Aryan Gupta

icon company Google icon location Tempe, Arizona icon location Making cloud security invisible

Results 37 comments of Aryan Gupta

MTLS port override doesn't appear to work for headless services

‘PeerAuth’ policies only enforce at the workload with sidecar, hence it won’t get applied to headless services.

MTLS port override doesn't appear to work for headless services

@nmittler ah my bad I got confused with the naked service, looking into the issue.

MTLS port override doesn't appear to work for headless services

@nmittler One possibility for this issue - https://istio.io/latest/docs/ops/common-problems/network-issues/#503-error-while-accessing-headless-services

security tests refactory - part 3

/test integ-security-multicluster_istio

security tests refactory - part 3

/test integ-telemetry-mc_istio

security tests refactory - part 3

/test integ-security-multicluster_istio

security tests refactory - part 3

/test integ-pilot_istio

Authorization Policy rule values from request headers

I believe @liwenhao0810 is correct, we can't do it in authz policy directly but you can try to use "CUSTOM" type policy and create your own external service to fulfill...

Authorization Policy rule values from request headers

Yeah it's still in alpha. But I think we have customers who are using it.

istioctl analyze: showing invalid error on release 1.13.2

any updates on this one? I'm still seeing this issue.