-
Story
-
Resolution: Done-Errata
-
Critical
-
OSSM 2.4.0
-
None
-
False
-
None
-
False
-
Release Notes
-
Previous versions, Grpc was in techPreview. Now, for the external authorization feature has been made generally available in 2.4.0, this release adds the envoyExtAuthzGrpc field to configure an external authorization provider using the gRPC API.
-
-
This is required to enable External Authorization for gRPC, and to complete the external authorization story.
Related (Gateway API): https://issues.redhat.com/browse/OSSM-983
As a workaround, this field is accessible via the "techPreview" configuration today.
Acceptance criteria:
Users can deploy SMCP v2.4 with envoyExtAuthzGrpc:
apiVersion: maistra.io/v2 kind: ServiceMeshControlPlane metadata: name: basic spec: meshConfig: extensionProviders: - name: ext-authz envoyExtAuthzGrpc: service: ext-authz.foo.svc.cluster.local port: 8000 ...
The implementation will be almost 1:1 copy of this pull request: https://github.com/maistra/istio-operator/pull/1136.
- is cloned by
-
-
- Closed
-
- links to
-
RHBA-2023:120107
Red Hat OpenShift Service Mesh Containers for 2.4.3
- mentioned on
