Tag: Branch: Tree: 88b51a089d

main

master-ci-test

Branches Tags

${ item.name }

Create tag ${ searchTerm }

Create branch ${ searchTerm }

from '88b51a089d'

${ noResults }

Commit Graph

2094 Commits (88b51a089d0bc963895cd09cc81dfd51a8ce29b6)

Author	SHA1	Message	Date
update-envoy[bot]	88b51a089d	data source: new data source provider to support file watching (#33390) ... This PR provide a common data source provider to support file watching. For the users who don't need the file watching or don't use the file data source, if the provider is used, then only need to pay 8 additional bytes and one additional if check (holds_alternative) compare to using the directly DataSource::read(). For the users who want to use the file watching, additional file watcher and TLS slot (ThreadLocalStorage) are necessary. This is much expensive but reasonable. Risk Level: low. Testing: unit. Docs Changes: n/a. Release Notes: n/a. Platform Specific Features: n/a. Signed-off-by: wbpcode <wbphub@live.com> Signed-off-by: code <wangbaiping@corp.netease.com> Mirrored from https://github.com/envoyproxy/envoy @ 838bc86a0fe46801320eef13cc599bc80bd88d10	12 months ago
update-envoy[bot]	604e7f5053	OTel Access Logger: support additional stat prefix (#34091) ... --------- Signed-off-by: Xuyang Tao <taoxuy@google.com> Mirrored from https://github.com/envoyproxy/envoy @ 7436690884f70b5550b6953988d05818bae3d087	12 months ago
update-envoy[bot]	df749113e2	AWS Lambda, add optional credential settings to config. (#34121) ... Signed-off-by: Juan Manuel Ollé <jolle@mulesoft.com> Mirrored from https://github.com/envoyproxy/envoy @ 37df2cd872aa92507babcb5785c50aebbd52057e	12 months ago
update-envoy[bot]	8d15ea77cb	[cache filter] Add option to ignore cache-control directives from request (#34090) ... Signed-off-by: Raven Black <ravenblack@dropbox.com> Mirrored from https://github.com/envoyproxy/envoy @ 3e75c6b464546b4f7f350747459f4de7c86e0b38	12 months ago
update-envoy[bot]	6b854fd36f	Populate typed metadata in proxy protocol filter by default (#33146) ... Fixes #32718 Signed-off-by: Kateryna Nezdolii <kateryna.nezdolii@gmail.com> Mirrored from https://github.com/envoyproxy/envoy @ 87514d50f8eee63e84127dbd46217a86fa31df25	12 months ago
update-envoy[bot]	8aa326d87f	Add disallowed_headers knob to ext_authz config (#33349) ... * Add disallowed_headers knob to ext_authz config Signed-off-by: Antonio Leonti <leonti@google.com> * reorder checks to emphasize disallowed_headers precedence Signed-off-by: antoniovleonti <leonti@google.com> --------- Signed-off-by: Antonio Leonti <leonti@google.com> Signed-off-by: antoniovleonti <leonti@google.com> Mirrored from https://github.com/envoyproxy/envoy @ 85d8cc745589ac8be9e85a2983740f22e80c85c5	12 months ago
update-envoy[bot]	39a9c5de93	healthcheck: support TCP health check with ProxyProtocol (#31691) ... * healthcheck: support TCP health check with ProxyProtocol Signed-off-by: Rei Shimizu <shimizu.rei@linecorp.com> Mirrored from https://github.com/envoyproxy/envoy @ a3ecbf09d08f457349126faaf64ce5005658637d	12 months ago
update-envoy[bot]	b2488885ed	Add command line flag to skip hot restart stats transfer (#34069) ... * Add command line flag to skip hot restart stats transfer Signed-off-by: Raven Black <ravenblack@dropbox.com> Mirrored from https://github.com/envoyproxy/envoy @ f0c232963ef5c36a3fe4f4697afc71ff3861873a	12 months ago
update-envoy[bot]	286aa43d08	Ext_proc: support RouteCacheAction in the filter config (#33830) ... This PR is a follow up change for: #33582. It is to support RouteCacheAction to force clearing the route cache in ext_proc filter even side stream server does not send the clear_route_cache in the response. Signed-off-by: Yanjun Xiang <yanjunxiang@google.com> Mirrored from https://github.com/envoyproxy/envoy @ a7d3789c3eeda314c6a96be72485eb89a672a268	1 year ago
