Istio does not forward Authorization header

Question

kind: "RequestAuthentication"
metadata:
  name: "jwt-api"
  namespace: default
spec:
  selector:
    matchLabels:
      app: api
  jwtRules:
  - issuer: "https://login.microsoftonline.com/12312312312312312312/v2.0"
    jwksUri: "https://login.microsoftonline.com/12312312312312312312/discovery/v2.0/keys"

Does anyone has any clue about how to foward the Authorization header to the microservice?

Istio 1.7

score 5 · Answer 1 · answered Oct 02 '20 at 01:35

5

I found a solution reading the docs:

forwardOriginalToken: bool. If set to true, the orginal token will be kept for the ustream request. Default is false.

- issuer: 
  jwksUri:
  forwardOriginalToken: true

answered Oct 02 '20 at 01:35

Bruno Macedo

121
1
8

Istio does not forward Authorization header

1 Answers1