Skip to content

Instantly share code, notes, and snippets.

@wvanderdeijl
Last active June 2, 2022 13:59
Show Gist options
  • Save wvanderdeijl/734cc05dd2438a9946c396d714d5e83e to your computer and use it in GitHub Desktop.
Save wvanderdeijl/734cc05dd2438a9946c396d714d5e83e to your computer and use it in GitHub Desktop.

List of gists with federation examples

In a multi-cloud environment it is wise to use federated identities between different cloud environments. This removes the need to issue, manage, and rotate secrets. With federated identities a party running on (for example) Google Cloud can use the identity they already have within Google Cloud (attached to their VM or Cloud Function) to assume a federated AWS identity and then use that AWS identity to invoke API's from the other party. This could not only be custom API's (like API gateway), but since you fully impersonate an AWS identity (aka AWS Role) they could also invoke AWS own API's like S3.

Over time I've collected numerous samples of federation between different cloud providers. This is list of all of them:

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment