From 8d5d8ee9df2dc7896228c07e1b70399910256243 Mon Sep 17 00:00:00 2001
From: mmosarafO2 <mosraf@openobserve.ai>
Date: Mon, 6 Oct 2025 13:27:17 +0530
Subject: [PATCH 1/5] Replase access and secret key with assume role

---
 .github/workflows/deploy-docs-staging.yaml | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/.github/workflows/deploy-docs-staging.yaml b/.github/workflows/deploy-docs-staging.yaml
index 0142e235..35f7af02 100644
--- a/.github/workflows/deploy-docs-staging.yaml
+++ b/.github/workflows/deploy-docs-staging.yaml
@@ -36,8 +36,7 @@ jobs:
     - name: Configure AWS credentials
       uses: aws-actions/configure-aws-credentials@v2
       with:
-        aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
-        aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+        role-to-assume: arn:aws:iam::325553860333:role/GitHubActionsRole
         aws-region: us-east-2  # or your preferred region
 
     - name: Build MkDocs site

From 01d096f2b942f36ee34f8f9a7e8a906446c963bf Mon Sep 17 00:00:00 2001
From: mmosarafO2 <mosraf@openobserve.ai>
Date: Mon, 6 Oct 2025 13:29:16 +0530
Subject: [PATCH 2/5] Replase access and secret key with assume role

---
 .github/workflows/deploy-docs-staging.yaml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/deploy-docs-staging.yaml b/.github/workflows/deploy-docs-staging.yaml
index 35f7af02..11b7deb6 100644
--- a/.github/workflows/deploy-docs-staging.yaml
+++ b/.github/workflows/deploy-docs-staging.yaml
@@ -3,11 +3,11 @@ name: Deploy MkDocs Site to S3
 on:
   push:
     branches:
-      - dev   # Change this to your deployment branch
+      - update_workflow_assume_role   # Change this to your deployment branch
 
 jobs:
   deploy:
-    runs-on: ubuntu-latest
+    runs-on: org-openobserve-standard-4
 
     steps:
     - name: Checkout source code

From b38c8abbf00789090c061b3507f267d14d3aa690 Mon Sep 17 00:00:00 2001
From: mmosarafO2 <mosraf@openobserve.ai>
Date: Mon, 6 Oct 2025 13:35:01 +0530
Subject: [PATCH 3/5] Replace access and secret key with assume role

---
 .github/workflows/deploy-docs-staging.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/deploy-docs-staging.yaml b/.github/workflows/deploy-docs-staging.yaml
index 11b7deb6..c85f1f79 100644
--- a/.github/workflows/deploy-docs-staging.yaml
+++ b/.github/workflows/deploy-docs-staging.yaml
@@ -34,7 +34,7 @@ jobs:
         fi
 
     - name: Configure AWS credentials
-      uses: aws-actions/configure-aws-credentials@v2
+      uses: aws-actions/configure-aws-credentials@v4
       with:
         role-to-assume: arn:aws:iam::325553860333:role/GitHubActionsRole
         aws-region: us-east-2  # or your preferred region

From a091cc945a76009f643a8ab0e2f8fd99757c824a Mon Sep 17 00:00:00 2001
From: mmosarafO2 <mosraf@openobserve.ai>
Date: Mon, 6 Oct 2025 13:36:41 +0530
Subject: [PATCH 4/5] Replace access and secret key with assume role

---
 .github/workflows/deploy-docs-staging.yaml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.github/workflows/deploy-docs-staging.yaml b/.github/workflows/deploy-docs-staging.yaml
index c85f1f79..c12f8ecf 100644
--- a/.github/workflows/deploy-docs-staging.yaml
+++ b/.github/workflows/deploy-docs-staging.yaml
@@ -8,6 +8,9 @@ on:
 jobs:
   deploy:
     runs-on: org-openobserve-standard-4
+    permissions:
+      id-token: write
+      contents: read
 
     steps:
     - name: Checkout source code

From 7c438bcc4bcb2c08baac075ab6a171142a2c1cc7 Mon Sep 17 00:00:00 2001
From: mmosarafO2 <mosraf@openobserve.ai>
Date: Mon, 6 Oct 2025 13:48:54 +0530
Subject: [PATCH 5/5] Replace access and secret key with assume role

---
 .github/workflows/deploy-docs-staging.yaml | 2 +-
 .github/workflows/deploy-docs.yaml         | 8 +++++---
 2 files changed, 6 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/deploy-docs-staging.yaml b/.github/workflows/deploy-docs-staging.yaml
index c12f8ecf..27dc69c9 100644
--- a/.github/workflows/deploy-docs-staging.yaml
+++ b/.github/workflows/deploy-docs-staging.yaml
@@ -3,7 +3,7 @@ name: Deploy MkDocs Site to S3
 on:
   push:
     branches:
-      - update_workflow_assume_role   # Change this to your deployment branch
+      - dev   # Change this to your deployment branch
 
 jobs:
   deploy:
diff --git a/.github/workflows/deploy-docs.yaml b/.github/workflows/deploy-docs.yaml
index b113a089..c89421b0 100644
--- a/.github/workflows/deploy-docs.yaml
+++ b/.github/workflows/deploy-docs.yaml
@@ -8,6 +8,9 @@ on:
 jobs:
   deploy:
     runs-on: ubuntu-latest
+    permissions:
+      id-token: write
+      contents: read
 
     steps:
     - name: Checkout source code
@@ -34,10 +37,9 @@ jobs:
         fi
 
     - name: Configure AWS credentials
-      uses: aws-actions/configure-aws-credentials@v2
+      uses: aws-actions/configure-aws-credentials@v4
       with:
-        aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
-        aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+        role-to-assume: arn:aws:iam::325553860333:role/GitHubActionsRole
         aws-region: us-west-2  # or your preferred region
 
     - name: Build MkDocs site