You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: docs/proposals/authentication-filter.md
+2-5Lines changed: 2 additions & 5 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -121,7 +121,7 @@ type AuthenticationFilterSpec struct {
121
121
//
122
122
// +optional
123
123
JWT *JWTAuth `json:"jwt,omitempty"`
124
-
}
124
+
}
125
125
126
126
// AuthType defines the authentication mechanism.
127
127
// +kubebuilder:validation:Enum=Basic;JWT
@@ -483,7 +483,6 @@ spec:
483
483
basic:
484
484
secretRef:
485
485
name: basic-auth-users # Secret containing htpasswd data
486
-
key: htpasswd # key within the Secret
487
486
realm: "Restricted"# Optional. Helps with logging
488
487
onFailure: # Optional. These setting may be defaults.
489
488
statusCode: 401
@@ -604,7 +603,6 @@ spec:
604
603
file:
605
604
secretRef:
606
605
name: jwt-keys-secure
607
-
key: jwks.json
608
606
keyCache: 10m# Optional cache time for keys (auth_jwt_key_cache)
609
607
# Acceptable clock skew for exp/nbf
610
608
leeway: 60s# Configures auth_jwt_leeway
@@ -945,7 +943,7 @@ This example shows a single HTTPRoute, with a single `filter` defined in a `rule
945
943
946
944
Only a single `AuthenticationFilter` may be referened in a single rule.
947
945
948
-
The `Status` the HTTPRoute/GRPCRoute in this scenario should be set to `Invalid`, and the resource should be `Rejected`
946
+
The `Status` the HTTPRoute/GRPCRoute in this scenario should be set to `Invalid`, and the resource should be `Rejected`.
949
947
950
948
This behaviour falls in line with the expected behaviour of filters in the Gateway API, which generally allows only one type of a specific filter (authentication, rewriting, etc.) within a rule.
0 commit comments