Basics Pipelines Actions & Services Environments Integrations Targets Tests Domains Sandboxes Self-Hosted Agents & Tunnels YAML Buddy Git FAQ API

Identity Provider

Configure OIDC identity providers in Buddy for secure token-based authentication with GitHub Actions, CircleCI and other CI/CD tools. Eliminate hardcoded credentials with short-lived tokens.

Introduction
Learn how Buddy OIDC identity providers enable secure token exchange for GitHub Actions, CircleCI and other CI/CD platforms. Configure short-lived API tokens without storing permanent credentials.
GitHub Actions
Configure an OIDC identity provider for GitHub Actions workflows. Use buddy/login action to exchange tokens and access Buddy API without storing credentials.
CircleCI
Configure an OIDC identity provider for CircleCI pipelines. Exchange CIRCLE_OIDC_TOKEN for Buddy API token without storing permanent credentials.
Other Provider
Configure an OIDC identity provider for any OIDC-compatible service. Set custom issuer URL and trust conditions to securely access Buddy API.
Trust Conditions
Configure trust conditions for an OIDC identity provider. Define repository, branch, and environment rules to control which tokens are accepted by Buddy.