envoyproxy/gateway

Support XFFC validation as First class api in SecurityPolicy

Open

#5,392 opened on 2025年3月3日

GitHub で見る
 (5 comments) (0 reactions) (0 assignees)Go (802 forks)auto 404
area/apiarea/policyhelp wanted

Repository metrics

Stars
 (2,871 stars)
PR merge metrics
 (PR metrics pending)

説明

Description:

When using mTLS for AuthN, RBAC AuthZ should support client certification validation

    authorization:
      defaultAction: Deny
      rules:
        principal:
          clientCert:
            Subject: foo.bar.com
            URI: http://foo.bar.com

[optional Relevant Links:] https://github.com/envoyproxy/gateway/issues/2250 https://github.com/envoyproxy/gateway/pull/5310

コントリビューターガイド