Is it possible to use kubectl with oidc conn to opreate eks in bitbucket pipeline

Jiajia Long December 13, 2022

i 'd like to run 'kubectl apply -f xx.yaml' or some other kubectl commands in pipeline , but don't want to config $aws_access_id , $aws_access_key in pipeline. is it possible to  realize?I have successfully configured oidc with ecr auth follow this: 

https://support.atlassian.com/bitbucket-cloud/docs/deploy-on-aws-using-bitbucket-pipelines-openid-connect/#Using-claims-in-ID-tokens-to-limit-access-to-the-IAM-role-in-AWS

and pipeline works now.

 

1 answer

0 votes
Aron Gombas _Midori_
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
December 14, 2022

Bitbucket pipelines has a concept of variables and secrets!

You can use it to store the AWS credentials in 2 separate secrets and have the pipeline yml refer to those. We do this with great success.

See: https://support.atlassian.com/bitbucket-cloud/docs/variables-and-secrets/

Suggest an answer

Log in or Sign up to answer
DEPLOYMENT TYPE
CLOUD
TAGS
AUG Leaders

Atlassian Community Events