Can GitHub provision OIDC tokens in Codespaces VMs? like they do in GitHub Action VMs?

[Oded-B]

Select Topic Area

Question

Body

In GH Actions you can use OIDC tokens to authenticate to other SAAS services.
But that mechanism seems specific to Actions, like setting the permissions:

permissions:
  id-token:

And more.

Is there a way get such a token in Codespaces? a token that is signed by a public issuer (like https://token.actions.githubusercontent.com).

This is the use-case:
A user start a Codespaces VM in attached to a repo that host Terraform code, we wants to run a "plan" so he needs credentials to some cloud vendor.

There some mention of this in https://github.com/orgs/community/discussions/5668 but that discussion stalled

[robin-thoni]

There is GITHUB_TOKEN available in Codespaces, but I don't think it's usable in anything else than GH API :/

Would be a great feature, IMHO

[jk1ng]

I am also interested in an answer here.

[github-actions[bot]]

🕒 Discussion Activity Reminder 🕒

This Discussion has been labeled as dormant by an automated system for having no activity in the last 60 days. Please consider one the following actions:

1️⃣ Close as Out of Date: If the topic is no longer relevant, close the Discussion as out of date at the bottom of the page.

2️⃣ Provide More Information: Share additional details or context — or let the community know if you've found a solution on your own.

3️⃣ Mark a Reply as Answer: If your question has been answered by a reply, mark the most helpful reply as the solution.

Note: This dormant notification will only apply to Discussions with the Question label. To learn more, see our recent announcement.

Thank you for helping bring this Discussion to a resolution! 💬