- Sort Score
- Result 10 results
- Languages All
Results 1 - 10 of 152 for mtlsMode (0.18 sec)
-
pilot/pkg/security/authn/utils/utils.go
// BuildInboundTLS returns the TLS context corresponding to the mTLS mode. func BuildInboundTLS(mTLSMode model.MutualTLSMode, node *model.Proxy, protocol networking.ListenerProtocol, trustDomainAliases []string, minTLSVersion tls.TlsParameters_TlsProtocol, mc *meshconfig.MeshConfig, ) *tls.DownstreamTlsContext { if mTLSMode == model.MTLSDisable || mTLSMode == model.MTLSUnknown { return nil } ctx := &tls.DownstreamTlsContext{
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Feb 23 00:16:21 UTC 2024 - 3.8K bytes - Viewed (0) -
pilot/pkg/networking/core/listener_builder_test.go
}, }, }, }, }, mtlsMode: model.MTLSPermissive, expectedResult: expectIstioMTLS, }, } for _, tt := range cases { t.Run(tt.name, func(t *testing.T) { cg := NewConfigGenTest(t, TestOptions{ Services: services, Instances: instances, ConfigString: mtlsMode(tt.mtlsMode.String()), }) proxy := cg.SetupProxy(nil)
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 01:56:28 UTC 2024 - 24.7K bytes - Viewed (0) -
pilot/pkg/serviceregistry/serviceentry/conversion_test.go
svcPort *networking.ServicePort, svcLabels map[string]string, mtlsMode MTLSMode, ) *model.ServiceInstance { services := convertServices(*cfg) svc := services[0] // default for _, s := range services { if string(s.Hostname) == address { svc = s break } } tlsMode := model.DisabledTLSModeLabel if mtlsMode == MTLS || mtlsMode == MTLSUnlabelled { tlsMode = model.IstioMutualTLSModeLabel }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu May 23 21:07:03 UTC 2024 - 39K bytes - Viewed (0) -
pilot/pkg/model/authentication.go
inheritedMTLSMode = MTLSPermissive } for ns, mtlsMode := range foundNamespaceMTLS { if mtlsMode == v1beta1.PeerAuthentication_MutualTLS_UNSET { policy.namespaceMutualTLSMode[ns] = inheritedMTLSMode } else { policy.namespaceMutualTLSMode[ns] = ConvertToMutualTLSMode(mtlsMode) } } }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Apr 17 22:20:44 UTC 2024 - 10.1K bytes - Viewed (0) -
tests/integration/security/reachability_test.go
migrationVersionNonIstio = "vlegacy" migrationPathIstio = "/" + migrationVersionIstio migrationPathNonIstio = "/" + migrationVersionNonIstio mtlsModeParam = "MTLSMode" mtlsModeOverrideParam = "MTLSModeOverride" tlsModeParam = "TLSMode" cMinIstioVersion = "1.15.0" // cMinIstioVersionDS = "1.16.0" ) func TestReachability(t *testing.T) { framework.NewTest(t).
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu May 02 21:29:40 UTC 2024 - 20.6K bytes - Viewed (0) -
pilot/pkg/networking/core/sidecar_simulation_test.go
if err := json.Unmarshal(s, &meta); err != nil { t.Fatal(err) } res := []string{} for _, m := range meta.Services { res = append(res, m.Host) } return res } func mtlsMode(m string) string { return fmt.Sprintf(`apiVersion: security.istio.io/v1beta1 kind: PeerAuthentication metadata: name: default namespace: istio-system spec: mtls: mode: %s `, m) }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 01:56:28 UTC 2024 - 84.7K bytes - Viewed (0) -
pilot/pkg/serviceregistry/serviceentry/conversion.go
// * Use security.istio.io/tlsMode if its present // * If not, set TLS mode if ServiceAccount is specified tlsMode := model.DisabledTLSModeLabel if val, exists := wle.Labels[label.SecurityTlsMode.Name]; exists { tlsMode = val } else if wle.ServiceAccount != "" { tlsMode = model.IstioMutualTLSModeLabel } return tlsMode }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed May 29 02:03:58 UTC 2024 - 16.9K bytes - Viewed (0) -
pilot/pkg/serviceregistry/kube/controller/endpoint_builder.go
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu May 23 21:07:03 UTC 2024 - 4.8K bytes - Viewed (0) -
pilot/pkg/xds/testdata/benchmarks/tcp.yaml
spec: hosts: - example.com ports: - number: 7070 name: tcp protocol: TCP resolution: STATIC location: MESH_INTERNAL endpoints: - address: 1.1.1.1 labels: security.istio.io/tlsMode: istio --- # Set up .Services number of services. {{- range $i := until .Services }} apiVersion: networking.istio.io/v1alpha3 kind: ServiceEntry metadata: name: service-{{$i}} spec: addresses:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Sat Jul 29 02:10:48 UTC 2023 - 908 bytes - Viewed (0) -
pilot/pkg/xds/testdata/benchmarks/empty.yaml
name: https protocol: HTTPS - number: 9090 name: auto protocol: "" resolution: STATIC location: MESH_INTERNAL endpoints: - address: 1.1.1.1 labels: security.istio.io/tlsMode: istio --- # Set up .Services number of services. Each will have 4 ports (one for each protocol) {{- range $i := until .Services }} apiVersion: networking.istio.io/v1alpha3 kind: ServiceEntry metadata:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue Aug 08 03:45:12 UTC 2023 - 1.2K bytes - Viewed (0)