Skip to content

Support Gateway tls.backend field #3153

New issue
New issue
Closed
#3900
Closed
Support Gateway tls.backend field#3153
#3900
Assignees
salonichf5
Labels
area/gateway/extendedRelates to all extended features of GatewayenhancementNew feature or requesthighlightRelates to features that should be promoted despite not being an epicrefinedRequirements are refined and the issue is ready to be implemented.size/largeEstimated to be completed within two weeks
Milestone
v2.3.0
@sjberman

Description

@sjberman
sjberman
opened on Feb 20, 2025

As an NGF user,
I want to specify client certificates for Gateway using the field tls.backend
So that I can easily present the gateway's identity to the backend pods.

The BackendTLS field supports mTLS when per-Service level BackendTLS Policy is set so that both Gateway and Backend pods can verify each others identity.

See the API spec

Acceptance

  • Support the tls.backend.clientCertificateRef field of the Gateway resource
  • ReferenceGrant allows ClientCertificateRef from another namespace to be attached, if specified

Metadata

Metadata

Assignees

Labels

area/gateway/extendedRelates to all extended features of GatewayenhancementNew feature or requesthighlightRelates to features that should be promoted despite not being an epicrefinedRequirements are refined and the issue is ready to be implemented.size/largeEstimated to be completed within two weeks

Type

No type

Projects

NGINX Gateway Fabric

Status

✅ Done

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions