tlsSettings - Code Search

pkg/bootstrap/testdata/stats_compression_zstd.proxycfg

drain_duration:                   {seconds: 5}
discovery_address:                "mypilot:15011"
statsd_udp_address:               "10.1.1.1:9125"
envoy_metrics_service:            {address: "metrics-service:15000", tls_settings: { mode: MUTUAL, client_certificate: "/etc/istio/ms/client.pem", private_key: "/etc/istio/ms/key.pem", ca_certificates: "/etc/istio/ms/ca.pem"}}
envoy_access_log_service:         {address: "accesslog-service:15000"}

Registered: Fri Jun 14 15:00:06 UTC 2024

- Last Modified: Mon Nov 27 03:36:28 UTC 2023

- 864 bytes

- Viewed (0)

github.com/istio/istio

pilot/pkg/networking/core/filterchain_options.go

		TLS:               true,
	}}
}

// getFilterChainMatchOptions returns the FilterChainMatchOptions that should be used based on mTLS mode and protocol
func getFilterChainMatchOptions(settings authn.MTLSSettings, protocol networking.ListenerProtocol) []FilterChainMatchOptions {
	switch protocol {
	case networking.ListenerProtocolHTTP:
		switch settings.Mode {
		case model.MTLSStrict:

Registered: Fri Jun 14 15:00:06 UTC 2024

- Last Modified: Thu Mar 28 17:09:02 UTC 2024

- 8.4K bytes

- Viewed (0)

github.com/istio/istio

pilot/pkg/security/authn/factory.go

type PolicyApplier interface {
	// InboundMTLSSettings returns inbound mTLS settings for a given workload port
	InboundMTLSSettings(endpointPort uint32, node *model.Proxy, trustDomainAliases []string, modeOverride model.MutualTLSMode) MTLSSettings

	// JwtFilter returns the JWT HTTP filter to enforce the underlying authentication policy.
	// It may return nil, if no JWT validation is needed.
	JwtFilter(useExtendedJwt, clearRouteCache bool) *hcm.HttpFilter

Registered: Fri Jun 14 15:00:06 UTC 2024

- Last Modified: Wed Apr 17 22:20:44 UTC 2024

- 3K bytes

- Viewed (0)

Search Options

pkg/bootstrap/testdata/stats_compression_zstd.proxycfg

pilot/pkg/networking/core/filterchain_options.go

pilot/pkg/security/authn/factory.go