Add mTLS policy support

Dean-Coakley · web-flow · commit 2d041f29fe16 · 2020-10-13T15:42:47.000+01:00
diff --git a/build/kic_crds/policy-definition.yaml b/build/kic_crds/policy-definition.yaml
@@ -53,6 +53,38 @@ spec:
                   type: array
                   items:
                     type: string
+            egressMTLS:
+              description: EgressMTLS defines an Egress MTLS policy.
+              type: object
+              properties:
+                ciphers:
+                  type: string
+                protocols:
+                  type: string
+                serverName:
+                  type: boolean
+                sessionReuse:
+                  type: boolean
+                sslName:
+                  type: string
+                tlsSecret:
+                  type: string
+                trustedCertSecret:
+                  type: string
+                verifyDepth:
+                  type: integer
+                verifyServer:
+                  type: boolean
+            ingressMTLS:
+              description: IngressMTLS defines an Ingress MTLS policy.
+              type: object
+              properties:
+                clientCertSecret:
+                  type: string
+                verifyClient:
+                  type: string
+                verifyDepth:
+                  type: integer
             jwt:
               description: JWTAuth holds JWT authentication configuration.
               type: object
