Cross-Cluster Identity Federation with PQC Security
Securely authenticate microservices across Kubernetes clusters using Hybrid Post-Quantum Cryptography (PQC). Generate quantum-safe federated tokens with MicroStax.
How to Federate Identity Across Clusters
MicroStax provides a centralized Sovereignty and Identity Layer (Patent 13) designed for the post-quantum era. When an AI Agent or a microservice spanning multiple regions needs to cross-authenticate securely, you must request a Federated Token.
These tokens utilize Hybrid Post-Quantum Cryptography (PQC)—combining classic elliptic-curve signatures with quantum-resistant algorithms—to ensure your session remains secure even against future compute threats.
Generating the Token
The fastest way to generate an ad-hoc token for testing or local scripting is via the VS Code interface or the MicroStax CLI.
Option A: VS Code Command Palette
- Press
Cmd/Ctrl + Shift + P. - Run MicroStax: Federate Identity Token...
- Select the target Environment or Cluster from the menu.
- The token is instantly copied to your clipboard.
Option B: The CLI
Verify your current identity scope and generate a JWT scoped for a specific target cluster:
# Verify your current PQC identity integrity
microstax identity verify <your-current-token>
# Generate a federated token for a target cluster
microstax identity federate --service default --target stx-eu-west-cluster
Utilizing the Token
You can now inject this JWT into the Authorization: Bearer <token> header of your API requests.
[!IMPORTANT] Short-Lived by Design: Federated tokens are short-lived. For long-running service-to-service (S2S) communication, we recommend using the MicroStax Identity Controller to automate rotation within your mesh.
Next Steps
- Learn more about Sovereignty Controls
- Read the Identity API Reference
- Explore Multi-Region Relocation