- Sort Score
- Result 10 results
- Languages All
Results 91 - 100 of 251 for cpsr (0.04 sec)
-
samples/jwt-server/testdata/README.MD
``` ### Creating Server Certificate ``` openssl req -newkey rsa:2048 -nodes -keyout server.key -subj "/C=US/ST=AZ/O=Acme, Inc./CN=*.com" -out server.csr ``` ### Signing Certificate with CA ``` openssl x509 -req -extfile <(printf "subjectAltName=DNS:jwt-server,DNS:localhost") -days 3650 -in server.csr -CA ca.crt -CAkey ca.key -CAcreateserial -out server.crt
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Jan 12 01:55:25 UTC 2022 - 566 bytes - Viewed (0) -
pkg/controller/certificates/cleaner/cleaner_test.go
t.Run(tc.name, func(t *testing.T) { csr := &capi.CertificateSigningRequest{ ObjectMeta: metav1.ObjectMeta{ Name: "fake-csr", CreationTimestamp: tc.created, }, Status: capi.CertificateSigningRequestStatus{ Certificate: tc.certificate, Conditions: tc.conditions, }, } client := fake.NewSimpleClientset(csr) s := &CSRCleanerController{
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Mon Mar 07 15:19:45 UTC 2022 - 7.4K bytes - Viewed (0) -
operator/cmd/mesh/testdata/manifest-generate/output/pilot_override_values.golden.yaml
name: istio-kubeconfig readOnly: true - mountPath: /var/run/secrets/istiod/tls name: istio-csr-dns-cert readOnly: true - mountPath: /var/run/secrets/istiod/ca name: istio-csr-ca-configmap readOnly: true nodeSelector: node-name: test serviceAccountName: istiod volumes: - emptyDir:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Dec 01 22:07:45 UTC 2023 - 4.8K bytes - Viewed (0) -
samples/certs/generate-workload.sh
if [ -f "$FINAL_DIR"/ca-cert-alt.srl ]; then rm "$FINAL_DIR"/ca-cert-alt.srl fi if [ -f "$FINAL_DIR"/workload.cfg ]; then rm "$FINAL_DIR"/workload.cfg fi if [ -f "$FINAL_DIR"/workload.csr ]; then rm "$FINAL_DIR"/workload.csr fi } trap cleanup EXIT openssl genrsa -out "$FINAL_DIR/workload-$sa-key.pem" 2048 cat > "$FINAL_DIR"/workload.cfg <<EOF [req] distinguished_name = req_distinguished_name
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue Feb 07 23:57:35 UTC 2023 - 3.2K bytes - Viewed (0) -
pkg/kubelet/certificate/bootstrap/bootstrap.go
// We can't directly hash the serialized CSR because of random padding that we // regenerate every loop and we include usages which are not contained in the // CSR. This needs to be kept up to date as we add new fields to the node // certificates and with ensureCompatible. func digestedName(publicKey interface{}, subject *pkix.Name, usages []certificatesv1.KeyUsage) (string, error) {
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Tue Dec 27 08:04:25 UTC 2022 - 14.2K bytes - Viewed (0) -
security/pkg/server/ca/fuzz_test.go
"istio.io/istio/pkg/security" mockca "istio.io/istio/security/pkg/pki/ca/mock" caerror "istio.io/istio/security/pkg/pki/error" ) func FuzzCreateCertificate(f *testing.F) { fuzz.Fuzz(f, func(fg fuzz.Helper) { csr := fuzz.Struct[pb.IstioCertificateRequest](fg) ca := fuzz.Struct[mockca.FakeCA](fg) ca.SignErr = caerror.NewError(caerror.CSRError, fmt.Errorf("cannot sign")) server := &Server{ ca: &ca,
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Sep 15 21:32:54 UTC 2022 - 1.3K bytes - Viewed (0) -
pkg/apis/certificates/helpers.go
"strings" "k8s.io/apimachinery/pkg/util/sets" ) // ParseCSR extracts the CSR from the bytes and decodes it. func ParseCSR(pemBytes []byte) (*x509.CertificateRequest, error) { block, _ := pem.Decode(pemBytes) if block == nil || block.Type != "CERTIFICATE REQUEST" { return nil, errors.New("PEM block type must be CERTIFICATE REQUEST") } csr, err := x509.ParseCertificateRequest(block.Bytes) if err != nil { return nil, err }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Tue Dec 27 08:04:25 UTC 2022 - 4K bytes - Viewed (0) -
security/pkg/pki/ca/mock/fakeca.go
func (ca *FakeCA) Sign(csr []byte, certOpts ca.CertOpts) ([]byte, error) { ca.ReceivedIDs = certOpts.SubjectIDs if ca.SignErr != nil { return nil, ca.SignErr } return ca.SignedCert, nil } // SignWithCertChain returns the SignErr if SignErr is not nil, otherwise, it returns SignedCert and the cert chain. func (ca *FakeCA) SignWithCertChain(csr []byte, certOpts ca.CertOpts) ([]string, error) {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Dec 03 18:57:19 UTC 2021 - 2.1K bytes - Viewed (0) -
operator/cmd/mesh/testdata/manifest-generate/output/pilot_override_kubernetes.golden.yaml
name: istio-kubeconfig readOnly: true - mountPath: /var/run/secrets/istiod/tls name: istio-csr-dns-cert readOnly: true - mountPath: /var/run/secrets/istiod/ca name: istio-csr-ca-configmap readOnly: true serviceAccountName: istiod volumes: - emptyDir: medium: Memory name: local-certs
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Dec 01 22:07:45 UTC 2023 - 7.8K bytes - Viewed (0) -
manifests/charts/istio-control/istio-discovery/templates/deployment.yaml
- name: istio-kubeconfig secret: secretName: istio-kubeconfig optional: true # Optional: istio-csr dns pilot certs - name: istio-csr-dns-cert secret: secretName: istiod-tls optional: true - name: istio-csr-ca-configmap configMap: name: istio-ca-root-cert defaultMode: 420 optional: true
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu May 30 20:24:06 UTC 2024 - 9K bytes - Viewed (0)