From cbaad0c1b052c18822e4a0ab872eb8a54b8b7c70 Mon Sep 17 00:00:00 2001
From: Federico Di Pierro <nierro92@gmail.com>
Date: Wed, 17 May 2023 15:27:02 +0200
Subject: [PATCH] chore(ci): added permissions to master CI.

Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
---
 .github/workflows/master.yaml | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/.github/workflows/master.yaml b/.github/workflows/master.yaml
index b04986ae07a..06fcece485e 100644
--- a/.github/workflows/master.yaml
+++ b/.github/workflows/master.yaml
@@ -7,6 +7,9 @@ on:
 
 jobs:
   deploy-terraform:
+    permissions:
+      id-token: write
+      contents: read
     runs-on: ubuntu-22.04
     steps:
       - name: Checkout test-infra ⤵️
@@ -34,5 +37,9 @@ jobs:
           sudo apt update && sudo apt install -y which
        
       - name: Deploy prow
+        env:
+          PROW_HMAC_TOKEN: ${{ secrets.PROW_HMAC_TOKEN }}
+          PROW_OAUTH_TOKEN: ${{ secrets.PROW_OAUTH_TOKEN }}
+          PROW_SERVICE_ACCOUNT_JSON: ${{ secrets.PROW_SERVICE_ACCOUNT_JSON }}
         run: |
           ./tools/deploy_prow.sh