Cross-cluster delegation¶

Use case¶

I have a user account on cluster A. I would like to run a container on cluster B, using data from cluster C. (Or more generally, I'd like to give cluster B a limited ability to perform an operation on C on my behalf, e.g. a "role").

Design sketch¶

I have a federated identity. I have user accounts on clusters B and C which are linked to cluster A.

I have a token issued by A. I can "salt" the token and use it to access B and C as my identity from A.