Bruno Macedo
Reputation: 150
Istio does not forward Authorization header
kind: "RequestAuthentication"
metadata:
name: "jwt-api"
namespace: default
spec:
selector:
matchLabels:
app: api
jwtRules:
- issuer: "https://login.microsoftonline.com/12312312312312312312/v2.0"
jwksUri: "https://login.microsoftonline.com/12312312312312312312/discovery/v2.0/keys"
Does anyone has any clue about how to foward the Authorization header to the microservice?
Istio 1.7
Upvotes: 3
Views: 1389
Answers (1)
Bruno Macedo
Reputation: 150
I found a solution reading the docs:
forwardOriginalToken: bool. If set to true, the orginal token will be kept for the ustream request. Default is false.
- issuer:
jwksUri:
forwardOriginalToken: true
Upvotes: 7
Related Questions
- Istio access to container SSL endpoint
- Istio Request Authentication - getting Cors with result 404
- why does istio gives ISTIO-403 forbidden error
- istioctl AuthorizationPolicy allow/deny working opposite ways
- How do I forward headers to different services in Kubernetes (Istio)
- Istio authorization policy not applying on child gateway
- Istio JWT authentication passes traffic without token
- Service Routing in Kubernete using Istio based on JWT token
- Istio Request Routing for user-facing service doesn't work with ingress-gateway
- Istio Egresses with Kubernetes Services