From Tailnet to platform

15 snips

Mar 11, 2026

David Carney, Co-founder and Chief Strategy Officer at Tailscale, builds identity and connectivity features like TSIDP, TSNet, multi-tailnets, and Aperture. He discusses clickless in-tailnet auth via TSIDP. He explores TSNet apps and how multi-tailnets enable isolation and control. He introduces Aperture as a private AI gateway for API key management, observability, and agent security.

Ask episode

AI Snips

Chapters

Transcript

Episode notes

ADVICE

Install TSIDP From The Community Repo

Try TSIDP today because it's open source and available on GitHub, supporting OAuth2/OAuth2.1 and updated for MCP compatibility.
David notes many home-labbers already run it (Go binary/TSNet) and it can be started as a simple service on Proxmox/LXC.

INSIGHT

TSNet Turns Apps Into Network Nodes

TSNet is a user-space networking stack (Go library) that lets any compiled app appear as a Tailscale node with its own IP and policies.
David says Aperture itself is a TSNet application, so apps get identity, ACLs, and show up like devices.

INSIGHT

Aperture Centralizes AI Keys And Identity

Aperture is a private AI gateway built on TSNet that centralizes API keys and logs inside your tailnet so every AI request carries identity.
This gives one point of observability, control, token usage metrics, and eliminates sharing raw provider API keys across teams.

Get the Snipd Podcast app to discover more snips from this episode

Get the app

Adam talks with Tailscale co-founder and Chief Strategy Officer David Carney about where Tailscale is headed next: TSIDP, TSNet, multiple tailnets, and Aperture. They get into clickless auth (via TSIDP), TSNet apps, multiple tailnets for isolation and control, and Aperture, Tailscale’s private AI gateway for API key management, observability, and agent security.

Join the discussion

Changelog++ members save 8 minutes on this episode because they made the ads disappear. Join today!

Sponsors:

Augment Code – Adam loves “Auggie” – Augment Code’s CLI that brings Augment’s context engine and powerful AI reasoning anywhere your code goes. From building alongside you in the terminal to any part of your development workflow.
NordLayer – Toggle-ready network security for modern businesses. Get an exclusive offer: up to 22% off NordLayer yearly plans plus 10% on top with the coupon code changelog-10-NORDLAYER. Try it risk-free with a 14-day money-back guarantee at nordlayer.com/thechangelog
Squarespace – Turn your expertise into a business with the all-in-one platform for websites, services, and getting paid. Use code CHANGELOG to save 10% on your first website purchase.
Fly.io – The home of Changelog.com — Deploy your apps close to your users — global Anycast load-balancing, zero-configuration private networking, hardware isolation, and instant WireGuard VPN connections. Push-button deployments that scale to thousands of instances. Check out the speedrun to get started in minutes.

Featuring:

David Carney – Website, GitHub, X
Adam Stacoviak – Website, GitHub, LinkedIn, Mastodon, X

Show Notes:

Send an email to David ~> aperture@tailscale.com

Mentioned in this episode

Something missing or broken? PRs welcome!