[EPIC] Add support for SSLConfig settings in K8S Gateway API #10419
Labels
Area: K8S Gateway API
Issues related to the Kubernetes Gateway API
Prioritized
Indicating issue prioritized to be worked on in RFE stream
release/1.19
scope/1.19
Type: Enhancement
New feature or request
Comments
DuncanDoyle
added
Area: K8S Gateway API
tiberiuac
pushed a commit
to tiberiuac/gloo
that referenced
this issue
Jan 8, 2025
Signed-off-by: Daneyon Hansen <daneyon.hansen@solo.io> Co-authored-by: Sam Heilbron <SamHeilbron@gmail.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Gloo Edge Product
Open Source
Gloo Gateway Version
1.18.2
Is your feature request related to a problem? Please describe.
The classic Gloo Edge API provides a
SSLConfigproto that provides a number of configuration options that are often used by our users, in particular:oneWayTlsalpnProtocolsparameters(to set the supported cipher suites, min/max protocol versions, etc).In our K8S Gateway API implementation we currently do not support these settings, which prevents some of our users that rely on these features to move to GW API.
Rather than tackling these individual features one by one, this epic aims to gather the requirements for the most used SSLConfig options so we can design this feature as a whole, rather than implement small individual pieces of it.
Note that there seem to be a number of K8S Gateway API issues that discuss some of these configuration options:
ALPN:
Cipher Suites:
Describe the solution you'd like
Support for the:
oneWayTlsalpnProtocolsparamatersoptions of the
SSLConfigproto in our K8S Gateway API implementation.Describe alternatives you've considered
n.a.
Additional Context
n.a.
Sub Issues:
The text was updated successfully, but these errors were encountered: