From 2546e36deff075d1fc96b5b354912e6827d7e41b Mon Sep 17 00:00:00 2001 From: Phaneendra Chitta Date: Tue, 8 Apr 2025 18:10:37 +0530 Subject: [PATCH 01/14] adds workflow for WIF --- .github/workflows/wif.yaml | 28 ++++++++++++++++++++++++++++ 1 file changed, 28 insertions(+) create mode 100644 .github/workflows/wif.yaml diff --git a/.github/workflows/wif.yaml b/.github/workflows/wif.yaml new file mode 100644 index 0000000..e44699d --- /dev/null +++ b/.github/workflows/wif.yaml @@ -0,0 +1,28 @@ +name: List services in GCP +on: + pull_request: + branches: + - main + + workflow_dispatch: + +permissions: + id-token: write + +jobs: + Get_OIDC_ID_token: + runs-on: ubuntu-latest + steps: + - id: 'auth' + name: 'Authenticate to GCP' + uses: 'google-github-actions/auth@f1e2d3c4b5a6f7e8d9c0b1a2c3d4e5f6a7b8c9d0' + with: + create_credentials_file: 'true' + workload_identity_provider: 'https://iam.googleapis.com/projects/282716805542/locations/global/workloadIdentityPools/github/providers/github' + service_account: 'github@user-kfktizoyrmin.iam.gserviceaccount.com' + + - id: 'gcloud' + name: 'gcloud' + run: |- + gcloud auth login --brief --cred-file="${{ steps.auth.outputs.credentials_file_path }}" + gcloud services list \ No newline at end of file From 764a95088fcc436e18859989be59a4a9760b9c0c Mon Sep 17 00:00:00 2001 From: phani570 <113249246+phani570@users.noreply.github.com> Date: Tue, 8 Apr 2025 18:15:50 +0530 Subject: [PATCH 02/14] Rename wif.yaml to main.yaml --- .github/workflows/{wif.yaml => main.yaml} | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) rename .github/workflows/{wif.yaml => main.yaml} (96%) diff --git a/.github/workflows/wif.yaml b/.github/workflows/main.yaml similarity index 96% rename from .github/workflows/wif.yaml rename to .github/workflows/main.yaml index e44699d..10467ac 100644 --- a/.github/workflows/wif.yaml +++ b/.github/workflows/main.yaml @@ -25,4 +25,4 @@ jobs: name: 'gcloud' run: |- gcloud auth login --brief --cred-file="${{ steps.auth.outputs.credentials_file_path }}" - gcloud services list \ No newline at end of file + gcloud services list From af7de91eafa058806100d0c16ee6a861e0502dbb Mon Sep 17 00:00:00 2001 From: phani570 <113249246+phani570@users.noreply.github.com> Date: Tue, 8 Apr 2025 18:19:26 +0530 Subject: [PATCH 03/14] Update main.yaml adds feature/* --- .github/workflows/main.yaml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/main.yaml b/.github/workflows/main.yaml index 10467ac..e40e7dc 100644 --- a/.github/workflows/main.yaml +++ b/.github/workflows/main.yaml @@ -3,6 +3,7 @@ on: pull_request: branches: - main + - feature/* workflow_dispatch: From 7e7e355b9312679e848fb66e1bbe57851f00b9b9 Mon Sep 17 00:00:00 2001 From: KushalMalla <130637098+KushalMalla@users.noreply.github.com> Date: Wed, 23 Apr 2025 16:56:35 +0530 Subject: [PATCH 04/14] Updated new gcloud auth action --- .github/workflows/main.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/main.yaml b/.github/workflows/main.yaml index e40e7dc..5f2ac5c 100644 --- a/.github/workflows/main.yaml +++ b/.github/workflows/main.yaml @@ -16,7 +16,7 @@ jobs: steps: - id: 'auth' name: 'Authenticate to GCP' - uses: 'google-github-actions/auth@f1e2d3c4b5a6f7e8d9c0b1a2c3d4e5f6a7b8c9d0' + uses: 'google-github-actions/auth@v2.0.1' with: create_credentials_file: 'true' workload_identity_provider: 'https://iam.googleapis.com/projects/282716805542/locations/global/workloadIdentityPools/github/providers/github' From b78c4325ae1ce7f2646dba593d162f32741491e9 Mon Sep 17 00:00:00 2001 From: KushalMalla <130637098+KushalMalla@users.noreply.github.com> Date: Wed, 23 Apr 2025 18:01:34 +0530 Subject: [PATCH 05/14] Update WIF pool --- .github/workflows/main.yaml | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/.github/workflows/main.yaml