episode suggestion: `type.googleapis.com/envoy.extensions.filters.http.oauth2.v3.OAuth2` using `secret discovery service (SDS)` using `go-control-plane`

[mbana]

Thank you for recording the Envoy sessions. They have been very useful in learning more about Envoy.

That said, I would like to see an episode of configuring the OAuth2 filter which requires a token_secret and a hmac_secret. These can be configured as static_resources or as separate files but I would like to stream these secrets back using https://github.com/envoyproxy/envoy/blob/v1.23.0/api/envoy/service/secret/v3/sds.proto#L29 using the https://github.com/envoyproxy/go-control-plane/blob/main/envoy/service/secret/v3/sds.pb.go#L219 callback.

Here, https://github.com/veehaitch/envoy-oauth2-filter-google, is an example of defining the secrets using files, which is not what I want to do.

I cannot find a good/working example online of using the secret discovery service (SDS) to stream back the secrets using the go-control-plane.

I would appreciate it if you made an episode on how to do this.

References

• OAuth2 docs: https://www.envoyproxy.io/docs/envoy/v1.23.0/configuration/http/http_filters/oauth2_filter
• Secret discovery service (SDS) docs: https://www.envoyproxy.io/docs/envoy/v1.23.0/configuration/security/secret

[olopost]

I agree need on this example will be appreciated.