In the featureGates Helm setting, you specify a key-value pair, in which the key is the feature name, and the value is a boolean to enable or disable the feature. For example, to onboard external workloads with Gloo Mesh Enterprise, you set --set featureGates.ExternalWorkloads=true in your helm install command, or set featureGates.ExternalWorkloads to true in your Helm values file. Note that the featureGates section replaces the deprecated experimental section in the gloo-platform Helm chart.

For more information about the Helm chart, see the Helm value reference. For more information about features that are in alpha or beta support, see Gloo feature maturity.

FeatureDefault valueMaturitySinceUntilDescriptionUsed by
EnableJWTPolicyEastWestRoutetrueGA2.5.4Enables JWTPolicies to apply to selected east-west routes when configuring applyToRoutes API.Gloo management server
GatewayDefaultDenyAllHTTPRequestsfalseGA2.5.0In Gloo Mesh Gateway, apply external auth or JWT policies to enable traffic for specific routes. This feature ensures ongoing security, even in the event of errors like policy deletion or Envoy filter issues. By default, all existing routes bypass this mechanism. To onboard routes to this new feature, you must label your HTTP routes with the reserved '': 'true' label. Once labeled, routes become subject to the dynamic default deny behavior, reinforcing security.Gloo management server
InsightsConfigurationfalseAlpha2.5.0Configure settings for the insights engine.Gloo management server
ReconcilerRelationshipWritestrueAlpha2.5.0Deprecated: Relationship tracking is deprecated and planned for removal in a future release. Allow the Gloo reconciler, which applies translated Gloo resources in your workload clusters, to track relationships between input and output resources. Disabling this feature can improve system performance.Gloo management server
VirtualDestinationWorkspacePolicyOverridefalsev2.6.0Enable the ability to override client-side policies of imported virtual destinations. Otherwise, the virtual destinations keep the policies from the source workspace. Note that when you first enable this feature, virtual destinations with client-side policies experience dropped traffic until the configuration updates are propagated across clusters. You cannot disable this feature after enabling.Gloo management server