHUB_ENV"

    # As described at:
    # https://github.com/google-github-actions/setup-gcloud#service-account-key-json
    - name: Authorize GCP access
      uses: google-github-actions/auth@35b0e87d162680511bf346c299f71c9c5c379033 # v1.1.1
      with:
        workload_identity_provider: projects/796962942582/locations/global/workloadIdentityPools/constellation-ci-pool/providers/constellation-ci-provider
        service_account: ${{ inputs.service_account }}

    # Even if preinstalled in Github Actions runner image, this setup does some magic authentication required for gsutil.
    - name: Set up Cloud SDK
      uses: google-github-actions/setup-gcloud@e30db14379863a8c79331b04a9969f4c1e225e0b # v1.1.1
AB#2158 publish measurements (#268) * cleaned up actions and new measure action to generate, sign and upload measurements * improve constellation ip fetching to support multiple control nodes Signed-off-by: Fabian Kammel <fk@edgeless.systems> 2022-07-13 12:04:46 +00:00			`name: GCP login`
e2e test github action implementation. (#100) e2e test implementation with GitHub actions on GCP 2022-05-03 09:15:53 +00:00			`description: "Login to GCP & configure gcloud CLI."`
			`inputs:`
ci: switch gcp accounts to oidc (#983) 2023-01-16 17:15:17 +00:00			`service_account:`
			`description: "GCP service account name. Format: <account-name>@<project-name>.iam.gserviceaccount.com"`
e2e test github action implementation. (#100) e2e test implementation with GitHub actions on GCP 2022-05-03 09:15:53 +00:00			`required: true`
			`runs:`
CI/E2E: (Re)move redunant setup steps 2022-09-14 13:14:26 +00:00			`using: "composite"`
e2e test github action implementation. (#100) e2e test implementation with GitHub actions on GCP 2022-05-03 09:15:53 +00:00			`steps:`
ci: prevent google auth warnings when reauthenticating (#1697) Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com> 2023-04-27 08:55:57 +00:00			`- name: Clean env to prevent warnings`
			`shell: bash`
			`run: \|`
			`echo "CLOUDSDK_AUTH_CREDENTIAL_FILE_OVERRIDE=" >> "$GITHUB_ENV"`
			`echo "GOOGLE_APPLICATION_CREDENTIALS=" >> "$GITHUB_ENV"`
			`echo "GOOGLE_GHA_CREDS_PATH=" >> "$GITHUB_ENV"`
			`echo "CLOUDSDK_CORE_PROJECT=" >> "$GITHUB_ENV"`
			`echo "CLOUDSDK_PROJECT=" >> "$GITHUB_ENV"`
			`echo "GCLOUD_PROJECT=" >> "$GITHUB_ENV"`
			`echo "GCP_PROJECT=" >> "$GITHUB_ENV"`
			`echo "GOOGLE_CLOUD_PROJECT=" >> "$GITHUB_ENV"`

CI/E2E: (Re)move redunant setup steps 2022-09-14 13:14:26 +00:00			`# As described at:`
			`# https://github.com/google-github-actions/setup-gcloud#service-account-key-json`
			`- name: Authorize GCP access`
deps: update GitHub action dependencies (#1848) Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com> 2023-07-03 06:19:10 +00:00			`uses: google-github-actions/auth@35b0e87d162680511bf346c299f71c9c5c379033 # v1.1.1`
CI/E2E: (Re)move redunant setup steps 2022-09-14 13:14:26 +00:00			`with:`
ci: switch gcp accounts to oidc (#983) 2023-01-16 17:15:17 +00:00			`workload_identity_provider: projects/796962942582/locations/global/workloadIdentityPools/constellation-ci-pool/providers/constellation-ci-provider`
			`service_account: ${{ inputs.service_account }}`
Add gcloud setup back to GCP login action for ✨magic✨ authentication 2022-09-26 14:37:43 +00:00
			`# Even if preinstalled in Github Actions runner image, this setup does some magic authentication required for gsutil.`
			`- name: Set up Cloud SDK`
deps: update GitHub action dependencies (#1848) Co-authored-by: Paul Meyer <49727155+katexochen@users.noreply.github.com> 2023-07-03 06:19:10 +00:00			`uses: google-github-actions/setup-gcloud@e30db14379863a8c79331b04a9969f4c1e225e0b # v1.1.1`