- Sort Score
- Result 10 results
- Languages All
Results 31 - 40 of 144 for Authorize (0.27 sec)
-
pilot/pkg/credentials/model.go
GetCertInfo(name, namespace string) (certInfo *CertInfo, err error) GetCaCert(name, namespace string) (certInfo *CertInfo, err error) GetDockerCredential(name, namespace string) (cred []byte, err error) Authorize(serviceAccount, namespace string) error } type MulticlusterController interface { ForCluster(cluster cluster.ID) (Controller, error) AddSecretHandler(func(name, namespace string))
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Feb 23 19:18:21 UTC 2024 - 1.3K bytes - Viewed (0) -
pkg/registry/authorization/localsubjectaccessreview/rest.go
decision, reason, evaluationErr := r.authorizer.Authorize(ctx, authorizationAttributes) localSubjectAccessReview.Status = authorizationapi.SubjectAccessReviewStatus{ Allowed: (decision == authorizer.DecisionAllow), Denied: (decision == authorizer.DecisionDeny), Reason: reason, } if evaluationErr != nil {
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri Nov 18 09:21:13 UTC 2022 - 3.2K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/endpoints/filters/authorization.go
return } authorized, reason, err := a.Authorize(ctx, attributes) authorizationFinish := time.Now() defer func() { metrics(ctx, authorized, err, authorizationStart, authorizationFinish) }() // an authorizer like RBAC could encounter evaluation errors and still allow the request, so authorizer decision is checked before error here. if authorized == authorizer.DecisionAllow {
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu Apr 20 13:35:55 UTC 2023 - 3.8K bytes - Viewed (0) -
pkg/registry/authorization/selfsubjectaccessreview/rest.go
} decision, reason, evaluationErr := r.authorizer.Authorize(ctx, authorizationAttributes) selfSAR.Status = authorizationapi.SubjectAccessReviewStatus{ Allowed: (decision == authorizer.DecisionAllow), Denied: (decision == authorizer.DecisionDeny), Reason: reason, } if evaluationErr != nil { selfSAR.Status.EvaluationError = evaluationErr.Error() }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri Nov 18 09:21:13 UTC 2022 - 3.1K bytes - Viewed (0) -
pkg/registry/authorization/subjectaccessreview/rest_test.go
"k8s.io/apiserver/pkg/authorization/authorizer" genericapirequest "k8s.io/apiserver/pkg/endpoints/request" "k8s.io/apiserver/pkg/registry/rest" authorizationapi "k8s.io/kubernetes/pkg/apis/authorization" ) type fakeAuthorizer struct { attrs authorizer.Attributes decision authorizer.Decision reason string err error }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Tue Apr 25 16:06:18 UTC 2023 - 6.3K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/endpoints/filters/authorization_test.go
} } type fakeAuthorizer struct { decision authorizer.Decision reason string err error } func (f fakeAuthorizer) Authorize(ctx context.Context, a authorizer.Attributes) (authorizer.Decision, string, error) { return f.decision, f.reason, f.err } func TestAuditAnnotation(t *testing.T) { testcases := map[string]struct { authorizer fakeAuthorizer decisionAnnotation string
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Mon Jul 03 16:16:51 UTC 2023 - 5K bytes - Viewed (0) -
docs/zh/docs/tutorial/security/first-steps.md
Registered: Mon Jun 17 08:32:26 UTC 2024 - Last Modified: Wed Mar 13 19:02:19 UTC 2024 - 7.4K bytes - Viewed (0) -
pilot/pkg/xds/auth.go
c, err := security.Authenticate(ctx, s.Authenticators) if c != nil { return c.Identities, nil } return nil, err } func (s *DiscoveryServer) authorize(con *Connection, identities []string) error { if con == nil || con.proxy == nil { return nil } if features.EnableXDSIdentityCheck && identities != nil {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue Apr 30 00:26:45 UTC 2024 - 2.4K bytes - Viewed (0) -
pkg/registry/admissionregistration/validatingadmissionpolicybinding/authz_test.go
auth: func(ctx context.Context, a authorizer.Attributes) (authorized authorizer.Decision, reason string, err error) { return authorizer.DecisionDeny, "", nil }, }, { name: "authorized", userInfo: &user.DefaultInfo{Groups: []string{user.AllAuthenticated}}, auth: func(ctx context.Context, a authorizer.Attributes) (authorized authorizer.Decision, reason string, err error) {
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu Jul 20 16:30:09 UTC 2023 - 5.7K bytes - Viewed (0) -
docs/iam/opa.md
OPA is a lightweight general-purpose policy engine that can be co-located with MinIO server, in this document we talk about how to use OPA HTTP API to authorize requests. It can be used with any type of credentials (STS based like OpenID or LDAP, regular IAM users or service accounts). OPA is enabled through MinIO's Access Management Plugin feature. ## Get started
Registered: Sun Jun 16 00:44:34 UTC 2024 - Last Modified: Sun Jul 17 15:43:14 UTC 2022 - 2.3K bytes - Viewed (0)