- Sort Score
- Result 10 results
- Languages All
Results 1 - 4 of 4 for signedBy (0.2 sec)
-
operator/cmd/mesh/testdata/manifest-generate/data-snapshot.tar.gz
{{ .Values.ownerName | default "unknown" }} operator.istio.io/component: "Pilot" app: istiod istio: pilot release: {{ .Release.Name }} spec: ports: - port: 15010 name: grpc-xds # plaintext protocol: TCP - port: 15012 name: https-dns # mTLS with k8s-signed cert protocol: TCP - port: 443 name: https-webhook # validation and injection targetPort: 15017 protocol: TCP - port: 15014 name: http-monitoring # prometheus stats protocol: TCP selector: app: istiod {{- if ne .Values.revision "" }} istio.io/rev:...
Others - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Wed Jan 10 05:10:03 GMT 2024 - 198.1K bytes - Viewed (1) -
istioctl/pkg/xds/client.go
// TODO: https://github.com/istio/istio/issues/41937 grpc.WithTransportCredentials(credentials.NewTLS( &tls.Config{ // Always skip verifying, because without it we always get "certificate signed by unknown authority". // We don't set the XDSSAN for the same reason. InsecureSkipVerify: true, })), grpc.WithPerRPCCredentials(k8sCreds), }, nil
Go - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Tue Dec 19 22:42:42 GMT 2023 - 3.7K bytes - Viewed (0) -
architecture/security/istio-agent.md
It should be noted there is a circular dependency with mTLS authentication; in order to fetch a certificate we need a certificate. This can be handled in various ways: * `GenerateSecret` may additionally write any signed certificates to disk, with `OUTPUT_CERTS` configured. * Users may have external CA setups that pre-configure certificates. * The CaClient can use JWT token for the initial setup, then switch to mTLS certificates.
Plain Text - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Tue Aug 22 16:45:50 GMT 2023 - 7.2K bytes - Viewed (1) -
manifests/charts/istio-control/istio-discovery/templates/service.yaml
app: istiod istio: pilot release: {{ .Release.Name }} spec: ports: - port: 15010 name: grpc-xds # plaintext protocol: TCP - port: 15012 name: https-dns # mTLS with k8s-signed cert protocol: TCP - port: 443 name: https-webhook # validation and injection targetPort: 15017 protocol: TCP - port: 15014 name: http-monitoring # prometheus stats
Others - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Thu Apr 18 18:16:49 GMT 2024 - 1.5K bytes - Viewed (0)