What is Envoy
Envoy is an L7 proxy and communication bus designed for large modern
service oriented architectures.
Following high level features:
- Out of process architecture
- Modern C++11 code base
- L3/L4 filter architecture
- HTTP L7 filter architecture
- First class HTTP/2 support
- HTTP L7 routing
Envoy Thread Works
EPOLLONESHOT (since Linux 2.6.2)
Requests one-shot notification for the associated file
descriptor. This means that after an event notified for the
file descriptor by epoll_wait(2), the file descriptor is dis-
abled in the interest list and no other events will be
reported by the epoll interface. The user must call
epoll_ctl() with EPOLL_CTL_MOD to rearm the file descriptor
with a new event mask.
g from multiple threads
Multi-tenant Gloo installations by installing to multiple namespaces
Gloo ExtAuth In EE
Gloo GatewayGloo Gateway Proxy
By Unix Socket
Basic Auth: Authenticating using a dictionary of usernames and passwords on a virtual service.
OAuth: External Auth with Oauth
JSON Web Tokens (JWT): Introduction to JWT and what they are used for
API Keys: How to setup ApiKey authentication.
OPA Authorization: Illustrating how to combine OpenID Connect with Open Policy Agent to achieve fine grained policy
LDAP: Authenticate and authorize requests using LDAP.
Custom Auth server: External Authentication with your own auth server
Plugin Auth: Extend Gloo's built-in auth server with custom Go plugins
Configuration format history: Overview of the external auth configuration formats supported by each GlooE version.