No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

Does anyone use Bitbucket pipelines to kick off calls to `pulumi up` or `pulumi preview`? I've got it working with `PULUMI_ACCESS_TOKEN` but not with OIDC, and the documentation looks like it covers my situation. Is there anything unusual required in setting this up? On the Pulumi side, I've got a single policy with an Allow decision and the Bitbucket aud, repositoryUuid and workspaceUuid properties configured; on the Bitbucket side, I have `oidc: true` in the appropriate step. Is anything else needed?

Sorted now. I misunderstood which parts of the process were handled by setting `oidc: true` on the step. That _only_ adds the BITBUCKET_STEP_OIDC_TOKEN variable into the step environment. I needed to exchange that for the Pulumi access token myself. It's working now.