☂️ [GEP-26] Workload Identity - Trust Based Authentication #9586
Labels
area/ipcei
IPCEI (Important Project of Common European Interest)
area/security
Security related
ipcei/workload-identity
Epic for Gardener Workload Identity scenarios
kind/enhancement
Enhancement, improvement, extension
kind/epic
Large multi-story topic
How to categorize this issue?
/area security
/kind enhancement
This is an umbrella issue for implementing the changes proposed in GEP-26
Tasks
API Server
WorkloadIdentity
[GEP-26] AddWorkloadIdentity
API #9780CredentialsBinding
[GEP-26] AddCredentialsBinding
API #9626TokenRequest
[GEP-26] AddTokenRequest
API andworkloadidentities/token
subresource #9813SecretBinding
forCredentialsBinding
.CredentialsBinding
instead ofSecretBinding
WorkloadIdentity
[GEP-26] AddWorkloadIdentity
API #9780sub
claim value intoWorkloadIdentity
status [GEP-26] AddWorkloadIdentity
API #9780SecretBinding
in favor ofCredentialsBinding
Admission Controller
WorkloadIdentity
that they are responsible forGardenlet
gardener.cloud/operation=renew-workload-identity-token
Operator
Extensions
WorkloadIdentity
when the extenstion provider has not implemented support yet.AWS
WorkloadIdentity
resourceAzure
WorkloadIdentity
resourceGCP
WorkloadIdentity
resourceAlicloud
WorkloadIdentity
resourceDiscovery Server
The text was updated successfully, but these errors were encountered: