Public Ideas Portal


ADD A NEW IDEA

Mesh

Showing 15

MeshHTTPRoute: add support for https backend Services

At the moment MeshHTTPRoute can only connect to backend Services that has "appProtocol: http" Customer requires to connect to a Service that expose its own TLS
Gerard Forns 4 months ago in Mesh 0 Under consideration

Mesh operator enabling upgrades(etc) , watching CP-CP health, and restarting CPs (multi zone and single )

Requesting an operator to manage mesh installation and lifecycle.
Sergey Kornfeld over 1 year ago in Mesh 0 Under consideration

Support for certificate rotation using cert-manager for General TLS Cert

We have a requirement to rotate the CP certificate automatically with cert-manager which is for the communication between CP and DP (kuma.controlPlane.tls.general settings).
Khairul Anuar 7 months ago in Mesh 0 Under consideration

Implement authentication for Kong Mesh GUI with OIDC

Implement authentication for Kong Mesh GUI with OIDC, e.g. Azure AD
Guest about 1 year ago in Mesh 0 Under consideration

JWT policy

Create a new JWT policy -- could be "MeshJWT" -- to verify an incoming JWT. The goal is to be able to check: various claims (iss, aud, sub, azp, etc.) signature against an local/in-memory public key signature against a remote JWKS
Baptiste Collard 8 months ago in Mesh 0 Under consideration

expose envoy TCP statistics for both upstreams and downstreams

We would like to gather metrics on how their underlying network is performing to understand how this is impacting requests in our mesh gateway. In particular we would like the statistics listed here: https://www.envoyproxy.io/docs/envoy/latest/con...
Karl Kalckstein almost 2 years ago in Mesh 0 Under consideration

Allow ranges to be specified (instead of a comma-separated list format) for annotations such as "traffic.kuma.io/exclude-inbound-ports" or anything that uses numbers as a value

We would like to specify ranges of port numbers (such as 2000-4000) instead of having to list each port individually in a comma-separated list. Right now it appears this only allows for a single port number or else a comma-separated list of ports ...
Guest 9 months ago in Mesh 0 Under consideration

Conditionally update commonName with mtls in Mesh

In mtls-mesh configuration's backend block we are proving commonName as following'{{ tag "app" }}-{{ tag "k8s.kuma.io/namespace" }}-svc-{{ tag "k8s.kuma.io/service-port" }}.our-env.com'. This works fine once microservices are in use. But during me...
Luke Najdek over 1 year ago in Mesh 0 Under consideration

Provide a way to use a Forward Proxy with an Egress

When a kubernetes cluster is behind a forward proxy, mesh egress pods within the cluster have no ability to further proxy the requests for ExternalServices through that forward proxy. Curl has the -x option which tunnels through a proxy. We would ...
Ash Crago about 1 year ago in Mesh 0 Under consideration

Ability to define helm chart hooks inside Kong Mesh Helm Charts

Looking for the functionality to define Helm Chart Hooks similar to how we do for "(`kuma.controlPlane.podAnnotations`)." on the control plane. https://github.com/Kong/kong-mesh/blob/master/deployments/charts/kong-mesh/values.yaml#L33 https://helm...
Luke Najdek about 2 years ago in Mesh 0 Under consideration