Azure AD Workload Identity uses Kubernetes primitives to associate managed identities for Azure resources and identities in Azure Active Directory (AAD) with pods.
-
Updated
Dec 3, 2024 - Go
Azure AD Workload Identity uses Kubernetes primitives to associate managed identities for Azure resources and identities in Azure Active Directory (AAD) with pods.
This guide demonstrates creating a Kubernetes private cluster in Google Kubernetes Engine (GKE) running a sample Kubernetes workload that connects to a Cloud SQL instance using the cloud-sql-proxy "sidecar" authenticated using Workload Identity (Beta).
Securely access AWS services from GKE cluster
Identity Manager Operator
A CLI for Kubernetes workload identity
.net library with extensions for passwordless authentication to Azure Database for MySql and Azure Database for PostgreSQL
Azure Identity Scripts for Entra ID & Azure DevOps Service Connections
Script and container demonstrating SAML SSO for google apps domains
AWS SPIFFE Workload Helper is a light-weight tool intended to assist in providing a workload with credentials for AWS using its SPIFFE identity.
A demo on how to use Workload Identity on GCP to call Google Cloud API from an application deployed on GKE
Configure OpenID Connect with GCP Workload Identity Federation
Example setup of workload-identity into a Kubernetes cluster on GCP - https://cloud.google.com/kubernetes-engine/docs/how-to/workload-identity
Terraform module for creating workload identity in azure.
Showcasing the potential of SPIFFE with real-life services
Azure DevOps Workload Identity Federation - Updating your Azure DevOps ARM Service Connections to use the recommended Workload Identity Federation
GKE IAM role and workload identity sample project
Deploy an Azure Function Service Bus trigger using KEDA Add-on for AKS for scaling and connecting to Azure Service Bus using workload identity for AKS.
This repo demonstrates how to fetch secrets from Azure Key Vault using the Kubernetes External Secrets operator. It leverages OIDC authentication and Azure Workload Identity to securely access the vault from within a Kubernetes cluster. The implementation uses K3d, OpenTofu, and Terragrunt for infrastructure provisioning, showcasing GitOps practice
Add a description, image, and links to the workload-identity topic page so that developers can more easily learn about it.
To associate your repository with the workload-identity topic, visit your repo's landing page and select "manage topics."