Setting request header with VirtualService

Hi,

I’m trying to set a custom request header so I’m able to authenticate against a AWS WAF rule for a external HTTPS service.

I have a VirtualService and a ServiceEntry. That currently looks like

apiVersion: networking.istio.io/v1alpha3
kind: ServiceEntry
metadata:
  name: test.services.foo.com
spec:
  hosts:
  - test.services.foo.com
  location: MESH_EXTERNAL
  ports:
  - number: 5000
    name: https
    protocol: TLS
  resolution: DNS

kind: VirtualService
metadata:
  name: test.services.foo.com
spec:
  hosts:
  - test.services.foo.com
  http:
  - headers:
      request:
        add:
          x-waf-access: 123456
    route:
    - destination:
        host: test.services.foo.com

Unfortunately it doesn’t appear that the header is being added to the request and I’m not sure where I’m going wrong.

Any help most appreciated

Thanks,
MrPink