- Sort Score
- Result 10 results
- Languages All
Results 1 - 10 of 21 for AuthorizationPolicy (0.27 sec)
-
pilot/pkg/model/authorization.go
Spec: config.Spec.(*authpb.AuthorizationPolicy), } policy.NamespaceToPolicies[config.Namespace] = append(policy.NamespaceToPolicies[config.Namespace], authzConfig) } return policy } type AuthorizationPoliciesResult struct { Custom []AuthorizationPolicy Deny []AuthorizationPolicy Allow []AuthorizationPolicy Audit []AuthorizationPolicy }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Apr 17 22:20:44 UTC 2024 - 4.2K bytes - Viewed (0) -
istioctl/pkg/authz/authz.go
cmd := &cobra.Command{ Use: "check [<type>/]<name>[.<namespace>]", Short: "Check AuthorizationPolicy applied in the pod.", Long: `Check prints the AuthorizationPolicy applied to a pod by directly checking the Envoy configuration of the pod. The command is especially useful for inspecting the policy propagation from Istiod to Envoy and the final AuthorizationPolicy list merged from multiple sources (mesh-level, namespace-level and workload-level).
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Sat Apr 13 05:23:38 UTC 2024 - 5K bytes - Viewed (0) -
pkg/config/schema/kubetypes/resources.gen.go
) func getGvk(obj any) (config.GroupVersionKind, bool) { switch obj.(type) { case *istioioapisecurityv1beta1.AuthorizationPolicy: return gvk.AuthorizationPolicy, true case *apiistioioapisecurityv1beta1.AuthorizationPolicy: return gvk.AuthorizationPolicy, true case *k8sioapicertificatesv1.CertificateSigningRequest: return gvk.CertificateSigningRequest, true case *k8sioapicorev1.ConfigMap:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Apr 17 16:38:40 UTC 2024 - 6.2K bytes - Viewed (0) -
pkg/config/schema/kind/resources.gen.go
ValidatingWebhookConfiguration VirtualService WasmPlugin WorkloadEntry WorkloadGroup ) func (k Kind) String() string { switch k { case Address: return "Address" case AuthorizationPolicy: return "AuthorizationPolicy" case CertificateSigningRequest: return "CertificateSigningRequest" case ConfigMap: return "ConfigMap" case CustomResourceDefinition: return "CustomResourceDefinition" case DNSName:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue Feb 27 07:19:38 UTC 2024 - 4.9K bytes - Viewed (0) -
pilot/pkg/security/authz/builder/testdata/http/allow-path-in.yaml
apiVersion: security.istio.io/v1beta1 kind: AuthorizationPolicy metadata: name: httpbin-1 namespace: foo spec: selector: matchLabels: app: httpbin version: v1 rules: - to: - operation: paths: ["/exact", "/prefix/*", "*/suffix", "*", "/path/template/{*}", "/{**}/path/template"]
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Sat Apr 20 01:58:53 UTC 2024 - 454 bytes - Viewed (0) -
tests/integration/security/testdata/authz/path-templating.yaml.tmpl
apiVersion: security.istio.io/v1beta1 kind: AuthorizationPolicy metadata: name: {{ .To.ServiceName }} spec: selector: matchLabels: "app": "{{ .To.ServiceName }}" action: ALLOW rules: - to: - operation:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Sat Apr 20 01:58:53 UTC 2024 - 314 bytes - Viewed (0) -
releasenotes/notes/16585.yaml
kind: feature area: security issue: - 16585 # releaseNotes is a markdown listing of any user facing changes. This will appear in the # release notes. releaseNotes: - |
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Sat Apr 20 01:58:53 UTC 2024 - 406 bytes - Viewed (0) -
pilot/pkg/serviceregistry/kube/controller/ambient/testdata/deny-groups-in.yaml
apiVersion: security.istio.io/v1beta1 kind: AuthorizationPolicy metadata: name: groups-deny spec: action: DENY rules: # Has mix of L4 and L7 in from - from: - source: principals: ["from-mix-principal"] requestPrincipals: ["from-mix-requestPrincipals"] namespaces: ["from-mix-ns"] to: - operation: ports: ["80"] # Has mix of L4 and L7 in to - from: - source:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Feb 29 18:40:34 UTC 2024 - 1.4K bytes - Viewed (0) -
pilot/pkg/serviceregistry/kube/controller/ambient/policies.go
"istio.io/istio/pkg/kube/krt" "istio.io/istio/pkg/slices" "istio.io/istio/pkg/spiffe" "istio.io/istio/pkg/workloadapi/security" ) func PolicyCollections( AuthzPolicies krt.Collection[*securityclient.AuthorizationPolicy], PeerAuths krt.Collection[*securityclient.PeerAuthentication], MeshConfig krt.Singleton[MeshConfig], Waypoints krt.Collection[Waypoint], Pods krt.Collection[*v1.Pod],
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 16:51:29 UTC 2024 - 5.2K bytes - Viewed (0) -
releasenotes/notes/50110.yaml
# release notes. releaseNotes: - |
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Mar 27 04:22:04 UTC 2024 - 1.2K bytes - Viewed (0)