Skip to main content
Version: 2.2.8.RELEASE

Advanced Guide

Advanced Guide

This section will introduce some advanced configuration items related to security governance.

Configuration Refrence

Configuration ItemkeyDefault ValueDescription
Whether to enable authenticationspring.cloud.governance.auth.enabledtrue
Whether to connect to Istio to obtain authentication configurationspring.cloud.istio.config.enabledtrue
Host of Istiodspring.cloud.istio.config.host127.0.0.1
Port of Istiodspring.cloud.istio.config.port1501215010 port does not need TLS,but 15012 does
Thread pool size for application to pull the configspring.cloud.istio.config.polling-pool-size10
Time interval for application to pull the configspring.cloud.istio.config.polling-time30The unit is second
JWT token for application to connect to 15012 portspring.cloud.istio.config.istiod-tokenContent of file /var/run/secrets/tokens/istio-token in the pod of application
Whether to print logs about xDSspring.cloud.istio.config.log-xdstrue

Environment Variable Refrence

Note that the application runs in the K8s environment, and the application in the non-default namespace needs to receive the rules issued by Istiod, and needs to inject the meta information of the running application Kubernetes into the following environment variables. For the specific operation method, please refer to Kubernetes documentation:

Environment variable nameK8s pod metadata name
POD_NAMEmetadata.name
NAMESPACE_NAMEmetadata.namespace