Istio releases a new minor version every quarter, and most recently the community released 1.8.0. VM support for Istio has been progressing along across the last few releases. For example, in  Istio 1.6 the WorkloadEntry resource was introduced. This allowed the mesh operator to specify VM instances and their IPs as part of the mesh. […]

Istio 1.8 has just been released and one of the area that has evolved is its multicluster support. If you are familiar with Istio, you probably know the 2 multicluster deployment models that were available in the previous versions: Shared control plane In this configuration a single Istio control plane was deployed and Pods running […]

Kubernetes and cloud-native architecture has introduced abstractions at different layers of the application stack, starting with containers abstracting the code from the OS, networking, and more. Microservices being distributed, dynamic, and polyglot means that abstracting these operational instructions away from the business logic allows them to be language agnostic of the application code, configured, and […]

Last week’s Hoot featured a conversation between Yuval Kohavi and Stefan Prodan, developer experience engineer at Weaveworks working on Flux and Flagger on the topic of GitOps. What is GitOps? Borrowing the definition from the Weaveworks website, GitOps is a way to do Kubernetes cluster management and application delivery.  It works by using Git as a single […]

Three years ago we started Solo.io with the mission to help businesses transform to microservices architecture to gain the benefits of agility and speed in delivering new applications and functionality to automate their business and delight their customers. Our approach meets the organization where they are today and enables them to incrementally adopt at the […]

In the previous posts, we covered how Gloo Mesh (previous known as Service Mesh Hub) makes it easy to federate the identity across clusters to allow cross-cluster communication, failover and access control based on policies. RBAC in Kubernetes In large organizations, several teams are using the same Kubernetes cluster. They use Kubernetes RBAC to define who can […]

In the previous Blog post, we covered how Gloo can be used to authenticate users with OIDC and how it can process the JWT token returned by the identity provider. The JWT token was stored as a cookie in the web browser and sent with each HTTP request as a header. We configured Gloo to […]

In this post, we feature a Q&A with Richard Simpson, software engineer at uShip working on platform engineering. uShip is a transportation marketplace company launched in 2004 with the mission to make shipping large or bulky items (like cars, cranes, furniture, and freight) quick, easy and affordable. The uShip platform helps people, businesses, e-commerce sellers, […]

At Solo.io, we’ve been working for the past year with WebAssembly (Wasm) and with how it can be used to customize the behavior of Envoy proxy and Envoy based solutions. Wasm is an exciting new technology born from the need to support compatibility for client side application deployments and has tremendous potential for the server […]

Check out our updated events calendar for the latest conference and meetup talks, livestreams, and workshops for the month of November. We are excited to meet you online to share and discuss all things Envoy Proxy, Kubernetes, and service mesh. If you have an event coming up, you can request a speaker  here and continue […]

Service Mesh Hub is a Kubernetes-native management plane that enables configuration and operational management of multiple clusters of the same service meshes and multiple clusters of heterogeneous service meshes through a unified API. Since the 0.7.2 release in September we’ve shipped more features and fixes leading to the latest release, version 0.9.1 New Features in […]

Gloo supports authentication via OpenID Connect (OIDC). OIDC is an identity layer on top of the OAuth 2.0 protocol. In OAuth 2.0 flows, authentication is performed by an external Identity Provider (IdP) which, in case of success, returns an Access Token representing the user identity. The protocol does not define the contents and structure of […]