From 77cdf39ae11ae887af1e3d79ede2c58f915eb602 Mon Sep 17 00:00:00 2001 From: Cemal Kilic Date: Mon, 8 Sep 2025 14:18:39 +0200 Subject: [PATCH 1/2] feat: add retry policy for auth service routes --- ansible/files/envoy_config/lds.supabase.yaml | 8 +++++++- ansible/files/envoy_config/lds.yaml | 8 +++++++- 2 files changed, 14 insertions(+), 2 deletions(-) diff --git a/ansible/files/envoy_config/lds.supabase.yaml b/ansible/files/envoy_config/lds.supabase.yaml index 6fdcb68c7..087c6c344 100644 --- a/ansible/files/envoy_config/lds.supabase.yaml +++ b/ansible/files/envoy_config/lds.supabase.yaml @@ -235,7 +235,7 @@ resources: google_re2: max_program_size: 150 regex: >- - /auth/v1/(verify|callback|authorize|sso/saml/(acs|metadata|slo)|\.well-known/(openid-configuration|jwks\.json)) + /auth/v1/(verify|callback|authorize|sso/saml/(acs|metadata|slo)) request_headers_to_remove: - apikey - sb-opk @@ -259,6 +259,12 @@ resources: cluster: gotrue prefix_rewrite: / timeout: 35s + retry_policy: + retry_on: "connect-failure,refused-stream,gateway-error" + num_retries: 3 + retry_back_off: + base_interval: 1s + max_interval: 3s - match: prefix: /rest/v1/ query_parameters: diff --git a/ansible/files/envoy_config/lds.yaml b/ansible/files/envoy_config/lds.yaml index 97481c889..b94e3cf2b 100644 --- a/ansible/files/envoy_config/lds.yaml +++ b/ansible/files/envoy_config/lds.yaml @@ -261,7 +261,7 @@ resources: google_re2: max_program_size: 150 regex: >- - /auth/v1/(verify|callback|authorize|sso/saml/(acs|metadata|slo)|\.well-known/(openid-configuration|jwks\.json)) + /auth/v1/(verify|callback|authorize|sso/saml/(acs|metadata|slo)) request_headers_to_remove: - apikey - sb-opk @@ -285,6 +285,12 @@ resources: cluster: gotrue prefix_rewrite: / timeout: 35s + retry_policy: + retry_on: "connect-failure,refused-stream,gateway-error" + num_retries: 3 + retry_back_off: + base_interval: 1s + max_interval: 3s - match: prefix: /rest/v1/ query_parameters: From 5f43bcc8aa6630495ceb1f14ab50ecd1da5bc28b Mon Sep 17 00:00:00 2001 From: Cemal Kilic Date: Mon, 8 Sep 2025 14:22:16 +0200 Subject: [PATCH 2/2] fix: no change for wellknown urls --- ansible/files/envoy_config/lds.supabase.yaml | 2 +- ansible/files/envoy_config/lds.yaml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/ansible/files/envoy_config/lds.supabase.yaml b/ansible/files/envoy_config/lds.supabase.yaml index 087c6c344..4a9a01668 100644 --- a/ansible/files/envoy_config/lds.supabase.yaml +++ b/ansible/files/envoy_config/lds.supabase.yaml @@ -235,7 +235,7 @@ resources: google_re2: max_program_size: 150 regex: >- - /auth/v1/(verify|callback|authorize|sso/saml/(acs|metadata|slo)) + /auth/v1/(verify|callback|authorize|sso/saml/(acs|metadata|slo)|\.well-known/(openid-configuration|jwks\.json)) request_headers_to_remove: - apikey - sb-opk diff --git a/ansible/files/envoy_config/lds.yaml b/ansible/files/envoy_config/lds.yaml index b94e3cf2b..b5c2d6fd7 100644 --- a/ansible/files/envoy_config/lds.yaml +++ b/ansible/files/envoy_config/lds.yaml @@ -261,7 +261,7 @@ resources: google_re2: max_program_size: 150 regex: >- - /auth/v1/(verify|callback|authorize|sso/saml/(acs|metadata|slo)) + /auth/v1/(verify|callback|authorize|sso/saml/(acs|metadata|slo)|\.well-known/(openid-configuration|jwks\.json)) request_headers_to_remove: - apikey - sb-opk