Updating workflow permissions

frasermolyneux · Nov 9, 2023 · 0263b67 · 0263b67
1 parent d7b4a99
commit 0263b67
Show file tree

Hide file tree

Showing 5 changed files with 4 additions and 2 deletions.
diff --git a/.github/workflows/codequality.yml b/.github/workflows/codequality.yml
@@ -3,7 +3,6 @@ name: Code Quality
 on: push
 
 permissions:
-  id-token: write # This is required for requesting the JWT
   contents: read # This is required for actions/checkout
   actions: read # Required by CodeQL
   security-events: write # Required by CodeQL

diff --git a/.github/workflows/destroy-development.yml b/.github/workflows/destroy-development.yml
@@ -4,7 +4,7 @@ on:
   workflow_dispatch:
 
 permissions:
-  id-token: write # This is required for requesting the JWT
+  id-token: write # This is required for Az CLI Login
   contents: read # This is required for actions/checkout
 
 jobs:

diff --git a/.github/workflows/feature-development.yml b/.github/workflows/feature-development.yml
@@ -7,6 +7,7 @@ on:
       - "feature/*"
 
 permissions:
+  id-token: write # This is required for Az CLI Login
   contents: read # This is required for actions/checkout
 
 jobs:

diff --git a/.github/workflows/pull-request-validation.yml b/.github/workflows/pull-request-validation.yml
@@ -7,6 +7,7 @@ on:
       - main
 
 permissions:
+  id-token: write # This is required for Az CLI Login
   contents: read # This is required for actions/checkout
 
 concurrency: # This is required to prevent multiple runs of the same workflow from running at the same time.

diff --git a/.github/workflows/release-to-production.yml b/.github/workflows/release-to-production.yml
@@ -9,6 +9,7 @@ on:
       - cron: "0 3 * * 4" # Every Thursday at 3am
 
 permissions:
+  id-token: write # This is required for Az CLI Login
   contents: read # This is required for actions/checkout
 
 concurrency: # This is required to prevent multiple runs of the same workflow from running at the same time.