Unit testing istio AuthorizationPolicy?

christophetd · August 18, 2021, 9:32am

Hello,

AuthorizationPolic-ies carry a non-negligible complexity. Does anyone has a good approach to write unit tests to validate their behavior?

Ideally, I’m looking to write unit tests that would look like:

policy = istio.load_policy("authz-policy.yaml")
policy.when(Request(
    method="POST",
    path="/etc/blah/foo",
    source="cluster.ns.local/sa/my-microservice-sa",
    headers={'My-Header': 'foo'})
).then(expectResponse(HTTP_UNAUTHORIZED))

Any input welcome!
Thanks

Topic		Replies	Views
AuthorizationPolicy Issue Security	3	730	October 23, 2020
Authorization polices issue Security	1	154	November 15, 2023
Istio 1.5 AuthorizationPolicy using JWT Security	4	966	July 28, 2020
Authorization policy challenge Security	6	901	April 4, 2020
[v1.6] How Istio translates the YAML AuthorizationPolicy in firewall or other rules to accept/deny a request? Security	2	387	July 29, 2020

Unit testing istio AuthorizationPolicy?

Related Topics