Documentation

Platform
The istio module: Custom Resources

The istio module: Custom Resources

You are viewing the documentation for an unreleased version of Deckhouse. You may choose the appropriate release channel from the versions menu or go to the latest stable Deckhouse version.

IstioFederation

Scope: Cluster
Version: v1alpha1

Custom resource for setting remote cluster as trusted one.

spec
object
Required value
This feature is available in enterprise edition only.
- spec.metadataEndpoint
  string
  Required value
  HTTPS endpoint with remote cluster metadata.
  
  This feature is available in enterprise edition only.
  
  Pattern: ^(https|file)://[0-9a-zA-Z._/-]+$
  Example:
  metadataEndpoint: https://istio.k8s.example.com/metadata/
- spec.trustDomain
  string
  Required value
  The TrustDomain of the remote cluster.
  
  A mandatory parameter, however, it isn’t used currently since Istio cannot match TrustDomain with the root CA.
  
  This feature is available in enterprise edition only.
  
  Pattern: ^[0-9a-zA-Z._-]+$
  Example:
  trustDomain: cluster.local

IstioMulticluster

Scope: Cluster
Version: v1alpha1

Custom resource for setting remote cluster as trusted one.

spec
object
Required value
This feature is available in enterprise edition only.
- spec.enableIngressGateway
  boolean
  Should Istio use ingressgateways to access remote Pods?
  
  If remote Pods are accessible directly from our cluster (“flat” network), it is efficient not to use extra hop.
  
  Default: true
  This feature is available in enterprise edition only.
- spec.metadataEndpoint
  string
  Required value
  HTTPS endpoint with remote cluster metadata.
  
  This feature is available in enterprise edition only.
  
  Pattern: ^(https|file)://[0-9a-zA-Z._/-]+$
  Example:
  metadataEndpoint: https://istio.k8s.example.com/metadata/