Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Enable use of 'Authenticate to Google Cloud' action #299

Open
wants to merge 3 commits into
base: main
Choose a base branch
from
Open

Enable use of 'Authenticate to Google Cloud' action #299

wants to merge 3 commits into from

Conversation

adelinn
Copy link

@adelinn adelinn commented Jul 24, 2023

Makes the firebaseServiceAccount optional so that GOOGLE_APPLICATION_CREDENTIALS doesn't get overwritten if the option is not defined.
Updated the readme examples to use 'Authenticate to Google Cloud' action with workload identity federation.
I didn't update the built file and the code is also not tested.

@google-cla
Copy link

google-cla bot commented Jul 24, 2023

Thanks for your pull request! It looks like this may be your first contribution to a Google open source project. Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA).

View this failed invocation of the CLA check for more information.

For the most up to date status, view the checks section at the bottom of the pull request.

@mvarchdev
Copy link

@adelinn Hello. What is the status? We need this urgently.

@adelinn
Copy link
Author

adelinn commented Oct 18, 2023

I need to accept the CLA in order to allow Google to use this code, but that requires me to recreate this pull request with commits that use my real email address instead of the hidden one GitHub provides. I'm not willing to do that, so this pull request will probably remain unmerged, but I allow anyone use the code I wrote for any purpose.

You could maybe fork my branch and sync it with the main branch and run it from your fork. (No idea about legal implications of this)
Or a quick workaround is to put the contents of the credentials file the Authenticate with Google Cloud action creates into a github output and serve it to the firebase action this way.

Here is an example that makes use of workload identity federation:

      - id: auth
        name: 'Authenticate to Google Cloud'
        uses: 'google-github-actions/auth@v1'
        with:
          workload_identity_provider: 'projects/123456789/locations/global/workloadIdentityPools/my-pool/providers/my-provider'
          service_account: 'my-service-account@my-project.iam.gserviceaccount.com'

      - id: credential_json
        name: Prepare credentials for consumtion by firebase action
        run: cat ${{ steps.auth.outputs.credentials_file_path }} | tr '\n' ' ' | sed 's/^/value=/' >> $GITHUB_OUTPUT

      - id: firebase
        uses: FirebaseExtended/action-hosting-deploy@v0
        with:
          firebaseServiceAccount: "${{ steps.credential_json.outputs.value }}"
          repoToken: "${{ secrets.GITHUB_TOKEN }}"
          projectId: your-Firebase-project-ID
          channelId: live

@seth-acuitymd seth-acuitymd mentioned this pull request Nov 16, 2023
Open
@seth-acuitymd
Copy link

@adelinn @mvarchdev - FYI i recreated these commits on #319 but need to test further

@minherz minherz mentioned this pull request Mar 25, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@adelinn @mvarchdev @seth-acuitymd