|
|
|
|
|
|
by cphoover
1510 days ago
|
|
|
hmmm.... im trying to understand the benefit of secretless broker... if someone compromises thisnwouldnt they have access to all credentials for everything? now we are just moving from trusting a bunch of distinct services to trusting this single broker... just moving the responsibility of trust to a single point of potential failure no? Also dont credentials have to be passed to secretless broker? how does it know the application has access to the service? isnt that still at risk of being leaked. i like the idea of not thinking about secrets but it seems to good to be true. |
|
|