Security
As Envoy AI Gateway is built on Envoy Gateway, you can leverage the Envoy Gateway Security Policy by attaching them to the Gateway and/or generated HTTPRoutes.
tip
View all Envoy Gateway Security Docs to learn more what security configurations are available to you.
Common Security Docs
Below are a list of common security configurations that can be useful when securing your gateway leveraging Envoy Gateway configurations.
Access Control
- JWT Validation - Validate signed JWT tokens
- JWT Claim Based Authorization - Assert values of claims in JWT tokens
- Mutual TLS - Certificate based access control
- Integrate with External Authorization Service - Useful for custom logic to your business
- OIDC Provider Integration - When you want to have integration with a login flow for an end-user
- Require Basic Auth
- Require API Key
- IP Allowlist/Denylist