docs: remove unnecessary steps and update examples (#15)

2021-09-27 19:59:53 +03:00 · 2021-09-27 19:59:53 +03:00 · 7296e5030f
commit 7296e5030f
parent f8bb88e07e
1 changed files with 4 additions and 25 deletions
--- a/README.md
+++ b/README.md
@ -30,7 +30,7 @@ and permissions on Google Cloud.
 ```yaml
 jobs:
-  run:
+  job_id:
    # ...
    # Add "id-token" with the intended permissions.
@ -152,7 +152,7 @@ for the `gcloud` CLI tool. Note this does **not** work for the `gsutil` tool.
 ```yaml
 jobs:
-  run:
+  job_id:
    # ...
    # Add "id-token" with the intended permissions.
@ -198,7 +198,7 @@ the [`constraints/iam.allowServiceAccountCredentialLifetimeExtension` organizati
 ```yaml
 jobs:
-  run:
+  job_id:
    # ...
    # Add "id-token" with the intended permissions.
@ -233,7 +233,7 @@ invoking a Cloud Run service.
 ```yaml
 jobs:
-  run:
+  job_id:
    # ...
    # Add "id-token" with the intended permissions.
@ -349,27 +349,6 @@ the [gcloud][gcloud] command-line tool.
        --attribute-mapping="google.subject=assertion.sub,attribute.repository=assertion.repository"
        ```
 1.  Get the full ID for the Workload Identity Provider:
    ```sh
    gcloud iam workload-identity-pools providers describe "my-provider" \
      --project="${PROJECT_ID}" \
      --location="global" \
      --workload-identity-pool="my-pool"
    ```
    Take note of the `name` attribute. It will be of the format:
    ```text
    projects/123456789/locations/global/workloadIdentityPools/my-pool/providers/my-provider
    ```
    Save this value as an environment variable:
    ```sh
    export WORKLOAD_IDENTITY_PROVIDER_ID="..." # value from above
    ```
 1.  Allow authentications from the Workload Identity Provider to impersonate the
    Service Account created above: