Public Ideas Portal


ADD A NEW IDEA

Mesh

Showing 22

Possibility to set a port.name for the Service created for the MeshGatewayInstance

Would be nice to be able to set the port.name for the MeshGatewayInstance created Service: $ kubectl -n kuma-demo get svc edge-gateway -o yaml (...) ports: - name: "444" <<<<<<<<<<<<<<< nodePort: 31061 ...
Gerard Forns 3 months ago in Mesh 0 Future consideration

Put Mesh policies in the sidebar

Policies are the features of Kong Mesh, and today they are too deep into the product. To create demand for Mesh in Konnect, we need to surface the capabilities in a more visible place. I suggest having "Policies" in the sidebar the same way we hav...
Marco Palladino 12 months ago in Mesh 0 Future consideration

KUMA: Support Azure Managed Identity for authentication to postgresql on global control plane

Support "Azure Managed Identity" for authenticating a global control plane connecting to a postgres backend. Kuma global control plane only supports username and password to authenticate to PostgresSQL and doesn't support Azure MI which avoids hav...
Karl Kalckstein over 2 years ago in Mesh 0 Future consideration

Kong Mesh GUI should redact both the certificate and key in displayed config dumps

Currently, the GUI redacts only the private keys but not the certificates Even if the client certificate without a private key is not useful we could consider hiding them both for extra security
Dimitri Koutsos 8 months ago in Mesh 0 Future consideration

Support OPA for RabbitMQ

A large percentage (40%) of communication within our network happens over RabbitMQ. Number of microservices have been created which can consume messages from the queue. The challenge we're facing is controlling which microservices are allowed to c...
Guest over 1 year ago in Mesh 0 Future consideration

Allow targetRef policies to apply to multiple kuma.io/service tags

The DPPs to apply the policies to will have unique values for ' kuma.io/service ' tag, semi-unique (1 of 2) values for ' kuma.io/service-name ' tag, and the same value for ' kuma.io/namespace ' tag. Use of the ` kuma.io/namespace ' tag will work, ...
Joe Dascole over 1 year ago in Mesh 0 Future consideration

Introduce GET/LIST for RBAC

Introduce GET/LIST to Kong Mesh RBAC, in particular this would be useful for secrets with extra validation because: The documentation suggests that role access is only required for write access, and not for read access: https://docs.konghq.com/mes...
Karl Kalckstein about 2 years ago in Mesh 0 Future consideration

Support kong mesh with openshift/cisco CNI

We would like to deploy a mesh zone in our on-premise kubernetes cluster but the network is managed with the ACI cisco network plugin. There is also an opened issue to add ACI cisco support : https://github.com/kumahq/kuma/issues/4818.
Guest 12 months ago in Mesh 0 Future consideration

Envoy metrics filtering to reduce the size of metrics

There are existing filtering with metrics: https://docs.konghq.com/mesh/latest/policies/traffic-metrics/#filter-envoy-metrics. We want ways to further reduce the size of metrics. This is essential so we can avoid pulling large payloads from the /m...
Guest 12 months ago in Mesh 0 Future consideration

Allow syncing ContainerPatch resources across zones

The application of the `patch` does not sync across zones.
Rohinton Kazak about 2 years ago in Mesh 1 Future consideration