Record - istio : TLSOptionConfig

Istio gateway server tls option configurations.

Fields

  • httpsRedirect boolean false
  • If set to true, the load balancer will send a 301 redirect for all http connections, asking the clients to use HTTPS. Default is false.

  • mode TLSOptionMode PASSTHROUGH
  • Indicates whether connections to this port should be secured using TLS. The value of this field determines how TLS is enforced. Default is "PASSTHROUGH".

  • serverCertificate string
  • REQUIRED if mode is SIMPLE or MUTUAL. The path to the file holding the server-side TLS certificate to use.

  • privateKey string
  • REQUIRED if mode is SIMPLE or MUTUAL. The path to the file holding the server’s private key.

  • caCertificates string
  • REQUIRED if mode is MUTUAL. The path to a file containing certificate authority certificates to use in verifying a presented client side certificate.

  • subjectAltNames string
  • A list of alternate names to verify the subject identity in the certificate presented by the client.