Skip to content

W-17513229 eol-service-mesh-gr #738

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 4 commits into from
Jun 16, 2025
Merged

W-17513229 eol-service-mesh-gr #738

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
3610bed
Remove service mesh
glenn-rodgers-sf Dec 30, 2024
863aeef
Merge branch 'latest' into W-17513229-eol-service-mesh-gr
glenn-rodgers-sf Jun 4, 2025
d9b09f4
Update policies-availability-by-gateway.adoc
glenn-rodgers-sf Jun 4, 2025
4432c35
Merge branch 'latest' into W-17513229-eol-service-mesh-gr
glenn-rodgers-sf Jun 16, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion policies/modules/ROOT/nav.adoc
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,3 +1,3 @@
* xref:policies-availability-by-gateway.adoc[]
* xref:gateway::flex-gateway-secure-apis.adoc[Flex Gateway Policies]
* xref:mule-gateway::policies-policy-overview.adoc[Mule Gateway and Service Mesh Policies]
* xref:mule-gateway::policies-policy-overview.adoc[Mule Gateway and Service Mesh Policies]
96 changes: 48 additions & 48 deletions policies/modules/ROOT/pages/policies-availability-by-gateway.adoc
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -9,103 +9,103 @@ endif::[]

[%header%autowidth.spread]
|===
|Policy |Flex Gateway |Mule Gateway | Service Mesh |Summary
|Policy |Flex Gateway |Mule Gateway | Summary

| A2A Agent Card ^| xref:gateway::policies-included-a2a-agent-card.adoc[✓] ^| | | Rewrites the Agent card URL to match the server instance public URL
| A2A Agent Card ^| xref:gateway::policies-included-a2a-agent-card.adoc[✓] ^| | Rewrites the Agent card URL to match the server instance public URL

| A2A PII Detector ^| xref:gateway::policies-included-a2a-pii-detector.adoc[✓] ^| | | Detects personally identifiable information (PII) in requests sent to the agent
| A2A PII Detector ^| xref:gateway::policies-included-a2a-pii-detector.adoc[✓] ^| | Detects personally identifiable information (PII) in requests sent to the agent

| A2A Prompt Decorator ^| xref:gateway::policies-included-a2a-prompt-decorator.adoc[✓] ^| | | Decorates prompts with context information
| A2A Prompt Decorator ^| xref:gateway::policies-included-a2a-prompt-decorator.adoc[✓] ^| | Decorates prompts with context information

| A2A Schema Validation ^| xref:gateway::policies-included-a2a-schema-validation.adoc[✓] ^| | | Validates Agent requests to ensure they conform to the A2A specification
| A2A Schema Validation ^| xref:gateway::policies-included-a2a-schema-validation.adoc[✓] ^| | Validates Agent requests to ensure they conform to the A2A specification

| AWS Lambda ^| xref:gateway::policies-outbound-aws-lambda.adoc[✓] ^| | | Allows access based on the basic authorization mechanism, with user-password defined on LDAP
| AWS Lambda ^| xref:gateway::policies-outbound-aws-lambda.adoc[✓] ^| | Allows access based on the basic authorization mechanism, with user-password defined on LDAP

| Basic Authentication: LDAP ^| xref:gateway::policies-included-basic-auth-ldap.adoc[✓] ^| xref:mule-gateway::policies-included-basic-auth-ldap.adoc[✓] ^| xref:mule-gateway::policies-included-basic-auth-ldap.adoc[✓] | Allows access based on the basic authorization mechanism, with user-password defined on LDAP
| Basic Authentication: LDAP ^| xref:gateway::policies-included-basic-auth-ldap.adoc[✓] ^| xref:mule-gateway::policies-included-basic-auth-ldap.adoc[✓] ^| Allows access based on the basic authorization mechanism, with user-password defined on LDAP

| Basic Authentication: Simple ^| xref:gateway::policies-included-basic-auth-simple.adoc[✓] ^| xref:mule-gateway::policies-included-basic-auth-simple.adoc[✓] ^| xref:mule-gateway::policies-included-basic-auth-simple.adoc[✓] | Allows access based on the basic authorization mechanism, with a single user-password
| Basic Authentication: Simple ^| xref:gateway::policies-included-basic-auth-simple.adoc[✓] ^| xref:mule-gateway::policies-included-basic-auth-simple.adoc[✓] ^| Allows access based on the basic authorization mechanism, with a single user-password

