๐–๐ก๐š๐ญโ€™๐ฌ ๐Ž๐ˆ๐ƒ๐‚ ๐š๐ง๐ ๐ฐ๐ก๐ฒ ๐ฌ๐ก๐จ๐ฎ๐ฅ๐ ๐ฒ๐จ๐ฎ ๐ฎ๐ฌ๐ž ๐ข๐ญ ๐€๐’๐€๐ ๐ข๐ง ๐ฒ๐จ๐ฎ๐ซ ๐†๐ข๐ญ๐‡๐ฎ๐› ๐ฉ๐ข๐ฉ๐ž๐ฅ๐ข๐ง๐ž? (at DevOps Exchange)
CloudDude CloudDude
46 subscribers
50 views
1

 Published On Jan 21, 2024

This is my talk I had at Devops Exchange Toronto named
"๐–๐ก๐š๐ญโ€™๐ฌ ๐Ž๐ˆ๐ƒ๐‚ ๐š๐ง๐ ๐ฐ๐ก๐ฒ ๐ฌ๐ก๐จ๐ฎ๐ฅ๐ ๐ฒ๐จ๐ฎ ๐ฎ๐ฌ๐ž ๐ข๐ญ ๐€๐’๐€๐ ๐ข๐ง ๐ฒ๐จ๐ฎ๐ซ ๐†๐ข๐ญ๐‡๐ฎ๐› ๐ฉ๐ข๐ฉ๐ž๐ฅ๐ข๐ง๐ž?"

๐Ÿ’กDid you know that ๐Ÿ๐ŸŽ ๐ฆ๐ข๐ฅ๐ฅ๐ข๐จ๐ง๐Ÿ˜ฑsecrets were public in GitHub in 2022 alone? โ˜ข Leaked secrets rhyme with financial and reputation loss.
Don't make it easy for hacker bros๐Ÿ•ด๐Ÿฟ! ๐Ÿ”
โšก In this presentation๐ŸŽค I share insights on how to Go ๐’๐ž๐œ๐ซ๐ž๐ญ๐‹๐ž๐ฌ๐ฌ With ๐Ž๐ฉ๐ž๐ง๐ˆ๐ƒ ๐‚๐จ๐ง๐ง๐ž๐œ๐ญ & ๐–orkload ๐ˆdentity ๐…ederation!

๐Ÿ”ฅ Because #OAuth terminology can be super confusing, I decided to tell the whole story of Authentication standards, from Myspace days ๐Ÿ‘จ๐Ÿปโ€๐ŸŽค till now ๐Ÿ˜€๐Ÿ”Ž๐Ÿ”ฌ.

๐ŸŽฏ Here's the discussed topics :
โœ… Popular Authentications to Cloud (Why is it wrong?)
โœ… OAuth Origins
โœ… OAuth 2.0 terminology
โœ… OAuth 2.0 workflow
โœ… What is OIDC?
โœ… OIDC .vs OAuth 2.0
โœ… OIDC Authentication flow
โœ… OIDC in GitHub Actions
โœ… MultiCloud keyless access examples (Azure/AWS/GCP)

๐Ÿ”— For the blog version Check it out here ๐Ÿ‘‰ https://bit.ly/3KhB308

#OAuth #OIDC #GitHubActions #CICD #DevOps #BestPractice #Pipeline #WorkloadIdentityFederation

show more

Share/Embed

Up next