Connectum API Reference / @connectum/auth / MeshIdentityEntry
Interface: MeshIdentityEntry
Defined in: packages/auth/src/types.ts:366
An allow-list entry for meshIdentityTrust, mapping a verified mesh identity (the forwarded peer principal) to its authorization context.
Properties
name?
readonlyoptionalname?:string
Defined in: packages/auth/src/types.ts:377
Optional human-readable name for the calling service.
principal
readonlyprincipal:string
Defined in: packages/auth/src/types.ts:371
The mesh-forwarded peer identity to match, e.g. an Istio short-form ServiceAccount principal cluster.local/ns/<ns>/sa/<name> or a SPIFFE id.
roles?
readonlyoptionalroles?: readonlystring[]
Defined in: packages/auth/src/types.ts:373
Roles granted to this caller (compose via requires {roles}).
scopes?
readonlyoptionalscopes?: readonlystring[]
Defined in: packages/auth/src/types.ts:375
Scopes granted to this caller (compose via requires {scopes}).