lambda-k8s-oidc-keys

command
v0.0.0-...-46d9339 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Aug 16, 2025 License: MIT Imports: 16 Imported by: 0

README ยถ

๐Ÿ”‘ Lambda K8s OIDC Keys

This directory contains an AWS Lambda function that generates and publishes OpenID Connect (OIDC) keys for Kubernetes clusters.

The Lambda function performs the following operations:

  • Retrieves a Kubernetes service account private key from AWS Secrets Manager
  • Generates the corresponding public key
  • Creates OIDC-compliant JSON Web Keys (JWKs) from the public key
  • Uploads these keys to an S3 bucket for OIDC discovery

๐Ÿ”ง Configuration

The function requires the following environment variables:

  • SECRET_NAME - Name of the AWS Secrets Manager secret containing the Kubernetes service account private key
  • BUCKET_NAME - Name of the S3 bucket where the OIDC keys will be uploaded
  • OBJECT_KEY - Object key (path) within the S3 bucket where the OIDC keys will be stored

The AWS Secrets Manager secret is expected to contain a JSON document with the following structure:

{
  "certs": {
    "k8s_serviceaccount": {
      "key": "<base64-encoded-private-key>"
    }
  }
}

๐Ÿ’ก Sources

For original licences and attributions, see NOTICE.

Documentation ยถ

The Go Gopher

There is no documentation for this package.

Source Files ยถ

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.