envoyproxy/gateway
GitHub で見るSupport XFFC validation as First class api in SecurityPolicy
Open
#5,392 opened on 2025年3月3日
area/apiarea/policyhelp wanted
Repository metrics
- Stars
- (2,871 stars)
- PR merge metrics
- (PR metrics pending)
説明
Description:
When using mTLS for AuthN, RBAC AuthZ should support client certification validation
authorization:
defaultAction: Deny
rules:
principal:
clientCert:
Subject: foo.bar.com
URI: http://foo.bar.com
[optional Relevant Links:] https://github.com/envoyproxy/gateway/issues/2250 https://github.com/envoyproxy/gateway/pull/5310