Using secrets instead of vars

.github/workflows/build_image.yaml

@@ -16,20 +16,11 @@ permissions:
   id-token: write   # for JWT request
   contents: read    # for actions/checkout
 
-env:
-  SOMEVAR: ${{ vars.FOO }}
-
-
 jobs:
   docker-image-build:
     name: docker-image-build
     runs-on: ubuntu-latest
     steps:
-      - name: check if vars are being read right
-        run: |
-          echo "Start-${{ env.SOMEVAR }}-end."
-          echo "Another: ${{ vars.FOO }}."
-          printenv
       - name: Setup tmate session
         uses: mxschmitt/action-tmate@v3
         if: ${{ github.event_name == 'workflow_dispatch' && inputs.debug_enabled }}
@@ -40,7 +31,7 @@ jobs:
       - name: Configure AWS Credentials
         uses: aws-actions/[email protected]
         with:
-          role-to-assume: ${{ env.AWS_ROLE_TO_ASSUME }}
+          role-to-assume: ${{ secrets.AWS_ROLE_TO_ASSUME }}
           aws-region: eu-west-2
           audience: sts.amazonaws.com
           role-session-name: github-aws-access