added OIDC auth

.github/workflows/terraform.yml

@@ -9,18 +9,23 @@ permissions:
   contents: read
 
 jobs:
-
   terraform:
     name: 'Terraform'
     runs-on: ubuntu-latest
     environment: production
-
     defaults:
       run:
         shell: bash
+        working-directory: ./terraform
 
     steps:
     # Checkout the repository to the GitHub Actions runner
+    - name: Configure AWS Credentials
+      uses: aws-actions/configure-aws-credentials@v4
+      with:
+        role-to-assume: ${{ secrets.ROLE_TO_ASSUME }}
+        aws-region: us-east-1
+
     - name: Checkout
       uses: actions/checkout@v4
 
@@ -30,12 +35,12 @@ jobs:
 
     # Initialize a new or existing Terraform working directory by creating initial files, loading any remote state, downloading modules, etc.
     - name: Terraform Init
-      run: terraform -chdir="./terraform" init
+      run: terraform init
 
     # Checks that all Terraform configuration files adhere to a canonical format
     - name: Terraform Format
-      run: terraform -chdir="./terraform" fmt -check
+      run: terraform fmt -check
 
     # Generates an execution plan for Terraform
     - name: Terraform Plan
-      run: terraform -chdir="./terraform" plan -input=false
+      run: terraform plan -input=false

cfn/oidc-role.yaml

@@ -1,7 +1,7 @@
 Parameters:
   Repo:
     Description: The GitHub organization/repo for which the OIDC provider is set up
-    Type: String
+    Type: String 
 Resources:
   MyOIDCProvider:
     Type: 'AWS::IAM::OIDCProvider'