Workspace Setting
Workspace Setting allows configuring the default traffic and security settings for all the workloads in the namespaces owned by the workspace. Any namespace in the workspace that is not part of a traffic or security group will use these default settings.
The following example sets the default security policy to accept
either mutual TLS or plaintext traffic, and only accept connections
at a sidecar from services within the same namespace. The default
traffic policy allows unknown traffic from a sidecar to be
forwarded via an egress gateway tsb-egress
in the perimeter
namespace in the same cluster.
apiVersion: api.tsb.tetrate.io/v2
kind: WorkspaceSetting
metadata:
name: w1-settings
workspace: w1
tenant: mycompany
organization: myorg
spec:
defaultSecuritySetting:
authentication: OPTIONAL
defaultTrafficSetting:
egressGateway: bookinfo-perimeter/tsb-egress
WorkspaceSetting
Default security and traffic settings for all sidecars in the workspace.
Field | Description | Validation Rule |
defaultSecuritySetting | tetrateio.api.tsb.security.v2.SecuritySetting | – |
defaultTrafficSetting | tetrateio.api.tsb.traffic.v2.TrafficSetting | – |