csrf.proto

Package: solo.io.envoy.extensions.filters.http.csrf.v3

copied from https://github.com/envoyproxy/envoy/blob/main/api/envoy/extensions/filters/http/csrf/v3/csrf.proto

Types:

Source File: github.com/solo-io/gloo/projects/gloo/api/external/envoy/extensions/filters/http/csrf/v3/csrf.proto

CsrfPolicy

CSRF filter config.

"filterEnabled": .solo.io.envoy.config.core.v3.RuntimeFractionalPercent
"shadowEnabled": .solo.io.envoy.config.core.v3.RuntimeFractionalPercent
"additionalOrigins": []solo.io.envoy.type.matcher.v3.StringMatcher

Field Type Description
filterEnabled .solo.io.envoy.config.core.v3.RuntimeFractionalPercent Specifies the % of requests for which the CSRF filter is enabled. If :ref:runtime_key <envoy_api_field_config.core.v3.RuntimeFractionalPercent.runtime_key> is specified, Envoy will lookup the runtime key to get the percentage of requests to filter. .. note:: This field defaults to 100/:ref:HUNDRED <envoy_api_enum_type.v3.FractionalPercent.DenominatorType>.
shadowEnabled .solo.io.envoy.config.core.v3.RuntimeFractionalPercent Specifies that CSRF policies will be evaluated and tracked, but not enforced. This is intended to be used when filter_enabled is off and will be ignored otherwise. If :ref:runtime_key <envoy_api_field_config.core.v3.RuntimeFractionalPercent.runtime_key> is specified, Envoy will lookup the runtime key to get the percentage of requests for which it will evaluate and track the request’s Origin and Destination to determine if it’s valid, but will not enforce any policies.
additionalOrigins []solo.io.envoy.type.matcher.v3.StringMatcher Specifies additional source origins that will be allowed in addition to the destination origin. More information on how this can be configured via runtime can be found :ref:here <csrf-configuration>.