mTLS

Talos Linux doesn't natively support OIDC authentication. Here's how I built talosctl-oidc, an ephemeral certificate exchange server that bridges SSO and mTLS.

In this article, we will discover SPIFFE, a reference framework for workload identity management in distributed environments, and how to implement it in our Kubernetes applications with cert-manager.