Apply different policies to specific paths for a pod

Paul_French · August 7, 2019, 8:13am

I have a quite common requirement and I’m just wondering if it is possible. So far I have had no luck.

Take a pod which serves the paths /base/path1 and /base/path2

The first path is a web application, the second is a REST service. I need to add JWT authorisation to the REST path but not the web application. I’m struggling to see how this can be done. Any ideas?

I have a more detailed description at stack overflow

Thanks

Paul_French · August 7, 2019, 8:51am

Apologies, I’m a newbie to Istio. The way I was approaching the problem was completely wrong. I simply need to route all traffic to the service and apply a trigger rule in the policy to only apply for a specific path.

I’ve updated my stackoverflow question with more detail.

philliple · August 7, 2019, 5:21pm

This may help https://istio.io/docs/tasks/security/authn-policy/#enable-end-user-authentication-for-specific-paths

Topic		Replies	Views
JWT Policy does not take affect! Policies and Telemetry	24	5560	February 26, 2020
Require request authentication, but exclude specific paths	1	1948	October 19, 2020
Authorization policy challenge Security	6	919	April 4, 2020
Multiple Authenttication policies Security	2	1367	April 16, 2020
Exclude RequestAuthentication JWT rules for specific paths Security	3	968	June 24, 2022

Apply different policies to specific paths for a pod

Related Topics