2022年9月29日
Envoy OPA配置示例
摘要: 架构示例 envoy.yaml node: id: "backend" cluster: "demo-cluster-spire" static_resources: listeners: - address: socket_address: address: 0.0.0.0 port_value: 阅读全文
posted @ 2022-09-29 14:04 小吉猫 阅读(138) 评论(0) 推荐(0) 编辑
OPA创建tls证书
摘要: cat >server.conf <<EOF [ req ] prompt = no req_extensions = v3_ext distinguished_name = dn [ dn ] CN = opa.opa.svc [ v3_ext ] basicConstraints = CA:FA 阅读全文
posted @ 2022-09-29 12:43 小吉猫 阅读(29) 评论(0) 推荐(0) 编辑
docker-compose部署OPA
摘要: docker-compose.yaml version: "3.7" services: ext_authz-opa-service: image: openpolicyagent/opa:latest-envoy volumes: - ./policy.rego:/etc/policy.rego 阅读全文
posted @ 2022-09-29 11:40 小吉猫 阅读(90) 评论(0) 推荐(0) 编辑