Chiebot-Mirror
/
data-plane-api
mirror of https://github.com/envoyproxy/data-plane-api.git
8
0
Fork 0
Code Issues Projects Releases Wiki Activity

ext_authz: forward typed_filter_metadata selected by typed_metadata_context_namespaces to external auth service. (#20305)

Browse Source 
filter_metadata is already forwarded to external auth service
but typed_filter_metadata is not, this commit fixes this.

Signed-off-by: Wanli Li <wanlil@netflix.com>

Mirrored from https://github.com/envoyproxy/envoy @ 9cce4a61851069f025493726f0b6cef87489f394
pull/626/head
data-plane-api(Azure Pipelines) 3 years ago
parent 63fcd9fe60
commit cc33dfd8d9
1 changed files with 10 additions and 2 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 12
      envoy/extensions/filters/http/ext_authz/v3/ext_authz.proto

12
envoy/extensions/filters/http/ext_authz/v3/ext_authz.proto
Unescape View File

@ -25,7 +25,7 @@ option (udpa.annotations.file_status).package_version_status = ACTIVE;
// External Authorization :ref:`configuration overview <config_http_filters_ext_authz>`. // External Authorization :ref:`configuration overview <config_http_filters_ext_authz>`.
// [#extension: envoy.filters.http.ext_authz] // [#extension: envoy.filters.http.ext_authz]
// [#next-free-field: 16] // [#next-free-field: 17]
message ExtAuthz { message ExtAuthz {
option (udpa.annotations.versioning).previous_message_type = option (udpa.annotations.versioning).previous_message_type =
"envoy.config.filter.http.ext_authz.v2.ExtAuthz"; "envoy.config.filter.http.ext_authz.v2.ExtAuthz";
@ -84,7 +84,7 @@ message ExtAuthz {
type.v3.HttpStatus status_on_error = 7; type.v3.HttpStatus status_on_error = 7;
// Specifies a list of metadata namespaces whose values, if present, will be passed to the // Specifies a list of metadata namespaces whose values, if present, will be passed to the
// ext_authz service as an opaque *protobuf::Struct*. // ext_authz service. :ref:`filter_metadata <envoy_v3_api_field_config.core.v3.Metadata.filter_metadata>` is passed as an opaque *protobuf::Struct*.
// //
// For example, if the *jwt_authn* filter is used and :ref:`payload_in_metadata // For example, if the *jwt_authn* filter is used and :ref:`payload_in_metadata
// <envoy_v3_api_field_extensions.filters.http.jwt_authn.v3.JwtProvider.payload_in_metadata>` is set, // <envoy_v3_api_field_extensions.filters.http.jwt_authn.v3.JwtProvider.payload_in_metadata>` is set,
@ -97,6 +97,14 @@ message ExtAuthz {
// //
repeated string metadata_context_namespaces = 8; repeated string metadata_context_namespaces = 8;
// Specifies a list of metadata namespaces whose values, if present, will be passed to the
// ext_authz service. :ref:`typed_filter_metadata <envoy_v3_api_field_config.core.v3.Metadata.typed_filter_metadata>` is passed as an *protobuf::Any*.
//
// It works in a way similar to `metadata_context_namespaces` but allows envoy and external authz server to share the protobuf message definition
// in order to do a safe parsing.
//
repeated string typed_metadata_context_namespaces = 16;
// Specifies if the filter is enabled. // Specifies if the filter is enabled.
// //
// If :ref:`runtime_key <envoy_v3_api_field_config.core.v3.RuntimeFractionalPercent.runtime_key>` is specified, // If :ref:`runtime_key <envoy_v3_api_field_config.core.v3.RuntimeFractionalPercent.runtime_key>` is specified,

Write Preview
Loading…
Cancel
Save