- Sort Score
- Result 10 results
- Languages All
Results 1 - 10 of 15 for impersonate (0.14 sec)
-
staging/src/k8s.io/api/authentication/v1/types.go
const ( // ImpersonateUserHeader is used to impersonate a particular user during an API server request ImpersonateUserHeader = "Impersonate-User" // ImpersonateGroupHeader is used to impersonate a particular group during an API server request. // It can be repeated multiplied times for multiple groups. ImpersonateGroupHeader = "Impersonate-Group" // ImpersonateUIDHeader is used to impersonate a particular UID during an API server request
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu May 23 17:42:49 UTC 2024 - 10K bytes - Viewed (0) -
security/pkg/server/ca/server.go
return nil, status.Error(codes.Unauthenticated, "request impersonation authentication failure") } // Node is authorized to impersonate; overwrite the SAN to the impersonated identity. sans = []string{impersonatedIdentity} } serverCaLog.Debugf("generating a certificate, sans: %v, requested ttl: %s", sans, time.Duration(request.ValidityDuration*int64(time.Second)))
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue May 28 17:35:26 UTC 2024 - 8K bytes - Viewed (0) -
src/cmd/go/internal/tool/tool.go
// since it is normally only used for building the toolchain in the first // place. However, 'go tool dist list' is useful for listing all supported // platforms. // // If the dist tool does not exist, impersonate this command. if impersonateDistList(args[2:]) { // If it becomes necessary, we could increment an additional counter to indicate // that we're impersonating dist list if knowing that becomes important?
Registered: Wed Jun 12 16:32:35 UTC 2024 - Last Modified: Fri Apr 05 18:02:11 UTC 2024 - 5.9K bytes - Viewed (0) -
pilot/pkg/serviceregistry/kube/controller/ambient/workloads.go
log.Warnf("skipping workload entry %s/%s; DNS Address resolution is not yet implemented", wle.Namespace, wle.Name) } w.WorkloadName, w.WorkloadType = wle.Name, workloadapi.WorkloadType_POD // XXX(shashankram): HACK to impersonate pod w.CanonicalName, w.CanonicalRevision = kubelabels.CanonicalService(wle.Labels, w.WorkloadName) setTunnelProtocol(wle.Labels, wle.Annotations, w)
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 16:51:29 UTC 2024 - 20.9K bytes - Viewed (0) -
pkg/kube/util.go
ClientKey: auths.ClientKey, ClientKeyData: auths.ClientKeyData, Token: auths.Token, TokenFile: auths.TokenFile, Impersonate: auths.Impersonate, ImpersonateGroups: auths.ImpersonateGroups, ImpersonateUserExtra: auths.ImpersonateUserExtra, Username: auths.Username, Password: auths.Password,
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 06 05:10:23 UTC 2024 - 18.6K bytes - Viewed (0) -
pkg/security/security.go
CertSigner = "CertSigner" // ImpersonatedIdentity declares the identity we are requesting a certificate on behalf of. // This is constrained to only allow identities in CATrustedNodeAccounts, and only to impersonate identities // on their node. ImpersonatedIdentity = "ImpersonatedIdentity" ) type ImpersonatedIdentityContextKey struct{}
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 17:48:28 UTC 2024 - 19.1K bytes - Viewed (0) -
cmd/kubeadm/app/apis/kubeadm/v1beta3/types.go
// UnsafeSkipCAVerification allows token-based discovery // without CA verification via CACertHashes. This can weaken // the security of kubeadm since other nodes can impersonate the control-plane. // +optional UnsafeSkipCAVerification bool `json:"unsafeSkipCAVerification,omitempty"` }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Sat May 11 10:21:20 UTC 2024 - 19.6K bytes - Viewed (0) -
src/os/exec/exec_test.go
if poll.IsPollDescriptor(fd) { continue } if fdtest.Exists(fd) { haveUnexpectedFDs = true return } } } // TestMain allows the test binary to impersonate many other binaries, // some of which may manipulate os.Stdin, os.Stdout, and/or os.Stderr // (and thus cannot run as an ordinary Test function, since the testing // package monkey-patches those variables before running tests).
Registered: Wed Jun 12 16:32:35 UTC 2024 - Last Modified: Fri Jun 07 20:13:53 UTC 2024 - 48.4K bytes - Viewed (0) -
platforms/documentation/docs/src/docs/userguide/optimizing-performance/build-cache/build_cache.adoc
Enabling this option is a security risk, as it allows any cache server to impersonate the intended server. It should only be used as a temporary measure or in very tightly controlled network environments. .Allow untrusted cache server ====
Registered: Wed Jun 12 18:38:38 UTC 2024 - Last Modified: Wed May 15 11:30:10 UTC 2024 - 26.1K bytes - Viewed (0) -
cmd/kubeadm/app/apis/kubeadm/types.go
CACertHashes []string // UnsafeSkipCAVerification allows token-based discovery // without CA verification via CACertHashes. This can weaken // the security of kubeadm since other nodes can impersonate the control-plane. UnsafeSkipCAVerification bool } // FileDiscovery is used to specify a file or URL to a kubeconfig file from which to load cluster information type FileDiscovery struct {
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri May 17 03:12:52 UTC 2024 - 32.6K bytes - Viewed (0)