Skip to content

Simplify Workload Identity Federation for Cloud SQL workloads #706

New issue
New issue
Open
Open
Simplify Workload Identity Federation for Cloud SQL workloads#706
Assignees
hessjcg
Labels
priority: p2Moderately-important priority. Fix may not be included in next release.type: feature request‘Nice-to-have’ improvement, new feature or different behavior or design.
@hessjcg

Description

@hessjcg
hessjcg
opened on Sep 15, 2025

Workload identity federation makes it possible to log in to the databases using the identity managed by K8s principals and an IAM service account. This is tricky to set up.

Consider ways that the operator could assist with the configuration. Perhaps the user specify an IAM principal in the AuthProxyWorkload, then the operator could automatically configure the K8s service accounts to apply the correct K8s principal to the pods where the AuthProxyWorkload is attached.

See #705

Metadata

Metadata

Assignees

Labels

priority: p2Moderately-important priority. Fix may not be included in next release.type: feature request‘Nice-to-have’ improvement, new feature or different behavior or design.

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions