csrf.proto
Package: solo.io.envoy.extensions.filters.http.csrf.v3
copied from https://github.com/envoyproxy/envoy/blob/main/api/envoy/extensions/filters/http/csrf/v3/csrf.proto
Types:
Source File: github.com/solo-io/gloo/projects/gloo/api/external/envoy/extensions/filters/http/csrf/v3/csrf.proto
CsrfPolicy
CSRF filter config.
"filterEnabled": .solo.io.envoy.config.core.v3.RuntimeFractionalPercent
"shadowEnabled": .solo.io.envoy.config.core.v3.RuntimeFractionalPercent
"additionalOrigins": []solo.io.envoy.type.matcher.v3.StringMatcher| Field | Type | Description |
|---|---|---|
filterEnabled |
.solo.io.envoy.config.core.v3.RuntimeFractionalPercent | Specifies the % of requests for which the CSRF filter is enabled. If runtime_key is specified, Envoy will lookup the runtime key to get the percentage of requests to filter. Note: This field defaults to 100/HUNDRED. |
shadowEnabled |
.solo.io.envoy.config.core.v3.RuntimeFractionalPercent | Specifies that CSRF policies will be evaluated and tracked, but not enforced. This is intended to be used when filter_enabled is off and will be ignored otherwise. If runtime_key is specified, Envoy will lookup the runtime key to get the percentage of requests for which it will evaluate and track the request’s Origin and Destination to determine if it’s valid, but will not enforce any policies. |
additionalOrigins |
[]solo.io.envoy.type.matcher.v3.StringMatcher | Specifies additional source origins that will be allowed in addition to the destination origin. More information on how this can be configured via runtime can be found here. |