- Sort Score
- Result 10 results
- Languages All
Results 41 - 50 of 56 for Tokens (0.18 sec)
-
manifests/charts/istio-control/istio-discovery/templates/configmap.yaml
{{- if eq .Values.global.proxy.tracer "lightstep" }} lightstep: # Address of the LightStep Satellite pool address: {{ .Values.global.tracer.lightstep.address }} # Access Token used to communicate with the Satellite pool accessToken: {{ .Values.global.tracer.lightstep.accessToken }} {{- else if eq .Values.global.proxy.tracer "zipkin" }} zipkin:
Others - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Thu Apr 18 18:16:49 GMT 2024 - 4.9K bytes - Viewed (0) -
istioctl/pkg/multicluster/remote_secret.go
return &secret, nil } } // finally, create the sa token secret manually // https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/#manually-create-a-service-account-api-token // TODO ephemeral time-based tokens are preferred; we should re-think this log.Infof("Creating token secret for service account %q", serviceAccount.Name) secretName := tokenSecretName(serviceAccount.Name)
Go - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Wed Oct 11 01:43:17 GMT 2023 - 24K bytes - Viewed (0) -
architecture/security/istio-agent.md
topologies mix and match these two. For a standard Kubernetes deployment, both CA and discovery will use JWT authentication, with a token automatically [generated and rotated by Kubernetes](https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/#service-account-token-volume-projection). For discovery, the JWT token will be read directly from a file and sent as is. For CA, this logic is a bit more complex,
Plain Text - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Tue Aug 22 16:45:50 GMT 2023 - 7.2K bytes - Viewed (1) -
cni/pkg/install/testdata/kubeconfig-skip-tls
contexts: - context: cluster: local user: istio-cni name: istio-cni-context current-context: istio-cni-context kind: Config preferences: {} users: - name: istio-cni user:
Plain Text - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Wed May 17 02:22:22 GMT 2023 - 342 bytes - Viewed (0) -
istioctl/pkg/workload/workload.go
// errors if the token could not be created with the given service account in the given namespace if err != nil { return fmt.Errorf("could not create a token under service account %s in namespace %s: %v", serviceAccount, wg.Namespace, err) } if err := os.WriteFile(tokenPath, []byte(tokenReq.Status.Token), filePerms); err != nil { return err }
Go - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Wed Apr 17 20:06:41 GMT 2024 - 25.5K bytes - Viewed (0) -
manifests/charts/istiod-remote/values.yaml
pilotCertProvider: istiod sds: # The JWT token for SDS and the aud field of such JWT. See RFC 7519, section 4.1.3. # When a CSR is sent from Istio Agent to the CA (e.g. Istiod), this aud is to make sure the # JWT is intended for the CA. token: aud: istio-ca sts: # The service port used by Security Token Service (STS) server to handle token exchange requests.
Others - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Mon Apr 22 22:00:40 GMT 2024 - 20.2K bytes - Viewed (0) -
common-protos/k8s.io/apimachinery/pkg/apis/meta/v1/generated.proto
// respond with a 410 ResourceExpired error together with a continue token. If the client needs a // consistent list, it must restart their list without the continue field. Otherwise, the client may // send another list request with the token received with the 410 error, the server will respond with
Plain Text - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Mon Mar 11 18:43:24 GMT 2024 - 53.3K bytes - Viewed (0) -
cni/pkg/install/testdata/token-foo
Sergei Gavrilov <******@****.***> 1657207540 +0200
Plain Text - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Thu Jul 07 15:25:40 GMT 2022 - 3 bytes - Viewed (0) -
cni/pkg/nodeagent/fakes_test.go
return nil } // fakeNs is a mock struct for testing type fakeNs struct { closed *atomic.Bool fd uintptr inode uint64 } func newFakeNs(fd uintptr) *fakeNs { // the fake inode is the fd! magic. return &fakeNs{closed: &atomic.Bool{}, fd: fd, inode: uint64(fd)} } func newFakeNsInode(fd uintptr, inode uint64) *fakeNs { return &fakeNs{closed: &atomic.Bool{}, fd: fd, inode: inode} }
Go - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Fri Apr 12 21:47:31 GMT 2024 - 3.9K bytes - Viewed (0) -
istioctl/pkg/workload/testdata/vmconfig-nil-proxy-metadata/istio-token.golden
Xiaopeng Han <******@****.***> 1686841337 +0800
Others - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Thu Jun 15 15:02:17 GMT 2023 - Viewed (0)