Search Options

Results per page
Sort
Preferred Languages
Advance

Results 61 - 70 of 166 for mtls (0.1 sec)

  2. github.com/istio/istio

    releasenotes/notes/push-cds-on-auto-passthrough-gateway-change.yaml 

    apiVersion: release-notes/v2
kind: bug-fix
area: traffic-management
releaseNotes:
  - |
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Thu May 09 16:52:59 UTC 2024
    - 181 bytes
    - Viewed (0)
  3. github.com/istio/istio

    pilot/pkg/security/authn/utils/utils_test.go 

    		expectedMinTLSVer tls.TlsParameters_TlsProtocol
	}{
		{
			name:              "Default TLS versions",
			expectedMinTLSVer: tls.TlsParameters_TLSv1_2,
		},
		{
			name:              "Configure minimum TLS version 1.2",
			minTLSVer:         meshconfig.MeshConfig_TLSConfig_TLSV1_2,
			expectedMinTLSVer: tls.TlsParameters_TLSv1_2,
		},
		{
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Mon Jul 10 20:24:43 UTC 2023
    - 3.1K bytes
    - Viewed (0)
  4. github.com/istio/istio

    pkg/test/datasets/validation/dataset/security-v1beta1-PeerAuthentication.yaml 

    apiVersion: security.istio.io/v1beta1
kind: PeerAuthentication
metadata:
  name: valid-peer-authentication
spec:
  selector:
    matchLabels:
      app: httpbin
      version: v1
  mtls:
    mode: PERMISSIVE
  portLevelMtls:
    8080:
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Tue Oct 17 07:02:38 UTC 2023
    - 254 bytes
    - Viewed (0)
  5. github.com/istio/istio

    releasenotes/notes/34118.yaml 

    issue:
  - 33809
releaseNotes:
  - |
    **Added** Auto mTLS support for workload level peer authentication. You no longer need to configure destination rule when servers are configured with workload level peer authentication policy. This can be disabled by setting ENABLE_AUTO_MTLS_CHECK_POLICIES to "false". 
docs:
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Wed Jul 21 19:02:56 UTC 2021
    - 480 bytes
    - Viewed (0)
  6. github.com/istio/istio

    tests/integration/security/testdata/reachability/automtls-passthrough.yaml.tmpl 

    # Otherwise, the eastwest gateway will be impacted
apiVersion: networking.istio.io/v1beta1
kind: DestinationRule
metadata:
  name: "eastwest-opt-out"
  annotations:
    test-suite: "beta-mtls-on"
spec:
  exportTo: [.]
  host: "*"
  trafficPolicy:
    loadBalancer:
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Wed Jul 06 18:43:28 UTC 2022
    - 530 bytes
    - Viewed (0)
  7. github.com/istio/istio

    pkg/config/analysis/analyzers/testdata/destinationrule-mutual-destination.yaml 

    # No caCertificates when mode is mutual at destination level
apiVersion: networking.istio.io/v1alpha3
kind: DestinationRule
metadata:
  name: db-mtls
spec:
  host: mydbserver.prod.svc.cluster.local
  trafficPolicy:
    tls:
      mode: MUTUAL
      clientCertificate: /etc/certs/myclientcert.pem
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Wed Nov 17 12:28:05 UTC 2021
    - 348 bytes
    - Viewed (0)
  8. github.com/istio/istio

    pilot/pkg/xds/testdata/benchmarks/disabled.yaml 

        name: auto
    protocol: ""
  resolution: STATIC
  endpoints:
  - address: 1.1.1.1
---
apiVersion: security.istio.io/v1beta1
kind: PeerAuthentication
metadata:
  name: default
spec:
  mtls:
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Sat Jul 29 02:10:48 UTC 2023
    - 595 bytes
    - Viewed (0)
  9. github.com/istio/istio

    tests/integration/ambient/testdata/plaintext-to-permissive.yaml 

    metadata:
  name: default
  annotations:
    test-suite: plaintext-to-permissive
spec:
  mtls:
    mode: PERMISSIVE
---
apiVersion: networking.istio.io/v1alpha3
kind: DestinationRule
metadata:
  name: default
  annotations:
    test-suite: plaintext-to-permissive
spec:
  host: "*.local"
  trafficPolicy:
    tls:
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Thu Feb 16 18:55:23 UTC 2023
    - 397 bytes
    - Viewed (0)
  10. github.com/istio/istio

    pkg/config/analysis/analyzers/testdata/destinationrule-compound-simple-mutual.yaml 

    apiVersion: networking.istio.io/v1alpha3
kind: DestinationRule
metadata:
  name: db-mtls
spec:
  host: mydbserver.prod.svc.cluster.local
  trafficPolicy:
    tls:
      mode: MUTUAL
      clientCertificate: /etc/certs/myclientcert.pem
      privateKey: /etc/certs/client_private_key.pem
    portLevelSettings:
    - port:
        number: 443
      tls:
        mode: SIMPLE
        clientCertificate: /etc/certs/myclientcert.pem
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Wed Nov 17 12:28:05 UTC 2021
    - 599 bytes
    - Viewed (0)
  11. github.com/istio/istio

    pilot/pkg/features/security.go 

    var (
	// SkipValidateTrustDomain tells the server proxy to not to check the peer's trust domain when
	// mTLS is enabled in authentication policy.
	SkipValidateTrustDomain = env.Register(
		"PILOT_SKIP_VALIDATE_TRUST_DOMAIN",
		false,
		"Skip validating the peer is from the same trust domain when mTLS is enabled in authentication policy").Get()

	XDSAuth = env.Register("XDS_AUTH", true,
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Sat Jan 13 03:50:59 UTC 2024
    - 3.1K bytes
    - Viewed (0)
Back to top