- Sort Score
- Result 10 results
- Languages All
Results 71 - 80 of 172 for Authz (0.04 sec)
-
staging/src/k8s.io/apiserver/pkg/cel/environment/environment_test.go
"[1, 2, 3].indexOf(2) == 1", // lists "'abc'.contains('bc')", //strings "isURL('http://example.com')", // urls "'a 1 b 2'.find('[0-9]') == '1'", // regex }, }, { name: "authz disabled", typeVersionCombinations: []envTypeAndVersion{ {version.MajorMinor(1, 26), NewExpressions}, // always enabled for StoredExpressions },
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri May 10 22:07:40 UTC 2024 - 10K bytes - Viewed (0) -
cmd/globals.go
func setGlobalAuthNPlugin(authn *idplugin.AuthNPlugin) { globalAuthPluginMutex.Lock() globalAuthNPlugin = authn globalAuthPluginMutex.Unlock() } func setGlobalAuthZPlugin(authz *polplugin.AuthZPlugin) { globalAuthPluginMutex.Lock() globalAuthZPlugin = authz globalAuthPluginMutex.Unlock() }
Registered: Sun Jun 16 00:44:34 UTC 2024 - Last Modified: Thu May 30 11:58:12 UTC 2024 - 16.4K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/plugin/pkg/authorizer/webhook/webhook_v1_test.go
server: https://authz.example.com name: foobar users: - name: a cluster user: client-certificate: {{ .Cert }} client-key: {{ .Key }} `, wantErr: true, }, { msg: "multiple clusters with no context", configTmpl: ` clusters: - cluster: certificate-authority: {{ .CA }} server: https://authz.example.com name: foobar - cluster:
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Wed Apr 24 18:25:29 UTC 2024 - 43.2K bytes - Viewed (0) -
pilot/pkg/security/authz/model/util.go
// limitations under the License. package model import ( "fmt" "strconv" "strings" matcherpb "github.com/envoyproxy/go-control-plane/envoy/type/matcher/v3" "istio.io/istio/pilot/pkg/security/authz/matcher" "istio.io/istio/pilot/pkg/xds/filters" ) // convertToPort converts a port string to a uint32. func convertToPort(v string) (uint32, error) { p, err := strconv.ParseUint(v, 10, 32)
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Mar 25 10:39:25 UTC 2024 - 3.4K bytes - Viewed (0) -
pkg/workloadapi/security/authorization.proto
// take place. // Groups are OR-ed. repeated Group groups = 5; } message Group { // Rules are OR-ed (e.g. ANY rule can match) // This is a generic form of the authz policy's to, from and when repeated Rules rules = 1; } message Rules { // The logical behavior between the matches (if there are more than one) // MatchBehavior match_behavior = 1;
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Jun 21 20:45:12 UTC 2023 - 3K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/admission/plugin/policy/validating/interface.go
Validate(ctx context.Context, matchedResource schema.GroupVersionResource, versionedAttr *admission.VersionedAttributes, versionedParams runtime.Object, namespace *corev1.Namespace, runtimeCELCostBudget int64, authz authorizer.Authorizer) ValidateResult
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu Feb 22 17:47:18 UTC 2024 - 3K bytes - Viewed (0) -
tests/integration/pilot/istioctl_test.go
istioLabel = labelOverride } t.ConfigIstio().File(apps.Namespace.Name(), "testdata/authz-a.yaml").ApplyOrFail(t) t.ConfigIstio().EvalFile(i.Settings().SystemNamespace, map[string]any{ "GatewayIstioLabel": istioLabel, }, "testdata/authz-b.yaml").ApplyOrFail(t) gwPod, err := i.IngressFor(t.Clusters().Default()).PodID(0) if err != nil {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Apr 08 22:02:59 UTC 2024 - 15K bytes - Viewed (0) -
pkg/kubeapiserver/options/authorization.go
return append(allErrors, fmt.Errorf("--%s can not be specified when --%s or --authorization-webhook-* flags are defined", authorizationConfigFlag, authorizationModeFlag)) } // load/validate kube-apiserver authz config with no opinion about required modes _, err := authorizer.LoadAndValidateFile(o.AuthorizationConfigurationFile, nil) if err != nil { return append(allErrors, err) } return allErrors }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Wed Feb 14 23:09:15 UTC 2024 - 12K bytes - Viewed (0) -
tests/integration/security/external_ca/main_test.go
) func TestMain(m *testing.M) { // Integration test for testing interoperability with external CA's that are integrated with K8s CSR API // Refer to https://kubernetes.io/docs/reference/access-authn-authz/certificate-signing-requests/ // nolint: staticcheck var certs []csrctrl.SignerRootCert framework.NewSuite(m). Label(label.CustomSetup). RequireMinVersion(19). Setup(func(ctx resource.Context) error {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Mar 22 14:18:21 UTC 2023 - 4.7K bytes - Viewed (0) -
CODEOWNERS
/pilot/pkg/config/ @istio/wg-networking-maintainers /pilot/pkg/networking/plugin/authn/ @istio/wg-security-maintainers /pilot/pkg/networking/plugin/authz/ @istio/wg-security-maintainers /pilot/pkg/serviceregistry/ @istio/wg-networking-maintainers-pilot
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Apr 22 19:22:33 UTC 2024 - 7.2K bytes - Viewed (0)