There are 4 repositories under spiffe topic.
VMware Secrets Manager for Cloud-Native Apps is a lightweight secrets manager to protect your sensitive data. It’s perfect for edge deployments where energy and footprint requirements are strict—See more: https://vsecm.com/
Integrates Spiffe and Vault to have secretless authentication
Provides agent and server plugins for SPIRE to allow TPM 2-based node attestation.
OPA-Envoy-SPIRE External Authorization Example.
vault-auth-spire is an authentication plugin for Hashicorp Vault which allows logging into Vault using a Spire provided SVID.
Tutorials about Cilium and SPIRE integration
Provides agent and server plugins for SPIRE to allow Tailscale node attestation.
Demo to build Service Mesh on Kubernetese using Envoy as data plane and SPIRE and OPA as control plane.
Demo of Kafka integrated with Envoy proxy sidecars and SPIRE on K8s
Cloud Native Identity Management Showcase.
Kubernetes datastore plugin for SPIRE server
Demo to build Service Mesh on Kubernetes using Envoy as data plane and SPIRE as control plane.
Proof of concept SPIFFE implementation that provides user SVIDs based on web SSO integration.
Using SPIRE to authenticate applications and get sensitive information about a rocket launched into space
This repository has been merged into https://github.com/spiffe/spire. The Vault plugin is now a build-in plugin.
Demo of SPIRE federation of two trust domains in two different K8s clusters
Demonstration of SPIFFE/SPIRE authentication on Kind cluster
Fetching and Rotating Pod's SVID from SPIRE Workload API as Sidecar
C# library for SPIFFE support
test environment for running devid-provisioning-tool
Minimalistic certificate minting tool, to ease development of apps with mTLS security for authN/Z