Cross-cluster delegation » History » Revision 1
I have a user account on cluster A. I would like to run a container on cluster B, using data from cluster C. (Or more generally, I'd like to give cluster B a limited ability to perform an operation on C on my behalf, e.g. a "role").
I have a federated identity. I have user accounts on clusters B and C which are linked to cluster A.
I have a token issued by A. I can "salt" the token and use it to access B and C as my identity from A.