- Sort Score
- Result 10 results
- Languages All
Results 1 - 10 of 34 for privileges (0.18 sec)
-
manifests/charts/istio-cni/templates/clusterrole.yaml
verbs: ["watch", "get", "list"] {{- if .Values.cni.repair.repairPods }} {{- /* No privileges needed*/}} {{- else if .Values.cni.repair.deletePods }} - apiGroups: [""] resources: ["pods"] verbs: ["delete"] {{- else if .Values.cni.repair.labelPods }} - apiGroups: [""] {{- /* pods/status is less privileged than the full pod, and either can label. So use the lower pods/status */}} resources: ["pods/status"]
Others - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Sat May 04 01:55:56 GMT 2024 - 2.2K bytes - Viewed (0) -
cmd/warm-backend.go
Remove(ctx context.Context, object string, rv remoteVersionID) error InUse(ctx context.Context) (bool, error) } const probeObject = "probeobject" // checkWarmBackend checks if tier config credentials have sufficient privileges // to perform all operations defined in the WarmBackend interface. func checkWarmBackend(ctx context.Context, w WarmBackend) error { remoteVersionID, err := w.Put(ctx, probeObject, strings.NewReader("MinIO"), 5)
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Sun Apr 21 11:43:18 GMT 2024 - 3.9K bytes - Viewed (0) -
manifests/charts/istio-cni/templates/daemonset.yaml
port: 8000 securityContext: privileged: true # always requires privilege to be useful (install node plugin, etc) runAsGroup: 0 runAsUser: 0 runAsNonRoot: false # Both ambient and sidecar repair mode require elevated node privileges to function. # But we don't need _everything_ in `privileged`, so drop+readd capabilities based on feature.
Others - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Fri May 03 19:29:42 GMT 2024 - 9.4K bytes - Viewed (0) -
cni/README.md
## Privileges required
Plain Text - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Fri May 03 19:29:42 GMT 2024 - 12.3K bytes - Viewed (0) -
docs/en/docs/tutorial/handling-errors.md
This client could be a browser with a frontend, a code from someone else, an IoT device, etc. You could need to tell the client that: * The client doesn't have enough privileges for that operation. * The client doesn't have access to that resource. * The item the client was trying to access doesn't exist. * etc.
Plain Text - Registered: Sun May 05 07:19:11 GMT 2024 - Last Modified: Fri Mar 22 01:42:11 GMT 2024 - 9.1K bytes - Viewed (0) -
common-protos/k8s.io/api/policy/v1beta1/generated.proto
repeated PodSecurityPolicy items = 2; } // PodSecurityPolicySpec defines the policy enforced. message PodSecurityPolicySpec { // privileged determines if a pod can request to be run as privileged. // +optional optional bool privileged = 1; // defaultAddCapabilities is the default set of capabilities that will be added to the container
Plain Text - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Mon Mar 11 18:43:24 GMT 2024 - 19.6K bytes - Viewed (0) -
docs/en/docs/advanced/behind-a-proxy.md
``` This tells Traefik to listen on port 9999 and to use another file `routes.toml`. !!! tip We are using port 9999 instead of the standard HTTP port 80 so that you don't have to run it with admin (`sudo`) privileges. Now create that other file `routes.toml`: ```TOML hl_lines="5 12 20" [http] [http.middlewares] [http.middlewares.api-stripprefix.stripPrefix] prefixes = ["/api/v1"]
Plain Text - Registered: Sun May 05 07:19:11 GMT 2024 - Last Modified: Thu May 02 22:37:31 GMT 2024 - 11.6K bytes - Viewed (2) -
cmd/iam.go
if parentInClaim != parentUser { return false } } else { // This is needed so a malicious user cannot // use a leaked session key of another user // to widen its privileges. return false } isOwnerDerived := parentUser == globalActiveCred.AccessKey var err error var svcPolicies []string roleArn := args.GetRoleArn() switch {
Go - Registered: Sun May 05 19:28:20 GMT 2024 - Last Modified: Thu Apr 25 21:28:16 GMT 2024 - 71.1K bytes - Viewed (1) -
manifests/charts/istio-cni/values.yaml
# Note the pod will be crashlooping, so this may take a few minutes to become fully functional based on when the retry occurs. # This requires no RBAC privilege, but does require `securityContext.privileged/CAP_SYS_ADMIN`. repairPods: true initContainerName: "istio-validation" brokenPodLabelKey: "cni.istio.io/uninitialized" brokenPodLabelValue: "true"
Others - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Tue Apr 30 22:24:38 GMT 2024 - 5.2K bytes - Viewed (1) -
api/maven-api-model/src/main/mdo/maven.mdo
</field> </fields> </class> <class> <name>Contributor</name> <description>Description of a person who has contributed to the project, but who does not have commit privileges. Usually, these contributions come in the form of patches submitted.</description> <version>3.0.0+</version> <fields> <field> <name>name</name> <version>3.0.0+</version>
XML - Registered: Sun May 05 03:35:11 GMT 2024 - Last Modified: Tue Apr 23 13:29:46 GMT 2024 - 115.1K bytes - Viewed (0)