Control traffic with policies
Use Gloo Mesh policies to control the traffic within your service mesh environment. Review the following available policies, set up a demo environment, or learn how to apply policies to your resources.
Fault injectionTest the resilience of your apps by injecting delays and connection failures.
RetryReduce transient failures and hanging systems by setting retries and timeouts.
TimeoutReduce transient failures and hanging systems by setting retries and timeouts.
CORSEnforce client-site access controls with cross-origin resource sharing (CORS).
CSRFApply a CSRF filter to the gateway to help prevent cross-site request forgery attacks.
External authSet up an external authentication and authorization, such as with basic, passthrough, API key, OAuth, OPA, or LDAP auth.
Traffic control policies
MirrorDuplicate outgoing traffic, to test a new app.
Header manipulationAppend or remove HTTP request and response headers at the route level.
Rate limitControl the rate of requests to a destination or route.
TransformationAlter a request before matching and routing, such as with an Inja header template.
WebAssembly (Wasm) deploymentAdd a Wasm filter to your service mesh, for use cases such as customizing the endpoints and thresholds for your workloads.