@kelseyhightower @antonio_berben @jrfernandez@EnvoyProxy@OpenPolicyAgent For sidecars and local IPC you can generate and inject a shared secret via a configmap or similar. The Auth proxy can send and the application can verify if JWT validation is undesirable.
@jessfraz OMG, you have totally described my career path. I haven't found many others who have gone FE to BE/Infra. Although now I kind do a little of all of it. Also, no real promos just lateral moves.
Register now for the 9 Nov @SPIFFEio Community Day to be simulcast in NYC (thanks @Work_Bench!), SF (thanks @Square!), and online.
https://t.co/xVF2413nqT
DM us if you can't open the link for some reason.
In light of recent events it's a good time to remind people that sites created with @GoHugoIO are not vulnerable to any in-memory access flaws like Spectre or Meltdown. Want a secure site without costly maintenance? Use https://t.co/6klis2gz34