| Client ID Enforcement ^| xref:gateway::policies-included-client-id-enforcement.adoc[✓] ^| xref:mule-gateway::policies-included-client-id-enforcement.adoc[✓] ^| xref:mule-gateway::policies-included-client-id-enforcement.adoc[✓] | Allows access only to authorized client applications
| Client ID Enforcement ^| xref:gateway::policies-included-client-id-enforcement.adoc[✓] ^| xref:mule-gateway::policies-included-client-id-enforcement.adoc[✓] ^| Allows access only to authorized client applications

| Circuit Breaker ^| xref:gateway::policies-outbound-circuit-breaker.adoc[✓] ^| | | Prevents an upstream from receiving too many requests or connections
| Circuit Breaker ^| xref:gateway::policies-outbound-circuit-breaker.adoc[✓] ^| | Prevents an upstream from receiving too many requests or connections

| Credential Injection Basic Authentication ^| xref:gateway::policies-outbound-basic-auth.adoc[✓] ^| | | Injects a basic authorization header into outgoing requests
| Credential Injection Basic Authentication ^| xref:gateway::policies-outbound-basic-auth.adoc[✓] ^| | Injects a basic authorization header into outgoing requests

| Credential Injection OAuth 2.0 ^| xref:gateway::policies-outbound-oauth.adoc[✓] ^| | | Injects an OAuth 2.0 authorization header into outgoing requests
| Credential Injection OAuth 2.0 ^| xref:gateway::policies-outbound-oauth.adoc[✓] ^| | Injects an OAuth 2.0 authorization header into outgoing requests

| Cross-Origin Resource Sharing (CORS) ^| xref:gateway::policies-included-cors.adoc[✓] ^| xref:mule-gateway::policies-included-cors.adoc[✓] ^| | Enables access to resources residing in external domains
| Cross-Origin Resource Sharing (CORS) ^| xref:gateway::policies-included-cors.adoc[✓] ^| xref:mule-gateway::policies-included-cors.adoc[✓] ^| Enables access to resources residing in external domains

| Detokenization ^| ^| xref:mule-gateway::policies-included-detokenization.adoc[✓] ^| | Returns a tokenized value to its original value
| Detokenization ^| ^| xref:mule-gateway::policies-included-detokenization.adoc[✓] ^| Returns a tokenized value to its original value

| External Authorization ^| xref:gateway::policies-included-external-authorization.adoc[✓] ^| ^| | Authenticates requests by using an external gRPC or HTTP authorization service
| External Authorization ^| xref:gateway::policies-included-external-authorization.adoc[✓] ^| ^| Authenticates requests by using an external gRPC or HTTP authorization service

| External Processing ^| xref:gateway::policies-included-external-processing.adoc[✓] ^| ^| | Sends the incoming HTTP requests or outgoing HTTP responses to an external gRPC service for additional processing
| External Processing ^| xref:gateway::policies-included-external-processing.adoc[✓] ^| ^| Sends the incoming HTTP requests or outgoing HTTP responses to an external gRPC service for additional processing

| Header Injection ^| xref:gateway::policies-included-header-injection.adoc[✓] ^| xref:mule-gateway::policies-included-header-injection.adoc[✓] ^| | Adds headers to a request or a response
| Header Injection ^| xref:gateway::policies-included-header-injection.adoc[✓] ^| xref:mule-gateway::policies-included-header-injection.adoc[✓] ^| Adds headers to a request or a response

| Header Removal ^| xref:gateway::policies-included-header-removal.adoc[✓] ^| xref:mule-gateway::policies-included-header-removal.adoc[✓] ^| | Removes headers from a request or a response
| Header Removal ^| xref:gateway::policies-included-header-removal.adoc[✓] ^| xref:mule-gateway::policies-included-header-removal.adoc[✓] ^| Removes headers from a request or a response

