spiffe
There are 4 repositories under spiffe topic.
- Language:Shell 1395
AthenZ / athenz
Open source platform for X.509 certificate based service authentication and fine grained access control in dynamic infrastructures. Athenz supports provisioning and configuration (centralized authorization) use cases as well as serving/runtime (decentralized authorization) use cases.
Language:Java 858- secrets-manager
vmware-tanzu / secrets-manager
VMware Secrets Manager for Cloud-Native Apps is a lightweight secrets manager to protect your sensitive data. It’s perfect for edge deployments where energy and footprint requirements are strict—See more: https://vsecm.com/
Language:Go 128 philips-labs / spiffe-vault
Integrates Spiffe and Vault to have secretless authentication
Language:Go 76bloomberg / spire-tpm-plugin
Provides agent and server plugins for SPIRE to allow TPM 2-based node attestation.
Language:Go 70quicsec / quicsec
HTTP/3-enable existing HTTP apps. Leverage HTTP3 native features and auto-enable workload identity (SPIFFE), AuthN (mTLS/x509, OIDC/Auth0-Okta), AuthZ (OPA), defense-in-depth (WAAP/WAF), and observability (metrics, logs, alerting, dashboard).
Language:Go 67open-policy-agent / opa-envoy-spire-ext-authz
OPA-Envoy-SPIRE External Authorization Example.
Language:Go 46vault-auth-spire is an authentication plugin for Hashicorp Vault which allows logging into Vault using a Spire provided SVID.
Language:Go 41accuknox / cilium-spire-tutorials
Tutorials about Cilium and SPIRE integration
Language:Shell 23- Language:Java 19
- Language:Go 15
- Language:Makefile 10
- Language:Go 9
jsiebens / spire-tailscale-plugin
Provides agent and server plugins for SPIRE to allow Tailscale node attestation.
Language:Go 9zlabjp / envoy-spire-opa-service-mesh
Demo to build Service Mesh on Kubernetese using Envoy as data plane and SPIRE and OPA as control plane.
- Language:Go 9
flobuehr / spire-envoy-kafka
Demo of Kafka integrated with Envoy proxy sidecars and SPIRE on K8s
Language:Python 7qaware / cloudid-showcase
Cloud Native Identity Management Showcase.
Language:Java 7summerwind / spire-plugin-datastore-k8s
Kubernetes datastore plugin for SPIRE server
Language:Go 7Demo to build Service Mesh on Kubernetes using Envoy as data plane and SPIRE as control plane.
JackOfMostTrades / spiffe-user-demo
Proof of concept SPIFFE implementation that provides user SVIDs based on web SSO integration.
Language:Go 6arielroque / stellaris
Using SPIRE to authenticate applications and get sensitive information about a rocket launched into space
Language:Shell 5This repository has been merged into https://github.com/spiffe/spire. The Vault plugin is now a build-in plugin.
Language:Go 5Demo of SPIRE federation of two trust domains in two different K8s clusters
Language:Shell 4nishantapatil3 / spire-federation-kind
Demonstration of SPIFFE/SPIRE authentication on Kind cluster
Language:Go 4- Language:Shell 4
- Language:TypeScript 3
hiyosi / svid-helper
Fetching and Rotating Pod's SVID from SPIRE Workload API as Sidecar
Language:Go 3- Language:Go 2
vurhanau / csharp-spiffe
C# library for SPIFFE support
Language:C# 1- Language:Shell 0
- Language:Smarty
- Language:Go
rgl / devid-provisioning-tool-vagrant
test environment for running devid-provisioning-tool
Language:Gorumenvasilev / tlsgen-dev
Minimalistic certificate minting tool, to ease development of apps with mTLS security for authN/Z
Language:Go
