Login providers
Login providers issue short-lived credentials for downstream services. Each provider is invoked through fn::open::<name>-login in an environment definition and returns a set of credentials that other providers (and your own code) can consume.
OpenID Connect (OIDC) is the recommended authentication mode wherever supported — see Configuring OIDC for per-provider setup.
| Provider | Description |
|---|---|
| aws-login | Log in to AWS using OIDC or static credentials. |
| azure-login | Log in to Azure using OIDC or static credentials. |
| doppler-login | Log in to Doppler using OIDC. |
| gcp-login | Log in to Google Cloud using OIDC or static credentials. |
| gh-login | Log in to GitHub using app credentials. |
| infisical-login | Log in to Infisical using OIDC or static credentials. |
| snowflake-login | Authenticate to Snowflake using OIDC. |
| vault-login | Log in to HashiCorp Vault using OIDC or static credentials. |
Thank you for your feedback!
If you have a question about how to use Pulumi, reach out in Community Slack.
Open an issue on GitHub to report a problem or suggest an improvement.