| Health Check ^| xref:gateway::policies-included-health-check.adoc[✓] ^| ^| | Monitors API upstream health at specific intervals
| Health Check ^| xref:gateway::policies-included-health-check.adoc[✓] ^| ^| Monitors API upstream health at specific intervals

| HTTP Caching ^| xref:gateway::policies-included-http-caching.adoc[✓] ^| xref:mule-gateway::policies-included-http-caching.adoc[✓] ^| | Caches HTTP responses from an API implementation
| HTTP Caching ^| xref:gateway::policies-included-http-caching.adoc[✓] ^| xref:mule-gateway::policies-included-http-caching.adoc[✓] ^| Caches HTTP responses from an API implementation

| IP Allowlist ^| xref:gateway::policies-included-ip-allowlist.adoc[✓] ^| xref:mule-gateway::policies-included-ip-allowlist.adoc[✓] ^| | Allows a list or range of specified IP addresses to request access
| IP Allowlist ^| xref:gateway::policies-included-ip-allowlist.adoc[✓] ^| xref:mule-gateway::policies-included-ip-allowlist.adoc[✓] ^| Allows a list or range of specified IP addresses to request access

| IP Blocklist ^| xref:gateway::policies-included-ip-blocklist.adoc[✓] ^| xref:mule-gateway::policies-included-ip-blocklist.adoc[✓] ^| | Blocks a single IP address or a range of IP addresses from accessing an API endpoint
| IP Blocklist ^| xref:gateway::policies-included-ip-blocklist.adoc[✓] ^| xref:mule-gateway::policies-included-ip-blocklist.adoc[✓] ^| Blocks a single IP address or a range of IP addresses from accessing an API endpoint

| JSON Threat Protection ^| xref:gateway::policies-included-json-threat-protection.adoc[✓] ^| xref:mule-gateway::policies-included-json-threat-protection.adoc[✓] ^| | Protects against malicious JSON in API requests
| JSON Threat Protection ^| xref:gateway::policies-included-json-threat-protection.adoc[✓] ^| xref:mule-gateway::policies-included-json-threat-protection.adoc[✓] ^| Protects against malicious JSON in API requests

| JWT Validation ^| xref:gateway::policies-included-jwt-validation.adoc[✓] ^| xref:mule-gateway::policies-included-jwt-validation.adoc[✓] ^| xref:mule-gateway::policies-included-jwt-validation.adoc[✓] | Validates a JWT
| JWT Validation ^| xref:gateway::policies-included-jwt-validation.adoc[✓] ^| xref:mule-gateway::policies-included-jwt-validation.adoc[✓] ^| Validates a JWT

| MCP Attribute-Based Access Control ^| xref:gateway::policies-included-mcp-attribute-access-control.adoc[✓] ^| | | Controls access to tools, resources, and prompts based on user information such as Tiers, IP, Headers, or Claims
| MCP Attribute-Based Access Control ^| xref:gateway::policies-included-mcp-attribute-access-control.adoc[✓] ^| | Controls access to tools, resources, and prompts based on user information such as Tiers, IP, Headers, or Claims

| MCP Schema Validation ^| xref:gateway::policies-included-mcp-schema-validation.adoc[✓] ^| | | Validates MCP requests to ensure they conform to the MCP specification
| MCP Schema Validation ^| xref:gateway::policies-included-mcp-schema-validation.adoc[✓] ^| | Validates MCP requests to ensure they conform to the MCP specification

| MCP Support ^| xref:gateway::policies-included-mcp-support.adoc[✓] ^| | | Adds MCP support to a Flex Gateway MCP server instance. This policy is required for your MCP server instance to function properly.
| MCP Support ^| xref:gateway::policies-included-mcp-support.adoc[✓] ^| | Adds MCP support to a Flex Gateway MCP server instance. This policy is required for your MCP server instance to function properly.

