Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

JwtAuthn: support completing padding on forward jwt payload header #16752

Merged
merged 12 commits into from
Jul 2, 2021
Merged

JwtAuthn: support completing padding on forward jwt payload header #16752

merged 12 commits into from
Jul 2, 2021

Conversation

TAOXUY
Copy link
Contributor

@TAOXUY TAOXUY commented Jun 1, 2021
edited
Loading

Signed-off-by: Xuyang Tao [email protected]

Commit Message: revert back #16576 with adding option in filter API to enable the feature. Fix #16528
Risk Level: Low
Testing: Yes
Docs Changes: Yes
Release Notes: Yes

@TAOXUY
Add completePadding
6c7be0c 
Signed-off-by: Xuyang Tao <[email protected]>
@TAOXUY TAOXUY requested a review from lizan as a code owner June 1, 2021 18:29
@repokitteh-read-only
Copy link

CC @envoyproxy/api-shepherds: Your approval is needed for changes made to api/envoy/.
envoyproxy/api-shepherds assignee is @adisuissa
CC @envoyproxy/api-watchers: FYI only for changes made to api/envoy/.

🐱

Caused by: #16752 was opened by TAOXUY.

see: more, trace.

@TAOXUY
NA
0ddcd1c 
Signed-off-by: Xuyang Tao <[email protected]>
@TAOXUY
Copy link
Contributor Author

TAOXUY commented Jun 1, 2021

@qiwzhang

@TAOXUY
Fix comments
513300e 
Signed-off-by: Xuyang Tao <[email protected]>
qiwzhang
qiwzhang reviewed Jun 2, 2021
View reviewed changes
api/envoy/extensions/filters/http/jwt_authn/v3/config.proto Outdated Show resolved Hide resolved
docs/root/version_history/current.rst Outdated Show resolved Hide resolved
docs/root/version_history/current.rst Outdated Show resolved Hide resolved
TAOXUY added 4 commits June 5, 2021 16:03
@TAOXUY
Fix comments
b43cfb0 
Signed-off-by: Xuyang Tao <[email protected]>
@TAOXUY
Merge branch 'main' into padding-by-option
7ed7d77 
# Conflicts:
Merge main

Signed-off-by: Xuyang Tao <[email protected]>
@TAOXUY
fix comments
537843c 
Signed-off-by: Xuyang Tao <[email protected]>
@TAOXUY
fix comments
07ab076 
Signed-off-by: Xuyang Tao <[email protected]>
qiwzhang
qiwzhang previously approved these changes Jun 7, 2021
View reviewed changes
adisuissa
adisuissa reviewed Jun 8, 2021
View reviewed changes
Copy link
Contributor

@adisuissa adisuissa left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for working on this!
Left a few API comments.

api/envoy/extensions/filters/http/jwt_authn/v3/config.proto Outdated Show resolved Hide resolved
api/envoy/extensions/filters/http/jwt_authn/v3/config.proto Outdated Show resolved Hide resolved
api/envoy/extensions/filters/http/jwt_authn/v3/config.proto Outdated Show resolved Hide resolved
@TAOXUY
fix comments
133c03c 
Signed-off-by: Xuyang Tao <[email protected]>
adisuissa
adisuissa reviewed Jun 9, 2021
View reviewed changes
Copy link
Contributor

@adisuissa adisuissa left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

A couple of API suggestions.

api/envoy/extensions/filters/http/jwt_authn/v3/config.proto Outdated Show resolved Hide resolved
api/envoy/extensions/filters/http/jwt_authn/v3/config.proto Outdated Show resolved Hide resolved
@TAOXUY
fix comments
e65edc9 
Signed-off-by: Xuyang Tao <[email protected]>
@TAOXUY TAOXUY force-pushed the padding-by-option branch from ccd1eca to e65edc9 Compare June 9, 2021 04:58
adisuissa
adisuissa reviewed Jun 9, 2021
View reviewed changes
Copy link
Contributor

@adisuissa adisuissa left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/lgtm api

@repokitteh-read-only repokitteh-read-only bot removed the api label Jun 9, 2021
@TAOXUY
fix comments
2c24e3b 
Signed-off-by: Xuyang Tao <[email protected]>
@TAOXUY
fix comments
1064833 
Signed-off-by: Xuyang Tao <[email protected]>
@adisuissa
Copy link
Contributor

/lgtm api

@TAOXUY
Copy link
Contributor Author

TAOXUY commented Jun 10, 2021

@lizan @qiwzhang Please take a look and merge this PR.

qiwzhang
qiwzhang previously approved these changes Jun 10, 2021
View reviewed changes
lizan
lizan suggested changes Jun 22, 2021
View reviewed changes
source/common/common/base64.cc Outdated Show resolved Hide resolved
@TAOXUY
use strAppend
59005bf 
Signed-off-by: Xuyang Tao <[email protected]>
@TAOXUY
Copy link
Contributor Author

TAOXUY commented Jun 30, 2021

Hi @lizan, PTAL. I think the test is flaky.

@mattklein123 mattklein123 merged commit 5694726 into envoyproxy:main Jul 2, 2021
baojr added a commit to baojr/envoy that referenced this pull request Jul 7, 2021
@baojr
Merge branch 'main' into baojr/grpc-reverse-bridge-stream
2a09e60 
* main:
  listener: match rebalancer to listener IP family type (envoyproxy#16914)
  jwt_authn: implementation of www-authenticate header (envoyproxy#16216)
  listener: reset the file event in framework instead of listener filter doing itself (envoyproxy#17227)
  Small typo fix (envoyproxy#17247)
  Doc: Clarify request/response attributes are http-only (envoyproxy#17204)
  bazel/README.md: add aspell comment (envoyproxy#17072)
  docs: Fix broken URL links in HTTP upgrades doc (envoyproxy#17225)
  remove the wrong comment on test (envoyproxy#17233)
  upstream: allow clusters to skip waiting on warmup for initialization (envoyproxy#17179)
  JwtAuthn: support completing padding on forward jwt payload header (envoyproxy#16752)
  remove support for v2 UNSUPPORTED_REST_LEGACY (envoyproxy#16968)
  metrics service: fix wrong argument arrange on MetricsServiceSink (envoyproxy#17127)
  deps: update cel-cpp to 0.6.1 (envoyproxy#16293)
  Add ability to filter ConfigDump. (envoyproxy#16774)
  examples: fix Wasm example. (envoyproxy#17218)
  upstream: update host's socket factory when metadata is updated. (envoyproxy#16708)

Signed-off-by: Garrett Bourg <[email protected]>
chrisxrepo pushed a commit to chrisxrepo/envoy that referenced this pull request Jul 8, 2021
@TAOXUY @chrisxrepo
JwtAuthn: support completing padding on forward jwt payload header (e…
5e64e3e 
…nvoyproxy#16752)

Signed-off-by: Xuyang Tao <[email protected]>
Signed-off-by: chris.xin <[email protected]>
leyao-daily pushed a commit to leyao-daily/envoy that referenced this pull request Sep 30, 2021
@TAOXUY
JwtAuthn: support completing padding on forward jwt payload header (e…
7ebd4b8 
…nvoyproxy#16752)

Signed-off-by: Xuyang Tao <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@adisuissa adisuissa adisuissa left review comments

@lizan lizan lizan approved these changes

@qiwzhang qiwzhang qiwzhang left review comments

Assignees

@lizan lizan

@adisuissa adisuissa

@qiwzhang qiwzhang

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

jwt_authn: breaking change in payload encoding
5 participants
@TAOXUY @adisuissa @lizan @qiwzhang @mattklein123