The application must use SVID, which is SPIFFE Verifiable Identity Document, to use Secure Storage V2 APIs. They can be as follows:
- X.509-SVID - The X.509-SVID is used to establish mutual TLS secured channels between the Industrial Edge Runtime Time (i.e. edge-iot-core) and the application container.
- JWT-SVID - The JWT-SVID is used as an autherization token.
These SVIDs can be retrieved from the SPIFFE Workload API via the mounted sock path /var/run/edgedevice/edgeapiagent.sock.
SPIFFE supports libraries that allow interaction with the SPIFFE workload API for Go as SPIFFE Go library and Java as SPIFFE Java library. There also exists similar libraries in C, C++, Rust and Python.