| Message Logging ^| xref:gateway::policies-included-message-logging.adoc[✓] ^| xref:mule-gateway::policies-included-message-logging.adoc[✓] ^| | Logs custom messages using information from incoming requests, responses from the backend, or information from other policies applied to the same API endpoint
| Message Logging ^| xref:gateway::policies-included-message-logging.adoc[✓] ^| xref:mule-gateway::policies-included-message-logging.adoc[✓] ^| Logs custom messages using information from incoming requests, responses from the backend, or information from other policies applied to the same API endpoint

| OAuth 2.0 Access Token Enforcement Using Mule OAuth Provider ^| ^| xref:mule-gateway::policies-included-oauth-access-token-enforcement.adoc[✓] ^| | Allows access only to authorized client applications
| OAuth 2.0 Access Token Enforcement Using Mule OAuth Provider ^| ^| xref:mule-gateway::policies-included-oauth-access-token-enforcement.adoc[✓] ^| Allows access only to authorized client applications

| OAuth 2.0 Token Introspection ^| xref:gateway::policies-included-oauth-token-introspection.adoc[✓] ^| ^| | Allows access only to authorized client applications
| OAuth 2.0 Token Introspection ^| xref:gateway::policies-included-oauth-token-introspection.adoc[✓] ^| ^| Allows access only to authorized client applications

| OpenAM OAuth 2.0 Token Enforcement ^| ^| xref:mule-gateway::policies-included-openam-oauth-token-enforcement.adoc[✓] ^| | Allows access only to authorized client applications
| OpenAM OAuth 2.0 Token Enforcement ^| ^| xref:mule-gateway::policies-included-openam-oauth-token-enforcement.adoc[✓] ^| Allows access only to authorized client applications

| OpenID Connect OAuth 2.0 Access Token Enforcement ^| xref:gateway::policies-included-openid-token-enforcement.adoc[✓] ^| xref:mule-gateway::policies-included-openid-token-enforcement.adoc[✓] ^| | Allows access only to authorized client applications
| OpenID Connect OAuth 2.0 Access Token Enforcement ^| xref:gateway::policies-included-openid-token-enforcement.adoc[✓] ^| xref:mule-gateway::policies-included-openid-token-enforcement.adoc[✓] ^| Allows access only to authorized client applications

| PingFederate OAuth 2.0 Token Enforcement ^| ^| xref:mule-gateway::policies-included-pingfederate-oauth-token-enforcement.adoc[✓] ^| | Allows access only to authorized client applications
| PingFederate OAuth 2.0 Token Enforcement ^| ^| xref:mule-gateway::policies-included-pingfederate-oauth-token-enforcement.adoc[✓] ^| Allows access only to authorized client applications

| Rate Limiting ^| xref:gateway::policies-included-rate-limiting.adoc[✓] ^| xref:mule-gateway::policies-included-rate-limiting.adoc[✓] ^| xref:mule-gateway::policies-included-rate-limiting.adoc[✓] | Monitors access to an API by defining the maximum number of requests processed within a period of time
| Rate Limiting ^| xref:gateway::policies-included-rate-limiting.adoc[✓] ^| xref:mule-gateway::policies-included-rate-limiting.adoc[✓] ^| Monitors access to an API by defining the maximum number of requests processed within a period of time

| Rate Limiting: SLA-based ^| xref:gateway::policies-included-rate-limiting-sla.adoc[✓] ^| xref:mule-gateway::policies-included-rate-limiting-sla.adoc[✓] ^| xref:mule-gateway::policies-included-rate-limiting-sla.adoc[✓] | Monitors access to an API by defining the maximum number of requests processed within a timespan, based on SLAs
| Rate Limiting: SLA-based ^| xref:gateway::policies-included-rate-limiting-sla.adoc[✓] ^| xref:mule-gateway::policies-included-rate-limiting-sla.adoc[✓] ^| Monitors access to an API by defining the maximum number of requests processed within a timespan, based on SLAs

| Response Timeout ^| xref:gateway::policies-included-response-timeout.adoc[✓] ^| | | Sets the maximum duration Flex Gateway waits for a response from an upstream service
| Response Timeout ^| xref:gateway::policies-included-response-timeout.adoc[✓] ^| | Sets the maximum duration Flex Gateway waits for a response from an upstream service

| Schema Validation ^| xref:gateway::policies-included-schema-validation.adoc[✓] ^| ^| | Validates incoming traffic against a supplied OAS3 schema
| Schema Validation ^| xref:gateway::policies-included-schema-validation.adoc[✓] ^| ^| Validates incoming traffic against a supplied OAS3 schema

