The evolution of VM support in Istio 1.8 (with video)

Istio releases a new minor version every quarter, and most recently the community released 1.8.0. VM support for Istio has been progressing along across the last few releases. For example, in  Istio 1.6 the WorkloadEntry resource was introduced. This allowed the mesh operator to specify VM instances and their IPs as part of the mesh. […]

Christian Posta | November 25, 2020
Read More

The evolution of multicluster support in Istio 1.8

Istio 1.8 has just been released and one of the area that has evolved is its multicluster support. If you are familiar with Istio, you probably know the 2 multicluster deployment models that were available in the previous versions: Shared control plane In this configuration a single Istio control plane was deployed and Pods running […]

Denis Jannot | November 23, 2020
Read More

Hoot – Understanding Open Policy Agent

Kubernetes and cloud-native architecture has introduced abstractions at different layers of the application stack, starting with containers abstracting the code from the OS, networking, and more. Microservices being distributed, dynamic, and polyglot means that abstracting these operational instructions away from the business logic allows them to be language agnostic of the application code, configured, and […]

Betty Junod | November 20, 2020
Read More

Hoot – Understanding GitOps with special guest, Stefan Prodan

Last week’s Hoot featured a conversation between Yuval Kohavi and Stefan Prodan, developer experience engineer at Weaveworks working on Flux and Flagger on the topic of GitOps. What is GitOps? Borrowing the definition from the Weaveworks website, GitOps is a way to do Kubernetes cluster management and application delivery.  It works by using Git as a single […]

Betty Junod | November 19, 2020
Read More

Introducing Gloo Mesh Enterprise and the Gloo API Infrastructure Platform

Three years ago we started with the mission to help businesses transform to microservices architecture to gain the benefits of agility and speed in delivering new applications and functionality to automate their business and delight their customers. Our approach meets the organization where they are today and enables them to incrementally adopt at the […]

Idit Levine | November 12, 2020
Read More

Multi-Cluster Service Mesh Role-Based-Access-Control

In the previous posts, we covered how Gloo Mesh (previous known as Service Mesh Hub) makes it easy to federate the identity across clusters to allow cross-cluster communication, failover and access control based on policies. RBAC in Kubernetes In large organizations, several teams are using the same Kubernetes cluster. They use Kubernetes RBAC to define who can […]

Denis Jannot | November 12, 2020
Read More

Advanced Authentication Workflows with OpenID Connect using Gloo API Gateway – Part 2

In the previous Blog post, we covered how Gloo can be used to authenticate users with OIDC and how it can process the JWT token returned by the identity provider. The JWT token was stored as a cookie in the web browser and sent with each HTTP request as a header. We configured Gloo to […]

Denis Jannot | November 9, 2020
Read More

End User Case Study: uShip

In this post, we feature a Q&A with Richard Simpson, software engineer at uShip working on platform engineering. uShip is a transportation marketplace company launched in 2004 with the mission to make shipping large or bulky items (like cars, cranes, furniture, and freight) quick, easy and affordable. The uShip platform helps people, businesses, e-commerce sellers, […]

Betty Junod | November 4, 2020
Read More WebAssembly updates v0.0.30 – Rust and TinyGo support and more

At, we’ve been working for the past year with WebAssembly (Wasm) and with how it can be used to customize the behavior of Envoy proxy and Envoy based solutions. Wasm is an exciting new technology born from the need to support compatibility for client side application deployments and has tremendous potential for the server […] Engineering | November 3, 2020
Read More

November 2020 – Upcoming Events Calendar

Check out our updated events calendar for the latest conference and meetup talks, livestreams, and workshops for the month of November. We are excited to meet you online to share and discuss all things Envoy Proxy, Kubernetes, and service mesh. If you have an event coming up, you can request a speaker  here and continue […]

Betty Junod | November 2, 2020
Read More

Service Mesh Hub v0.9.1 – Expanded OSM support, AWS App Mesh progress, plus more config and troubleshooting features

Service Mesh Hub is a Kubernetes-native management plane that enables configuration and operational management of multiple clusters of the same service meshes and multiple clusters of heterogeneous service meshes through a unified API. Since the 0.7.2 release in September we’ve shipped more features and fixes leading to the latest release, version 0.9.1 New Features in […] Engineering | October 28, 2020
Read More

Advanced Authentication Workflows with OpenID Connect using Gloo API Gateway

Gloo supports authentication via OpenID Connect (OIDC). OIDC is an identity layer on top of the OAuth 2.0 protocol. In OAuth 2.0 flows, authentication is performed by an external Identity Provider (IdP) which, in case of success, returns an Access Token representing the user identity. The protocol does not define the contents and structure of […]

Denis Jannot | October 26, 2020
Read More