update-envoy[bot]	f4cbc5f7b2	Credential Injector Filter: OAuth2 client credential extension (#33702) ... * Credential Injector Filter: Oauth2 client credential extension Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * Add tests Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * format Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * proto update Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * doc and gcc fix Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * docs Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * more tests and configuration knob for retry interval Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * format Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * format Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * retrigger ci Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * test Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * test Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * docs update Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * enable/disable instead recreating timer Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * retrigger ci Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * config test Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * yamllint Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * path update Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * try adding credentials file Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * access log Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * update path Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * more updates Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * add secrets for test env Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * add secrets dir Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * fix another rule Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * fix file count and address timer feedback Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * remove debugging changes Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * fix Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * dont use statelessMockServerContext Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * revert mockServerContext and docs changes to see if tests pass Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * revert references to example yamls Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * revert the reverts Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * retrigger ci Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * Use static secret in docs and more tests Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * format Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * format Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * fix Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * feedback Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * retrigger ci Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * more tests Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * format Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * fix tsan Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * Address feedback: docs and request lifetime Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * title line Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * fix doc Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * More tests Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * format Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * Address feedback Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * revert accidental commit Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * Move extension tests to under http/extensions Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * add teardown Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * tear down Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> * asan Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> --------- Signed-off-by: Vikas Choudhary <choudharyvikas16@gmail.com> Mirrored from https://github.com/envoyproxy/envoy @ 1d180acd16605f5ba7519c953fcf3874c933e553	1 year ago
