- Sort Score
- Result 10 results
- Languages All
Results 1 - 10 of 65 for keyFiles (0.12 sec)
-
pkg/kubeapiserver/authenticator/config.go
func newLegacyServiceAccountAuthenticator(keyfiles []string, lookup bool, apiAudiences authenticator.Audiences, serviceAccountGetter serviceaccount.ServiceAccountTokenGetter, secretsWriter typedv1core.SecretsGetter) (authenticator.Token, error) { allPublicKeys := []interface{}{} for _, keyfile := range keyfiles { publicKeys, err := keyutil.PublicKeysFromFile(keyfile) if err != nil { return nil, err }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Sat Mar 09 19:29:33 UTC 2024 - 15.4K bytes - Viewed (0) -
pkg/kubeapiserver/options/authentication_test.go
ClientID: "testClientID", areFlagsConfigured: func() bool { return true }, }, testSA: &ServiceAccountAuthenticationOptions{ Issuers: []string{"http://foo.bar.com"}, KeyFiles: []string{"testkeyfile1", "testkeyfile2"}, }, }, { name: "test when OIDC is invalid", testOIDC: &OIDCAuthenticationOptions{ UsernameClaim: "sub", SigningAlgs: []string{"RS256"},
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Wed Apr 24 18:25:29 UTC 2024 - 36.5K bytes - Viewed (0) -
pkg/kubeapiserver/options/authentication.go
} } if o.RequestHeader != nil { o.RequestHeader.AddFlags(fs) } if o.ServiceAccounts != nil { fs.StringArrayVar(&o.ServiceAccounts.KeyFiles, "service-account-key-file", o.ServiceAccounts.KeyFiles, ""+ "File containing PEM-encoded x509 RSA or ECDSA private or public keys, used to verify "+ "ServiceAccount tokens. The specified file can contain multiple keys, and the flag can "+
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Sat Mar 09 22:40:22 UTC 2024 - 32.4K bytes - Viewed (0) -
pkg/controlplane/apiserver/options/options.go
if len(completed.Authentication.ServiceAccounts.KeyFiles) == 0 && completed.SecureServing.ServerCert.CertKey.KeyFile != "" { if kubeauthenticator.IsValidServiceAccountKeyFile(completed.SecureServing.ServerCert.CertKey.KeyFile) { completed.Authentication.ServiceAccounts.KeyFiles = []string{completed.SecureServing.ServerCert.CertKey.KeyFile} } else {
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Sat Apr 27 12:19:56 UTC 2024 - 15.4K bytes - Viewed (0) -
pkg/controlplane/apiserver/config.go
) if err != nil { return nil, nil, fmt.Errorf("failed to apply admission: %w", err) } // Load and set the public keys. var pubKeys []interface{} for _, f := range opts.Authentication.ServiceAccounts.KeyFiles { keys, err := keyutil.PublicKeysFromFile(f) if err != nil { return nil, nil, fmt.Errorf("failed to parse key file %q: %w", f, err) } pubKeys = append(pubKeys, keys...) }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri Jun 07 17:57:37 UTC 2024 - 14.9K bytes - Viewed (0) -
cmd/kube-apiserver/app/testing/testserver.go
if err != nil { return result, fmt.Errorf("failed to wait for default namespace to be created: %v", err) } tlsInfo := transport.TLSInfo{ CertFile: storageConfig.Transport.CertFile, KeyFile: storageConfig.Transport.KeyFile, TrustedCAFile: storageConfig.Transport.TrustedCAFile, } tlsConfig, err := tlsInfo.ClientConfig() if err != nil { return result, err } etcdConfig := clientv3.Config{
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Mon Apr 29 18:59:21 UTC 2024 - 17.6K bytes - Viewed (0) -
cmd/kube-controller-manager/app/certificates_test.go
CertFile: "/cluster-signing-kubelet-serving/cert-file", KeyFile: "/cluster-signing-kubelet-serving/key-file", }, KubeletClientSignerConfiguration: csrsigningconfig.CSRSigningConfiguration{ CertFile: "/cluster-signing-kubelet-client/cert-file", KeyFile: "/cluster-signing-kubelet-client/key-file", },
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu Jul 09 12:14:55 UTC 2020 - 12.1K bytes - Viewed (0) -
pkg/kubelet/certificate/kubelet.go
if err != nil { klog.ErrorS(err, "invalid certificate and key pair from file", "certFile", m.certFile, "keyFile", m.keyFile) return } m.currentTLSCertificate.Store(&cert) klog.V(4).InfoS("loaded certificate and key pair in kubelet server certificate manager", "certFile", m.certFile, "keyFile", m.keyFile) } // Current returns the last valid certificate key pair loaded from files.
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu Jun 06 03:07:16 UTC 2024 - 10.3K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/server/options/serving.go
CertFile string // KeyFile is a file containing a PEM-encoded private key for the certificate specified by CertFile KeyFile string } type GeneratableKeyCert struct { // CertKey allows setting an explicit cert/key file to use. CertKey CertKey // CertDirectory specifies a directory to write generated certificates to if CertFile/KeyFile aren't explicitly set.
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Sat Apr 27 13:08:18 UTC 2024 - 15.9K bytes - Viewed (0) -
cmd/kube-controller-manager/app/certificates.go
} func areKubeletClientSignerFilesSpecified(config csrsigningconfig.CSRSigningControllerConfiguration) bool { // if only one is specified, it will error later during construction return len(config.KubeletClientSignerConfiguration.CertFile) > 0 || len(config.KubeletClientSignerConfiguration.KeyFile) > 0 }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri Oct 27 11:28:02 UTC 2023 - 11.6K bytes - Viewed (0)