Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/wtfjoke/aws-gh-oidc

Demonstrate a secure connection to aws from github without storing any credentials in the repository
https://github.com/wtfjoke/aws-gh-oidc

aws github-oidc

Last synced: 9 days ago
JSON representation

Demonstrate a secure connection to aws from github without storing any credentials in the repository

Host: GitHub
URL: https://github.com/wtfjoke/aws-gh-oidc
Owner: WtfJoke
License: mit
Created: 2022-01-21T10:49:12.000Z (almost 3 years ago)
Default Branch: main
Last Pushed: 2023-05-03T22:07:28.000Z (over 1 year ago)
Last Synced: 2024-03-20T13:01:16.910Z (8 months ago)
Topics: aws, github-oidc
Language: HCL
Homepage:
Size: 215 KB
Stars: 8
Watchers: 3
Forks: 1
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

        # aws-gh-oidc

Demonstrate a secure connection to aws from github without storing any credentials in the repository.  

It allows accessing aws resources using the github action `aws-actions/configure-aws-credentials@v1` without storing any secrets (like `AWS_ACCESS_KEY_ID` and `AWS_SECRET_ACCESS_KEY` ) in the repository itself. Read more in the [Blogpost](https://www.codecentric.de/wissens-hub/blog/secretless-connections-from-github-actions-to-aws-using-oidc) here

![GithubAWSOIDC](https://user-images.githubusercontent.com/7139697/169553855-2e76a7be-f0c4-44c1-9630-227574241463.png)

### Requirements

- [AWS CLI](https://aws.amazon.com/de/cli/)

- For infrastructure either:

  - [Terraform CLI](https://www.terraform.io/downloads) 1.1.4 or newer (if you want to create infrastructure using terraform)

  - [AWS CDK](https://docs.aws.amazon.com/cdk/v2/guide/home.html) v2 or newer (if you want to create infrastructure using aws cdk)

### Infrastructure

See [Infrastructure Readme](infra/README.md)