From 9d9797f711f3dbb51b593a18e2f03826656f4f7b Mon Sep 17 00:00:00 2001
From: eternaltyro <eternaltyro@protonmail.ch>
Date: Thu, 16 May 2024 17:34:28 +0530
Subject: [PATCH] Fix AWS OIDC Authentication from Github

Signed-off-by: eternaltyro <230743+eternaltyro@users.noreply.github.com>
---
 .github/workflows/ecs-deploy.yml | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/ecs-deploy.yml b/.github/workflows/ecs-deploy.yml
index 190ccc0778..1958b26c80 100644
--- a/.github/workflows/ecs-deploy.yml
+++ b/.github/workflows/ecs-deploy.yml
@@ -63,13 +63,20 @@ jobs:
     runs-on: ubuntu-latest
     environment: production
 
+    permissions:
+      contents: read
+      id-token: write
+
     steps:
       - name: Checkout
         uses: actions/checkout@v4
 
       - name: Configure AWS credentials
         uses: aws-actions/configure-aws-credentials@v4
-
+        with:
+          aws-region: us-east-1
+          role-to-assume: arn:aws:iam::670261699094:role/Github-AWS-OIDC
+          role-session-name: gh-ci-ecs-deploy
 
       - name: Download task definition
         run: |