The SDS (Secrets Discovery Service) supports this, and is touched on in TFA: https://www.envoyproxy.io/docs/envoy/latest/intro/arch_overv...
You provide a gRPC service that can return the keypair needed for any host, with host config also being dynamic.
https://www.envoyproxy.io/docs/envoy/latest/configuration/se...
The SDS (Secrets Discovery Service) supports this, and is touched on in TFA: https://www.envoyproxy.io/docs/envoy/latest/intro/arch_overv...
You provide a gRPC service that can return the keypair needed for any host, with host config also being dynamic.
https://www.envoyproxy.io/docs/envoy/latest/configuration/se...