feat(workflow): integrate with workflow identity pool #896

	name: testing-deployment
	# Trigger deployment only on testing-deploy label on pull request
	on:
	pull_request:
	types: [labeled]
	jobs:
	deploy:
	name: Deploy PR branch to testing
	runs-on: ubuntu-latest
	environment: testing
	if: ${{ github.event.label.name == 'testing-deploy' }}
	permissions:
	contents: 'read'
	id-token: 'write'
	steps:
	- id: 'auth'
	uses: 'google-github-actions/auth@v2'
	with:
	workload_identity_provider: 'projects/30557428044/locations/global/workloadIdentityPools/versioncontrolsystems/providers/signoz'
	service_account: 'wif-github@signozsso.iam.gserviceaccount.com'

	- name: 'sdk'
	uses: 'google-github-actions/setup-gcloud@v2'

	- name: 'ssh'
	shell: bash
	run: \|
	read -r -d '' COMMAND <<EOF \|\| true
	echo "GITHUB_BRANCH: ${GITHUB_BRANCH}"
	echo "GITHUB_SHA: ${GITHUB_SHA}"
	export DOCKER_TAG="${GITHUB_SHA:0:7}" # needed for child process to access it
	export DEV_BUILD="1"
	export PATH="/usr/local/go/bin/:$PATH" # needed for Golang to work
	docker system prune --force
	cd ~/signoz
	git status
	git add .
	git stash push -m "stashed on $(date --iso-8601=seconds)"
	git fetch origin
	git checkout develop
	git pull
	# This is added to include the scenerio when new commit in PR is force-pushed
	git branch -D ${GITHUB_BRANCH}
	git checkout --track origin/${GITHUB_BRANCH}
	make build-ee-query-service-amd64
	make build-frontend-amd64
	make run-signoz
	EOF
	gcloud compute ssh testingapp-server --zone us-central1-a --tunnel-through-iap --project signozsso --command "${COMMAND}"

Provide feedback