Terraform Cloud now supports dynamic provider credentials for Kubernetes

In March 2023, Terraform Cloud announced the general availability of dynamic provider credentials, a native support for just-in-time authentication with AWS, Azure, Google Cloud, and HashiCorp Vault providers. This enhancement reduces the risk of exposure from storing long-lived static credentials and eliminates manual secret rotation burdens. Dynamic provider credentials are based on industry-standard OpenID Connect (OIDC) workload identity authentication flow, allowing Terraform to authenticate Kubernetes clusters using EKS and GKE without long-lived static credentials. With this feature, Terraform Cloud simplifies setup and ensures secure authentication across cloud environments, mitigating security risks associated with storing long-lived credentials.