May 29th - Blog Subscription Service - Part 2: OIDC Auth and the Terraform Pipeline
· 6 min read
Getting Terraform to run in CI without storing AWS credentials anywhere is one of those things that sounds complicated until you understand the pattern. This post covers how GitLab authenticates to AWS using OIDC, and how the CI pipeline is structured to plan on any branch and apply only on main.
Keep the coffee flowing