- Sort Score
- Result 10 results
- Languages All
Results 1 - 10 of 22 for Authz (0.06 sec)
-
pilot/pkg/networking/core/route/route_internal_test.go
"google.golang.org/protobuf/types/known/wrapperspb" networking "istio.io/api/networking/v1alpha3" "istio.io/istio/pilot/pkg/model" authzmatcher "istio.io/istio/pilot/pkg/security/authz/matcher" authz "istio.io/istio/pilot/pkg/security/authz/model" "istio.io/istio/pkg/config/labels" "istio.io/istio/pkg/util/sets" ) func TestIsCatchAllRoute(t *testing.T) { cases := []struct { name string route *route.Route
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Sat May 11 02:47:57 UTC 2024 - 18.2K bytes - Viewed (0) -
istioctl/cmd/root.go
experimentalCmd.AddCommand(injector.Cmd(ctx)) rootCmd.AddCommand(mesh.NewVerifyCommand(ctx)) rootCmd.AddCommand(mesh.UninstallCmd(ctx)) experimentalCmd.AddCommand(authz.AuthZ(ctx)) rootCmd.AddCommand(seeExperimentalCmd("authz")) experimentalCmd.AddCommand(metrics.Cmd(ctx)) experimentalCmd.AddCommand(describe.Cmd(ctx)) experimentalCmd.AddCommand(wait.Cmd(ctx)) experimentalCmd.AddCommand(config.Cmd())
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 06 15:59:33 UTC 2024 - 10K bytes - Viewed (0) -
pilot/pkg/networking/core/listener_waypoint.go
authnBuilder := lb.authnBuilder if svc != nil { authnBuilder = authn.NewBuilderForService(lb.push, lb.node, svc) authzBuilder = authz.NewBuilderForService(authz.Local, lb.push, lb.node, true, svc) authzCustomBuilder = authz.NewBuilderForService(authz.Custom, lb.push, lb.node, true, svc) } // TODO: consider dedicated listener class for waypoint filters cls := istionetworking.ListenerClassSidecarInbound
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Jun 14 04:34:37 UTC 2024 - 27.6K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/cel/environment/environment_test.go
"[1, 2, 3].indexOf(2) == 1", // lists "'abc'.contains('bc')", //strings "isURL('http://example.com')", // urls "'a 1 b 2'.find('[0-9]') == '1'", // regex }, }, { name: "authz disabled", typeVersionCombinations: []envTypeAndVersion{ {version.MajorMinor(1, 26), NewExpressions}, // always enabled for StoredExpressions },
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri May 10 22:07:40 UTC 2024 - 10K bytes - Viewed (0) -
cmd/globals.go
func setGlobalAuthNPlugin(authn *idplugin.AuthNPlugin) { globalAuthPluginMutex.Lock() globalAuthNPlugin = authn globalAuthPluginMutex.Unlock() } func setGlobalAuthZPlugin(authz *polplugin.AuthZPlugin) { globalAuthPluginMutex.Lock() globalAuthZPlugin = authz globalAuthPluginMutex.Unlock() }
Registered: Sun Jun 16 00:44:34 UTC 2024 - Last Modified: Thu May 30 11:58:12 UTC 2024 - 16.4K bytes - Viewed (0) -
cluster/gce/gci/configure-kubeapiserver.sh
# Create the ABAC file if it doesn't exist yet, or if we have a KUBE_USER set (to ensure the right user is given permissions) if [[ -n "${KUBE_USER:-}" || ! -e /etc/srv/kubernetes/abac-authz-policy.jsonl ]]; then local -r abac_policy_json="${src_dir}/abac-authz-policy.jsonl" if [[ -n "${KUBE_USER:-}" ]]; then sed -i -e "s/{{kube_user}}/${KUBE_USER}/g" "${abac_policy_json}" else
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri Jun 07 11:08:30 UTC 2024 - 25.8K bytes - Viewed (0) -
pilot/pkg/networking/core/listener_inbound.go
TrafficDirection: core.TrafficDirection_INBOUND, ContinueOnListenerFiltersTimeout: true, } // Flush authz cache since we need filter state for the principal. oldBuilder := lb.authzBuilder lb.authzBuilder = authz.NewBuilder(authz.Local, lb.push, lb.node, true) inboundChainConfigs := lb.buildInboundChainConfigs() for _, cc := range inboundChainConfigs { cc.hbone = true
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 01:56:28 UTC 2024 - 35.1K bytes - Viewed (0) -
pilot/pkg/networking/core/listener_builder_test.go
t.Run(tt.name, func(t *testing.T) { push.Networks = tt.networks lb := &ListenerBuilder{ push: push, node: sidecarProxy, authzCustomBuilder: &authz.Builder{}, authzBuilder: &authz.Builder{}, } httpConnManager := lb.buildHTTPConnectionManager(&httpListenerOpts{}) if !reflect.DeepEqual(tt.expectedconfig, httpConnManager.InternalAddressConfig) {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 01:56:28 UTC 2024 - 24.7K bytes - Viewed (0) -
cmd/kube-scheduler/app/server.go
func buildHandlerChain(handler http.Handler, authn authenticator.Request, authz authorizer.Authorizer) http.Handler { requestInfoResolver := &apirequest.RequestInfoFactory{} failedHandler := genericapifilters.Unauthorized(scheme.Codecs) handler = genericapifilters.WithAuthorization(handler, authz, scheme.Codecs) handler = genericapifilters.WithAuthentication(handler, authn, failedHandler, nil, nil)
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Mon May 27 19:11:24 UTC 2024 - 14.3K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/server/config.go
// authz is nil, this function won't add a token authenticator or authorizer. func AuthorizeClientBearerToken(loopback *restclient.Config, authn *AuthenticationInfo, authz *AuthorizationInfo) { if loopback == nil || len(loopback.BearerToken) == 0 { return } if authn == nil || authz == nil { // prevent nil pointer panic return }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Tue May 28 08:48:22 UTC 2024 - 47.7K bytes - Viewed (0)