No metrics related to JWT?
2 views
Skip to first unread message
Fabrice Triboix
Sep 26, 2025, 4:02:35 AMSep 26
to envoy-users
Hello,
We are running Kubernetes cluster with Istio. We are configuring some RequestAuthentication objects to validate JWT tokens. I have been told that the Envoy proxy should generate some metrics related to JWT validation, viz:
http.<stat prefix>.jwt_authn.allowed
http.<stat prefix>.jwt_authn.cors_preflight_bypassed
http.<stat prefix>.jwt_authn.denied
http.<stat prefix>.jwt_authn.jwks_fetch_failed
http.<stat prefix>.jwt_authn.jwks_fetch_success
http.<stat prefix>.jwt_authn.jwt_cache_hit
http.<stat prefix>.jwt_authn.jwt_cache_miss
http.<stat prefix>.jwt_authn.cors_preflight_bypassed
http.<stat prefix>.jwt_authn.denied
http.<stat prefix>.jwt_authn.jwks_fetch_failed
http.<stat prefix>.jwt_authn.jwks_fetch_success
http.<stat prefix>.jwt_authn.jwt_cache_hit
http.<stat prefix>.jwt_authn.jwt_cache_miss
I just checked the /stats/prometheus endpoint of the Envoy sidecar container. It has a lot of metrics, but none related to JWT... Am I missing something? Do I need to enable these?
Thanks for your help!
Fabrice
Reply all
Reply to author
Forward
0 new messages