Package :



Table of Contents


AccessLogPolicy is used to collect access logs from workloads which have injected (sidecars) or are standalone proxies (gateways). AccessLogPolicies are applied at the Workload level.

Field Type Label Description
applyToWorkloads [] repeated Select the workloads where access logs will be collected. If left empty, will apply to all workloads in the workspace.
config The details of the policy specifying how to collect access logs from the selected workloads.


Field Type Label Description
filters [] repeated Configure criteria for determining which access logs will be recorded. The list is disjunctive, a request will be recorded if it matches any filter. Leave empty to emit all access logs.
includedRequestHeaders []string repeated Specify request headers to include in access logs.
includedResponseHeaders []string repeated Specify response headers to include in access logs.
includedResponseTrailers []string repeated Specify response trailers to include in access logs.
includedFilterStateObjects []string repeated Specify filter state objects to include in access logs.


Specify criteria for recording access logs. A request must match all specified criteria to be recorded.

Field Type Label Description
statusCodeMatcher Matches against a response status code. Omit to match any status code.
headerMatcher Matches against a request or response header. Omit to match any headers.


Reflects the status of the AccessLogPolicy.

Field Type Label Description
workspaces [] repeated The status of the resource in each workspace that it exists in.
selectedWorkloads [] repeated Workloads selected by the policy DEPRECATED: Use selected_workload_refs instead
selectedWorkloadRefs [] repeated


Field Type Label Description
key string