I deployed istio on Minikube cluster in Docker Desktop on a Mac. Helm deploys a simple service exposed behind ingress. I deployed a RequestAuthentication resource that points to a jwksUri. When request come in I get denied & I see in logs it fails to fetch from jwks uri (login.microsoft…) due to ‘dns error’. These logs are shown in istiod pod. How do I get this pod to utilize our corp proxy? When I tried to edit the istiod deployment & add in the env HTTPS_PROXY, NO_PROXY, etc it started generating many errors accessing internal services on 10.* and adding that in NO_PROXY did not help.
Related Topics
Topic | Replies | Views | Activity | |
---|---|---|---|---|
Authentication and Authorization with JWT get 403 | 3 | 3190 | December 5, 2019 | |
Istio 1.8.2. RBAC: access denied. JWT is valid | 6 | 5468 | May 4, 2022 | |
Can Istio Security Peer Authentication & JWT Authentication Used in Parallel | 8 | 1569 | July 28, 2020 | |
JWT first party/third party
|
1 | 1319 | May 19, 2022 | |
Local JWKS HTTP service
|
11 | 3557 | July 21, 2019 |