secret - Code Search

istioctl/pkg/multicluster/remote_secret.go

	return saName + "-istio-remote-secret-token"
}

func secretReferencesServiceAccount(serviceAccount *v1.ServiceAccount, secret *v1.Secret) error {
	if secret.Type != v1.SecretTypeServiceAccountToken ||
		secret.Annotations[v1.ServiceAccountNameKey] != serviceAccount.Name {
		return fmt.Errorf("secret %s/%s does not reference ServiceAccount %s",
			secret.Namespace, secret.Name, serviceAccount.Name)
	}
	return nil
}

Go

- Registered: Wed May 08 22:53:08 GMT 2024

- Last Modified: Wed Oct 11 01:43:17 GMT 2023

- 24K bytes

- Viewed (0)

github.com/istio/istio

istioctl/pkg/writer/envoy/configdump/secret_test.go

	configDumpFile, err := os.Open("testdata/secret/config_dump.json")
	if err != nil {
		t.Errorf("error opening test data file: %v", err)
	}
	defer configDumpFile.Close()
	configDump, err := io.ReadAll(configDumpFile)
	if err != nil {
		t.Errorf("error reading test data file: %v", err)
	}

	outFile, err := os.Open("testdata/secret/output")
	if err != nil {

Go

- Registered: Wed May 08 22:53:08 GMT 2024

- Last Modified: Tue Jun 06 15:14:48 GMT 2023

- 1.5K bytes

- Viewed (0)

github.com/istio/istio

istioctl/pkg/multicluster/remote_secret_test.go

	testServiceAccountName = "test-service-account"
)

func makeServiceAccount(secrets ...string) *v1.ServiceAccount {
	sa := &v1.ServiceAccount{
		ObjectMeta: metav1.ObjectMeta{
			Name:      testServiceAccountName,
			Namespace: testNamespace,
		},
	}

	for _, secret := range secrets {
		sa.Secrets = append(sa.Secrets, v1.ObjectReference{
			Name:      secret,
			Namespace: testNamespace,
		})
	}

	return sa
}

Go

- Registered: Wed May 08 22:53:08 GMT 2024

- Last Modified: Tue Oct 31 14:48:28 GMT 2023

- 20.6K bytes

- Viewed (0)

github.com/istio/istio

istioctl/pkg/writer/ztunnel/configdump/certificates.go

	for _, secret := range secretDump {
		if strings.Contains(secret.State, "Unavailable") {
			secret.State = "Unavailable"
		}
		if len(secret.CertChain) == 0 {
			fmt.Fprintf(w, "%v\t%v\t%v\t%v\t%v\t%v\t%v\n",
				secret.Identity, valueOrNA(""), secret.State, false, valueOrNA(""), valueOrNA(""), valueOrNA(""))
		} else {
			for i, ca := range secret.CertChain {
				t := "Intermediate"
				if i == 0 {

Go

- Registered: Wed May 08 22:53:08 GMT 2024

- Last Modified: Thu Apr 25 16:38:16 GMT 2024

- 3.2K bytes

- Viewed (0)

github.com/minio/minio

internal/auth/credentials_test.go

	}
	if len(cred.SecretKey) != secretKeyMaxLen {
		t.Fatalf("secret key length: expected: %v, got: %v", secretKeyMaxLen, len(cred.SecretKey))
	}
}

func TestCreateCredentials(t *testing.T) {
	testCases := []struct {
		accessKey   string
		secretKey   string
		valid       bool
		expectedErr error
	}{
		// Valid access and secret keys with minimum length.

Go

- Registered: Sun May 05 19:28:20 GMT 2024

- Last Modified: Fri Mar 01 21:09:42 GMT 2024

- 5.4K bytes

- Viewed (0)

github.com/minio/minio

internal/config/help.go

	// in certain apis (such as Health Diagnostics/Callhome)
	Sensitive bool `json:"-"`

	// Indicates if the value is a secret such as a password that shouldn't be
	// exposed by the server
	Secret bool `json:"-"`

	// Indicates if sub-sys supports multiple targets.
	MultipleTargets bool `json:"multipleTargets"`
}

// HelpKVS - implement order of keys help messages.

Go

- Registered: Sun May 05 19:28:20 GMT 2024

- Last Modified: Fri Jun 23 14:45:27 GMT 2023

- 2.8K bytes

- Viewed (0)

github.com/minio/minio

cmd/common-main.go

		return nil, err
	}
	return ekvs, nil
}

func readFromSecret(sp string) (string, error) {
	// Supports reading path from docker secrets, filename is
	// relative to /run/secrets/ position.
	if isFile(pathJoin("/run/secrets/", sp)) {
		sp = pathJoin("/run/secrets/", sp)
	}
	credBuf, err := os.ReadFile(sp)
	if err != nil {
		if os.IsNotExist(err) { // ignore if file doesn't exist.
			return "", nil
		}

Go

- Registered: Sun May 05 19:28:20 GMT 2024

- Last Modified: Sat May 04 00:17:57 GMT 2024

- 35.8K bytes

- Viewed (2)

github.com/minio/minio

internal/logger/help.go

			Sensitive:   true,
		},
		config.HelpKV{
			Key:         AuthToken,
			Description: `opaque string or JWT authorization token`,
			Optional:    true,
			Type:        "string",
			Sensitive:   true,
			Secret:      true,
		},
		config.HelpKV{
			Key:         ClientCert,
			Description: "mTLS certificate for webhook authentication",
			Optional:    true,
			Type:        "string",
			Sensitive:   true,
		},

Go

- Registered: Sun May 05 19:28:20 GMT 2024

- Last Modified: Thu Mar 07 20:17:46 GMT 2024

- 6.4K bytes

- Viewed (0)

github.com/minio/minio

internal/config/constants.go

)

// Top level common ENVs
const (
	EnvAccessKey    = "MINIO_ACCESS_KEY"
	EnvSecretKey    = "MINIO_SECRET_KEY"
	EnvRootUser     = "MINIO_ROOT_USER"
	EnvRootPassword = "MINIO_ROOT_PASSWORD"

	// Legacy files
	EnvAccessKeyFile = "MINIO_ACCESS_KEY_FILE"
	EnvSecretKeyFile = "MINIO_SECRET_KEY_FILE"

	// Current files
	EnvRootUserFile     = "MINIO_ROOT_USER_FILE"
	EnvRootPasswordFile = "MINIO_ROOT_PASSWORD_FILE"

Go

- Registered: Sun May 05 19:28:20 GMT 2024

- Last Modified: Mon Jan 01 16:36:33 GMT 2024

- 3.4K bytes

- Viewed (3)

github.com/minio/minio

internal/crypto/error.go

	ErrInvalidCustomerKey = Errorf("The SSE-C client key is invalid")

	// ErrSecretKeyMismatch indicates that the provided secret key (SSE-C client key / SSE-S3 KMS key)
	// does not match the secret key used during encrypting the object.
	ErrSecretKeyMismatch = Errorf("The secret key does not match the secret key used during upload")

	// ErrCustomerKeyMD5Mismatch indicates that the SSE-C key MD5 does not match the

Go

- Registered: Sun May 05 19:28:20 GMT 2024

- Last Modified: Thu Mar 28 17:44:56 GMT 2024

- 4.4K bytes

- Viewed (0)

Search Options