- Sort Score
- Result 10 results
- Languages All
Results 1 - 10 of 133 for principal1 (0.24 sec)
-
pilot/pkg/security/authz/model/principal.go
return &rbacpb.Principal{ Identifier: &rbacpb.Principal_AndIds{ AndIds: &rbacpb.Principal_Set{ Ids: principals, }, }, } } func principalNot(principal *rbacpb.Principal) *rbacpb.Principal { return &rbacpb.Principal{ Identifier: &rbacpb.Principal_NotId{ NotId: principal, }, } }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Nov 17 18:44:57 UTC 2022 - 2.8K bytes - Viewed (0) -
pilot/pkg/security/authz/builder/testdata/http/multiple-policies-out.yaml
rules: - any: true principals: - andIds: ids: - orIds: ids: - authenticated: principalName: exact: spiffe://principals1 - authenticated: principalName: exact: spiffe://principals2 ns[foo]-policy[httpbin-6]-rule[0]:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue Oct 17 16:35:46 UTC 2023 - 4.5K bytes - Viewed (0) -
pilot/pkg/security/authz/builder/testdata/http/simple-policy-principal-with-wildcard-in.yaml
namespace: foo spec: selector: matchLabels: app: httpbin version: v1 rules: - from: - source: principals: ["*"] - source:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Apr 01 19:25:01 UTC 2021 - 381 bytes - Viewed (0) -
pilot/pkg/security/authz/builder/testdata/http/simple-policy-principal-with-wildcard-out.yaml
- authenticated: principalName: exact: spiffe://td1/ns/foo/sa/rule[0]-from[1]-principal[1] - authenticated: principalName: safeRegex: regex: spiffe://.*bar/ns/foo/sa/rule[0]-from[1]-principal[1]
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue Oct 17 16:35:46 UTC 2023 - 1.1K bytes - Viewed (0) -
pilot/pkg/security/authz/builder/testdata/http/extended-simple-policy-principal-with-wildcard-out.yaml
- authenticated: principalName: exact: spiffe://td1/ns/foo/sa/rule[0]-from[1]-principal[1] - authenticated: principalName: safeRegex: regex: spiffe://.*bar/ns/foo/sa/rule[0]-from[1]-principal[1]
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Mar 25 10:39:25 UTC 2024 - 1.1K bytes - Viewed (0) -
pilot/pkg/security/trustdomain/bundle.go
for _, principal := range principals { isTrustDomainBeingEnforced := isTrustDomainBeingEnforced(principal) // Return the existing principals if the policy doesn't care about the trust domain. if !isTrustDomainBeingEnforced { principalsIncludingAliases = append(principalsIncludingAliases, principal) continue } trustDomainFromPrincipal, err := getTrustDomainFromSpiffeIdentity(principal) if err != nil {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Oct 23 15:48:01 UTC 2023 - 7.5K bytes - Viewed (0) -
tests/integration/security/testdata/authz/allow-principal.yaml.tmpl
methods: [ "GET" ] from: - source: principals: [ "{{ .Allowed.ServiceAccountName }}" ] - to: - operation: # GRPC ports: [ "{{ (.To.PortForName `grpc`).WorkloadPort }}" ] paths: [ "/proto.EchoTestService/Echo" ] methods: [ "POST" ] from: - source: principals: [ "{{ .Allowed.ServiceAccountName }}" ] - to:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon May 08 07:03:01 UTC 2023 - 998 bytes - Viewed (0) -
pilot/pkg/security/trustdomain/bundle_test.go
if got != c.out { t.Errorf("expect %s, but got %s", c.out, got) } } } func TestIsTrustDomainBeingEnforced(t *testing.T) { cases := []struct { principal string want bool }{ {principal: "cluster.local/ns/foo/sa/bar", want: true}, {principal: "*/ns/foo/sa/bar", want: false}, {principal: "*-td/ns/foo/sa/bar", want: true}, {principal: "*/sa/bar", want: false},
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue May 11 16:19:15 UTC 2021 - 7.4K bytes - Viewed (0) -
tests/integration/security/testdata/authz/deny-principal.yaml.tmpl
methods: [ "GET" ] from: - source: principals: [ "{{ .Denied.ServiceAccountName }}" ] - to: - operation: # GRPC ports: [ "{{ (.To.PortForName `grpc`).WorkloadPort }}" ] paths: [ "/proto.EchoTestService/Echo" ] methods: [ "POST" ] from: - source: principals: [ "{{ .Denied.ServiceAccountName }}" ] - to: - operation: # TCP
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon May 08 07:03:01 UTC 2023 - 1K bytes - Viewed (0) -
pilot/pkg/security/authz/builder/testdata/http/simple-policy-td-aliases-in.yaml
selector: matchLabels: app: httpbin version: v1 rules: - from: - source: principals: ["cluster.local/ns/rule[0]/sa/from[0]-principal[0]"] - source: principals: ["cluster.local/ns/rule[0]/sa/from[1]-principal[0]", "cluster.local/ns/rule[0]/sa/from[1]-principal[1]"] namespaces: ["rule[0]-from[1]-ns[0]"] to: - operation:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Apr 01 19:25:01 UTC 2021 - 759 bytes - Viewed (0)