workflows: Tweak oidc auth for codecov

Currently codecov step succeeds in main and in PRs from forks, but fails
in PRs from origin. This seems to be a codecov bug but I believe we can
tweak the workaround.

* Always run the auth workaround step
* Only try to set the codecov token if OIDC is available

This should mean that:
* PRs from forks will not have auth token: that works fine
* pushes to main will have auth token
* PRs from origin repo will have auth token (even though they should
  not need it)

Signed-off-by: Jussi Kukkonen <jkukkonen@google.com>

Author: jku

.github/workflows/test.yml

@@ -83,7 +83,7 @@ jobs:
       - name: Run Go tests
         run: go test -covermode atomic -coverprofile coverage.txt $(go list ./... | grep -v third_party/)
       - name: Workaround buggy Codecov OIDC auth
-        if: github.event_name == 'push'
+        if: env.ACTIONS_ID_TOKEN_REQUEST_TOKEN != ''
         run: |
           TOKEN_RESPONSE=$(curl -H "Authorization: bearer $ACTIONS_ID_TOKEN_REQUEST_TOKEN" "$ACTIONS_ID_TOKEN_REQUEST_URL&audience=https://codecov.io")
           CODECOV_TOKEN=$(echo $TOKEN_RESPONSE | jq -r .value)