45. What’s the magic of OIDC identity providers?
AWS Bites
00:00
How to Switch to Short Live Credentials in AWS
You need to create your own roles for every single workflow. If you want to be very strict, make sure to set up the right permissions for every role. You can use the AWS action configured AWS credentials to basically have a step before you interact with any AWS resource to get the temporary credentials. So that point, you can remove all your hard-coded credentials and swap them with this particular step that uses the AWS action to do this exchange of a JWT token for AWS temporary credentials. It's quite, it seems quite powerful, and it's nice the way it's using the standard and you know, you could potentially open up support for a lot of other OIDC providers.
Play episode from 24:50
Transcript
