JWT and Authorization


#1

hello All,

Does istio 1.0.5 support the use of JWT for authorization purposes between service calls and end-user calls ?

Thank you.
Cheers.


#2

Hello @sethokayba, what are you trying to achieve?


#3

i am trying to apply authorization between service in a mesh ruled by istio, using JWT tokens, is that weird ?


#4

You absolutely can do this.


#5

sethokayba, yes, it’s supported. See examples https://istio.io/docs/concepts/security/#servicerolebinding and https://istio.io/blog/2018/istio-authorization/#using-authenticated-client-identities.