| SSE Logging ^| xref:gateway::policies-included-sse-logging.adoc[✓] ^| | | Logs every SSE event while streaming
| SSE Logging ^| xref:gateway::policies-included-sse-logging.adoc[✓] ^| | Logs every SSE event while streaming

| Stream Idle Timeout ^| xref:gateway::policies-included-stream-idle-timeout.adoc[✓] ^| | | Sets the maximum duration a stream can remain idle without receiving a request or response
| Stream Idle Timeout ^| xref:gateway::policies-included-stream-idle-timeout.adoc[✓] ^| | Sets the maximum duration a stream can remain idle without receiving a request or response

| Spike Control ^| xref:gateway::policies-included-spike-control.adoc[✓] ^| xref:mule-gateway::policies-included-spike-control.adoc[✓] ^| | Regulates API traffic
| Spike Control ^| xref:gateway::policies-included-spike-control.adoc[✓] ^| xref:mule-gateway::policies-included-spike-control.adoc[✓] ^| Regulates API traffic

| Traffic Management for Multiple Upstream Services ^| xref:gateway::policies-included-traffic-management-route.adoc[✓] ^| ^| | Manages API instance traffic to multiple upstream services from a single consumer endpoint
| Traffic Management for Multiple Upstream Services ^| xref:gateway::policies-included-traffic-management-route.adoc[✓] ^| ^| Manages API instance traffic to multiple upstream services from a single consumer endpoint

| Traffic Management for Multiple Upstream Services (Weighted) ^| xref:gateway::policies-included-traffic-management.adoc[✓] ^| ^| | Manages API instance traffic to multiple upstream services from a single consumer endpoint, using weighted percentages
| Traffic Management for Multiple Upstream Services (Weighted) ^| xref:gateway::policies-included-traffic-management.adoc[✓] ^| ^| Manages API instance traffic to multiple upstream services from a single consumer endpoint, using weighted percentages

| Transport Layer Security (TLS) - Inbound ^| xref:gateway::policies-included-tls.adoc[✓] ^| ^| | Enables authentication between a client and the API proxy
| Transport Layer Security (TLS) - Inbound ^| xref:gateway::policies-included-tls.adoc[✓] ^| ^| Enables authentication between a client and the API proxy

| Transport Layer Security (TLS) - Outbound ^| xref:gateway::policies-included-tls-outbound.adoc[✓] ^| ^| | Enables two-way authentication between the API proxy and an upstream service
| Transport Layer Security (TLS) - Outbound ^| xref:gateway::policies-included-tls-outbound.adoc[✓] ^| ^| Enables two-way authentication between the API proxy and an upstream service

| Tokenization ^| ^| xref:mule-gateway::policies-included-tokenization.adoc[✓] ^| | Transforms sensitive data into a nonsensitive equivalent, named token
| Tokenization ^| ^| xref:mule-gateway::policies-included-tokenization.adoc[✓] ^| Transforms sensitive data into a nonsensitive equivalent, named token

| Upstream Idle Timeout ^| xref:gateway::policies-outbound-upstream-idle-timeout.adoc[✓] ^| | | Sets the maximum duration a stream between Flex Gateway and an upstream service can remain idle
| Upstream Idle Timeout ^| xref:gateway::policies-outbound-upstream-idle-timeout.adoc[✓] ^| | Sets the maximum duration a stream between Flex Gateway and an upstream service can remain idle

| XML Threat Protection ^| ^| xref:mule-gateway::policies-included-xml-threat-protection.adoc[✓] ^| | Protects against malicious XML in API requests
| XML Threat Protection ^| ^| xref:mule-gateway::policies-included-xml-threat-protection.adoc[✓] ^| Protects against malicious XML in API requests

|===

== See Also

* xref:gateway::flex-gateway-secure-apis.adoc[Flex Gateway Policies]
* xref:mule-gateway::policies-policy-overview.adoc[Mule Gateway and Service Mesh Policies]
* xref:mule-gateway::policies-policy-overview.adoc[Mule Gateway Policies]