update-envoy[bot]	ba051b0265	opencensus: Disable by default (#33912) ... Signed-off-by: Ryan Northey <ryan@synca.io> Mirrored from https://github.com/envoyproxy/envoy @ d7fbda8be40c7b3ea3cda342a6c6982384d29c15	1 year ago
update-envoy[bot]	449c956946	Add explicit header mutation validation ext_authz (#33244) ... * Validate headers & percent-encode query parameters in ext_authz Signed-off-by: Antonio Leonti <leonti@google.com> * move-- not copy-- header mutations in grpc client Signed-off-by: antoniovleonti <leonti@google.com> * move validation to clients Signed-off-by: antoniovleonti <leonti@google.com> * clean up diff Signed-off-by: antoniovleonti <leonti@google.com> * oops, add query param percent encoding to grpc client Signed-off-by: antoniovleonti <leonti@google.com> * clean up unnecessary diff and remove unused function declaration Signed-off-by: antoniovleonti <leonti@google.com> * remove unnecessary diff from ext_authz_test Signed-off-by: antoniovleonti <leonti@google.com> * final clean up Signed-off-by: antoniovleonti <leonti@google.com> * split ext_authz_test change into own PR (#33709) Signed-off-by: antoniovleonti <leonti@google.com> * fix asan error Signed-off-by: antoniovleonti <leonti@google.com> * add note in changelog Signed-off-by: antoniovleonti <leonti@google.com> * move http validation to own PR Signed-off-by: antoniovleonti <leonti@google.com> * Drop client request on invalid mutations Signed-off-by: antoniovleonti <leonti@google.com> * formatting & changelog Signed-off-by: antoniovleonti <leonti@google.com> * remove debug logs Signed-off-by: antoniovleonti <leonti@google.com> * remove done todo Signed-off-by: antoniovleonti <leonti@google.com> * remove comment about precent encoding query params Signed-off-by: antoniovleonti <leonti@google.com> * add Rejected to exhaustive status switch statement Signed-off-by: antoniovleonti <leonti@google.com> * handle rejected case in the network ext_authz filter Signed-off-by: antoniovleonti <leonti@google.com> * move validation to http filter Signed-off-by: antoniovleonti <leonti@google.com> * fix incorrectly numbered proto field Signed-off-by: antoniovleonti <leonti@google.com> * remove unused runtime feature flag Signed-off-by: antoniovleonti <leonti@google.com> * remove unnecessary comma Signed-off-by: antoniovleonti <leonti@google.com> * fix inconsistent HeaderVector constructor call fmt Signed-off-by: antoniovleonti <leonti@google.com> * remove unnecessary diff Signed-off-by: antoniovleonti <leonti@google.com> * remove unnecessary dependency Signed-off-by: antoniovleonti <leonti@google.com> * remove unnecessary diff Signed-off-by: antoniovleonti <leonti@google.com> * fix spelling Signed-off-by: antoniovleonti <leonti@google.com> * Update api/envoy/extensions/filters/http/ext_authz/v3/ext_authz.proto Co-authored-by: Greg Greenway <ggreenway@apple.com> Signed-off-by: Antonio V. Leonti <53806445+antoniovleonti@users.noreply.github.com> * Update api/envoy/extensions/filters/http/ext_authz/v3/ext_authz.proto Co-authored-by: Greg Greenway <ggreenway@apple.com> Signed-off-by: Antonio V. Leonti <53806445+antoniovleonti@users.noreply.github.com> * config guard remove-header change & make fmting consistent Signed-off-by: antoniovleonti <leonti@google.com> * remove using decls from ext_authz_test Signed-off-by: antoniovleonti <leonti@google.com> * remove unnecessary diff Signed-off-by: antoniovleonti <leonti@google.com> * add stat check to integration test Signed-off-by: antoniovleonti <leonti@google.com> * remove using decl from grpc_impl_test Signed-off-by: antoniovleonti <leonti@google.com> * formatting changes Signed-off-by: antoniovleonti <leonti@google.com> * replace unused using decl with a needed one Signed-off-by: antoniovleonti <leonti@google.com> * remove unused counter Signed-off-by: antoniovleonti <leonti@google.com> --------- Signed-off-by: Antonio Leonti <leonti@google.com> Signed-off-by: antoniovleonti <leonti@google.com> Signed-off-by: Antonio V. Leonti <53806445+antoniovleonti@users.noreply.github.com> Co-authored-by: Greg Greenway <ggreenway@apple.com> Mirrored from https://github.com/envoyproxy/envoy @ 1c6eba59dbcced94c9974dc69d1bfcfa9ee3107d	1 year ago
