SafeCrossScheme internal redirect predicate¶
An internal redirect predicate that checks the scheme between the downstream url and the redirect target url and allows a) same scheme redirect and b) safe cross scheme redirect, which means if the downstream scheme is HTTPS, both HTTPS and HTTP redirect targets are allowed, but if the downstream scheme is HTTP, only HTTP redirect targets are allowed.
This extension may be referenced by the qualified name envoy.internal_redirect_predicates.safe_cross_scheme
This extension is intended to be robust against both untrusted downstream and upstream traffic.
This extension extends and can be used with the following extension category: