- Sort Score
- Result 10 results
- Languages All
Results 1 - 10 of 301 for authn (0.12 sec)
-
tests/integration/security/jwt_test.go
opts.Check = check.Status(http.StatusForbidden) }, }, })) t.NewSubTest("no-authn-authz").Run(newTest("", []testCase{ { name: "no-authn-authz", customizeCall: func(t framework.TestContext, from echo.Instance, opts *echo.CallOptions) { opts.HTTP.Path = "/no-authn-authz" opts.Check = check.And( check.OK(), check.ReachedTargetClusters(t)) }, },
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Apr 08 22:02:59 UTC 2024 - 25.3K bytes - Viewed (0) -
tests/integration/security/pass_through_filter_chain_test.go
}, }, { // There is only authZ policy that allows access to TCPWorkloadOnly should be allowed. name: "DISABLE with authz", config: `apiVersion: security.istio.io/v1beta1 kind: PeerAuthentication metadata: name: mtls spec: mtls: mode: DISABLE --- apiVersion: security.istio.io/v1beta1 kind: AuthorizationPolicy metadata: name: authz spec: rules: - to: - operation:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Apr 08 22:02:59 UTC 2024 - 11.9K bytes - Viewed (0) -
tests/integration/security/reachability_test.go
minIstioVersion string }{ { name: "global mtls strict", configs: config.Sources{ config.File("testdata/reachability/global-peer-authn.yaml.tmpl"), config.File("testdata/reachability/global-dr.yaml.tmpl"), }.WithParams(param.Params{ mtlsModeParam: model.MTLSStrict.String(), tlsModeParam: "ISTIO_MUTUAL",
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu May 02 21:29:40 UTC 2024 - 20.6K bytes - Viewed (0) -
pkg/wasm/imagefetcher.go
if key == name.DefaultRegistry { key = authn.DefaultAuthKey } cfg, err := cf.GetAuthConfig(key) if err != nil { return nil, err } empty := dtypes.AuthConfig{} if cfg == empty { return authn.Anonymous, nil } authConfig := authn.AuthConfig{ Username: cfg.Username, Password: cfg.Password, Auth: cfg.Auth, IdentityToken: cfg.IdentityToken,
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Sun Dec 10 05:44:51 UTC 2023 - 12K bytes - Viewed (0) -
security/pkg/server/ca/server_test.go
errMsg string } func (authn *mockAuthenticator) AuthenticatorType() string { return "mockAuthenticator" } func (authn *mockAuthenticator) Authenticate(_ security.AuthContext) (*security.Caller, error) { if len(authn.errMsg) > 0 { return nil, fmt.Errorf("%v", authn.errMsg) } return &security.Caller{ AuthSource: authn.authSource, Identities: authn.identities,
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Feb 28 16:41:38 UTC 2024 - 15.8K bytes - Viewed (0) -
pilot/pkg/security/authn/policy_applier.go
TCP *tlsv3.DownstreamTlsContext // HTTP describes the tls context to use for HTTP filter chains HTTP *tlsv3.DownstreamTlsContext } var authnLog = log.RegisterScope("authn", "authn debugging") // Implementation of authn.PolicyApplier with v1beta1 API. type policyApplier struct { // processedJwtRules is the consolidate JWT rules from all jwtPolicies. processedJwtRules []*v1beta1.JWTRule
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Feb 23 09:47:21 UTC 2024 - 19.2K bytes - Viewed (0) -
pilot/pkg/networking/core/listener_builder.go
// authnBuilder provides access to authn (mTLS) configuration for the given proxy. authnBuilder *authn.Builder // authzBuilder provides access to authz configuration for the given proxy. authzBuilder *authz.Builder // authzCustomBuilder provides access to CUSTOM authz configuration for the given proxy. authzCustomBuilder *authz.Builder }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon May 06 04:44:06 UTC 2024 - 17.9K bytes - Viewed (0) -
pilot/pkg/networking/grpcgen/lds.go
"istio.io/api/label" "istio.io/istio/pilot/pkg/model" "istio.io/istio/pilot/pkg/networking/util" "istio.io/istio/pilot/pkg/security/authn" authzmodel "istio.io/istio/pilot/pkg/security/authz/model" "istio.io/istio/pilot/pkg/util/protoconv" xdsfilters "istio.io/istio/pilot/pkg/xds/filters" "istio.io/istio/pkg/istio-agent/grpcxds" "istio.io/istio/pkg/util/sets" )
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Apr 17 22:20:44 UTC 2024 - 14.6K bytes - Viewed (0) -
pilot/pkg/model/authentication.go
case MTLSPermissive: return "PERMISSIVE" case MTLSStrict: return "STRICT" default: return "UNKNOWN" } } // ConvertToMutualTLSMode converts from peer authn MTLS mode (`PeerAuthentication_MutualTLS_Mode`) // to the MTLS mode specified by authn policy. func ConvertToMutualTLSMode(mode v1beta1.PeerAuthentication_MutualTLS_Mode) MutualTLSMode { switch mode { case v1beta1.PeerAuthentication_MutualTLS_DISABLE:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Apr 17 22:20:44 UTC 2024 - 10.1K bytes - Viewed (0) -
pkg/serviceaccount/jwt_test.go
if err != nil { t.Fatalf("While creating legacy validator, err: %v", err) } authn := serviceaccount.JWTTokenAuthenticator([]string{serviceaccount.LegacyIssuer, "bar"}, tc.Keys, auds, validator) // An invalid, non-JWT token should always fail ctx := authenticator.WithAudiences(context.Background(), auds) if _, ok, err := authn.AuthenticateToken(ctx, "invalid token"); err != nil || ok {
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Tue Feb 27 22:16:08 UTC 2024 - 17K bytes - Viewed (0)