OIDC for Cloud Auth

← Back to CI-CD Security

Using OpenID Connect tokens instead of static credentials for CI/CD authentication to cloud providers. GitHub Actions can authenticate to AWS, GCP, and Azure using short-lived OIDC tokens, eliminating the need for stored secrets and reducing the blast radius of token compromise.

Key Properties

Short-Lived Tokens
GitHub Actions OIDC
Eliminating Static Credentials

supply-chain-security ci-cd oidc

Software Engineering KB

Explorer

OIDC for Cloud Auth

OIDC for Cloud Auth

Key Properties

Graph View

Table of Contents

Backlinks