I'm using the grpc-java client 1.69.0 with a XDS server to connect to a server that is behind another envoy cluster. The URL for the service is TLS and when I run my client, configured like this:
channelBuilder = Grpc.newChannelBuilder(target, TlsChannelCredentials.create());
// needed otherwise the TLS handshake will fail, I'm assuming
// due to invalid SNI name not set for TLS handskake
//
// channelBuilder.overrideAuthority(SERVICE_URL);
blockingStub = GeoLookupGrpc.newBlockingStub(channelBuilder.build());
If I uncomment out the call to overrideAuthority() which has the FQDN of the TLS certificate for the GRPC service behind envoy then the call will work as expected.
Is there a way around this so the client doesn't need to know this information and everything can be provided to the client via XDS?
Thanks
Dave