envoyproxy/gateway

Support XFFC validation as First class api in SecurityPolicy

Open

#5 392 ouverte le 3 mars 2025

Voir sur GitHub
 (5 commentaires) (0 réactions) (0 assignés)Go (802 forks)auto 404
area/apiarea/policyhelp wanted

Métriques du dépôt

Stars
 (2 871 stars)
Métriques de merge PR
 (Métriques PR en attente)

Description

Description:

When using mTLS for AuthN, RBAC AuthZ should support client certification validation

    authorization:
      defaultAction: Deny
      rules:
        principal:
          clientCert:
            Subject: foo.bar.com
            URI: http://foo.bar.com

[optional Relevant Links:] https://github.com/envoyproxy/gateway/issues/2250 https://github.com/envoyproxy/gateway/pull/5310

Guide contributeur