Basic HTTP Authentication in Gateway API

Question

How does one approach securing an HTTPRoute using HTTP Basic Authentication?

From what I understand, Gateway API has no opinion regarding authentication:

[...] to configure some advanced features like authentication [...], you will need to rely on the extensions of the Gateway API (source)

Another place in the documentation has this to say:

[...] A Gateway implementation can define custom resources called Policies for exposing data plane features like authentication (source)

What are some known Gateway API implementations that implement a policy to support basic HTTP Authentication?

I think we hope for better support from Gateway API for this. There is an issue about it https://github.com/kubernetes-sigs/gateway-api/issues/1494 — Jonas, Apr 23 '23 at 21:20

score -1 · Answer 1 · answered Apr 01 '23 at 10:13

-1

I have implemented several solutions always with the use of dex and Pomerium.

dex as a federated OpenID Connect provider and Pomerium as an authentication reverse proxy.

Try taking a look at these documentations:

Furthermore, there are Helm Charts provided by the Vendors that are really easy to implement.

answered Apr 01 '23 at 10:13

glv

None of these use the Gateway API, hence does not answer the question. – Jonas Apr 23 '23 at 21:16

1 Answers1