Commit 8345f6e
committed
fix(github): use API-resolved org login for OIDC subject claims
Use data.github_organization.alz.login instead of var.organization_name when constructing OIDC subject claims for federated credentials.
This preserves exact org casing in the repo: segment to match GitHub token assertions and avoid AADSTS7002138 case-sensitive matching failures.
Also lower-case the org in job_workflow_ref template composition to align with observed GitHub token behavior for reusable workflow refs.1 parent a8d968f commit 8345f6e
1 file changed
Lines changed: 2 additions & 2 deletions
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
18 | 18 | | |
19 | 19 | | |
20 | 20 | | |
21 | | - | |
| 21 | + | |
22 | 22 | | |
23 | 23 | | |
24 | 24 | | |
25 | 25 | | |
26 | 26 | | |
27 | 27 | | |
28 | | - | |
| 28 | + | |
29 | 29 | | |
30 | 30 | | |
31 | 31 | | |
| |||
0 commit comments