Difference between revisions of "Terraform resource: aws iam openid connect provider"

• aws_iam_openid_connect_provider ref provides an IAM OpenID Connect provider

cluster endpoint public access

• url = "oidc.eks.us-east-2.amazonaws.com/id/XXXXX"

• url, arn, id

• client_id_list - (Required) A list of client IDs (also known as audiences). When a mobile or web app registers with an OpenID Connect provider, they establish a value that identifies the application. (This is the value that's sent as the client_id parameter on OAuth requests.)

• thumbprint_list (Required) A list of server certificate thumbprints for the OpenID Connect (OIDC) identity provider's server certificate(s).

Official example

resource "aws_iam_openid_connect_provider" "default" {
 url = "https://accounts.google.com"

 client_id_list = [
   "266362248691-342342xasdasdasda-apps.googleusercontent.com",
 ]

 thumbprint_list = ["cf23df2207d99a74fbe169e3eba035e633b65d94"]
}

Related

• Terraform EKS module: module.eks.oidc_provider
• oidc-provider/
• aws iam create-open-id-connect-provider

See also

• Terraform IAM resources: aws_iam_user, aws_iam_group, aws_iam_role, aws_iam_role_policy_attachment, aws_iam_policy, aws_iam_role_policy, aws_iam_user_policy, aws_iam_user_policy_attachment, aws_iam_access_key, aws_iam_group_policy, aws_iam_group_policy_attachment, aws_iam_openid_connect_provider
• OpenID, OpenID Foundation, OIDC, OAuth, OpenID Connect Provider, eksctl utils associate-iam-oidc-provider, aws_iam_openid_connect_provider, Relying Party (RP)