# Create a GitHub Actions identity for any branch in a repo
chainctl iam identities create github my-gha-identity --github-repo=my-org/repo-name --group=eng-group
# Create a GitHub Actions identity for a given branch in a repo and bind to a role
chainctl iam identities create github my-gha-identity --github-repo=my-org/repo-name --github-ref=refs/heads/test-branch --role=owner
-d, --description string The description of the resource.
--github-audience string The audience for the GitHub OIDC token
--github-ref string The branch reference for the executing action (optional).
--github-repo string The name of a GitHub repo where the action executes.
--group string The name or id of the parent group to create this identity under.
-h, --help help for github
-n, --name string Given name of the resource.
--role string The name or ID of a role to bind this identity to (optional).
-y, --yes Automatic yes to prompts; assume "yes" as answer to all prompts and run non-interactively.
--api string The url of the Chainguard platform API. (default "http://api.api-system.svc")
--audience string The Chainguard token audience to request. (default "http://api.api-system.svc")
--config string A specific chainctl config file.
--console string The url of the Chainguard platform Console. (default "http://console-ui.api-system.svc")
--issuer string The url of the Chainguard STS endpoint. (default "http://issuer.oidc-system.svc")
-o, --output string Output format. One of: ["", "table", "tree", "json", "id", "wide"]
--timestamp-authority string The url of the Chainguard Timestamp Authority endpoint. (default "http://tsa.timestamp-authority.svc")
-v, --v int Set the log verbosity level.