From: Peter Mikus <peter.mikus@icloud.com>
Date: Fri, 3 Oct 2025 08:06:15 +0000 (+0200)
Subject: ci(gha): Map credentials
X-Git-Url: https://gerrit.fd.io/r/gitweb?a=commitdiff_plain;h=6f361822bf21fb7e5445ab2593542095d5475c03;p=csit.git

ci(gha): Map credentials

Signed-off-by: Peter Mikus <peter.mikus@icloud.com>
Change-Id: I7a2fd2d9d89324c4b2ce01a07280fadbeb7e791c
---

diff --git a/.github/actions/aws_s3_publish_logs/action.yml b/.github/actions/aws_s3_publish_logs/action.yml
index e16810da6d..80cbb4ac79 100644
--- a/.github/actions/aws_s3_publish_logs/action.yml
+++ b/.github/actions/aws_s3_publish_logs/action.yml
@@ -4,6 +4,18 @@ description: |
   This GitHub Action uploads logs to AWS S3.
 
 inputs:
+  AWS_ACCESS_KEY_ID:
+    description: "Unique, public identifier for an AWS IAM user."
+    required: true
+    type: string
+  AWS_SECRET_ACCESS_KEY:
+    description: "Long-term security credential for AWS account or an IAM user."
+    required: true
+    type: string
+  AWS_REGION:
+    description: "Long-term security credential for AWS account or an IAM user."
+    required: true
+    type: string
   S3_BUCKET:
     description: "Name of the Amazon S3 bucket."
     required: true
@@ -68,6 +80,13 @@ runs:
         sudo ./aws/install --update
         rm -rf ./aws
 
+    - name: Configure AWS Credentials
+      uses: aws-actions/configure-aws-credentials@v5.0.0
+      with:
+        aws-access-key-id: ${{ inputs.AWS_ACCESS_KEY_ID }}
+        aws-secret-access-key: ${{ inputs.AWS_SECRET_ACCESS_KEY }}
+        aws-region: ${{ inputs.AWS_REGION }}
+
     - name: Upload archives directory content to S3
       shell: bash
       run: |
diff --git a/.github/workflows/gerrit-csit-tox-verify.yml b/.github/workflows/gerrit-csit-tox-verify.yml
index 5f520d7c0b..ec2aff8ed2 100644
--- a/.github/workflows/gerrit-csit-tox-verify.yml
+++ b/.github/workflows/gerrit-csit-tox-verify.yml
@@ -96,15 +96,11 @@ jobs:
           path: archives/
           if-no-files-found: "ignore"
 
-      - name: Configure AWS Credentials
-        uses: aws-actions/configure-aws-credentials@v5.0.0
-        with:
-          aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
-          aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
-          aws-region: ${{ vars.AWS_REGION }}
-
       - name: AWS S3 Publish Logs
         if: always()
         uses: fdio/csit/.github/actions/aws_s3_publish_logs@master
         with:
-          S3_BUCKET: ${{ vars.S3_BUCKET }}
\ No newline at end of file
+          #S3_BUCKET: ${{ vars.S3_BUCKET }}
+          AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }}
+          AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+          AWS_REGION: ${{ vars.AWS_REGION }}
\ No newline at end of file