shared-folder-sample-lib

Setup OIDC and S3 on AWS

Create an Identity Provider in AWS

Search for "Identity Provider" in the AWS Management Console
Select "Add Provider"
Set https://services..gitpod.cloud/idp as the provider url
Select OpenID Connect as Provider Type
Set sts.amazonaws.com as the audience type
Create provider

Create an S3 bucket named "shared-state-test". You can change the name if you change it in the .gitpod.ymls as well.
Create policy for accessing the bucket

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": "s3:ListBucket",
            "Resource": "arn:aws:s3:::shared-state-test"
        },
        {
            "Effect": "Allow",
            "Action": [
                "s3:PutObject",
                "s3:GetObject",
                "s3:DeleteObject"
            ],
            "Resource": "arn:aws:s3:::shared-state-test/*"
        }
    ]
}

Create Web Identity role

Select the identity provider that you just created
Set the audience
In the next step add the policy to the role

Name		Name	Last commit message	Last commit date
Latest commit History 10 Commits
.gitpod		.gitpod
src/main/java/hello		src/main/java/hello
.gitignore		.gitignore
.gitpod.yml		.gitpod.yml
README.md		README.md
pom.xml		pom.xml

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

shared-folder-sample-lib

Setup OIDC and S3 on AWS

About

Releases

Packages

Languages

meysholdt/shared-folder-sample-lib

Folders and files

Latest commit

History

Repository files navigation

shared-folder-sample-lib

Setup OIDC and S3 on AWS

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages