Skip to content

Support Gateway tls.backend field #3153

New issue
New issue
Open
#3900
Open
Support Gateway tls.backend field#3153
#3900
Assignees
salonichf5
Labels
area/gateway/extendedRelates to all extended features of GatewayenhancementNew feature or requestrefinedRequirements are refined and the issue is ready to be implemented.size/largeEstimated to be completed within two weeks
Milestone
v2.2.0
@sjberman

Description

@sjberman
sjberman
opened on Feb 20, 2025

As an NGF user,
I want to specify client certificates for Gateway using the field tls.backend
So that I can easily present the gateway's identity to the backend pods.

The BackendTLS field supports mTLS when per-Service level BackendTLS Policy is set so that both Gateway and Backend pods can verify each others identity.

See the API spec

Acceptance

  • Support the tls.backend.clientCertificateRef field of the Gateway resource
  • ReferenceGrant allows ClientCertificateRef from another namespace to be attached, if specified

Metadata

Metadata

Assignees

Labels

area/gateway/extendedRelates to all extended features of GatewayenhancementNew feature or requestrefinedRequirements are refined and the issue is ready to be implemented.size/largeEstimated to be completed within two weeks

Type

No type

Projects

NGINX Gateway Fabric

Status

👀 In Review

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions