- Sort Score
- Result 10 results
- Languages All
Results 1 - 10 of 13 for caCertFile (0.35 sec)
-
security/pkg/pki/ra/common.go
// MaxCertTTL: Maximum Certificate TTL that can be requested MaxCertTTL time.Duration // CaCertFile : File containing PEM encoded CA root certificate of external CA CaCertFile string // CaSigner : To indicate custom CA Signer name when using external K8s CA CaSigner string // VerifyAppendCA : Whether to use caCertFile containing CA root cert to verify and append to signed cert-chain VerifyAppendCA bool
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Sep 11 19:57:30 UTC 2023 - 4.4K bytes - Viewed (0) -
pkg/test/framework/components/echo/common/call.go
Key: opts.TLS.Key, CaCert: opts.TLS.CaCert, CertFile: opts.TLS.CertFile, KeyFile: opts.TLS.KeyFile, CaCertFile: opts.TLS.CaCertFile, InsecureSkipVerify: opts.TLS.InsecureSkipVerify, Alpn: getProtoALPN(opts.TLS.Alpn), FollowRedirects: opts.HTTP.FollowRedirects,
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Sun Oct 08 09:39:20 UTC 2023 - 6.7K bytes - Viewed (0) -
security/pkg/pki/ra/k8s_ra.go
// NewKubernetesRA : Create a RA that interfaces with K8S CSR CA func NewKubernetesRA(raOpts *IstioRAOptions) (*KubernetesRA, error) { keyCertBundle, err := util.NewKeyCertBundleWithRootCertFromFile(raOpts.CaCertFile) if err != nil { return nil, raerror.NewError(raerror.CAInitFail, fmt.Errorf("error processing Certificate Bundle for Kubernetes RA")) } istioRA := &KubernetesRA{ csrInterface: raOpts.K8sClient,
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Aug 02 14:34:38 UTC 2023 - 7.2K bytes - Viewed (0) -
pkg/test/echo/proto/echo.proto
string caCert = 12; // If non-empty, make the request with the corresponding cert and key file. string certFile = 16; string keyFile = 17; // If non-empty, verify the server CA with the ca cert file. string caCertFile = 18; // Skip verifying peer's certificate. bool insecureSkipVerify = 19; // List of ALPNs to present. If not set, this will be automatically be set based on the protocol Alpn alpn = 13;
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue Jan 31 17:42:23 UTC 2023 - 3.8K bytes - Viewed (0) -
tests/integration/ambient/cacert_rotation_test.go
} return nil } func getX509FromFile(t framework.TestContext, caCertFile string) *x509.Certificate { certBytes, err := cert.ReadSampleCertFromFile(caCertFile) if err != nil { t.Errorf("failed to read %s file: %v", caCertFile, err) } return parseCert(t, certBytes) } func parseCert(t framework.TestContext, certBytes []byte) *x509.Certificate {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue Apr 16 03:28:36 UTC 2024 - 6.1K bytes - Viewed (0) -
tests/integration/security/util/cert/cert.go
} func CreateCustomCASecret(ctx resource.Context, caCertFile, caKeyFile, certChainFile, rootCertFile string) error { name := "cacerts" systemNs, err := istio.ClaimSystemNamespace(ctx) if err != nil { return err } var caCert, caKey, certChain, rootCert []byte if caCert, err = ReadSampleCertFromFile(caCertFile); err != nil { return err }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Dec 15 16:44:37 UTC 2023 - 6.2K bytes - Viewed (0) -
security/pkg/pki/ra/k8s_ra_test.go
} func createFakeK8sRA(client kube.Client, caCertFile string) (*KubernetesRA, error) { defaultCertTTL := 30 * time.Minute maxCertTTL := time.Hour caSigner := "kubernates.io/kube-apiserver-client" raOpts := &IstioRAOptions{ ExternalCAType: ExtCAK8s, DefaultCertTTL: defaultCertTTL, MaxCertTTL: maxCertTTL, CaSigner: caSigner, CaCertFile: caCertFile, VerifyAppendCA: true,
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Sep 27 00:44:54 UTC 2023 - 9.7K bytes - Viewed (0) -
pilot/pkg/bootstrap/options.go
// Directory of injection related config files. InjectionDirectory string } // TLSOptions is optional TLS parameters for Istiod server. type TLSOptions struct { // CaCertFile and related are set using CLI flags. CaCertFile string CertFile string KeyFile string TLSCipherSuites []string CipherSuits []uint16 // This is the parsed cipher suites } var (
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 17:48:28 UTC 2024 - 6.1K bytes - Viewed (0) -
pilot/cmd/pilot-discovery/app/cmd.go
"Enable profiling via web interface host:port/debug/pprof") // Use TLS certificates if provided. c.PersistentFlags().StringVar(&serverArgs.ServerOptions.TLSOptions.CaCertFile, "caCertFile", "", "File containing the x509 Server CA Certificate") c.PersistentFlags().StringVar(&serverArgs.ServerOptions.TLSOptions.CertFile, "tlsCertFile", "", "File containing the x509 Server Certificate")
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Apr 12 16:44:32 UTC 2024 - 8.5K bytes - Viewed (0) -
pkg/test/echo/cmd/client/main.go
} if len(hboneAddress) > 0 { request.Hbone = &proto.HBONE{ Address: hboneAddress, CertFile: hboneClientCert, KeyFile: hboneClientKey, CaCertFile: hboneCaFile, InsecureSkipVerify: hboneInsecureSkipVerify, } for _, header := range hboneHeaders { parts := strings.SplitN(header, ":", 2) // require name:value format if len(parts) != 2 {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue May 23 17:08:31 UTC 2023 - 8.9K bytes - Viewed (0)