John Howard

icon company Solo.io icon location Sunnyvale, CA icon location Istio @ Solo.io

Results 1682 comments of John Howard

ambient: fix nil pointer when pod cache is stale

/retest

Expose PadForwardPayloadHeader in JWTRule

I am not sure it makes sense to put header manipulation rules in request authentication. This could be solved with a simple lua filter or wasm plugin to re-write the...

Allow waypoint by default very hard to debug

This is no longer there so I think this is obsolete. if we are thinking of adding it back we definitely will need to address the UX

Improved path pattern matching for `AuthorizationPolicy`

This has been implemented!

serviceentry / virtual service not work when target to outside server.

Full reproducer: ```yaml apiVersion: networking.istio.io/v1beta1 kind: ServiceEntry metadata: name: httpbin namespace: istio-system spec: hosts: - httpbin.org ports: - number: 80 name: http protocol: HTTP targetPort: 443 resolution: DNS location: MESH_EXTERNAL...

serviceentry / virtual service not work when target to outside server.

`override_auto_sni_header` seems to just use a different header. We don't want any other header IIUYC?

ISTIO_DELTA_XDS is not a pilot-discovery env var

Tracking in https://github.com/istio/istio/issues/47925

http_conn_manager_prefix stat tag is not matched accordingly

@keithmattix did you fix this?

Remove default security context from gateway injection

thanks for starting this! the other PR above was merged and does the same thing so I'll close this.

istioctl doesn't correctly patch CPU requests/limits

I put up a prototype in https://github.com/howardjohn/istio/pull/new/istioctl/always-string-reflect. Doesn't fully work but not far off