- Sort Score
- Result 10 results
- Languages All
Results 1 - 10 of 83 for Authz (0.04 sec)
-
istioctl/pkg/authz/authz.go
Example: ` # Check AuthorizationPolicy applied to pod httpbin-88ddbcfdd-nt5jb: istioctl x authz check httpbin-88ddbcfdd-nt5jb # Check AuthorizationPolicy applied to one pod under a deployment istioctl x authz check deployment/productpage-v1 # Check AuthorizationPolicy from Envoy config dump file: istioctl x authz check -f httpbin_config_dump.json`, Args: func(cmd *cobra.Command, args []string) error {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Sat Apr 13 05:23:38 UTC 2024 - 5K bytes - Viewed (0) -
pkg/registry/admissionregistration/validatingadmissionpolicybinding/authz.go
Mikalai Radchuk <******@****.***> 1714565943 +0200
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Wed May 01 12:19:03 UTC 2024 - 3.7K bytes - Viewed (0) -
pilot/pkg/model/authorization_test.go
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Apr 17 22:20:44 UTC 2024 - 12.7K bytes - Viewed (0) -
pkg/test/framework/components/authz/kube.go
) const ( httpName = "ext-authz-http" grpcName = "ext-authz-grpc" httpPort = 8000 grpcPort = 9000 providerTemplate = ` extensionProviders: - name: "{{ .httpName }}" envoyExtAuthzHttp: service: "{{ .fqdn }}" port: {{ .httpPort }} headersToUpstreamOnAllow: ["x-ext-authz-*"] headersToDownstreamOnDeny: ["x-ext-authz-*"] includeRequestHeadersInCheck: ["x-ext-authz"]
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Apr 10 20:33:28 UTC 2024 - 7K bytes - Viewed (0) -
tests/integration/security/main_test.go
echo1NS namespace.Instance echo2NS namespace.Instance externalNS namespace.Instance serverNS namespace.Instance // Servers apps deployment.TwoNamespaceView authzServer authz.Server localAuthzServer authz.Server jwtServer jwt.Server i istio.Instance ) func TestMain(m *testing.M) { framework. NewSuite(m). Setup(istio.Setup(&i, func(c resource.Context, cfg *istio.Config) {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Apr 15 23:04:36 UTC 2024 - 2.7K bytes - Viewed (0) -
tests/integration/security/authz_test.go
fromAndTo := to.Instances().Append(from) config.New(t). Source(config.File("testdata/authz/mtls.yaml.tmpl")). Source(config.File("testdata/authz/deny-global.yaml.tmpl").WithParams(param.Params{ param.Namespace.String(): istio.ClaimSystemNamespaceOrFail(t, t), })). Source(config.File("testdata/authz/deny-principal.yaml.tmpl").WithParams( param.Params{ "Denied": denied, })).
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed May 08 23:36:51 UTC 2024 - 50.1K bytes - Viewed (0) -
pilot/pkg/networking/core/route/route_internal_test.go
"google.golang.org/protobuf/types/known/wrapperspb" networking "istio.io/api/networking/v1alpha3" "istio.io/istio/pilot/pkg/model" authzmatcher "istio.io/istio/pilot/pkg/security/authz/matcher" authz "istio.io/istio/pilot/pkg/security/authz/model" "istio.io/istio/pkg/config/labels" "istio.io/istio/pkg/util/sets" ) func TestIsCatchAllRoute(t *testing.T) { cases := []struct { name string route *route.Route
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Sat May 11 02:47:57 UTC 2024 - 18.2K bytes - Viewed (0) -
pilot/pkg/networking/core/listener_builder.go
authnBuilder *authn.Builder // authzBuilder provides access to authz configuration for the given proxy. authzBuilder *authz.Builder // authzCustomBuilder provides access to CUSTOM authz configuration for the given proxy. authzCustomBuilder *authz.Builder } // enabledInspector captures if for a given listener, listener filter inspectors are added type enabledInspector struct {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon May 06 04:44:06 UTC 2024 - 17.9K bytes - Viewed (0) -
pilot/pkg/networking/plugin/authz/authorization.go
// limitations under the License. package authz import ( listener "github.com/envoyproxy/go-control-plane/envoy/config/listener/v3" hcm "github.com/envoyproxy/go-control-plane/envoy/extensions/filters/network/http_connection_manager/v3" "istio.io/istio/pilot/pkg/model" "istio.io/istio/pilot/pkg/networking" "istio.io/istio/pilot/pkg/security/authz/builder" "istio.io/istio/pilot/pkg/security/trustdomain" )
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Apr 17 22:20:44 UTC 2024 - 2.7K bytes - Viewed (0) -
tests/integration/security/pass_through_filter_chain_test.go
}, }, { // There is only authZ policy that allows access to TCPWorkloadOnly should be allowed. name: "DISABLE with authz", config: `apiVersion: security.istio.io/v1beta1 kind: PeerAuthentication metadata: name: mtls spec: mtls: mode: DISABLE --- apiVersion: security.istio.io/v1beta1 kind: AuthorizationPolicy metadata: name: authz spec: rules: - to: - operation:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Apr 08 22:02:59 UTC 2024 - 11.9K bytes - Viewed (0)