Skip to content
play

GitHub Action

Deploy to AWS S3

v2.0.6 Latest version

Deploy to AWS S3

play

Deploy to AWS S3

Deploy a static website to AWS S3

Installation

Copy and paste the following snippet into your .yml file.

              

- name: Deploy to AWS S3

uses: nick-y-ito/gha-s3-deploy@v2.0.6

Learn more about this action in nick-y-ito/gha-s3-deploy

Choose a version

Deploy to AWS S3

Deploy a static website to AWS S3.

Table of Contents

Prerequisites

  1. Create a S3 bucket and enable static website hosting
  2. Add a bucket policy to allow public read access to the bucket
  3. Creating an identity provider on AWS
  4. Assign a role to the identity provider

Usage

Add the following permissions to the job or workflow that uses this action.

permissions:
  id-token: write
  contents: read

See: GitHub Documents: Adding permissions settings

- uses: uskayyyyy/gha-s3-deploy@v2
    with:
      role-to-assume: ${{ secrets.AWS_ROLE_TO_ASSUME }}
      bucket: ${{ secrets.AWS_BUCKET }}}
      region: us-west-2
      folder: ./dist

Inputs

S3 Deploy's Action supports inputs from the user listed in the table below:

Input Required Default Description
role-to-assume Yes The ARN of the AWS IAM role to assume for deploying to S3
bucket Yes The S3 bucket where your website will be hosted
region No us-east-1 The region of the S3 bucket
folder No . Absolute path of the folder containing the deployable files

Outputs

This action provides the following outputs that can be accessed in subsequent steps of your workflow using the steps context.

Output Description
website-url The URL of your website hosted on S3.

Example

# .github/workflows/example.yml

name: Example workflow for S3 Deploy
on: push
jobs:
  run:
    runs-on: ubuntu-latest
    permissions:
      id-token: write
      contents: read
    steps:
      - uses: actions/checkout@v4
      - name: Install dependencies
        run: npm ci
      - name: Build
        run: npm run build
      - name: Deploy
        id: deploy
        uses: uskayyyyy/gha-s3-deploy@v2
        with:
          role-to-assume: ${{ secrets.AWS_ROLE_TO_ASSUME }}
          bucket: ${{ secrets.AWS_BUCKET }}
          region: us-west-2   # Optional - Default: us-east-1
          folder: ./dist      # Optional - Default: . (root)
      - name: Output Website URL
        run: echo ${{ steps.deploy.outputs.website-url }}

Creating An Identity Provider

Create an identity provider in the AWS IAM console

  1. Navigate to the Identity Providers page in the AWS IAM console
  2. Add a provider with the following properties:

Assign a role to the identity provider

  1. Navigate to the identity provider details page created in the previous step
  2. Hit the "Assign role" button
  3. Create a new role with the following properties:
    • Trusted entity type: Web identity
    • Identity provider: the identity provider you created in step 3
    • Audience: the audience you specified in step 3
    • GitHub organization: your GitHub username or organization name
  4. Add right permissions
  5. Name the role and create it
  6. Make sure the GitHub identity provider is added to the role's trusted relationships

For more information, see GitHub's documentation

Dependencies

License

The code in this project is released under the MIT License.