AWS CodeArtifact Auth

Used to authorize with AWS CodeArtifact in order to publish packages.

Usage

Pre-requisites

Requires aws-actions/configure-aws-credentials to have been ran first with an appropriate role that can access CodeArtifact.

Inputs

region

The AWS region.

domain

The name of the domain that is in scope for the generated authorization token.

domain-owner

The 12-digit account number of the AWS account that owns the domain. It does not include dashes or spaces.

duration

The time, in seconds, that the generated authorization token is valid. Valid values are 0 and any number between 900 (15 minutes) and 43200 (12 hours). A value of 0 will set the expiration of the authorization token to the same expiration of the user's role's temporary credentials. Defaults to 0.

Exported Variables

The action will export the following variables. These can then be used in conjunction with the package managers to publish artifacts.

NPM

PYPI

Maven

Nuget

Example

# .github/workflows/aws-codeartifact-auth.yml
name: AWS CodeArtifact Auth
on:
  push:
    branches:
      - main

jobs:
  build:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout Code
        uses: actions/checkout@v2
      - name: Configure AWS Credentials
        uses: aws-actions/configure-aws-credentials@v1
        with:
          role-to-assume: ${{ secrets.AWS_ROLE_TO_ASSUME }}
          aws-region: ${{ secrets.AWS_REGION }}
      - name: AWS CodeArtifact Auth
        uses: advancedcsg-open/actions-aws-codeartifact-auth
        with:
          region: ${{ secrets.AWS_REGION }}
          domain: ${{ secrets.AWS_CODEARTIFACT_DOMAIN }}
          domain-owner: ${{ secrets.AWS_CODEARTIFACT_DOMAIN_OWNER }}
      - name: Publish npm
        run: |
          npm publish

License

actions-aws-codeartifact-auth is licensed under the MIT License. See the LICENSE file for more info.