envoyproxy/envoy

Refactor JWT matching logic

Open

#20,578 opened on Mar 30, 2022

View on GitHub
 (7 comments) (0 reactions) (1 assignee)C++ (5,373 forks)batch import
area/jwt_authnarea/matchingenhancementhelp wanted

Repository metrics

Stars
 (27,997 stars)
PR merge metrics
 (Avg merge 8d) (378 merged PRs in 30d)

Description

As per https://github.com/envoyproxy/envoy/pull/20145, we have duplicative matching logic in core router and JWT filter. This seems a maintenance, testing and security concern. I think with some modest refactoring, we could move this match logic to a common library. This is a fairly straightforward refactoring I think (famous last words).

Contributor guide