- Sort Score
- Result 10 results
- Languages All
Results 1 - 10 of 47 for audiences (0.14 sec)
-
tests/integration/security/testdata/authz/jwt.yaml.tmpl
# - Allow request with valid JWT token to access path /jwt1 # - Allow request with valid JWT token of presenter bar to access path with suffix "/presenter" # - Allow request with valid JWT token of audiences foo to access path with suffix "/audiences" apiVersion: security.istio.io/v1beta1 kind: AuthorizationPolicy metadata: name: {{ .To.ServiceName }} spec: selector: matchLabels: "app": "{{ .To.ServiceName }}"
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed May 08 23:36:51 UTC 2024 - 3K bytes - Viewed (0) -
pilot/pkg/security/authz/builder/testdata/http/allow-full-rule-in.yaml
notValues: ["not-requestPrincipals", "not-requestPrincipals-prefix-*", "*-not-suffix-requestPrincipals", "*"] - key: "request.auth.audiences" values: ["audiences", "audiences-prefix-*", "*-suffix-audiences", "*"] notValues: ["not-audiences", "not-audiences-prefix-*", "*-not-suffix-audiences", "*"] - key: "request.auth.presenter" values: ["presenter", "presenter-prefix-*", "*-suffix-presenter", "*"]
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Sat Apr 20 01:58:53 UTC 2024 - 4.1K bytes - Viewed (0) -
security/pkg/server/ca/authenticate/oidc.go
ksa := parts[3] if !checkAudience(sa.Aud, j.audiences) { return nil, fmt.Errorf("invalid audiences %v", sa.Aud) } return &security.Caller{ AuthSource: security.AuthSourceIDToken, Identities: []string{spiffe.MustGenSpiffeURI(j.meshHolder.Mesh(), ns, ksa)}, }, nil } // checkAudience() returns true if the audiences to check are in // the expected audiences. Otherwise, return false.
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu May 23 21:07:03 UTC 2024 - 5.1K bytes - Viewed (0) -
staging/src/k8s.io/api/testdata/v1.30.0/authentication.k8s.io.v1.TokenReview.yaml
controller: true kind: kindValue name: nameValue uid: uidValue resourceVersion: resourceVersionValue selfLink: selfLinkValue uid: uidValue spec: audiences: - audiencesValue token: tokenValue status: audiences: - audiencesValue authenticated: true error: errorValue user: extra: extraKey: - extraValue groups: - groupsValue uid: uidValue
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu Apr 18 08:52:25 UTC 2024 - 1.1K bytes - Viewed (0) -
staging/src/k8s.io/api/testdata/v1.30.0/authentication.k8s.io.v1beta1.TokenReview.json
"spec": { "token": "tokenValue", "audiences": [ "audiencesValue" ] }, "status": { "authenticated": true, "user": { "username": "usernameValue", "uid": "uidValue", "groups": [ "groupsValue" ], "extra": { "extraKey": [ "extraValue" ] } }, "audiences": [ "audiencesValue" ],
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu Apr 18 08:52:25 UTC 2024 - 1.6K bytes - Viewed (0) -
staging/src/k8s.io/api/testdata/v1.30.0/authentication.k8s.io.v1.TokenReview.json
"spec": { "token": "tokenValue", "audiences": [ "audiencesValue" ] }, "status": { "authenticated": true, "user": { "username": "usernameValue", "uid": "uidValue", "groups": [ "groupsValue" ], "extra": { "extraKey": [ "extraValue" ] } }, "audiences": [ "audiencesValue" ],
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu Apr 18 08:52:25 UTC 2024 - 1.6K bytes - Viewed (0) -
security/pkg/server/ca/authenticate/oidc_test.go
}{ { name: "audience is in the expected set", expectRet: true, audToCheck: []string{"aud1"}, audExpected: []string{"aud1", "aud2"}, }, { name: "audience is NOT in the expected set", expectRet: false, audToCheck: []string{"aud3"}, audExpected: []string{"aud1", "aud2"}, }, { name: "one of the audiences is in the expected set",
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu May 23 21:07:03 UTC 2024 - 7.3K bytes - Viewed (0) -
staging/src/k8s.io/api/testdata/v1.30.0/authentication.k8s.io.v1beta1.TokenReview.yaml
controller: true kind: kindValue name: nameValue uid: uidValue resourceVersion: resourceVersionValue selfLink: selfLinkValue uid: uidValue spec: audiences: - audiencesValue token: tokenValue status: audiences: - audiencesValue authenticated: true error: errorValue user: extra: extraKey: - extraValue groups: - groupsValue uid: uidValue
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu Apr 18 08:52:25 UTC 2024 - 1.1K bytes - Viewed (0) -
staging/src/k8s.io/api/testdata/v1.30.0/authentication.k8s.io.v1.TokenRequest.yaml
blockOwnerDeletion: true controller: true kind: kindValue name: nameValue uid: uidValue resourceVersion: resourceVersionValue selfLink: selfLinkValue uid: uidValue spec: audiences: - audiencesValue boundObjectRef: apiVersion: apiVersionValue kind: kindValue name: nameValue uid: uidValue expirationSeconds: 4 status: expirationTimestamp: "2002-01-01T01:01:01Z"
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu Apr 18 08:52:25 UTC 2024 - 1.1K bytes - Viewed (0) -
staging/src/k8s.io/api/testdata/v1.30.0/authentication.k8s.io.v1.TokenRequest.json
"time": "2004-01-01T01:01:01Z", "fieldsType": "fieldsTypeValue", "fieldsV1": {}, "subresource": "subresourceValue" } ] }, "spec": { "audiences": [ "audiencesValue" ], "expirationSeconds": 4, "boundObjectRef": { "kind": "kindValue", "apiVersion": "apiVersionValue", "name": "nameValue", "uid": "uidValue" }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu Apr 18 08:52:25 UTC 2024 - 1.5K bytes - Viewed (0)