Is the cookie hash key specific to the appid adapter?

looking the IBM istio appid adapter for auth purposes, i could see that the adapter generates the cookie in code using a random hashkey thats created at the adapter's startup.

If i want to run multiple instances of the adapter for high availability, won't that be problematic as they don't share the cookie signing key ?

Looking at the source code what is the config.proto in config\adapter\config.proto used for ? What could one potentially use it for ?

Solution

Using a common signing key for cookies is supported but undocumented. The adapter looks for k8s secret named appidentityandaccessadapter-cookie-sig-enc-keys in the istio-system namespace

Can I limit my Bluemix utilization and charges?
GYP ERR! build error. stack Error: 'make' failed with exit code 2
Watson discovery highlight
How to push a single image with multiple tags to a container registry?
How to add a IBM Watson Assistant chatbot on to a webpage?
Watson Assistant Chatbot integration on Wix website
Error staging application: App staging failed in the buildpack compile phase in HWC Buildpack
install db2 client on mac
Box login - how do develop opn both localhost and in production?
What is "X-Require-Whisk-Auth" (IBM Cloud Functions) in IBM Cloud Code Engine functions?
How to connect device to IBM cloud
Bummer: something went wrong trying to "Ping Bluemix" from helloAuthentication Android sample app
Listing IBM Cloud Resources using ResourceControllerV2 and pagination issues
Watsonx Assistant reconigze phone number from Twillio Integration
Is there any option to activate/deactivate a MDB in open liberty
How to use Watson text-to-speech api in node.js?
Facebook webhook to Node-RED
Hoving IBM-Cloud bucket from one instance to another (both on the same account or each on a distinct account )
"AttributeError: 'Index' object has no attribute 'tz_localize'" while using the function history to extract stock information
How to locally test IBM Cloud Code Engine function?
"Warning: msg properties can no longer override set node properties" when deploying new Node-RED flow
Are there enterprise solutions being developed/already developed using Hyperledger Composer
'require' keyword doesn't work within Node Red Function node
How to authenticate and access Kubernetes cluster for devops pipeline?
IBM Cloud Storage - Test Docker
CSRF validation does not work on Django using HTTPS
How do I access a private Container Registry from IBM Cloud Delivery Pipeline (Tekton, dockerconfigjson)
Cannot native compile project with library that depends on okhttp
IBM Cloud Functions + Cloudant
Getting no results from an IBM Cloud Function that uses IBM Cloudant