Support for EKS Pod Identities
jtschelling opened this issue · 12 comments
Describe the feature
When I try and use this github action to assume into a role that my pod has the permissions to assume into the action errors out with Error: Credentials could not be loaded, please check your action inputs: 169.254.170.23 is not a valid container metadata service hostname
This github action does not currently support the pod identities feature tmk.
Use Case
I have an EKS cluster that I run self-hosted runners in through the actions-runner-controller project. I want to use pod identities to simplify my IAM management.
Proposed Solution
Use the client-eks-auth feature in the aws sdk https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-eks-auth/README.md
Other Information
No response
Acknowledgements
- I may be able to implement this feature request
- This feature might incur a breaking change
Thanks for the feature request. Here is documentation on EKS Pod Identities for our reference: https://docs.aws.amazon.com/eks/latest/userguide/pod-identities.html.
Others can 👍this issue to show support and comment to share use cases and additional info.