b/.github/workflows/main.yaml index 5f2ac5c..047c929 100644 --- a/.github/workflows/main.yaml +++ b/.github/workflows/main.yaml @@ -19,8 +19,7 @@ jobs: uses: 'google-github-actions/auth@v2.0.1' with: create_credentials_file: 'true' - workload_identity_provider: 'https://iam.googleapis.com/projects/282716805542/locations/global/workloadIdentityPools/github/providers/github' - service_account: 'github@user-kfktizoyrmin.iam.gserviceaccount.com' + workload_identity_provider: 'https://iam.googleapis.com/projects/21919101738/locations/global/workloadIdentityPools/github/providers/github' - id: 'gcloud' name: 'gcloud' From f51df924bc83f09bb58f465208d43248c39b1a64 Mon Sep 17 00:00:00 2001 From: KushalMalla <130637098+KushalMalla@users.noreply.github.com> Date: Wed, 23 Apr 2025 18:03:39 +0530 Subject: [PATCH 06/14] Updated project ID --- .github/workflows/main.yaml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/main.yaml b/.github/workflows/main.yaml index 047c929..fcbf504 100644 --- a/.github/workflows/main.yaml +++ b/.github/workflows/main.yaml @@ -19,6 +19,7 @@ jobs: uses: 'google-github-actions/auth@v2.0.1' with: create_credentials_file: 'true' + project-id: 'user-mmqwxblaebws' workload_identity_provider: 'https://iam.googleapis.com/projects/21919101738/locations/global/workloadIdentityPools/github/providers/github' - id: 'gcloud' From 388dcb91b54e7a1f45bd2dc950bafb005a31f8cb Mon Sep 17 00:00:00 2001 From: KushalMalla <130637098+KushalMalla@users.noreply.github.com> Date: Wed, 23 Apr 2025 18:04:38 +0530 Subject: [PATCH 07/14] Updated project ID --- .github/workflows/main.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/main.yaml b/.github/workflows/main.yaml index fcbf504..b01e1a8 100644 --- a/.github/workflows/main.yaml +++ b/.github/workflows/main.yaml @@ -19,7 +19,7 @@ jobs: uses: 'google-github-actions/auth@v2.0.1' with: create_credentials_file: 'true' - project-id: 'user-mmqwxblaebws' + project_id: 'user-mmqwxblaebws' workload_identity_provider: 'https://iam.googleapis.com/projects/21919101738/locations/global/workloadIdentityPools/github/providers/github' - id: 'gcloud' From e3a4bc32163ad8305eed104647fd90be23491288 Mon Sep 17 00:00:00 2001 From: KushalMalla <130637098+KushalMalla@users.noreply.github.com> Date: Wed, 23 Apr 2025 18:05:41 +0530 Subject: [PATCH 08/14] Update WIF --- .github/workflows/main.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/main.yaml b/.github/workflows/main.yaml index b01e1a8..984aa96 100644 --- a/.github/workflows/main.yaml +++ b/.github/workflows/main.yaml @@ -20,7 +20,7 @@ jobs: with: create_credentials_file: 'true' project_id: 'user-mmqwxblaebws' - workload_identity_provider: 'https://iam.googleapis.com/projects/21919101738/locations/global/workloadIdentityPools/github/providers/github' + workload_identity_provider: 'projects/21919101738/locations/global/workloadIdentityPools/github/providers/github' - id: 'gcloud' name: 'gcloud' From 75014762a3c2d352c9a78662d68047f6337b82e6 Mon Sep 17 00:00:00 2001 From: KushalMalla <130637098+KushalMalla@users.noreply.github.com> Date: Wed, 23 Apr 2025 19:18:01 +0530 Subject: [PATCH 09/14] Updated gcloud cmds --- .github/workflows/main.yaml | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/main.yaml b/.github/workflows/main.yaml index 984aa96..957910a 100644 --- a/.github/workflows/main.yaml +++ b/.github/workflows/main.yaml @@ -19,11 +19,11 @@ jobs: uses: 'google-github-actions/auth@v2.0.1' with: create_credentials_file: 'true' - project_id: 'user-mmqwxblaebws' - workload_identity_provider: 'projects/21919101738/locations/global/workloadIdentityPools/github/providers/github' + project_id: 'user-ongqgawtielk' + workload_identity_provider: 'projects/991597667125/locations/global/workloadIdentityPools/github/providers/github' - id: 'gcloud' name: 'gcloud' run: |- - gcloud auth login --brief --cred-file="${{ steps.auth.outputs.credentials_file_path }}" - gcloud services list + gcloud services enable compute.googleapis.com + gcloud compute instances create githubvm --zone=us-central1-a --project=991597667125 From b14eff09a6394183928fa0da1934aadea833b8f1 Mon Sep 17 00:00:00 2001 From: KushalMalla <130637098+KushalMalla@users.noreply.github.com> Date: Wed, 23 Apr 2025 19:20:29 +0530 Subject: [PATCH 10/14] Updated project ID --- .github/workflows/main.