istio
diff --git a/‎mesh/v1alpha1/config.pb.go‎
Lines changed: 100 additions & 52 deletions b/‎mesh/v1alpha1/config.pb.go‎
Lines changed: 100 additions & 52 deletions
diff --git a/‎mesh/v1alpha1/config.proto‎
Lines changed: 6 additions & 1 deletion b/‎mesh/v1alpha1/config.proto‎
Lines changed: 6 additions & 1 deletion
diff --git a/‎mesh/v1alpha1/istio.mesh.v1alpha1.pb.html‎
Lines changed: 10 additions & 0 deletions b/‎mesh/v1alpha1/istio.mesh.v1alpha1.pb.html‎
Lines changed: 10 additions & 0 deletions
@@ -56,6 +56,11 @@ message MeshConfig {
   // is false, i.e. mixer policy check is enabled by default.
   bool disable_policy_checks = 3;
 
+  // Allow all traffic in cases when the mixer policy service cannot be reached.
+  // Default is false which means the traffic is denied when the client is unable
+  // to connect to Mixer.
+  bool policy_check_fail_open = 25;
+
   // Port on which Envoy should listen for incoming connections from
   // other services.
   int32 proxy_listen_port = 4;
@@ -153,7 +158,7 @@ message MeshConfig {
   bool enable_sds_token_mount = 23;
 
   // $hide_from_docs
-  // Next available field number: 25
+  // Next available field number: 26
 }
 
 // ConfigSource describes information about a configuration store inside a
 
@@ -136,6 +136,16 @@ <h2 id="MeshConfig">MeshConfig</h2>
 <p>Disable policy checks by the mixer service. Default
 is false, i.e. mixer policy check is enabled by default.</p>
 
+</td>
+</tr>
+<tr id="MeshConfig-policy_check_fail_open">
+<td><code>policyCheckFailOpen</code></td>
+<td><code>bool</code></td>
+<td>
+<p>Allow all traffic in cases when the mixer policy service cannot be reached.
+Default is false which means the traffic is denied when the client is unable
+to connect to Mixer.</p>
+
 </td>
 </tr>
 <tr id="MeshConfig-proxy_listen_port">