Skip to content

Support allowed_client_headers_on_success in External Auth #7367

New issue
New issue
Open
Open
Support allowed_client_headers_on_success in External Auth#7367
Labels
kind/featureCategorizes issue or PR as related to a new feature.lifecycle/needs-triageIndicates that an issue needs to be triaged by a project contributor.
@tokongs

Description

@tokongs
tokongs
opened on Jan 8, 2026

Please describe the problem you have
[A clear, concise, description of the problem you are facing. What is the problem that feature X would solve for you?]

The problem I'm trying to solve is that I need to be able to refresh a cookie on successful auth.

As far as I can tell the headers I set in my auth service are not propagated to the client. Envoy supports this feature using allowed_client_headers_on_success on extensions.filters.http.ext_authz.v3.AuthorizationResponse. It would be great if Contour could expose that option.

Metadata

Metadata

Assignees

No one assigned

    Labels

    kind/featureCategorizes issue or PR as related to a new feature.lifecycle/needs-triageIndicates that an issue needs to be triaged by a project contributor.

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions