- Sort Score
- Result 10 results
- Languages All
Results 1 - 10 of 1,814 for auds (0.06 sec)
-
pkg/registry/authentication/tokenreview/storage.go
fakeReq := &http.Request{Header: http.Header{}} fakeReq.Header.Add("Authorization", "Bearer "+tokenReview.Spec.Token) auds := tokenReview.Spec.Audiences if len(auds) == 0 { auds = r.apiAudiences } if len(auds) > 0 { fakeReq = fakeReq.WithContext(authenticator.WithAudiences(fakeReq.Context(), auds)) } resp, ok, err := r.tokenAuthenticator.AuthenticateRequest(fakeReq) tokenReview.Status.Authenticated = ok
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri Nov 18 09:21:13 UTC 2022 - 3.7K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/authentication/authenticator/audagnostic_test.go
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Wed Apr 12 15:46:16 UTC 2023 - 4.9K bytes - Viewed (0) -
pkg/registry/core/serviceaccount/storage/storage.go
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Mon Oct 30 21:15:10 UTC 2023 - 3K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/authentication/token/cache/cached_token_authenticator_test.go
User: &user.DefaultInfo{Name: fmt.Sprintf("holder of token %v", i)}, }, } // make different combinations of audience, failures, denies for the tokens. auds := []string{} for i := 0; i < rr.Intn(4); i++ { auds = append(auds, string(uuid.NewUUID())) } choice := rr.Float64() switch { case choice < 0.9: r.ok = true r.err = nil
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Mon Jul 03 16:16:51 UTC 2023 - 20.3K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/authentication/token/cache/cached_token_authenticator.go
func keyFunc(hashPool *sync.Pool, auds []string, token string) string { h := hashPool.Get().(hash.Hash) h.Reset() // try to force stack allocation var a [4]byte b := a[:] writeLengthPrefixedString(h, b, token) // encode the length of audiences to avoid ambiguities writeLength(h, b, len(auds)) for _, aud := range auds { writeLengthPrefixedString(h, b, aud) }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Mon Jul 03 16:16:51 UTC 2023 - 9.8K bytes - Viewed (0) -
pkg/serviceaccount/jwt.go
} requestedAudiences, ok := authenticator.AudiencesFrom(ctx) if !ok { // default to apiserver audiences requestedAudiences = j.implicitAuds } auds := authenticator.Audiences(tokenAudiences).Intersect(requestedAudiences) if len(auds) == 0 && len(j.implicitAuds) != 0 { return nil, false, fmt.Errorf("token audiences %q is invalid for the target audiences %q", tokenAudiences, requestedAudiences) }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Tue Feb 27 22:16:08 UTC 2024 - 10.7K bytes - Viewed (0) -
pkg/volume/projected/projected.go
mode = 0600 } var auds []string if len(tp.Audience) != 0 { auds = []string{tp.Audience} } tr, err := s.plugin.getServiceAccountToken(s.pod.Namespace, s.pod.Spec.ServiceAccountName, &authenticationv1.TokenRequest{ Spec: authenticationv1.TokenRequestSpec{ Audiences: auds, ExpirationSeconds: tp.ExpirationSeconds,
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Tue May 14 06:17:25 UTC 2024 - 12.8K bytes - Viewed (0) -
pkg/serviceaccount/jwt_test.go
} authn := serviceaccount.JWTTokenAuthenticator([]string{serviceaccount.LegacyIssuer, "bar"}, tc.Keys, auds, validator) // An invalid, non-JWT token should always fail ctx := authenticator.WithAudiences(context.Background(), auds) if _, ok, err := authn.AuthenticateToken(ctx, "invalid token"); err != nil || ok { t.Errorf("%s: Expected err=nil, ok=false for non-JWT token", k)
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Tue Feb 27 22:16:08 UTC 2024 - 17K bytes - Viewed (0) -
pkg/registry/core/serviceaccount/storage/token.go
} type TokenREST struct { svcaccts rest.Getter pods rest.Getter secrets rest.Getter nodes rest.Getter issuer token.TokenGenerator auds authenticator.Audiences audsSet sets.String maxExpirationSeconds int64 extendExpiration bool } var _ = rest.NamedCreater(&TokenREST{})
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Mon Feb 05 10:24:31 UTC 2024 - 10K bytes - Viewed (0) -
pilot/pkg/xds/ads.go
} con := newConnection(peerAddr, stream) con.ids = ids con.s = s return xds.Stream(con) } // update the node associated with the connection, after receiving a packet from envoy, also adds the connection // to the tracking map. func (s *DiscoveryServer) initConnection(node *core.Node, con *Connection, identities []string) error { // Setup the initial proxy metadata proxy, err := s.initProxyMetadata(node)
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Jun 03 08:29:05 UTC 2024 - 23.4K bytes - Viewed (0)