- Sort Score
- Result 10 results
- Languages All
Results 41 - 50 of 470 for authn (0.06 sec)
-
pilot/pkg/networking/core/listener_waypoint.go
authzCustomBuilder = authz.NewBuilderForService(authz.Custom, lb.push, lb.node, true, svc) } // TODO: consider dedicated listener class for waypoint filters cls := istionetworking.ListenerClassSidecarInbound wasm := lb.push.WasmPluginsByListenerInfo(lb.node, model.WasmPluginListenerInfo{ Class: cls, Service: svc, }, model.WasmPluginTypeHTTP)
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Jun 14 04:34:37 UTC 2024 - 27.6K bytes - Viewed (0) -
pilot/pkg/networking/core/extension/wasmplugin_test.go
}{ { name: "empty", wasmPlugins: []*model.WasmPluginWrapper{}, names: []string{someAuthNFilter.Name}, expectedECs: []*core.TypedExtensionConfig{}, }, { name: "authn", wasmPlugins: []*model.WasmPluginWrapper{ someAuthNFilter, someAuthZFilter, }, names: []string{someAuthNFilter.Namespace + "." + someAuthNFilter.Name}, expectedECs: []*core.TypedExtensionConfig{
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed May 15 09:02:11 UTC 2024 - 5.6K bytes - Viewed (0) -
CODEOWNERS
/pilot/pkg/config/ @istio/wg-networking-maintainers /pilot/pkg/networking/plugin/authn/ @istio/wg-security-maintainers /pilot/pkg/networking/plugin/authz/ @istio/wg-security-maintainers /pilot/pkg/serviceregistry/ @istio/wg-networking-maintainers-pilot
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Apr 22 19:22:33 UTC 2024 - 7.2K bytes - Viewed (0) -
pilot/pkg/networking/core/extension/wasmplugin.go
Ads: &core.AggregatedConfigSource{}, }, ResourceApiVersion: core.ApiVersion_V3, // we block proxy init until WasmPlugins are loaded because they might be // critical for security (e.g. authn/authz) InitialFetchTimeout: &durationpb.Duration{Seconds: 0}, } // PopAppendHTTP takes a list of filters and a set of WASM plugins, keyed by phase. It will remove all
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed May 15 09:02:11 UTC 2024 - 5.4K bytes - Viewed (0) -
cmd/globals.go
return globalAuthZPlugin } func setGlobalAuthNPlugin(authn *idplugin.AuthNPlugin) { globalAuthPluginMutex.Lock() globalAuthNPlugin = authn globalAuthPluginMutex.Unlock() } func setGlobalAuthZPlugin(authz *polplugin.AuthZPlugin) { globalAuthPluginMutex.Lock() globalAuthZPlugin = authz globalAuthPluginMutex.Unlock() }
Registered: Sun Jun 16 00:44:34 UTC 2024 - Last Modified: Thu May 30 11:58:12 UTC 2024 - 16.4K bytes - Viewed (0) -
pkg/security/security.go
req := AuthContext{GrpcContext: ctx} for _, authn := range am.Authenticators { u, err := authn.Authenticate(req) if u != nil && len(u.Identities) > 0 && err == nil { securityLog.Debugf("Authentication successful through auth source %v", u.AuthSource) return u } am.authFailMsgs = append(am.authFailMsgs, fmt.Sprintf("Authenticator %s: %v", authn.AuthenticatorType(), err)) } return nil }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 17:48:28 UTC 2024 - 19.1K bytes - Viewed (0) -
cmd/kube-scheduler/app/server.go
func buildHandlerChain(handler http.Handler, authn authenticator.Request, authz authorizer.Authorizer) http.Handler { requestInfoResolver := &apirequest.RequestInfoFactory{} failedHandler := genericapifilters.Unauthorized(scheme.Codecs) handler = genericapifilters.WithAuthorization(handler, authz, scheme.Codecs) handler = genericapifilters.WithAuthentication(handler, authn, failedHandler, nil, nil)
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Mon May 27 19:11:24 UTC 2024 - 14.3K bytes - Viewed (0) -
staging/src/k8s.io/apiextensions-apiserver/test/integration/fixtures/server.go
} func startDefaultServer(t servertesting.Logger, flags ...string) (func(), servertesting.TestServer, error) { // create kubeconfig which will not actually be used. But authz/authn needs it to startup. fakeKubeConfig, err := os.CreateTemp("", "kubeconfig") if err != nil { return nil, servertesting.TestServer{}, err } fakeKubeConfig.WriteString(` apiVersion: v1 kind: Config clusters:
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Wed Mar 06 00:00:21 UTC 2024 - 6.3K bytes - Viewed (0) -
pilot/pkg/networking/core/listener_inbound.go
TrafficDirection: core.TrafficDirection_INBOUND, ContinueOnListenerFiltersTimeout: true, } // Flush authz cache since we need filter state for the principal. oldBuilder := lb.authzBuilder lb.authzBuilder = authz.NewBuilder(authz.Local, lb.push, lb.node, true) inboundChainConfigs := lb.buildInboundChainConfigs() for _, cc := range inboundChainConfigs { cc.hbone = true
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 01:56:28 UTC 2024 - 35.1K bytes - Viewed (0) -
pilot/pkg/xds/filters/filters.go
AlpnFilterName = "istio.alpn" MxFilterName = "istio.metadata_exchange" // AuthnFilterName is the name for the Istio AuthN filter. This should be the same // as the name defined in // https://github.com/istio/proxy/blob/master/src/envoy/http/authn/http_filter_factory.cc#L30 AuthnFilterName = "istio_authn" // EnvoyJwtFilterName is the name of the Envoy JWT filter.
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Feb 09 09:24:25 UTC 2024 - 15.5K bytes - Viewed (0)