ci-actions

Reusable GitHub Actions for lowRISC CI workflows.

Actions

`ca-token`

Obtains a short-lived token from the lowRISC CA, using GitHub's OIDC provider to authenticate the request.

Requires id-token: write in the calling job.

Inputs

Input	Description	Default
`audience`	Intended audience for the GitHub OIDC JWT	`https://ca.lowrisc.org`
`ca_api_endpoint`	lowRISC CA endpoint from which to obtain a token	`https://ca.lowrisc.org/api/github/repos/<repo>/token`
`ca_api_method`	HTTP method to use when requesting a token from the CA endpoint	`POST`

Outputs

Output	Description
`token`	Short-lived token

Example

jobs:
  build:
    permissions:
      id-token: write
    steps:
      - name: Get a lowRISC CA token
        id: get-token
        uses: lowrisc/ci-actions/ca-token@v1

      - name: Use token
        run: |
          some-tool login https://example.lowrisc.org/ ${{ steps.get-token.outputs.token }}

To override the CA endpoint or HTTP method:

      - uses: lowrisc/ci-actions/ca-token@v1
        with:
          ca_api_endpoint: "https://ca.lowrisc.org/api/nix-caches/public/token"
          ca_api_method: "GET"

License

Copyright lowRISC contributors. SPDX-License-Identifier: MIT

Name		Name	Last commit message	Last commit date
Latest commit History 2 Commits
ca-token		ca-token
LICENSE		LICENSE
README.md		README.md

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

ci-actions

Actions

`ca-token`

Inputs

Outputs

Example

License

About

Uh oh!

Releases

Packages

Uh oh!

Contributors

Uh oh!

Folders and files

Latest commit

History

Repository files navigation

ci-actions

Actions

ca-token

Inputs

Outputs

Example

License

About

Resources

License

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Contributors

Uh oh!

`ca-token`

Packages