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/main.yaml b/.github/workflows/main.yaml index 957910a..8d4b34b 100644 --- a/.github/workflows/main.yaml +++ b/.github/workflows/main.yaml @@ -26,4 +26,4 @@ jobs: name: 'gcloud' run: |- gcloud services enable compute.googleapis.com - gcloud compute instances create githubvm --zone=us-central1-a --project=991597667125 + gcloud compute instances create githubvm --zone=us-central1-a --project=user-ongqgawtielk From a22283b3726843b72c795c17b2bf2f1d1d87c8f5 Mon Sep 17 00:00:00 2001 From: KushalMalla <130637098+KushalMalla@users.noreply.github.com> Date: Wed, 23 Apr 2025 19:33:37 +0530 Subject: [PATCH 11/14] Update events --- .github/workflows/main.yaml | 1 - 1 file changed, 1 deletion(-) diff --git a/.github/workflows/main.yaml b/.github/workflows/main.yaml index 8d4b34b..b15df80 100644 --- a/.github/workflows/main.yaml +++ b/.github/workflows/main.yaml @@ -4,7 +4,6 @@ on: branches: - main - feature/* - workflow_dispatch: permissions: From bcce918e26b4bc4c5f5dc009579c2e5a08ac6d8f Mon Sep 17 00:00:00 2001 From: KushalMalla <130637098+KushalMalla@users.noreply.github.com> Date: Wed, 23 Apr 2025 19:42:11 +0530 Subject: [PATCH 12/14] Updated gcloud cmds --- .github/workflows/main.yaml | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/.github/workflows/main.yaml b/.github/workflows/main.yaml index b15df80..6bd5665 100644 --- a/.github/workflows/main.yaml +++ b/.github/workflows/main.yaml @@ -1,10 +1,10 @@ name: List services in GCP on: + workflow_dispatch: pull_request: branches: - main - feature/* - workflow_dispatch: permissions: id-token: write @@ -25,4 +25,5 @@ jobs: name: 'gcloud' run: |- gcloud services enable compute.googleapis.com - gcloud compute instances create githubvm --zone=us-central1-a --project=user-ongqgawtielk + gcloud compute instances list + # gcloud compute instances create githubvm --zone=us-central1-a --project=user-ongqgawtielk From 8cc20a8713b35844814335472d2351e5609f334c Mon Sep 17 00:00:00 2001 From: KushalMalla <130637098+KushalMalla@users.noreply.github.com> Date: Wed, 23 Apr 2025 19:46:19 +0530 Subject: [PATCH 13/14] Rename main.yaml to gcp.yaml --- .github/workflows/{main.yaml => gcp.yaml} | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename .github/workflows/{main.yaml => gcp.yaml} (100%) diff --git a/.github/workflows/main.yaml b/.github/workflows/gcp.yaml similarity index 100% rename from .github/workflows/main.yaml rename to .github/workflows/gcp.yaml From 643c8b8b1056c088eaff95b4f1f8034e831f9e6b Mon Sep 17 00:00:00 2001 From: KushalMalla <130637098+KushalMalla@users.noreply.github.com> Date: Wed, 23 Apr 2025 19:48:35 +0530 Subject: [PATCH 14/14] Update and rename gcp.yaml to wif.yaml --- .github/workflows/{gcp.yaml => wif.yaml} | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) rename .github/workflows/{gcp.yaml => wif.yaml} (96%) diff --git a/.github/workflows/gcp.yaml b/.github/workflows/wif.yaml similarity index 96% rename from .github/workflows/gcp.yaml rename to .github/workflows/wif.yaml index 6bd5665..97e4e1a 100644 --- a/.github/workflows/gcp.yaml +++ b/.github/workflows/wif.yaml @@ -1,4 +1,4 @@ -name: List services in GCP +name: GCP WIF on: workflow_dispatch: pull_request: