-
Notifications
You must be signed in to change notification settings - Fork 0
58 lines (48 loc) · 1.29 KB
/
tester.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
---
name: Self-test
on:
push:
branches:
- main
pull_request:
branches:
- main
permissions:
contents: read
id-token: write
jobs:
integration:
name: Integration test
runs-on: ${{ matrix.os }}
strategy:
matrix:
os:
- ubuntu-20.04
- ubuntu-22.04
- ubuntu-24.04
steps:
- name: Check out repository
uses: actions/checkout@v4
- name: Run self
id: ssh_cert
uses: ./
with:
vault_server: https://vault.arrakis.se:8200
oidc_backend_path: github-oidc
oidc_role: cert-action-user
ssh_backend_path: arrakis/ssh2
ssh_role: cert-action-cert
- name: Examine generated certificate
run: ssh-keygen -L -f "${{ steps.ssh_cert.outputs.cert_path }}"
- name: Run self, with audience conf
id: ssh_cert_aud
uses: ./
with:
vault_server: https://vault.arrakis.se:8200
jwt_audience: a-test-audience
oidc_backend_path: github-oidc
oidc_role: cert-action-at-user
ssh_backend_path: arrakis/ssh2
ssh_role: cert-action-at-cert
- name: Examine second generated certificate
run: ssh-keygen -L -f "${{ steps.ssh_cert_aud.outputs.cert_path }}"