Can you please help me with below two queries? We need to add new changes to implement authorization policy in Istio gateway, This should be done during installation or upgrade of Istio via Azure DevOps pipeline.
To implement this via Azure Pipeline, we need some inputs to understand how can we accommodate below changes in our pipeline.
- How to accommodate external auth service with istio through mesh configuration with Azure DevOps yaml file(servicemesh yaml)?
- Apply Authorization Policy in istio-system namespace We have an YAML with 'kind: AuthorizationPolicy' for Istio. How can we call this file or apply this configuration during installation of Istio?
We still didn't find any documentation to perform the above changes in our Azure DevOps pipeline.
Here is a Kubernetes extension for Azure Pipelines that should be able to meet your demands in Azure Pipelines.
This extension provides the tasks to execute
istioctl,kubectlandhelmcommands in pipelines.You can install this extension to your Azure DevOps organization (or collection), then reference its
README.mdto set up your pipeline in Azure DevOps.