update-envoy[bot]	4a688d5f52	quic: support for server-preferred address behind DNAT (#33774) ... Signed-off-by: Greg Greenway <ggreenway@apple.com> Mirrored from https://github.com/envoyproxy/envoy @ c940f2480c000d1a8797eb652bdd43af6c2c47dc	1 year ago
update-envoy[bot]	4bcd3855e6	runtime: removing use_cluster_cache_for_alt_protocols_filter (#33730) ... * runtime: removing use_cluster_cache_for_alt_protocols_filter Fixes #33628 Signed-off-by: Alyssa Wilk <alyssar@chromium.org> Mirrored from https://github.com/envoyproxy/envoy @ e8be26c404e12576bad3551a01b58c9bcdedd154	1 year ago
update-envoy[bot]	705ea7db7f	wasm: Fix typo found in documentation (#33874) ... Signed-off-by: Jon Friesen <jon@jonfriesen.ca> Mirrored from https://github.com/envoyproxy/envoy @ 29d30aa2ea190d67c04cdc26f23c5c9954460ab4	1 year ago
update-envoy[bot]	056ace5cd8	Disable shadow host suffix append (#31930) ... Add runtime feature envoy.reloadable_features.enable_shadow_header_suffix to toggle appending the -shadow suffix to mirrored clusters. Default is false (appends -shadow). Risk Level: Low Testing: Unit Docs Changes: Updated route mirror Release Notes: Updated current.yaml Platform Specific Features: n/a Optional Runtime guard: envoy_reloadable_features_enable_shadow_header_suffix Fixes #9094 Signed-off-by: Hochstetler, Jacob <Jacob.Hochstetler@fmr.com> Signed-off-by: Jacob Hochstetler <jacob.hochstetler@gmail.com> Mirrored from https://github.com/envoyproxy/envoy @ 35c7135d9a089d93dcd7d6e3c07d14c738223775	1 year ago
update-envoy[bot]	5389761ce7	c-ares: add option for udp_max_queries (#33551) ... --------- Signed-off-by: deveshkandpal1224 <deveshkandpal1224@gmail.com> Mirrored from https://github.com/envoyproxy/envoy @ 048d9a2302c7f42f0184e774fffc30fa496ebd22	1 year ago
update-envoy[bot]	d79fcba4ef	Adding route action field in the ExternalProcessing proto (#33582) ... Signed-off-by: Yanjun Xiang <yanjunxiang@google.com> Mirrored from https://github.com/envoyproxy/envoy @ c15b875d2f03f583d8bbaa3a43325196c69b73de	1 year ago
update-envoy[bot]	560ab46dbf	Drop overload runtime key (#33737) ... Adding runtime key to protect drop overload feature. The runtime key "load_balancing_policy.drop_overload_limit" can be configured with an integer 0 to 100. 0 means 0%. 100 means 100%. So, when there is an EDS update with drop_overloads configuration, if this runtime key is enabled, Envoy will pick up the smaller one between these two to perform the drops. --------- Signed-off-by: Yanjun Xiang <yanjunxiang@google.com> Mirrored from https://github.com/envoyproxy/envoy @ ef8a34d89f85f434e6df562c742b63a359d0ceb4	1 year ago
update-envoy[bot]	ad1abacdfe	xds: define precedence between TLS cert fields (#33749) ... Signed-off-by: Mark D. Roth <roth@google.com> Mirrored from https://github.com/envoyproxy/envoy @ 686d7d9d0339e3909e677d8aaee426eec8a30cd5	1 year ago
update-envoy[bot]	8177248de9	[extension inplace change the ImmediateResponse::body type from string to bytes (#33563) ... * inplace change the ImmediateResponse::body type from string to bytes per discussion this should be a safe swap for c++ Envoy Signed-off-by: Xin Zhuang <stevenzzz@google.com> * add a unit test for non-utf8 body in extenal immediate response Signed-off-by: Xin Zhuang <stevenzzz@google.com> --------- Signed-off-by: Xin Zhuang <stevenzzz@google.com> Mirrored from https://github.com/envoyproxy/envoy @ ab4b6f70b283905d5fcb5ddb0b0be34562873b51	1 year ago
update-envoy[bot]	673a274585	rbac: Add per-policy stats to HTTP filter (#32313) ... This adds additional stats for `rules` and `shadow_rules` in the HTTP-based RBAC filter. Fixes #32129 --------- Signed-off-by: Henry Wang <henry.wang@datadoghq.com> Mirrored from https://github.com/envoyproxy/envoy @ 5eccc35176a77633c98bd96baa64d15bd3c5fe2f	1 year ago
