Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Workload ID: SPIFFE JWT SVID support #38930

Closed
strideynet opened this issue Mar 4, 2024 · 0 comments · Fixed by #47017
Closed

Workload ID: SPIFFE JWT SVID support #38930

strideynet opened this issue Mar 4, 2024 · 0 comments · Fixed by #47017
Assignees
@strideynet
Labels
feature-request Used for new features in Teleport, improvements to current should be #enhancements machine-id

Comments

@strideynet
Copy link
Contributor

strideynet commented Mar 4, 2024
edited
Loading

What would you like Teleport to do?

Support issuing JWT SVIDs through Teleport's Workload Identity in addition to the current ability to issue X509 SVIDs.

Specification: https://github.com/spiffe/spiffe/blob/main/standards/JWT-SVID.md

What problem does this solve?

JWT SVIDs will allow workloads to authenticate securely with platforms that do not currently support X509 workload identity federation but do support JWT workload identity federation.

Platforms supporting JWT identity federation:

  • Google Cloud Platform
  • Azure
  • Vault

OIDC compat is out of scope for this ticket and should be considered in #46279

If a workaround exists, please include it.

None
@strideynet strideynet added feature-request Used for new features in Teleport, improvements to current should be #enhancements machine-id labels Mar 4, 2024
@strideynet strideynet self-assigned this Jul 26, 2024
@strideynet strideynet changed the title Machine ID: SPIFFE JWT SVID support Workload Identity: SPIFFE JWT SVID support Aug 21, 2024
@strideynet strideynet changed the title Workload Identity: SPIFFE JWT SVID support Workload ID: SPIFFE JWT SVID support Aug 21, 2024
This was referenced Sep 4, 2024
Closed
Closed
@strideynet strideynet mentioned this issue Sep 18, 2024
Merged
This was referenced Sep 30, 2024
Merged
Merged
@strideynet strideynet linked a pull request Oct 3, 2024 that will close this issue
Workload ID: Add tbot support for JWT SVIDs #47017
Merged
@strideynet strideynet mentioned this issue Oct 7, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@strideynet strideynet

Labels
feature-request Used for new features in Teleport, improvements to current should be #enhancements machine-id
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Workload ID: Add tbot support for JWT SVIDs gravitational/teleport
1 participant
@strideynet