Backport of Add jwt-authn metrics to jwt-provider docs into release/1.16.x (#17824)

* backport of commit 452d08d5e8e40c0710a2042dd1d67b8eaa5fe43d

* backport of commit 1f1f222c97f981a23de44be2afdef37c25f4a91a

---------

Co-authored-by: Ronald Ekambi <ronekambi@gmail.com>
This commit is contained in:
hc-github-team-consul-core 2023-06-20 16:02:56 -04:00 committed by GitHub
parent 439bdbb127
commit 4678361234
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 17 additions and 1 deletions

View File

@ -952,6 +952,22 @@ Defines behavior for caching the validation result of previously encountered JWT
</Tab>
</Tabs>
## Metrics
The following `envoy` metrics can be used to track jwt authentication details.
~> **Note:** Envoy does not currently provide any documentation on these metrics.
```yaml
http.public_listener.jwt_authn.allowed
http.public_listener.jwt_authn.cors_preflight_bypassed
http.public_listener.jwt_authn.denied
http.public_listener.jwt_authn.jwks_fetch_failed
http.public_listener.jwt_authn.jwks_fetch_success
http.public_listener.jwt_authn.jwt_cache_hit
http.public_listener.jwt_authn.jwt_cache_miss
```
## Examples
The following examples demonstrate common JWT provider configuration patterns for specific use cases.