- Sort Score
- Result 10 results
- Languages All
Results 1 - 7 of 7 for Authz (0.04 sec)
-
pilot/pkg/networking/core/listener_test.go
testInboundListenerConfigWithSidecar(t, getProxy(), buildService("test.com", wildcardIPv4, protocol.HTTP, tnow)) }) t.Run("wasm, stats, authz", func(t *testing.T) { tcp := buildService("tcp.example.com", wildcardIPv4, protocol.TCP, tnow) tcp.Ports[0].Port = 1234 tcp.Ports[0].Name = "tcp" services := []*model.Service{ tcp,
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 01:56:28 UTC 2024 - 93.6K bytes - Viewed (0) -
cmd/iam.go
} // IsAllowed - checks given policy args is allowed to continue the Rest API. func (sys *IAMSys) IsAllowed(args policy.Args) bool { // If opa is configured, use OPA always. if authz := newGlobalAuthZPluginFn(); authz != nil { ok, err := authz.IsAllowed(args) if err != nil { authZLogIf(GlobalContext, err) } return ok } // Policies don't apply to the owner. if args.IsOwner {
Registered: Sun Jun 16 00:44:34 UTC 2024 - Last Modified: Thu Jun 13 22:26:38 UTC 2024 - 71.9K bytes - Viewed (0) -
pilot/pkg/networking/core/route/route.go
"istio.io/istio/pilot/pkg/model" "istio.io/istio/pilot/pkg/networking/core/route/retry" "istio.io/istio/pilot/pkg/networking/telemetry" "istio.io/istio/pilot/pkg/networking/util" authz "istio.io/istio/pilot/pkg/security/authz/model" "istio.io/istio/pilot/pkg/util/protoconv" "istio.io/istio/pkg/config" "istio.io/istio/pkg/config/constants" "istio.io/istio/pkg/config/host" "istio.io/istio/pkg/config/labels"
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue May 14 14:12:39 UTC 2024 - 56.1K bytes - Viewed (0) -
tests/integration/ambient/baseline_test.go
t.NewSubTest("authz target deny").RunParallel(func(t framework.TestContext) { opts := echo.CallOptions{ To: authzDst, Check: CheckDeny, Port: echo.Port{Name: "http"}, Scheme: scheme.HTTP, Count: 10, } src.CallOrFail(t, opts) }) t.NewSubTest("non-authz target allow").RunParallel(func(t framework.TestContext) {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Jun 12 00:07:28 UTC 2024 - 78.4K bytes - Viewed (0) -
staging/src/k8s.io/api/admissionregistration/v1/generated.proto
// 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request. // See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz // 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the // request resource. // Documentation on CEL: https://kubernetes.io/docs/reference/using-api/cel/ //
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu May 23 17:42:49 UTC 2024 - 51.8K bytes - Viewed (0) -
staging/src/k8s.io/api/admissionregistration/v1/types.go
// - 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request. // See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz // - 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the // request resource. //
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu May 23 17:42:49 UTC 2024 - 61.6K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/storage/cacher/cacher.go
var cacheInterval *watchCacheInterval cacheInterval, err = c.watchCache.getAllEventsSinceLocked(requiredResourceVersion, key, opts) if err != nil { // To match the uncached watch implementation, once we have passed authn/authz/admission, // and successfully parsed a resource version, other errors must fail with a watch event of type ERROR, // rather than a directly returned error. return newErrWatcher(err), nil }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Wed Jun 12 10:12:02 UTC 2024 - 51.8K bytes - Viewed (0)