Add AWS session tags claim `https://aws.amazon.com/tags` to `CI_JOB_JWT_V2 `

Release notes

Problem to solve

Currently, the JWT payload/claims for CI_JOB_JWT_V2 is not customizable. This prevents the implementation of Passing session tags using AssumeRoleWithWebIdentity to dynamically control access to resources in AWS.

Reported by a 26 seater GitLab Premium customer . See zd(internal) for details.

Proposal

Add https://aws.amazon.com/tags as a configurable claim to the existing claims list or make the payload customizable so that users can add it themselves.

Intended users

Feature Usage Metrics

This page may contain information related to upcoming products, features and functionality. It is important to note that the information presented is for informational purposes only, so please do not rely on the information for purchasing or planning purposes. Just like with all projects, the items mentioned on the page are subject to change or delay, and the development, release, and timing of any products, features, or functionality remain at the sole discretion of GitLab Inc.