0

Is it possible to inject secret in 'when' part of istio AuthorizationPolicy rules?

apiVersion: security.istio.io/v1beta1
kind: AuthorizationPolicy
metadata:
  name: my-policy
  namespace: "istio-system"
spec:
  action: ALLOW
  rules:
  - when:
    - key: request.auth.claims[test]
      notValues: ["<PLACE_HOLDER>"]
    to:
      - operation:
          methods: ["GET"]
          paths: ["/what"]
    from:
      - source:
          notRequestPrincipals: ["*"]
Mark
  • 833
  • 1
  • 9
  • 27

0 Answers0