Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Set-up OIDC for S3 and CDK deployments #2693

Open
alexwilson opened this issue Jul 11, 2024 · 0 comments
Open

Set-up OIDC for S3 and CDK deployments #2693

alexwilson opened this issue Jul 11, 2024 · 0 comments
Assignees
@alexwilson
Labels
security Pull requests that address a security vulnerability
Milestone
Platform

Comments

@alexwilson
Copy link
Owner

I currently rely on AWS key for pushing files to S3, and now that I want to also add CDK deployments I'm very uncomfortable with generating (and remembering to) rotate keys.
There are many disadvantages to keys, amongst which is that they're available as environment variables for all tasks during builds, tests and deployments.

Instead I'd prefer to set-up OIDC and remove these secrets outright.
@alexwilson alexwilson added the security Pull requests that address a security vulnerability label Jul 21, 2024
@alexwilson alexwilson added this to the Platform milestone Jul 21, 2024
@alexwilson alexwilson self-assigned this Jul 21, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@alexwilson alexwilson

Labels
security Pull requests that address a security vulnerability
Projects
alexwilson.tech
Status: No status
Milestone
Platform
Development

No branches or pull requests
1 participant
@alexwilson