mpstefan
commented
4 days ago Hey @hegerdes!
There isn't a standard for auth yet in the Gateway API, but we do have some aspects of what you're looking for coming up in two releases from now. You can see our thoughts around this here.
Using a remote oauth2 endpoint, as you describe, will implemented as a first-class feature at a later date. However, we are working on a method, very similar to ingress annotations, to customize nginx configuration SHOULD meet your use case. We're hoping to deliver this two releases from now as well. The epic for the customization is available here.
hegerdes
Is your enhancement request related to a problem? Please describe. I want to transition from Ingress to Gateway API. Currently I use nginx (o)auth request module to authenticate user requests. I don't find a way to do this with ngf.
This is a game-breaker for adopting Gateway
What would you like to be added: Ideally a common interface between all Gateway implementations to do auth requests (via OAuth2/OIDC). If this is not possible to do in a provider unspecific way there could be a specific RouteFilter or like ingress annotations.
Why this is needed: This is needed to provide full feature compatibility with Ingress.
Additional context As far as I was I know there is no way to represent the following annotations/functions with nfg:
Is there a way to express this with HTTPRouteFilters?
Is there an alternative approach?