Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support passthrough for unknown HTTP upgrades #36469

Open
AnirbanNandi opened this issue Oct 7, 2024 · 1 comment
Open

Support passthrough for unknown HTTP upgrades #36469

AnirbanNandi opened this issue Oct 7, 2024 · 1 comment
Labels
enhancement Feature requests. Not bugs or questions.

Comments

@AnirbanNandi
Copy link

More details in istio/istio#53239 (also related to istio/istio#52651 (comment)) but here's the TL;DR:

Envoy returns a 403 Forbidden response for unsupported HTTP upgrade headers (e.g. SPDY/3.1, TLS/1.2, etc.) even when the upstream service is able to respond normally. This creates a disparity in terms of the developer experience when testing the app outside of the mesh (all working correctly) vs inside the mesh (requests getting blocked). The FR here is to expose a setting that configures Envoy to ignore any unknown headers and let the server respond normally.

cc @howardjohn
@AnirbanNandi AnirbanNandi added enhancement Feature requests. Not bugs or questions. triage Issue requires triage labels Oct 7, 2024
@alyssawilk alyssawilk removed the triage Issue requires triage label Oct 7, 2024
@alyssawilk
Copy link
Contributor

Seems reasonable to me.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement Feature requests. Not bugs or questions.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@alyssawilk @AnirbanNandi