Access K8s Secrets from Istio

lightphos · July 13, 2020, 6:50pm

I have the following

apiVersion: security.istio.io/v1beta1
kind: AuthorizationPolicy
metadata:
  name: vecho-get
  namespace: vadal
spec:
  selector:
    matchLabels:
      app: vecho
      action: ALLOW
  rules:
  - to:
    - operation:
        methods: ["GET"]
    when:
      - key: request.headers[x-vadal-key]
        values: ["secret"]

Is there anyway to store “secret” somewhere common such as in K8s/Configuration/Secrets and then reference it here.

Many thanks.

Topic		Replies	Views
503 errors with AuthorizationPolicy and ALLOW with a Rule Security	3	955	January 11, 2021
Istio-token permissions problem on EKS - failed to fetch token from file: open ./var/run/secrets/tokens/istio-token: permission denied Security security	11	2991	February 17, 2022
API key based authorization Security security	1	378	December 1, 2020
Basic authentication in Istio vs Nginx	4	2451	July 18, 2019
Istio RBAC - v1.1.5 - K8S Security	3	450	June 10, 2019

Access K8s Secrets from Istio

Related Topics