# Roles for GitHub Actions

AWS Roles can be assumed in GitHub Actions by completing two steps:

1. Edit the `saml-to.yml` to include the name of the repository that needs access to a given role
   1. [Example 1](https://github.com/stark-international/saml-to/blob/9b4ea761a1e378371e2887a9ff03aa22fc3b53ec/saml-to.yml#L28): Access granted access to `some-repo` access to `stark-international-administrator`
   2. [Example 2](https://github.com/stark-international/saml-to/blob/9b4ea761a1e378371e2887a9ff03aa22fc3b53ec/saml-to.yml#L36): Access granted to `another-repo` and within `another-org`
2. Add or modify the GitHub action for the repository:
   1. [Example 1](https://github.com/stark-international/some-repo/blob/366f094e22b283f0c2baa68d0e5e53a69cccd982/.github/workflows/push-main.yml#L13-L18): A GitHub Workflow to assume `stark-international-administrator`

See [assume-aws-role-action](https://github.com/saml-to/assume-aws-role-action) for more details.