Update s3-upload.yml

Author: chrispat

.github/workflows/s3-upload.yml

@@ -18,24 +18,13 @@ jobs:
 
 
       ################### Steps mentioned in this block would later be moved to the cloud’s login action####################### 
-      
-      # Get ID token from GitHub OIDC provider
-      - uses: actions/setup-node@v2
-      - run: npm install @actions/[email protected] 
-      - uses: actions/github-script@v4
-        id: idtoken
-        with:
-        # Audience field is optional. By default, the value is the repo's url. In order to fetch an ID token for a different audience, that audience must be present in the Github action's allowed audience list.
-          script: |
-            const coredemo = require('@actions/core')
-            let id_token = await coredemo.getIDToken()   
-            coredemo.setOutput('id_token', id_token)
-      # Get credentials. Change --role-arn value to your role arn
       - run: |
-         jwtd() {
-           if [[ -x $(command -v jq) ]]; then
+           IDTOKEN=$(curl -H "Authorization: bearer $ACTIONS_ID_TOKEN_REQUEST_TOKEN" "$ACTIONS_ID_TOKEN_REQUEST_URL&audience=sigstore" | jq -r '.value')
+           echo $IDTOKEN
+           jwtd() {
+             if [[ -x $(command -v jq) ]]; then
                   jq -R 'split(".") | .[0],.[1] | @base64d | fromjson' <<< "${1}"
                   echo "Signature: $(echo "${1}" | awk -F'.' '{print $3}')"
              fi
-         }
-         jwtd ${{ steps.idtoken.outputs.id_token }}  
+           }
+           jwtd $IDTOKEN