You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I was chatting with @mattklein123 a couple weeks ago about securing the admin endpoint, under the assumption that we'd want some way to allow users to specify arbitrary filters (e.g. RBAC).
I would like to propose that we allow specifying a Listener config in the Admin message, and deprecate the Admin fields that can be taken directly from the Listener (e.g. address details).
The AdminFilter would be made a first class filter (registered with just like the other http filters), but we would validate that the AdminFilter is only used within the Admin config, and that the filter is specified last in the filter chain.
I would appreciate feedback from both Envoy users and developers; would this approach work for you?
The text was updated successfully, but these errors were encountered:
cstrahan
changed the title
proposal: admin
proposal: securing admin endpoint
May 6, 2020
A proposal to secure the admin endpoint
I was chatting with @mattklein123 a couple weeks ago about securing the admin endpoint, under the assumption that we'd want some way to allow users to specify arbitrary filters (e.g. RBAC).
I would like to propose that we allow specifying a
Listenerconfig in theAdminmessage, and deprecate theAdminfields that can be taken directly from theListener(e.g. address details).The
AdminFilterwould be made a first class filter (registered with just like the other http filters), but we would validate that theAdminFilteris only used within theAdminconfig, and that the filter is specified last in the filter chain.I would appreciate feedback from both Envoy users and developers; would this approach work for you?
The text was updated successfully, but these errors were encountered: