I'm using the grpc-java client 1.69.0 with a XDS server to connect to a server that is behind another envoy cluster. The URL for the service is TLS and when I run my client, configured like this:
channelBuilder = Grpc.newChannelBuilder(target, TlsChannelCredentials.create()); // needed otherwise the TLS handshake will fail, I'm assuming // due to invalid SNI name not set for TLS handskake // // channelBuilder.overrideAuthority(SERVICE_URL); blockingStub = GeoLookupGrpc.newBlockingStub(channelBuilder.build()); If I uncomment out the call to overrideAuthority() which has the FQDN of the TLS certificate for the GRPC service behind envoy then the call will work as expected. Is there a way around this so the client doesn't need to know this information and everything can be provided to the client via XDS? Thanks Dave -- You received this message because you are subscribed to the Google Groups "grpc.io" group. To unsubscribe from this group and stop receiving emails from it, send an email to grpc-io+unsubscr...@googlegroups.com. To view this discussion visit https://groups.google.com/d/msgid/grpc-io/83dd73e1-5521-49bb-9803-c7304c1fcb99n%40googlegroups.com.
