Skip to main content

About Secretless.cloud

Our Mission

Secretless.cloud exists to educate and promote the use of secretless authentication workflows among cloud professionals. We believe that long-lived credentials and static secrets represent one of the most significant security risks in modern cloud infrastructure, and that the industry can do better.

Why Secretless Authentication?

Traditional authentication methods rely on long-lived tokens, API keys, and credentials that:

  • Create significant security risks when compromised
  • Require complex rotation and lifecycle management
  • Increase the attack surface for credential theft
  • Complicate compliance and audit requirements

Secretless authentication using OIDC (OpenID Connect) and just-in-time tokens eliminates these risks by:

  • Providing short-lived, automatically rotating credentials
  • Leveraging existing identity providers for authentication
  • Reducing the need to store and manage secrets
  • Enabling fine-grained, claim-based authorization

What We Provide

This site offers comprehensive documentation for implementing secretless workflows across:

  • Major cloud providers: AWS, Google Cloud Platform, Azure, Kubernetes, Cloudflare
  • CI/CD platforms: GitHub Actions, GitLab CI, CircleCI, and more
  • Infrastructure tools: Terraform Cloud, Pulumi, and other IaC platforms

Our guides provide step-by-step instructions, best practices, and real-world examples to help teams transition from traditional secret-based authentication to modern secretless workflows.

Who We Are

Secretless.cloud is maintained by Shahar Mintz, an independent DevOps consultant based in Hong Kong. With extensive experience in cloud infrastructure, security, and automation, Shahar created this resource to share knowledge and accelerate the adoption of secure authentication practices across the industry.

Open Source & Community-Driven

This site is open source and community-driven. We encourage contributions from security professionals, DevOps engineers, and cloud architects worldwide. If you find errors, have suggestions, or want to contribute new guides, please:

  • Submit a pull request on GitHub
  • Open an issue to report problems or request new content
  • Share your own secretless authentication experiences and patterns

Our Commitment to Quality

We strive to provide:

  • Accurate, tested information based on real-world implementations
  • Regular updates to reflect changes in cloud provider APIs and best practices
  • Clear, accessible documentation suitable for both beginners and experts
  • Vendor-neutral guidance that works across platforms and tools

Transparency

This site uses Google AdSense to support hosting and maintenance costs. We are committed to providing high-quality, unbiased content regardless of advertising. Our recommendations are based solely on technical merit and community best practices, not commercial relationships.

Have questions or want to learn more? Visit our Contact page or explore our documentation to get started with secretless authentication.