- Sort Score
- Result 10 results
- Languages All
Results 1 - 10 of 12 for authorizes (0.31 sec)
-
CHANGELOG/CHANGELOG-1.5.md
* Use authorization to limit users' ability to use specific PodSecurityPolicy objects **What is the impact?** A user that is authorized to create pods can make use of any existing PodSecurityPolicy, even ones they are not authorized to use. **How can I mitigate this prior to installing 1.5.5?** 1. Export existing PodSecurityPolicy objects: * `kubectl get podsecuritypolicies -o yaml > psp.yaml`
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu Dec 24 02:28:26 UTC 2020 - 136.4K bytes - Viewed (0) -
api/openapi-spec/v3/apis__admissionregistration.k8s.io__v1alpha1_openapi.json
its lazily evaluated value.\n For example, a variable named 'foo' can be accessed as 'variables.foo'.\n- 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n- 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n request resource.\n\nThe `apiVersion`, `kind`, `metadata.name` and `metadata.generateName`...
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri Mar 08 04:18:56 UTC 2024 - 235.4K bytes - Viewed (0) -
api/openapi-spec/v3/apis__admissionregistration.k8s.io__v1beta1_openapi.json
its lazily evaluated value.\n For example, a variable named 'foo' can be accessed as 'variables.foo'.\n- 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.\n See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz\n- 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the\n request resource.\n\nThe `apiVersion`, `kind`, `metadata.name` and `metadata.generateName`...
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri Mar 08 04:18:56 UTC 2024 - 235.7K bytes - Viewed (0) -
staging/src/k8s.io/apiextensions-apiserver/pkg/apiserver/schema/cel/validation_test.go
valid: []string{ "oldSelf == self", }, }, {name: "authorizer is not supported for CRD Validation Rules", obj: []interface{}{}, oldObj: []interface{}{}, schema: objectTypePtr(map[string]schema.Structural{}), errors: map[string]string{ "authorizer.path('/healthz').check('get').allowed()": "undeclared reference to 'authorizer'", }, },
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Tue Jun 04 17:14:10 UTC 2024 - 159.9K bytes - Viewed (0) -
operator/cmd/mesh/testdata/manifest-generate/data-snapshot.tar.gz
the certificate presented by the client. items: type: string type: array verifyCertificateHas: description: An optional list of hex-encoded SHA-256 hashes of the authorized client certificates. items: type: string type: array verifyCertificateSpk: description: An optional list of base64-encoded SHA-256 hashes of the SPKIs of authorized client certificates. items: type: string type: array type: object required: - port - hosts type: object type: array type: object status: type: object x-kubernetes...
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Jan 10 05:10:03 UTC 2024 - 198.1K bytes - Viewed (0) -
src/crypto/x509/verify_test.go
MutateTemplate: func(t *Certificate) { t.DNSNames = []string{"www.example.com"} }, }, }, }, expectedErr: "x509: a root or intermediate certificate is not authorized to sign for this name: DNS name \"beep.com\" is not permitted by any constraint", }, { // A name constraint on the intermediate does not apply to the intermediate // itself, so this is a valid chain.
Registered: Wed Jun 12 16:32:35 UTC 2024 - Last Modified: Thu May 23 01:00:11 UTC 2024 - 110.2K bytes - Viewed (0) -
okhttp/src/test/java/okhttp3/URLConnectionTest.kt
server.enqueue(MockResponse(body = "this response comes via HTTPS")) server.enqueue(MockResponse(body = "another response via HTTPS")) // install a custom SSL socket factory so the server can be authorized client = client.newBuilder() .sslSocketFactory( handshakeCertificates.sslSocketFactory(), handshakeCertificates.trustManager, )
Registered: Sun Jun 16 04:42:17 UTC 2024 - Last Modified: Sat Jan 20 10:30:28 UTC 2024 - 131.7K bytes - Viewed (0) -
cmd/object-handlers.go
} } if reader != nil && proxy.Proxy && perr == nil { gr = reader } } } if reader == nil || !proxy.Proxy { // validate if the request indeed was authorized, if it wasn't we need to return "ErrAccessDenied" // instead of any namespace related error. if s3Error := authorizeRequest(ctx, r, policy.GetObjectAction); s3Error != ErrNone {
Registered: Sun Jun 16 00:44:34 UTC 2024 - Last Modified: Fri Jun 14 13:28:35 UTC 2024 - 124.2K bytes - Viewed (0) -
CHANGELOG/CHANGELOG-1.4.md
* Fix working_set calculation in kubelet ([#29153](https://github.com/kubernetes/kubernetes/pull/29153), [@vishh](https://github.com/vishh)) * Fix RBAC authorizer of ServiceAccount ([#29071](https://github.com/kubernetes/kubernetes/pull/29071), [@albatross0](https://github.com/albatross0))
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu Dec 24 02:28:26 UTC 2020 - 133.5K bytes - Viewed (0) -
fastapi/applications.py
Registered: Mon Jun 17 08:32:26 UTC 2024 - Last Modified: Sat May 18 00:48:03 UTC 2024 - 172.2K bytes - Viewed (0)