Add GH workflow to check EKS access

.github/workflows/aws-dev.yml

@@ -0,0 +1,41 @@
+# This is a temporary workflow to check whether AWS OIDC EKS access is working
+name: AWS development
+
+concurrency: awsdev-eks
+
+on:
+  push:
+    branches:
+      - aws-curvenote
+
+# Global environment variables
+env:
+  AWS_REGION: us-east-2
+
+jobs:
+  # In this dedicated job to deploy our staging environment we build and push
+  # images that the jobs to deploy to the production environments depend on.
+  awsdev-eks:
+    runs-on: ubuntu-22.04
+    continue-on-error: ${{ matrix.experimental }}
+    timeout-minutes: 5
+    # These permissions are needed to interact with GitHub's OIDC Token endpoint.
+    permissions:
+      id-token: write
+      contents: read
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v3
+
+      - name: Configure AWS credentials
+        uses: aws-actions/configure-aws-credentials@v2
+        with:
+          role-to-assume: arn:aws:iam::${{ secrets.AWS_CURVENOTE_ACCOUNT_ID }}:role/binderhub-github-oidc-mybinderorgdeploy
+          aws-region: us-east-2
+
+      - name: Check EKS access
+        run: |
+          aws sts get-caller-identity
+          aws eks update-kubeconfig --name binderhub
+          kubectl get nodes

terraform/aws/curvenote/github-oidc.tf

@@ -53,4 +53,4 @@ resource "aws_iam_role" "github_oidc_mybinderorgdeploy" {
     })
   }
   permissions_boundary = local.permissions_boundary_arn
-}
+}