Skip to content

ext_authz: fixes a bug in the retry_policy to respective user's config #42232

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 4 commits into from
Nov 27, 2025
Merged

ext_authz: fixes a bug in the retry_policy to respective user's config #42232

merged 4 commits into from
Nov 27, 2025

Conversation

@agrawroh
Copy link
Member

@agrawroh agrawroh commented Nov 24, 2025

Description

This PR fixes the ExtAuthZ HTTP behavior where we keep using the hardcoded defaults and ignore the policy passed in by the user.

Commit Message: ext_authz: fixes a bug in the retry_policy to respective user's config
Additional Description: Fixes the ExtAuthZ HTTP behavior where we keep using the hardcoded defaults and ignore the policy passed in by the user.
Risk Level: Low
Testing: Added Integration Tests
Docs Changes: Added
Release Notes: Added

wbpcode
wbpcode reviewed Nov 25, 2025
View reviewed changes
source/extensions/filters/common/ext_authz/ext_authz_http_impl.cc Outdated
Comment on lines 116 to 117
Http::Utility::convertCoreToRouteRetryPolicy(core_retry_policy,
"5xx,gateway-error,connect-failure,reset");
Http::Utility::convertCoreToRouteRetryPolicy(core_retry_policy, "");
Copy link
Member

@wbpcode wbpcode Nov 25, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

What will happen is the retry_on of user's configuration is empty? Or is that possible?

Copy link
Member Author

@agrawroh agrawroh Nov 25, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

If the user's retry_on configuration is empty, then retries will be effectively disabled which seems to be the correct behavior. What do you think?

Copy link
Member Author

@agrawroh agrawroh Nov 27, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

i added it behind a new runtime guard as we discussed offline :)

@repokitteh-read-only
Copy link

repokitteh-read-only bot commented Nov 27, 2025

CC @envoyproxy/runtime-guard-changes: FYI only for changes made to (source/common/runtime/runtime_features.cc).

🐱

Caused by: #42232 was synchronize by agrawroh.

see: more, trace.

wbpcode
wbpcode previously approved these changes Nov 27, 2025
View reviewed changes
Copy link
Member

@wbpcode wbpcode left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM. Thanks.

@agrawroh agrawroh enabled auto-merge (squash) November 27, 2025 08:56
@agrawroh
format
f0460f0 
Signed-off-by: Rohit Agrawal <[email protected]>
@agrawroh agrawroh merged commit c380f76 into envoyproxy:main Nov 27, 2025
23 of 24 checks passed
phlax pushed a commit to phlax/envoy that referenced this pull request Nov 28, 2025
@agrawroh @phlax
ext_authz: fixes a bug in the retry_policy to respective user's config (
db8f9b5 
envoyproxy#42232)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@wbpcode wbpcode wbpcode approved these changes

@tyxia tyxia Awaiting requested review from tyxia tyxia is a code owner

@ggreenway ggreenway Awaiting requested review from ggreenway ggreenway is a code owner

Assignees

@wbpcode wbpcode

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@agrawroh @wbpcode