build: try to inspect creds

stabledata · Oct 3, 2024 · 72f9cfc · 72f9cfc
1 parent 47eeee3
commit 72f9cfc
Showing 1 changed file with 4 additions and 16 deletions.
diff --git a/.github/workflows/image.yml b/.github/workflows/image.yml
@@ -1,4 +1,4 @@
-name: Synchro Docker Image
+name: Docker Image
 
 on:
   push:
@@ -27,22 +27,10 @@ jobs:
       - name: "Auth to AR"
         run: gcloud auth configure-docker us-east4-docker.pkg.dev
 
-      - name: Inspect OIDC Token
+      - name: Inspect GOOGLE_GHA_CREDS_PATH JSON
         run: |
-          curl -H "Authorization: Bearer ${{ steps.auth.outputs.id_token }}" \
-            "https://token.actions.githubusercontent.com/.well-known/openid-configuration" | jq .
-
-      - name: Retrieve OIDC Token
-        id: retrieve-oidc-token
-        run: |
-          echo "Retrieving OIDC Token..."
-          export OIDC_TOKEN=$(curl -s -H "Authorization: Bearer ${{ steps.auth.outputs.id_token }}" \
-            "https://token.actions.githubusercontent.com/.well-known/openid-configuration/jwks")
-          echo "OIDC Token: $OIDC_TOKEN"
-
-      - name: Decode OIDC Token
-        run: |
-          echo "${{ steps.retrieve-oidc-token.outputs.OIDC_TOKEN }}" | base64 --decode | jq .
+          echo "Inspecting JSON file at $GOOGLE_GHA_CREDS_PATH"
+          cat $GOOGLE_GHA_CREDS_PATH | jq .
 
       - name: "Build Docker Image"
         run: |