It would be nice if gsutil supports Workload Identity Federation, or GitHub OIDC. As README says:
⚠️ The bq and gsutil tools do no currently support Workload Identity Federation! You will need to use traditional service account key authentication for now.
but I really want to do this. I believe this is a key feature for GitHub Actions.
No response
No response
@IuryAlves Ah, thank you! So gcloud alpha storage is the next major version of Google Cloud Storage CLI and gsutil is no longer activily developed. Hope README describes it.
@IuryAlves Ah, thank you! So
gcloud alpha storageis the next major version of Google Cloud Storage CLI andgsutilis no longer activily developed. Hope README describes it.
This seems to be the case. Although I don't think they have feature parity yet.
For my usecase I needed to copy from a bucket to a local path (i.e gcloud alpha storage cp) and it worked.
Hi @gfx and @IuryAlves
Our team does not control the bq or gsutil CLIs. There's nothing we can do in our GitHub Action to add support - the owners of those CLI tools need to add support for WIF. You can file a support ticket or technical deal blocker with Google Cloud support to request this functionality.
As pointed out, there's also the gcloud alpha storage CLI which is under active development which does support WIF, but might not have 100% feature parity with gsutil. Thanks!
| Owner Name | google-github-actions |
| Repo Name | auth |
| Full Name | google-github-actions/auth |
| Language | TypeScript |
| Created Date | 2021-09-16 |
| Updated Date | 2023-03-24 |
| Star Count | 573 |
| Watcher Count | 16 |
| Fork Count | 116 |
| Issue Count | 3 |
| Issue Title | Created Date | Updated Date |
|---|