Mario Loriedo
Senior Principal Software Engineer at Red Hat
Actions
Mario is a Senior Principal Software Engineer at Red Hat. He works on Podman and on container-based developer tools. He has been a CNCF Ambassador and the tech lead of the Eclipse Che project. He has co-created the Devfile (a CNCF Sandbox Project). He has been a speaker at conferences such as KubeCon, LinuxCon, JavaOne and FOSDEM.
Using Workload Identity Federation to Increase Developers Productivity at Ford Motor Company
Developing applications nowadays requires access to external APIs through personal access tokens. But this brings some challenges. How is a token approved and issued? How can we make sure that it’s going to be stored in a secure way? How do we limit the scope of the token so that who owns it cannot abuse it? How are tokens transmitted across different systems?
Ford is a long time Kubernetes user and in this talk we are going to show how two recent features are allowing developers and platform engineers to manage API tokens effectively and securely. Those features are Service Account Token Volume projection (that brings some new security features compared to the default Service Account Tokens) and Workload Identity Federation (that allows linking Kubernetes Service Accounts with third party services).
The `kubectl debug` command is missing an `IDE` option. Let’s fix that!
Don't get me wrong. `kubectl debug` is one of our favorite commands but, because we like it so much, we are convinced it deserves more!
In this talk we present a `kubectl` extension to run an IDE in an ephemeral container for debugging purposes. This extension uses the DevWorkspace operator, which is capable of running lightweight cloud development environments, including the IDE, in containers.
If you like debugging by adding breakpoints in an IDE rather than inspecting your application's logs, you should attend this talk.
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top