This project is in the process of being donated to the CNCF and is not affiliated with the Kubernetes project.

csrf.proto

Package: solo.io.envoy.extensions.filters.http.csrf.v3
copied from https://github.com/envoyproxy/envoy/blob/main/api/envoy/extensions/filters/http/csrf/v3/csrf.proto

Types:

Source File: github.com/solo-io/gloo/projects/gloo/api/external/envoy/extensions/filters/http/csrf/v3/csrf.proto


CsrfPolicy

CSRF filter config.

"filterEnabled": .solo.io.envoy.config.core.v3.RuntimeFractionalPercent
"shadowEnabled": .solo.io.envoy.config.core.v3.RuntimeFractionalPercent
"additionalOrigins": []solo.io.envoy.type.matcher.v3.StringMatcher
Field Type Description
filterEnabled .solo.io.envoy.config.core.v3.RuntimeFractionalPercent Specifies the % of requests for which the CSRF filter is enabled. If runtime_key is specified, Envoy will lookup the runtime key to get the percentage of requests to filter. Note: This field defaults to 100/HUNDRED.
shadowEnabled .solo.io.envoy.config.core.v3.RuntimeFractionalPercent Specifies that CSRF policies will be evaluated and tracked, but not enforced. This is intended to be used when filter_enabled is off and will be ignored otherwise. If runtime_key is specified, Envoy will lookup the runtime key to get the percentage of requests for which it will evaluate and track the request’s Origin and Destination to determine if it’s valid, but will not enforce any policies.
additionalOrigins []solo.io.envoy.type.matcher.v3.StringMatcher Specifies additional source origins that will be allowed in addition to the destination origin. More information on how this can be configured via runtime can be found here.