update-envoy[bot]	85fe9372b6	Add credentials profile in aws_lambda config (#33293) ... Signed-off-by: Juan Manuel Ollé <jolle@mulesoft.com> Mirrored from https://github.com/envoyproxy/envoy @ d41761887ee34c8d015e2fd8272d118d14912081	1 year ago
update-envoy[bot]	a7daf4d066	Support dynamic_action in composite filter (#33511) ... --------- Signed-off-by: Yanjun Xiang <yanjunxiang@google.com> Mirrored from https://github.com/envoyproxy/envoy @ b5c7e512e073ea4e8ef478d93cfae3d610cada98	1 year ago
update-envoy[bot]	9d75581677	ext_proc: convert ext_proc filter into dual filter (#33273) ... --------- Signed-off-by: Yanjun Xiang <yanjunxiang@google.com> Mirrored from https://github.com/envoyproxy/envoy @ 34bb97cfc9d22838c057f8ad0c18c7364024b8b1	1 year ago
update-envoy[bot]	c8a0953530	Make hot restart tolerate premature death of the parent instance (#33216) ... --------- Signed-off-by: Raven Black <ravenblack@dropbox.com> Mirrored from https://github.com/envoyproxy/envoy @ f5bca686eb043e099bd96a8049a38048c402cd36	1 year ago
update-envoy[bot]	d469256ba4	Convert match_delegate and composite filter as dual filter (2nd approach) (#33013) ... --------- Signed-off-by: Yanjun Xiang <yanjunxiang@google.com> Mirrored from https://github.com/envoyproxy/envoy @ dffc5f1d389c6f8601b790fbcbc40236f58522f6	1 year ago
update-envoy[bot]	47be8115f5	feat: credential injector impl (#30850) ... * credential injector impl Signed-off-by: huabing zhao <zhaohuabing@gmail.com> --------- Signed-off-by: huabing zhao <zhaohuabing@gmail.com> Signed-off-by: Huabing Zhao <zhaohuabing@gmail.com> Co-authored-by: phlax <phlax@users.noreply.github.com> Co-authored-by: Adi (Suissa) Peleg <adip@google.com> Mirrored from https://github.com/envoyproxy/envoy @ 5f6842890c67bdadab129a78bf2e521068d69f61	1 year ago
update-envoy[bot]	02a3178ba9	basic_auth: add support for per-route filter (#33335) ... * basic_auth: add per-route filter Signed-off-by: Jacek Ewertowski <jewertow@redhat.com> --------- Signed-off-by: Jacek Ewertowski <jewertow@redhat.com> Mirrored from https://github.com/envoyproxy/envoy @ 8d2df82f081bc9e33f6022a41893c37b3c0928d3	1 year ago
update-envoy[bot]	4d6b7b8d6d	api: Add observability mode in ext_proc (#32696) ... --------- Signed-off-by: tyxia <tyxia@google.com> Mirrored from https://github.com/envoyproxy/envoy @ 14f27cb2678774110ecdf7338355b969f9b669fb	1 year ago
update-envoy[bot]	3bdf6cf17e	gRPC: Implement max_receive_message_length in envoy gRPC (#32711) ... --------- Signed-off-by: tyxia <tyxia@google.com> Mirrored from https://github.com/envoyproxy/envoy @ c3f72258d482990a499c5203abcf3d1ae3fa4d58	1 year ago
update-envoy[bot]	6dde0530f9	proxy_protocol_filter: Add configuration to match only specific proxy protocol versions, new stats (#32861) ... --------- Signed-off-by: Teju Nareddy <tnareddy@confluent.io> Mirrored from https://github.com/envoyproxy/envoy @ 113e997a7f8752d1564518f6c42e81305ad4dc88	1 year ago
update-envoy[bot]	b1201e6146	mismatch content type should set on_error metadata in json_to_metadata filter (#33073) ... * mismatch content type should set on_error metadata in json_to_metadata filter Signed-off-by: kuochunghsu <kuochunghsu@pinterest.com> Mirrored from https://github.com/envoyproxy/envoy @ 6aea06a3e9ba5ee7f5537cf0f70a72bdbb35ab72	1 year ago
update-envoy[bot]	b9c229532c	opentelemetrytracer: Dynatrace sampler: Use http_service in configura… (#33034) ... * opentelemetrytracer: Dynatrace sampler: Use http_service in configuration. (#22) * change dynatrace sampler config to use http_service Signed-off-by: thomas.ebner <thomas.ebner@dynatrace.com> Signed-off-by: Thomas Ebner <96168670+samohte@users.noreply.github.com> Co-authored-by: Joao Grassi <5938087+joaopgrassi@users.noreply.github.com> * modify protobuf doc Signed-off-by: thomas.ebner <thomas.ebner@dynatrace.com> * remove empty line in proto file Signed-off-by: thomas.ebner <thomas.ebner@dynatrace.com> * added