diff --git a/README.md b/README.md
index 41cbbd0..8d08ebf 100644
--- a/README.md
+++ b/README.md
@@ -20,6 +20,7 @@ No modules.
 
 | Name | Type |
 |------|------|
+| [aws_iam_openid_connect_provider.github_oidc_connect](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_openid_connect_provider) | resource |
 | [aws_iam_role.github_actions_role](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_role) | resource |
 | [aws_iam_role_policy_attachment.attach_admin_policy](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_role_policy_attachment) | resource |
 | [aws_iam_policy_document.assume_role_policy](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/iam_policy_document) | data source |
diff --git a/main.tf b/main.tf
index d8812b0..3905b64 100644
--- a/main.tf
+++ b/main.tf
@@ -1,3 +1,11 @@
+resource "aws_iam_openid_connect_provider" "github_oidc_connect" {
+  url = "https://token.actions.githubusercontent.com"
+
+  client_id_list = [
+    "sts.amazonaws.com",
+  ]
+  thumbprint_list = ["ffffffffffffffffffffffffffffffffffffffff"]
+}
 resource "aws_iam_role" "github_actions_role" {
   name               = var.role_name
   assume_role_policy = data.aws_iam_policy_document.assume_role_policy.json