AWS STS: Web Identity with GitLab OIDC

In this video, I demonstrate how to leverage AWS Security Token Service (STS) to assume roles with web identity using GitLab's OpenID Connect (OIDC) integration. This approach enables secure, seamless, and temporary access to AWS resources directly from your GitLab CI/CD pipelines. What You'll Learn: ✔️ Setting up an IAM role for OIDC in AWS ✔️ Configuring GitLab OIDC integration ✔️ Creating a GitLab CI/CD pipeline to assume the role ✔️ Best practices for managing temporary credentials 📂 Resources: Example code and configuration: https://gitlab.com/awscloudpros/aws-web-identity.git AWS OIDC Documentation: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_create_oidc.html GitLab OIDC Documentation: https://docs.gitlab.com/ee/ci/cloud_services/aws/ 2025 Cohort: https://selar.co/m/alausaseun RECOMMENDED PLAYLIST: GitOps:- https://www.youtube.com/playlist?list=PLuZ-P8G2omanW7I-oZrHh4-rbE7dxG8m4 GitLab CICD:- https://youtube.com/playlist?list=PLuZ-P8G2omal5NJc4vMIJobIErYdHMZxM&si=kW1ICZf7Z0NWBVqK Docker Series:- https://www.youtube.com/playlist?list=PLuZ-P8G2omalspeot9_F_qnJjeLNVADbw DevOps Series:- https://www.youtube.com/playlist?list=PLuZ-P8G2omam9-c1dZNs58NqcS55N54Mi Hands-On Project:- https://www.youtube.com/playlist?list=PLuZ-P8G2omakvaLfHC2s8iQ-TxrOcqevv Jenkins:- https://www.youtube.com/playlist?list=PLuZ-P8G2oman7Tw82naloyIZL26ky97Qg Connect with me: Instagram: https://instagram.com/alausaseun Twitter: https://x.com/alausaseun LinkedIn: https://www.linkedin.com/in/alausa-oluwaseun/ YouTube: https://youtube.com/@alausaseun GitLab: https://gitlab.com/awscloudpros GitHub: https://github.com/seunayolu Hashnode: https://seunayolu.hashnode.dev/