Closed strideynet closed 3 weeks ago
Lots of research needs to be done here !
Seems like we can offer this over the same gRPC listener as the workload API. We'll need to look into Workload Attestation to really neaten this up at some point otherwise you'll need to run a tbot sidecar for each envoy sidecar.
What would you like Teleport to do?
Support distributing workload identity certificates to an Envoy proxy.
What problem does this solve?
Integrating Teleport Workload Identity with service meshes.
If a workaround exists, please include it.