Sergey Akopov sakopov

8 followers · 1 following

Los Angeles, CA
http://www.sergeyakopov.com

View GitHub Profile

Recently created

Least recently created

Recently updated

Least recently updated

sakopov / keybase.md

Last active October 2, 2023 05:32

Keybase proof

I hereby claim:

I am sakopov on github.
I am sergeyakopov (https://keybase.io/sergeyakopov) on keybase.
I have a public key whose fingerprint is FAD0 DDCB AA70 5B49 53BD 3AAB C81B 7F9A CA2F 8719

To claim this, I am signing this object:

sakopov / OIDC_for_Github.md

Last active September 3, 2024 09:53

OIDC for Github and AWS

Some rough cloudformation to add OIDC support for Github in AWS.

Create new identity provider for Github. (1b511abead59c6ce207077c0bf0e0043b1382612 is the known thumbprint for Github).

Note, you can discover current thumbprint using openssl.

 $ openssl s_client -servername token.actions.githubusercontent.com -showcerts -connect token.actions.githubusercontent.com:443 <    /dev/null 2>/dev/null | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' | sed "0,/-END CERTIFICATE-/d" > certificate.crt
 $ openssl x509 -in certificate.crt -fingerprint -noout | cut -f2 -d'=' | tr -d ':' | tr '[:upper:]' '[:lower:]'
 1b511abead59c6ce207077c0bf0e0043b1382612