[menu_get_svc] added env accountid extraction

Somnath Mukherjee · Somnath Mukherjee · commit be2f9be16a71 · 2025-05-27T17:07:11.000+05:30
diff --git a/.github/workflows/cd.yaml b/.github/workflows/cd.yaml
@@ -54,12 +54,23 @@ jobs:
         echo "ENVIRONMENT=${ENVIRONMENT}" >> $
         echo "ENVIRONMENT_UPPER=$(echo $ENVIRONMENT | tr '[:lower:]' '[:upper:]')" >> $GITHUB_ENV
 
+    - name: Extract AWS Account ID from Secret
+      id: account
+      run: |
+        case "$ENVIRONMENT" in
+          dev) echo "ACCOUNT_ID=${{ secrets.AWS_ACCOUNT_ID_DEV }}" >> $GITHUB_ENV ;;
+          test) echo "ACCOUNT_ID=${{ secrets.AWS_ACCOUNT_ID_TEST }}" >> $GITHUB_ENV ;;
+          staging) echo "ACCOUNT_ID=${{ secrets.AWS_ACCOUNT_ID_STAGING }}" >> $GITHUB_ENV ;;
+          uat) echo "ACCOUNT_ID=${{ secrets.AWS_ACCOUNT_ID_UAT }}" >> $GITHUB_ENV ;;
+          prod) echo "ACCOUNT_ID=${{ secrets.AWS_ACCOUNT_ID_PROD }}" >> $GITHUB_ENV ;;
+        esac
+
     - name: Configure AWS credentials using OIDC token
       uses: aws-actions/configure-aws-credentials@v4
       with:
-        role-to-assume: arn:aws:iam::${{ secrets[format('AWS_ACCOUNT_ID_${{ env.ENVIRONMENT_UPPER }}')] }}:role/GitHubActionsDeployRole
+        role-to-assume: arn:aws:iam::${{ env.ACCOUNT_ID }}:role/GitHubActionsDeployRole
         role-session-name: menu-get-svc-${{ env.ENVIRONMENT }}-session
-        aws-region: us-east-1
+        aws-region: ${{ env.REGION_US_EAST1 }}
 
     - name: Build app
       run: |
