🗃️ Venafi Firefly Integration
9 items
📄️ Integrating SPIRL on k8s
You can use SPIFFE Workload API with your applications running on Kubernetes in different ways. The easiest way is using SPIRL Admission Controller.
📄️ Integrating SPIRL with Istio
SPIRL Agents also implement the Envoy SDS API over the same socket as the SPIFFE Workload API and can be used directly with Envoy or with Istio.
📄️ Integration with AWS API Gateway
AWS API Gateway can be configured to trust X.509 certificates presented by SPIRL enabled workloads. SPIRL utilizes short-lived root certificates, and automates their creation and deprecation within the SPIRL components. Configuring an external service such as API Gateway requires the current valid set of valid trust anchors are synchronized into the API Gateway configuration, as new roots are introduces and old roots are deprecated.