无法使corsPolicy在istio中工作
我正试图让公司在istio 1.1.7上运行,但我忽略了与公司相关的任何内容,RemoveResponseHeaders工作正常。 但只有access control allow origin和access control allow凭据显示其他内容 这是桌面Docker上的新安装。(我重置一切只是为了确保),使用默认安装配置文件无法使corsPolicy在istio中工作,cors,istio,Cors,Istio,我正试图让公司在istio 1.1.7上运行,但我忽略了与公司相关的任何内容,RemoveResponseHeaders工作正常。 但只有access control allow origin和access control allow凭据显示其他内容 这是桌面Docker上的新安装。(我重置一切只是为了确保),使用默认安装配置文件 我相信你已经意识到了这一点。你试过了吗?很抱歉,回复太晚了。我还对我们决定让应用程序处理cors策略而不是在istio中配置的问题发表了评论 ➜ istio-1
我相信你已经意识到了这一点。你试过了吗?很抱歉,回复太晚了。我还对我们决定让应用程序处理cors策略而不是在istio中配置的问题发表了评论
➜ istio-1.1.7 curl abcd.127.0.0.1.nip.io/anything -I
HTTP/1.1 200 OK
server: istio-envoy
date: Thu, 13 Jun 2019 10:08:10 GMT
content-type: application/json
content-length: 977
access-control-allow-origin: *
access-control-allow-credentials: true
apiVersion: networking.istio.io/v1alpha3
kind: Gateway
metadata:
name: httpbin-gateway
spec:
selector:
istio: ingressgateway
servers:
- port:
number: 80
name: http
protocol: HTTP
hosts:
- abcd.127.0.0.1.nip.io
---
apiVersion: networking.istio.io/v1alpha3
kind: VirtualService
metadata:
name: httpbin
labels:
app: httpbin
spec:
hosts:
- abcd.127.0.0.1.nip.io
gateways:
- httpbin-gateway
http:
- match:
route:
- destination:
host: httpbin
port:
number: 8000
corsPolicy:
allowOrigin:
- 'abcd.com'
allowCredentials: false
allowMethods:
- POST
allowHeaders:
- X-Foo-Bar
maxAge: "24h"
removeResponseHeaders:
- x-envoy-upstream-service-time
---
apiVersion: v1
kind: Service
metadata:
name: httpbin
labels:
app: httpbin
spec:
ports:
- name: http
port: 8000
targetPort: 80
selector:
app: httpbin
---
apiVersion: extensions/v1beta1
kind: Deployment
metadata:
name: httpbin
spec:
replicas: 1
template:
metadata:
labels:
app: httpbin
version: v1
spec:
containers:
- image: docker.io/kennethreitz/httpbin
imagePullPolicy: IfNotPresent
name: httpbin
ports:
- containerPort: 80