- Sort Score
- Result 10 results
- Languages All
Results 1 - 9 of 9 for cpsr (0.12 sec)
-
security/pkg/nodeagent/test/mock/caserver.go
s.faultInjectLock.Unlock() return empty } // CreateCertificate handles CSR. func (s *CAServer) CreateCertificate(ctx context.Context, request *pb.IstioCertificateRequest) ( *pb.IstioCertificateResponse, error, ) { caServerLog.Infof("received CSR request") if s.shouldReject() { caServerLog.Info("force rejecting CSR request") return nil, status.Error(codes.Unavailable, "CA server is not available") }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu May 23 21:07:03 UTC 2024 - 5.9K bytes - Viewed (0) -
security/pkg/nodeagent/caclient/providers/mock/mockcaclient.go
signingCert, signingKey, certChain, rootCert := c.bundle.GetAll() csr, err := util.ParsePemEncodedCSR(csrPEM) if err != nil { return nil, fmt.Errorf("csr sign error: %v", err) } subjectIDs := []string{"test"} certBytes, err := util.GenCertFromCSR(csr, signingCert, csr.PublicKey, *signingKey, subjectIDs, c.certLifetime, false) if err != nil { return nil, fmt.Errorf("csr sign error: %v", err) } block := &pem.Block{
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu May 16 22:12:28 UTC 2024 - 3K bytes - Viewed (0) -
security/pkg/server/ca/monitoring.go
"The number of errors occurred when parsing the CSR.", ) idExtractionErrorCounts = monitoring.NewSum( "citadel_server_id_extraction_err_count", "The number of errors occurred when extracting the ID from CSR.", ) certSignErrorCounts = monitoring.NewSum( "citadel_server_csr_sign_err_count", "The number of errors occurred when signing the CSR.", ) successCounts = monitoring.NewSum(
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue May 21 18:32:09 UTC 2024 - 3.3K bytes - Viewed (0) -
security/pkg/server/ca/server.go
var cert []byte var respCertChain []string if certSigner == "" { cert, signErr = s.ca.Sign([]byte(request.Csr), certOpts) } else { serverCaLog.Debugf("signing CSR with cert chain") respCertChain, signErr = s.ca.SignWithCertChain([]byte(request.Csr), certOpts) } if signErr != nil { serverCaLog.Errorf("CSR signing error: %v", signErr.Error()) s.monitoring.GetCertSignError(signErr.(*caerror.Error).ErrorType()).Increment()
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue May 28 17:35:26 UTC 2024 - 8K bytes - Viewed (0) -
manifests/charts/istio-control/istio-discovery/templates/deployment.yaml
- name: istio-kubeconfig secret: secretName: istio-kubeconfig optional: true # Optional: istio-csr dns pilot certs - name: istio-csr-dns-cert secret: secretName: istiod-tls optional: true - name: istio-csr-ca-configmap configMap: name: istio-ca-root-cert defaultMode: 420 optional: true
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu May 30 20:24:06 UTC 2024 - 9K bytes - Viewed (0) -
security/pkg/nodeagent/caclient/providers/citadel/client.go
} } // CSRSign calls Citadel to sign a CSR. func (c *CitadelClient) CSRSign(csrPEM []byte, certValidTTLInSec int64) (res []string, err error) { crMetaStruct := &structpb.Struct{ Fields: map[string]*structpb.Value{ security.CertSigner: { Kind: &structpb.Value_StringValue{StringValue: c.opts.CertSigner}, }, }, } req := &pb.IstioCertificateRequest{ Csr: string(csrPEM),
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu May 16 22:12:28 UTC 2024 - 4.9K bytes - Viewed (0) -
security/pkg/pki/util/crypto.go
block, _ := pem.Decode(csrBytes) if block == nil { return nil, fmt.Errorf("certificate signing request is not properly encoded") } csr, err := x509.ParseCertificateRequest(block.Bytes) if err != nil { return nil, fmt.Errorf("failed to parse X.509 certificate signing request") } return csr, nil } // ParsePemEncodedKey takes a PEM-encoded key and parsed the bytes into a `crypto.PrivateKey`.
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue Jun 04 13:00:07 UTC 2024 - 5.3K bytes - Viewed (0) -
manifests/addons/dashboards/lib/panels.libsonnet
self.base(title, targets, desc) + timeSeries.standardOptions.withUnit('s'), connections(title, targets, desc=''): self.base(title, targets, desc) + timeSeries.standardOptions.withUnit('cps'), dns(title, targets, desc=''): self.base(title, targets, desc) + timeSeries.standardOptions.withUnit('qps'), bytes(title, targets, desc=''): self.base(title, targets, desc)
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Jun 12 20:46:28 UTC 2024 - 4.5K bytes - Viewed (1) -
manifests/charts/ztunnel/values.yaml
# Used to locate the XDS and CA, if caAddress or xdsAddress are not set explicitly. revision: "" # The customized CA address to retrieve certificates for the pods in the cluster. # CSR clients such as the Istio Agent and ingress gateways can use this to specify the CA endpoint. caAddress: "" # The customized XDS address to retrieve configuration.
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Jun 05 20:32:30 UTC 2024 - 3.5K bytes - Viewed (0)