- Sort Score
- Result 10 results
- Languages All
Results 1 - 8 of 8 for PERMISSIVE (0.34 sec)
-
pilot/pkg/networking/core/sidecar_simulation_test.go
calls: calls, }) }) t.Run("Permissive", func(t *testing.T) { calls := []simulation.Expect{} for _, c := range cases { calls = append(calls, simulation.Expect{ Name: c.Name, Call: c.Call, Result: c.Permissive, }) } runSimulationTest(t, nil, xds.FakeOptions{}, simulationTest{ config: svc + mtlsMode("PERMISSIVE"), calls: calls, }) })
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 01:56:28 UTC 2024 - 84.7K bytes - Viewed (0) -
tests/integration/ambient/baseline_test.go
t.NewSubTest("permissive").Run(func(t framework.TestContext) { t.ConfigIstio().Eval(apps.Namespace.Name(), map[string]string{ "Destination": dst.Config().Service, "Source": src.Config().Service, "Namespace": apps.Namespace.Name(), }, ` apiVersion: security.istio.io/v1beta1 kind: PeerAuthentication metadata: name: global-permissive spec: mtls: mode: PERMISSIVE
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Jun 12 00:07:28 UTC 2024 - 78.4K bytes - Viewed (0) -
pilot/pkg/serviceregistry/kube/controller/ambient/ambientindex_test.go
}, } }) // There should be an event since effective policy moves to PERMISSIVE s.assertEvent(t, s.podXdsName("pod1"), s.podXdsName("pod2"), xdsConvertedPeerAuthSelector) assert.Equal(t, s.lookup(s.addrXdsName("127.0.0.1"))[0].Address.GetWorkload().AuthorizationPolicies, nil) // Change namespace policy to be PERMISSIVE s.addPolicy(t, "namespace", testNS, nil, gvk.PeerAuthentication, func(c controllers.Object) {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed May 08 01:04:50 UTC 2024 - 70.2K bytes - Viewed (0) -
pilot/pkg/security/authn/policy_applier_test.go
HTTP: tlsContextHTTP, } cases := []struct { name string peerPolicies []*config.Config expected MTLSSettings }{ { name: "No policy - behave as permissive", expected: expectedPermissive, }, { name: "Single policy - disable mode", peerPolicies: []*config.Config{ { Spec: &v1beta1.PeerAuthentication{
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Dec 01 07:32:22 UTC 2023 - 60.2K bytes - Viewed (0) -
src/cmd/vendor/golang.org/x/sys/windows/security_windows.go
setSecurityDescriptorRMControl(sd, &rmControl) } // DACL returns the security descriptor DACL and whether it was defaulted. The dacl return value may be nil // if a DACL exists but is an "empty DACL", meaning fully permissive. If the DACL does not exist, err returns // ERROR_OBJECT_NOT_FOUND. func (sd *SECURITY_DESCRIPTOR) DACL() (dacl *ACL, defaulted bool, err error) { var present bool
Registered: Wed Jun 12 16:32:35 UTC 2024 - Last Modified: Tue Jun 04 16:19:04 UTC 2024 - 52.5K bytes - Viewed (0) -
pilot/pkg/networking/core/cluster_tls_test.go
SubjectAltNames: []string{"spiffe://foo/serviceaccount/1"}, Sni: "foo.com", }, autoDetected, }, { "Auto fill nil settings when mTLS nil for internal service in permissive mode", nil, []string{"spiffe://foo/serviceaccount/1"}, "foo.com", &model.Proxy{Metadata: &model.NodeMetadata{}}, true, false, model.MTLSPermissive, &networking.ClientTLSSettings{
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon May 06 03:53:05 UTC 2024 - 60.9K bytes - Viewed (0) -
pilot/pkg/model/push_context.go
// If the mode is not unknown, use it. if serviceMTLSMode := ps.AuthnPolicies.GetNamespaceMutualTLSMode(service.Attributes.Namespace); serviceMTLSMode != MTLSUnknown { return serviceMTLSMode } // Fallback to permissive. return MTLSPermissive } // ServiceEndpointsByPort returns the cached instances by port if it exists.
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed May 15 09:02:11 UTC 2024 - 91.8K bytes - Viewed (0) -
src/cmd/go/go_test.go
"cmd/internal/sys" cmdgo "cmd/go" ) func init() { // GOVCS defaults to public:git|hg,private:all, // which breaks many tests here - they can't use non-git, non-hg VCS at all! // Change to fully permissive. // The tests of the GOVCS setting itself are in ../../testdata/script/govcs.txt. os.Setenv("GOVCS", "*:all") } var ( canRace = false // whether we can run the race detector
Registered: Wed Jun 12 16:32:35 UTC 2024 - Last Modified: Thu May 23 01:00:11 UTC 2024 - 81.1K bytes - Viewed (0)