From 9551e9f2779c8c474fef5a079adb08b2b437c9d1 Mon Sep 17 00:00:00 2001
From: Federico Di Pierro <nierro92@gmail.com>
Date: Wed, 19 Apr 2023 11:38:54 +0200
Subject: [PATCH] chore(ci): added aws credentials role to the
 reusable_publish_packages workflow.

Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
---
 .../workflows/reusable_publish_packages.yaml    | 17 ++++++++++++++++-
 1 file changed, 16 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/reusable_publish_packages.yaml b/.github/workflows/reusable_publish_packages.yaml
index f4c6b28f..25ffff3b 100644
--- a/.github/workflows/reusable_publish_packages.yaml
+++ b/.github/workflows/reusable_publish_packages.yaml
@@ -11,6 +11,9 @@ on:
         required: false
         default: ''
         type: string
+        
+env:
+  AWS_S3_REGION: eu-west-1
 
 jobs:
   publish-packages:
@@ -26,7 +29,13 @@ jobs:
           yum update -y
           yum install rpm-sign expect which createrepo gpg python python-pip -y
           pip install awscli==1.19.47
-      
+
+      - name: Configure AWS credentials
+        uses: aws-actions/configure-aws-credentials@v2
+        with:
+          role-to-assume: "arn:aws:iam::292999226676:role/github_actions-falco${{ inputs.bucket }}-s3"
+          aws-region: ${{ env.AWS_S3_REGION }}    
+          
       - name: Download all artifacts
         uses: actions/download-artifact@v3
         with:
@@ -78,6 +87,12 @@ jobs:
           apt update -y
           apt-get install apt-utils bzip2 gpg python python3-pip -y
           pip install awscli
+          
+      - name: Configure AWS credentials
+        uses: aws-actions/configure-aws-credentials@v2
+        with:
+          role-to-assume: "arn:aws:iam::292999226676:role/github_actions-falco${{ inputs.bucket }}-s3"
+          aws-region: ${{ env.AWS_S3_REGION }}     
       
       - name: Download deb artifacts
         uses: actions/download-artifact@v3