- Sort Score
- Result 10 results
- Languages All
Results 1 - 10 of 226 for Principals (0.2 sec)
-
pilot/pkg/security/authz/builder/testdata/http/multiple-policies-out.yaml
rules: - any: true principals: - andIds: ids: - orIds: ids: - authenticated: principalName: exact: spiffe://principals1 - authenticated: principalName: exact: spiffe://principals2 ns[foo]-policy[httpbin-6]-rule[0]:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue Oct 17 16:35:46 UTC 2023 - 4.5K bytes - Viewed (0) -
pilot/pkg/security/authz/model/principal.go
return &rbacpb.Principal{ Identifier: &rbacpb.Principal_AndIds{ AndIds: &rbacpb.Principal_Set{ Ids: principals, }, }, } } func principalNot(principal *rbacpb.Principal) *rbacpb.Principal { return &rbacpb.Principal{ Identifier: &rbacpb.Principal_NotId{ NotId: principal, }, } }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Nov 17 18:44:57 UTC 2022 - 2.8K bytes - Viewed (0) -
pilot/pkg/serviceregistry/kube/controller/ambient/testdata/deny-groups-in.yaml
rules: # Has mix of L4 and L7 in from - from: - source: principals: ["from-mix-principal"] requestPrincipals: ["from-mix-requestPrincipals"] namespaces: ["from-mix-ns"] to: - operation: ports: ["80"] # Has mix of L4 and L7 in to - from: - source: principals: ["to-mix-principal"] namespaces: ["to-mix-ns"] to: - operation:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Feb 29 18:40:34 UTC 2024 - 1.4K bytes - Viewed (0) -
pilot/pkg/security/trustdomain/bundle_test.go
if got != c.out { t.Errorf("expect %s, but got %s", c.out, got) } } } func TestIsTrustDomainBeingEnforced(t *testing.T) { cases := []struct { principal string want bool }{ {principal: "cluster.local/ns/foo/sa/bar", want: true}, {principal: "*/ns/foo/sa/bar", want: false}, {principal: "*-td/ns/foo/sa/bar", want: true}, {principal: "*/sa/bar", want: false},
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue May 11 16:19:15 UTC 2021 - 7.4K bytes - Viewed (0) -
pilot/pkg/security/authz/builder/testdata/http/extended-multiple-policies-out.yaml
rules: - any: true principals: - andIds: ids: - orIds: ids: - authenticated: principalName: exact: spiffe://principals1 - authenticated: principalName: exact: spiffe://principals2 ns[foo]-policy[httpbin-6]-rule[0]:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Mar 25 10:39:25 UTC 2024 - 5.3K bytes - Viewed (0) -
pilot/pkg/security/authz/model/model.go
} var principals []*rbacpb.Principal for _, rl := range m.principals { principal, err := generatePrincipal(rl, forTCP, useAuthenticated, action) if err != nil { return nil, err } principals = append(principals, principal) } if len(principals) == 0 { return nil, fmt.Errorf("must have at least 1 principal") } return &rbacpb.Policy{
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Mar 25 10:39:25 UTC 2024 - 13.8K bytes - Viewed (0) -
pilot/pkg/security/authz/builder/testdata/tcp/deny-both-http-tcp-out.yaml
exact: spiffe://not-principal - authenticated: principalName: safeRegex: regex: spiffe://.*not-principal-suffix - authenticated: principalName: prefix: spiffe://not-principal-prefix - authenticated: principalName:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue Oct 17 16:35:46 UTC 2023 - 11.1K bytes - Viewed (0) -
pilot/pkg/security/authz/builder/testdata/tcp/custom-both-http-tcp-out1.yaml
permissions: - andRules: rules: - any: true principals: - andIds: ids: - any: true istio-ext-authz-ns[foo]-policy[httpbin-deny]-rule[1]: permissions: - andRules: rules: - any: true principals: - andIds: ids: - orIds: ids:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Apr 15 22:42:30 UTC 2021 - 2.7K bytes - Viewed (0) -
pilot/pkg/serviceregistry/kube/controller/ambient/testdata/deny-groups.yaml
- destinationPorts: - 80 - matches: - namespaces: - exact: from-mix-ns principals: - exact: from-mix-principal - rules: - matches: - destinationPorts: - 80 - matches: - namespaces: - exact: to-mix-ns principals: - exact: to-mix-principal - rules: - matches: - destinationPorts: - 80 - matches: - namespaces:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Feb 29 18:40:34 UTC 2024 - 955 bytes - Viewed (0) -
pilot/pkg/security/authz/builder/testdata/http/simple-policy-td-aliases-in.yaml
selector: matchLabels: app: httpbin version: v1 rules: - from: - source: principals: ["cluster.local/ns/rule[0]/sa/from[0]-principal[0]"] - source: principals: ["cluster.local/ns/rule[0]/sa/from[1]-principal[0]", "cluster.local/ns/rule[0]/sa/from[1]-principal[1]"] namespaces: ["rule[0]-from[1]-ns[0]"] to: - operation:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Apr 01 19:25:01 UTC 2021 - 759 bytes - Viewed (0)