E6 - GitHub Actions: Learn OpenID Connect (OIDC) and deploy securely to AWS || Full Tutorial
It’s time to discuss what OpenID Connect (OIDC) is and how you can use it to deploy securely to your favourite cloud providers!
No more secrets, API keys, and SSH keys. No more worrying about exposed credentials, rotations and distributed permissions.
In this episode I talk about GitHub’s OIDC implementation and partnership with all major cloud providers. This video contains a full walkthrough of how you can configure OIDC and your workflows to deploy to Elastic Beanstalk.
The knowledge from this episode can be applied to all other cloud providers (Azure, and GCP).
▬▬▬▬▬▬ Resources & References 📕 ▬▬▬▬▬▬
GitHub OIDC Documentation: https://docs.github.com/en/actions/de...
AWS OIDC Documentation: https://docs.aws.amazon.com/IAM/lates...
Trust relationship configuration: https://docs.aws.amazon.com/IAM/lates...
AWS Elastic Beanstalk (Node.js): https://docs.aws.amazon.com/elasticbe...
▬▬▬▬▬▬ Chapters 🕐 ▬▬▬▬▬▬
00:00 - Intro
01:03 - What is OIDC? High level overview
08:57 - Deploying the web app to ElasticBeanstalk
19:33 - OIDC Configuration
24:01 - Trust Policy configuration
26:01 - Creating an OIDC enabled CD workflow
33:11 - Automatic deployment of a change
36:00 - Conclusion
▬▬▬▬▬▬ Connect with me 👋 ▬▬▬▬▬▬
Twitter: / bassemdy
GitHub: https://github.com/link-
LinkedIn: / bassemdghaidy
Facebook: / bassemdy
Blog: https://blog.bassemdy.com
▬▬▬▬▬▬ Support the channel 💜 ▬▬▬▬▬▬
Every little bit helps ✨
Join the journey on Patreon: / glich_stream
1 time support: https://www.buymeacoffee.com/glich.st...
#glichstream #devops #github