empty line in proto file Signed-off-by: thomas.ebner <thomas.ebner@dynatrace.com> * try to fix "Error in "code-block" directive" Signed-off-by: thomas.ebner <thomas.ebner@dynatrace.com> * fix "Error in "code-block" directive" Signed-off-by: thomas.ebner <thomas.ebner@dynatrace.com> * change proto documentation again Signed-off-by: thomas.ebner <thomas.ebner@dynatrace.com> * review feedback: keep unused values marked as deprecated. Add a new field. Signed-off-by: thomas.ebner <thomas.ebner@dynatrace.com> * Revert "review feedback: keep unused values marked as deprecated. Add a new" This reverts commit cec4b0fe01cfbffb98a8a02dc583c28ac98a3f02. Signed-off-by: thomas.ebner <thomas.ebner@dynatrace.com> --------- Signed-off-by: thomas.ebner <thomas.ebner@dynatrace.com> Signed-off-by: Thomas Ebner <96168670+samohte@users.noreply.github.com> Co-authored-by: Joao Grassi <5938087+joaopgrassi@users.noreply.github.com> Mirrored from https://github.com/envoyproxy/envoy @ 838f27200ddca87f4c2cb2adcc4d25f5741f4a82	1 year ago
update-envoy[bot]	0a77605b40	Support forwarding username to backends (#32943) ... Related to #32419 Risk level: Low Testing: Unit/integration tests. Signed-off-by: Huabing Zhao <zhaohuabing@gmail.com> Mirrored from https://github.com/envoyproxy/envoy @ 34d67fc5c046527b25f37b2ae06dd6ee8e41ceae	1 year ago
update-envoy[bot]	54985d8453	Add option to send ext_authz header values as bytes (#32641) ... Signed-off-by: Antonio Leonti <leonti@google.com> Co-authored-by: Greg Greenway <ggreenway@apple.com> Co-authored-by: Adi (Suissa) Peleg <adip@google.com> Mirrored from https://github.com/envoyproxy/envoy @ 519c7b21673b91cead9eaa584f2a545c44d55aa5	1 year ago
update-envoy[bot]	7f99433699	http_health_check: host and path validation (#32521) ... --------- Signed-off-by: Boteng Yao <boteng@google.com> Mirrored from https://github.com/envoyproxy/envoy @ b43ea9d814f53af7547d662abbb2d9509fa30116	1 year ago
update-envoy[bot]	54a58fd548	network ext_authz filter: support include_tls_session option from http variant (#33105) ... Signed-off-by: Adam Anderson <6754028+AdamEAnderson@users.noreply.github.com> Mirrored from https://github.com/envoyproxy/envoy @ 9a575d82a4186c8cf37ff3d7f0a7002dce412d7d	1 year ago
update-envoy[bot]	7039f27038	cors: return local reply when preflight origin does not match allowed origins (#33051) ... CORS: Generate local response for preflights with not matching origin. Signed-off-by: Christoph Pakulski <christoph@tetrate.io> Mirrored from https://github.com/envoyproxy/envoy @ 5f58f9ac917e82fdfadb771b8de3bb466d9e53ee	1 year ago
update-envoy[bot]	c967082986	fluentd_access_logger: add option for extended formatters (#32995) ... * fluentd_access_logger: add option for extended formatters Signed-off-by: ohadvano <ohadvano@gmail.com> * fix format Signed-off-by: ohadvano <ohadvano@gmail.com> --------- Signed-off-by: ohadvano <ohadvano@gmail.com> Mirrored from https://github.com/envoyproxy/envoy @ 12674b94f785036ab6686b2ec84567fb9e1f5d1d	1 year ago
update-envoy[bot]	cb77bccbbe	opentelemetrytracer: Dynatrace sampler: Enable adaptative sampling (#32848) ... * opentelemetrytracer: Dynatrace sampler to fetch configuration from an API (#21) * Dynatrace sampler to fetch configuration from an API Signed-off-by: Thomas Ebner <96168670+samohte@users.noreply.github.com> Co-authored-by: Joao Grassi <5938087+joaopgrassi@users.noreply.github.com> * review feedback: add log msg, remove timeout adjustment Signed-off-by: thomas.ebner <thomas.ebner@dynatrace.com> --------- Signed-off-by: Thomas Ebner <96168670+samohte@users.noreply.github.com> Signed-off-by: thomas.ebner <thomas.ebner@dynatrace.com> Co-authored-by: Joao Grassi <5938087+joaopgrassi@users.noreply.github.com> Mirrored from https://github.com/envoyproxy/envoy @ c4fe01c44cb75bceb0342a79e20375674557563c	1 year ago
