As per the step 7 in README, a Workload Identity Provider isn't getting created, both from gcloud CLI as well as Pantheon UI.
In fact, the issuer-uri violates the organization policy, and thereby Precondition fails.
Successful creation of Workload Identity Provider
ERROR: (gcloud.iam.workload-identity-pools.providers.create-oidc) FAILED_PRECONDITION: Precondition check failed.
Irrelevant. Command issued: $ gcloud iam workload-identity-pools providers create-oidc "github-runner-workload-provider" --project=project-step-pranav --location="global" --workload-identity-pool="github-runner" --display-name="GitHub Runner Pool Provider" --attribute-mapping="google.subject=assertion.sub,attribute.actor=assertion.actor,attribute.repository=assertion.repository" --issuer-uri="https://token.actions.githubusercontent.com"
### Log output _No response_ ### Additional information A similar error was faced when trying to create from Pantheon UI as well. Further, tried the command from the following Google Cloud blog too: https://cloud.google.com/blog/products/identity-security/enabling-keyless-authentication-from-github-actions Didn't work.
Hi there @PranavNair0001
Thank you for opening an issue. Our team will triage this as soon as we can. Please take a moment to review the troubleshooting steps which lists common error messages and their resolution steps.
|Issue Title||Created Date||Updated Date|