[英]using Github actions with codebuild
我在 CodeBuild 中使用 GitHub Actions,但每當我運行工作流時,我都會收到錯誤消息: STARTING CODEBUILD
[24]( https://github.com/jude:[Error|563x470](upload.//3wIYvCwrkHB6AnfkeJqtWd1cSWI.png) 0143143/CodeBuild/runs/3692850080?check_suite_focus=true#step:4:24)錯誤:安全請求中包含的令牌無效
名稱:'GitHub Actions For CodeBuild' on: pull_request: branches: - test env: tf_version: 'latest' tg_version: 'latest' jobs: deploy: name: 'Build and Deploy' runs-on: ubuntu-latest
steps:
- name: 'checkout'
uses: actions/checkout@v2
- name: configure AWS credentials
uses: aws-actions/configure-aws-credentials@v1
with:
aws-access-key-id: ${{secrets.AWS_ACCESS_KEY_ID}}
aws-secret-access-key: ${{secrets.AWS_SECRET_ACCESS_KEY }}
aws-region: us-east-1
role-to-assume: ${{ secrets.AWS_ROLE_TO_ASSUME }}
role-duration-seconds: 3600
- name: Run CodeBuild
uses: aws-actions/aws-codebuild-run-build@v1
with:
project-name: CodeBuild
buildspec-override: stage/dev-env/buildspec.yml
env-vars-for-codebuild: |
TF_INPUT,
AWS_ACCESS_KEY_ID,
AWS_SECRET_ACCESS_KEY,
AWS_REGION,
ROLE_TO_ASSUME,
ROLE_DURATION_SECONDS,
env:
TF_INPUT: false
AWS_ACCESS_KEY_ID: ${{secrets.AWS_ACCESS_KEY_ID}}
AWS_SECRET_ACCESS_KEY: ${{secrets.AWS_SECRET_ACCESS_KEY }}
AWS_REGION: us-east-1
ROLE_TO_ASSUME: ${{ secrets.AWS_ROLE_TO_ASSUME }}
ROLE_DURATION_SECONDS: 3600[![enter image description here][1]][1]
錯誤消息表明給定的角色或密鑰對執行操作無效。
您在“配置 AWS 憑證”和“運行 CodeBuild”步驟中都設置了訪問密鑰和秘密密鑰。 查看“aws-actions/aws-codebuild-run-build@v1”的存儲庫,似乎只需要在第一步中配置它。 不確定您希望部署多少個環境,但如果只有一個,則env是多余的。
https://github.com/aws-actions/aws-codebuild-run-build
我期望這樣的想法:
steps:
- name: 'checkout'
uses: actions/checkout@v2
- name: configure AWS credentials
uses: aws-actions/configure-aws-credentials@v1
with:
aws-access-key-id: ${{secrets.AWS_ACCESS_KEY_ID}}
aws-secret-access-key: ${{secrets.AWS_SECRET_ACCESS_KEY }}
aws-region: us-east-1
role-to-assume: ${{ secrets.AWS_ROLE_TO_ASSUME }}
role-duration-seconds: 3600
- name: Run CodeBuild
uses: aws-actions/aws-codebuild-run-build@v1
with:
project-name: CodeBuild
buildspec-override: stage/dev-env/buildspec.yml
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.