- Sort Score
- Result 10 results
- Languages All
Results 1 - 10 of 25 for CacheTTL (0.24 sec)
-
pkg/kubelet/clustertrustbundle/clustertrustbundle_manager.go
normalizationCache *lrucache.LRUExpireCache cacheTTL time.Duration } var _ Manager = (*InformerManager)(nil) // NewInformerManager returns an initialized InformerManager. func NewInformerManager(bundles certinformersv1alpha1.ClusterTrustBundleInformer, cacheSize int, cacheTTL time.Duration) (*InformerManager, error) {
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri Nov 03 18:40:48 UTC 2023 - 8.3K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/authentication/authenticatorfactory/delegating.go
// before we fail the webhook call in order to limit the fan out that ensues when the system is degraded. WebhookRetryBackoff *wait.Backoff // CacheTTL is the length of time that a token authentication answer will be cached. CacheTTL time.Duration // CAContentProvider are the options for verifying incoming connections using mTLS and directly assigning to users.
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Tue Jun 29 07:49:14 UTC 2021 - 5.1K bytes - Viewed (0) -
cmd/kubelet/app/auth.go
if err != nil { return nil, nil, err } } authenticatorConfig := authenticatorfactory.DelegatingAuthenticatorConfig{ Anonymous: authn.Anonymous.Enabled, CacheTTL: authn.Webhook.CacheTTL.Duration, ClientCertificateCAContentProvider: dynamicCAContentFromFile, } if authn.Webhook.Enabled { if client == nil {
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Mon Mar 07 14:37:01 UTC 2022 - 5K bytes - Viewed (0) -
pkg/kubeapiserver/options/authentication.go
ret.WebhookTokenAuthnCacheTTL = o.WebHook.CacheTTL ret.WebhookRetryBackoff = o.WebHook.RetryBackoff if len(o.WebHook.ConfigFile) > 0 && o.WebHook.CacheTTL > 0 { if o.TokenSuccessCacheTTL > 0 && o.WebHook.CacheTTL < o.TokenSuccessCacheTTL { klog.Warningf("the webhook cache ttl of %s is shorter than the overall cache ttl of %s for successful token authentication attempts.", o.WebHook.CacheTTL, o.TokenSuccessCacheTTL) }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Sat Mar 09 22:40:22 UTC 2024 - 32.4K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/server/options/authentication.go
// RemoteKubeConfigFileOptional is specifying whether not specifying the kubeconfig or // a missing in-cluster config will be fatal. RemoteKubeConfigFileOptional bool // CacheTTL is the length of time that a token authentication answer will be cached. CacheTTL time.Duration ClientCert ClientCertAuthenticationOptions RequestHeader RequestHeaderAuthenticationOptions
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Tue Mar 21 14:51:22 UTC 2023 - 19.9K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/storage/value/encrypt/envelope/kmsv2/envelope_test.go
func TestEnvelopeCaching(t *testing.T) { testCases := []struct { desc string cacheTTL time.Duration simulateKMSPluginFailure bool expectedError string expectedDecryptCalls int }{ { desc: "entry in cache should withstand plugin failure", cacheTTL: 5 * time.Minute, simulateKMSPluginFailure: true,
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Wed Oct 25 16:50:20 UTC 2023 - 47.2K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/storage/value/encrypt/aes/aes_extended_nonce.go
"context" "crypto/aes" "crypto/sha256" "errors" "fmt" "io" "time" "golang.org/x/crypto/hkdf" "k8s.io/apiserver/pkg/storage/value" "k8s.io/utils/clock" ) const ( // cacheTTL is the TTL of KDF cache entries. We assume that the value.Context.AuthenticatedData // for every call is the etcd storage path of the associated resource, and use that as the primary
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri Jul 21 19:25:52 UTC 2023 - 6.8K bytes - Viewed (0) -
pkg/kubelet/apis/config/scheme/testdata/KubeletConfiguration/roundtrip/default/v1beta1.yaml
address: 0.0.0.0 apiVersion: kubelet.config.k8s.io/v1beta1 authentication: anonymous: enabled: false webhook: cacheTTL: 2m0s enabled: true x509: {} authorization: mode: Webhook webhook: cacheAuthorizedTTL: 5m0s cacheUnauthorizedTTL: 30s cgroupDriver: cgroupfs cgroupsPerQOS: true configMapAndSecretChangeDetectionStrategy: Watch containerLogMaxFiles: 5 containerLogMaxSize: 10Mi
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Tue Mar 05 05:07:06 UTC 2024 - 2.2K bytes - Viewed (0) -
pkg/kubelet/apis/config/v1beta1/defaults_test.go
Anonymous: v1beta1.KubeletAnonymousAuthentication{Enabled: utilpointer.Bool(false)}, Webhook: v1beta1.KubeletWebhookAuthentication{ Enabled: utilpointer.Bool(true), CacheTTL: metav1.Duration{Duration: 2 * time.Minute}, }, }, Authorization: v1beta1.KubeletAuthorization{ Mode: v1beta1.KubeletAuthorizationModeWebhook, Webhook: v1beta1.KubeletWebhookAuthorization{
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Tue Mar 05 21:10:42 UTC 2024 - 51K bytes - Viewed (0) -
pkg/kubelet/apis/config/v1beta1/defaults.go
} if obj.Authentication.Webhook.Enabled == nil { obj.Authentication.Webhook.Enabled = utilpointer.Bool(true) } if obj.Authentication.Webhook.CacheTTL == zeroDuration { obj.Authentication.Webhook.CacheTTL = metav1.Duration{Duration: 2 * time.Minute} } if obj.Authorization.Mode == "" { obj.Authorization.Mode = kubeletconfigv1beta1.KubeletAuthorizationModeWebhook }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri Feb 16 17:55:59 UTC 2024 - 9.7K bytes - Viewed (0)