Fix gcp oidc audience (#2198)

We're not setting the audience correctly if escEnvOrg is set in config.
they need to always match

Author: seanyeh

gcp-ts-oidc-provider-pulumi-cloud/index.ts

@@ -42,10 +42,10 @@ const identityPool = new gcp.iam.WorkloadIdentityPool(`identity-pool`, {
 
 const oidcProvider = new gcp.iam.WorkloadIdentityPoolProvider(`identity-pool-provider`, {
   workloadIdentityPoolId: identityPool.workloadIdentityPoolId,
-  workloadIdentityPoolProviderId: `pulumi-cloud-${pulumi.getOrganization()}-oidc`,
+  workloadIdentityPoolProviderId: `pulumi-cloud-${escEnvOrg}-oidc`,
   oidc: {
     issuerUri: issuer,
-    allowedAudiences: [`gcp:${pulumi.getOrganization()}`],
+    allowedAudiences: [`gcp:${escEnvOrg}`],
   },
   attributeMapping: {
     "google.subject": "assertion.sub",