Istio Authorization Policy Path ending slash

Sameer_Jain · September 15, 2021, 8:51pm

I am playing with authorization policies within Istio and noticed that slashes matter at the end of my path for an ALLOW policy for example.

if in my policy I have ALLOW “/api/dogs”
then /api/dogs will of course work, but /api/dogs/ will not

Is there anyway to ignore the ending slash? I know that I can put 2 entries in my path, one with a slash, one without, but that seems like a lot of overhead for all of my endpoints.

Thank you!

Sameer_Jain · September 16, 2021, 2:05pm

Even if ‘thats the only way to do it’ is the answer, im fine with that, I would just like someone to confirm for me. Thanks again!

YangminZhu · October 7, 2021, 8:57pm

yeah, that’s actually the only way to do it for now, we don’t have an option to ignore the last ending slash.

Topic		Replies	Views
Is there any way to avoid "." in path being escaped by Authorization Policy Normalization Security security	3	625	March 22, 2022
Regex path support for istio external authorization Security security	3	1068	June 15, 2022
AuthorizationPolicy with wildcards	4	2034	January 18, 2021
Authorization policy is not working properly Security	2	1107	January 6, 2020
Authorization policy challenge Security	6	901	April 4, 2020

Istio Authorization Policy Path ending slash

Related Topics