update-envoy[bot]	ffaaa978e0	json to metadata content type regex match (#32774) ... There is a case when somebody is uploading a file with "content type: multipart/form-data; boundary=------------------------75b5d728d1539bb5"; since the header value will change every time, we can not write a config to allow it in previous proto. Then we need a regex match to allow it. Risk Level: low Testing: unit test Signed-off-by: Cai Qi <cqi@pinterest.com> Mirrored from https://github.com/envoyproxy/envoy @ 667e96312130ac2bcbb7c1c598f4d63746d6f0c4	1 year ago
update-envoy[bot]	2a8f86c009	Oauth2 lifetime of refresh token (#32278) ... Signed-off-by: Alexcei <lex9.darovskoi@gmail.com> Co-authored-by: Kateryna Nezdolii <kateryna.nezdolii@docker.com> Mirrored from https://github.com/envoyproxy/envoy @ 21832d158c1447a3bb0af5c1ea58f63cfa56dc16	1 year ago
update-envoy[bot]	d01a3ea0a5	fluentd_access_logger: add retry and backoff options (#32682) ... Signed-off-by: ohadvano <ohadvano@gmail.com> Mirrored from https://github.com/envoyproxy/envoy @ 79d5a6d96a9121da655593c19cb17185b03b047d	1 year ago
update-envoy[bot]	2be31771be	rbac: rules_stat_prefix to emit metrics with a prefix (#31835) ... This is akin to shadow_rules_stat_prefix but for non-shadowing rules. Since only shadow rules emit dynamic metadata, this prefix only applies to metrics. --------- Signed-off-by: Thomas van Noort <thomas.vannoort@datadoghq.com> Mirrored from https://github.com/envoyproxy/envoy @ 7fec609a507371d7176c61aa4623f445543f294f	1 year ago
update-envoy[bot]	63626fdc7d	wasm: Remove `wavm` (#32872) ... Signed-off-by: Ryan Northey <ryan@synca.io> Mirrored from https://github.com/envoyproxy/envoy @ 19726b78c218801069d74b796727d76b89e2b54c	1 year ago
update-envoy[bot]	b9ff28d649	health_checks: add option to always log successful health checks (#32674) ... Resolves #32119. This allows the option to always log successful health checks. On the first successful health check, only ``logAddHealthy`` is called. On consecutive successful health checks, ``logSuccessfulHealthCheck`` is called. Risk Level: low (config guarded) Testing: unit tests Docs Changes: API docs Release Notes: added Platform Specific Features: none Signed-off-by: ohadvano <ohadvano@gmail.com> Mirrored from https://github.com/envoyproxy/envoy @ 975d4107061ea92a62e99490c9474ace17d9609a	1 year ago
update-envoy[bot]	ab56c326a0	Add token lifetime constraints to JwtProvider (#32853) ... Adds new max_lifetime config field to restrict token lifetime accepted from a JwtProvider. Risk Level: Low Testing: Unit testing Docs Changes: Added subjects description inline in proto. Release Notes: Attached Optional [API Considerations](https://github.com/envoyproxy/envoy/blob/main/api/review_checklist.md): Feature is opt in, without specifying the config, there's no behavior change. Fixes #31455 Signed-off-by: Matthew Jones <mattjo@squareup.com> Mirrored from https://github.com/envoyproxy/envoy @ 63cf70129f06e53f0915e7cefc4ead637784a183	1 year ago
update-envoy[bot]	565dd23304	http3: Add support for HTTP/3 METADATA (#32568) ... http3: Add support for HTTP/3 METADATA Adds a new allow_metadata option to Http3ProtocolOptions. Risk Level: Low, protected by new config option Testing: New integration tests Docs Changes: N/A Release Notes: Updated Signed-off-by: Ryan Hamilton <rch@google.com> Mirrored from https://github.com/envoyproxy/envoy @ 640f016a2e99ab44e97dec71b60afec91404dadd	1 year ago
update-envoy[bot]	e724bf6b9a	jwt_authn: Add subject constraints for JwtProviders (#32374) ... Adds new `subjects` config field to restrict subjects accepted from a `JwtProvider` partially implementing #31455 Risk Level: Low Testing: Unit testing Docs Changes: Added `subjects` description inline in proto. Release Notes: Attached Optional [API Considerations](https://github.com/envoyproxy/envoy/blob/main/api/review_checklist.md): Feature is opt in, without specifying the config, there's no behavior change. Signed-off-by: Matthew Jones <mattjo@squareup.com> Mirrored from https://github.com/envoyproxy/envoy @ 08231e383fc3fb1c3bb207774d8295995759552a	1 year ago