envoyproxy · derekargueta · Apr 21, 2026 · Apr 24, 2026 · adisuissa · Apr 28, 2026
diff --git a/api/envoy/extensions/filters/http/ext_authz/v3/ext_authz.proto b/api/envoy/extensions/filters/http/ext_authz/v3/ext_authz.proto
@@ -484,7 +484,7 @@ message BufferSettings {
 // metadata as well as body may be added to the client's response. See :ref:`allowed_client_headers
 // <envoy_v3_api_field_extensions.filters.http.ext_authz.v3.AuthorizationResponse.allowed_client_headers>`
 // for details.
-// [#next-free-field: 11]
+// [#next-free-field: 12]
 message HttpService {
   option (udpa.annotations.versioning).previous_message_type =
       "envoy.config.filter.http.ext_authz.v2.HttpService";
@@ -502,6 +502,12 @@ message HttpService {
   // Only one of ``path_prefix`` or ``path_override`` may be set.
   string path_override = 10;
 
+  // Overrides the HTTP method of the authorization request sent to the authorization service.
+  // If not set, the original request method is forwarded. This is useful when the authorization
+  // service exposes a single fixed endpoint (e.g. ``POST /auth``) regardless of the original
+  // request method.
+  string method_override = 11;
+
   // Settings used for controlling authorization request metadata.
   AuthorizationRequest authorization_request = 7;