gitops-acl-action
gitops-acl-action copied to clipboard
GitOps for your Tailscale ACLs
The `acl` scope is [listed as](https://tailscale.com/kb/1215/oauth-clients#legacy-scopes) a "legacy scope" and the replacement is the `policy_file` scope. But, as per the [documentation](https://tailscale.com/kb/1215/oauth-clients#scopes), this additionally requires `devices:core:read` and `devices:posture_attributes`.
I tried several times to use this composite actions with API. Even though I issued new api-key and tried various released, it showed `wanted HTTP status code 200 but got...
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 6.1.0 to 6.2.0. Release notes Sourced from actions/setup-go's releases. v6.2.0 What's Changed Enhancements Example for restore-only cache in documentation by @aparnajyothi-y in actions/setup-go#696 Update Node.js version in...
Add support for authenticating via workload identity federation. Updates https://github.com/tailscale/corp/issues/34172
This pull request was done using github copilot only. I created this pr since according to new github actions best practices and settings the current version of the action does...
99% of the execution time of this action is spent building the go binary. It would be so much better if you would instead just pull down the correct one...
Please add an example how on to use this with the recent release of Workload Identity Federation. See: https://tailscale.com/kb/1581/workload-identity-federation
With the latest introduction of [Workload Identity Federation](https://tailscale.com/kb/1581/workload-identity-federation), there's an idiomatic mechanism for authenticating to Tailscale from Github Actions jobs without having to store any credentials (API Key / OAuth...
Compiling the binary every time causes the action to take longer to run the job than it should. This updates the action to instead of using `go run` it uses...
I recently started using GitOps for my Tailscale policy file, and found this gitops-acl-action to be quite slow. Every time it's run, it downloads Go, then downloads and compiles the...