Skip to content

Instantly share code, notes, and snippets.

Embed
What would you like to do?
[Authentication Policy] istio policy for the series https://rinormaloku.com/istio-an-introduction/
apiVersion: authentication.istio.io/v1alpha1
kind: Policy
metadata:
name: auth-policy
spec:
targets:
- name: sa-web-app
- name: sa-feedback
origins:
- jwt:
issuer: "https://{YOUR_DOMAIN}/"
jwksUri: "https://{YOUR_DOMAIN}/.well-known/jwks.json"
principalBinding: USE_ORIGIN
@markusrt

This comment has been minimized.

Copy link

@markusrt markusrt commented Feb 18, 2019

@rinormaloku: We just discussed about JWKS and potential caching. It looks like there is an option available:
https://github.com/istio/api/blob/2b2fabd451530ae28003830c52f0ca43ca63be14/envoy/config/filter/http/jwt_auth/v2alpha1/config.proto#L89

Maybe you can add this to your example :)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.