Hello,

I have a use case where applications running in short-lived Docker containers need access to secrets stored in PMP.

To my undestanding, each PMP API request needs to originate from a registered 'user@host' PMP account.

For obvious reasons, this quickly becomes impractical with a growing number of containers.

As a possible solution, does PMP support any kind of access delegation?

For example, would it be possible to have the Docker host itself use a PMP account to create temporary PMP access tokens which can then be passed onto the containers?

Or more broadly speaking, is there any mechanism for granting API access to short-lived PMP consumers such as docker containers or cloud instances?

Regards,

Veselin