JWT without sub claim

sudhakar890 · December 9, 2020, 5:27pm

In AuthorizationPolicy, source.requestPrincipals is of format “iss/sub” claims. In my JWT there is no “sub” claim. How do I authorize my JWT then?

jtrbs · December 14, 2020, 11:08pm

Hi @sudhakar890, some fields like request.auth.claims or request.auth.audiences may help https://istio.io/latest/docs/reference/config/security/conditions/.

Topic		Replies	Views
Istio jwt without iss claim Security security	0	354	May 24, 2021
Istio AuthorizationPolicy based on claims Security	1	1089	December 1, 2020
Istio 1.5 JWT claim in AuthorizationPolicy Security	8	1592	April 16, 2020
Not able to read nested claim in AuthoriazationPolicy Security security	1	894	December 1, 2021
Multiple JWT and Validating Security	2	725	August 31, 2023