Update attribute mappings to match assertions

Author: rrednaxela

README.md

@@ -66,9 +66,9 @@ Attribute mapping:
 | Attribute              | Claim                                                 |
 |------------------------|-------------------------------------------------------|
 | `google.subject`       | `assertion.sub`                                       |
-| `attribute.sub`        | `assertion.sub`                                       |
-| `attribute.actor`      | `assertion.actor`                                     |
 | `attribute.repository` | `assertion.project_path` (not `assertion.repository`) |
+| `attribute.user_login` | `assertion.user_login`                                |
+| `attribute.branch`     | `assertion.ref`                                       |
 
 <!-- BEGIN_TF_DOCS -->
 ## Providers

main.tf

@@ -70,9 +70,9 @@ resource "google_iam_workload_identity_pool_provider" "provider" {
 
   attribute_mapping = {
     "google.subject"       = "assertion.sub"
-    "attribute.sub"        = "attribute.sub"
-    "attribute.actor"      = "assertion.actor"
+    "attribute.user_login" = "assertion.user_login"
     "attribute.repository" = "assertion.project_path"
+    "attribute.branch"     = "assertion.ref"
   }
   oidc {
     allowed_audiences = [var.allowed_audiences]