- Sort Score
- Result 10 results
- Languages All
Results 101 - 110 of 929 for authn (0.05 sec)
-
pkg/spiffe/spiffe.go
func (v *PeerCertVerifier) VerifyPeerCert(rawCerts [][]byte, _ [][]*x509.Certificate) error { if len(rawCerts) == 0 { // Peer doesn't present a certificate. Just skip. Other authn methods may be used. return nil } var peerCert *x509.Certificate intCertPool := x509.NewCertPool() for id, rawCert := range rawCerts { cert, err := x509.ParseCertificate(rawCert) if err != nil {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu May 23 21:07:03 UTC 2024 - 11.1K bytes - Viewed (0) -
staging/src/k8s.io/api/certificates/v1/types.go
// Requests for this signer are never auto-approved by kube-controller-manager, and can be issued by the "csrsigning" controller in kube-controller-manager. // // More details are available at https://k8s.io/docs/reference/access-authn-authz/certificate-signing-requests/#kubernetes-signers // // Custom signerNames can also be specified. The signer defines: // 1. Trust distribution: how trust (CA bundles) are distributed.
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu May 23 17:42:49 UTC 2024 - 15.6K bytes - Viewed (0) -
istioctl/pkg/describe/describe.go
"istio.io/istio/pilot/pkg/config/kube/crdclient" "istio.io/istio/pilot/pkg/model" "istio.io/istio/pilot/pkg/networking/util" "istio.io/istio/pilot/pkg/security/authn" pilotcontroller "istio.io/istio/pilot/pkg/serviceregistry/kube/controller" v3 "istio.io/istio/pilot/pkg/xds/v3" "istio.io/istio/pkg/config" analyzerutil "istio.io/istio/pkg/config/analysis/analyzers/util"
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Sat Apr 13 05:23:38 UTC 2024 - 50.4K bytes - Viewed (0) -
cmd/kube-apiserver/app/testing/testserver.go
SkipHealthzCheck bool // Enable cert-auth for the kube-apiserver EnableCertAuth bool // Wrap the storage version interface of the created server's generic server. StorageVersionWrapFunc func(storageversion.Manager) storageversion.Manager // CA file used for requestheader authn during communication between:
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Mon Apr 29 18:59:21 UTC 2024 - 17.6K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/endpoints/filters/authentication_test.go
} }, ) if tc.header { auth.ServeHTTP(httptest.NewRecorder(), &http.Request{Header: map[string][]string{"Authorization": {"Something"}}}) } else { auth.ServeHTTP(httptest.NewRecorder(), &http.Request{}) } assert.Equal(t, 1, called) }) } } func TestAuthenticateRequest(t *testing.T) { success := make(chan struct{}) auth := WithAuthentication(
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Wed Apr 24 18:25:29 UTC 2024 - 20.5K bytes - Viewed (0) -
pilot/pkg/security/authn/policy_applier_test.go
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. // See the License for the specific language governing permissions and // limitations under the License. package authn import ( "reflect" "testing" "time" "github.com/davecgh/go-spew/spew" core "github.com/envoyproxy/go-control-plane/envoy/config/core/v3"
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Dec 01 07:32:22 UTC 2023 - 60.2K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/server/genericapiserver_test.go
} } } // TestNotRestRoutesHaveAuth checks that special non-routes are behind authz/authn. func TestNotRestRoutesHaveAuth(t *testing.T) { config, _ := setUp(t) authz := mockAuthorizer{} config.LegacyAPIGroupPrefixes = sets.NewString("/apiPrefix") config.Authorization.Authorizer = &authz config.EnableIndex = true config.EnableProfiling = true kubeVersion := fakeVersion()
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Mon Apr 29 18:59:21 UTC 2024 - 23.2K bytes - Viewed (0) -
pilot/pkg/xds/mesh_network_test.go
trafficConfigs = append(trafficConfigs, trafficConfig{ Config: config.Config{ Meta: config.Meta{ GroupVersionKind: gvk.PeerAuthentication, Namespace: "istio-system", Name: "peer-authn-mtls-" + name, }, Spec: &v1beta1.PeerAuthentication{ Mtls: &v1beta1.PeerAuthentication_MutualTLS{Mode: mode}, }, }, allowCrossNetwork: mode != v1beta1.PeerAuthentication_MutualTLS_DISABLE,
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Mar 27 16:59:05 UTC 2024 - 24.6K bytes - Viewed (0) -
pkg/config/xds/filter_types.gen.go
_ "github.com/envoyproxy/go-control-plane/ratelimit/service/ratelimit/v3" // Istio-specific Envoy filters _ "istio.io/api/envoy/config/filter/http/alpn/v2alpha1" _ "istio.io/api/envoy/config/filter/http/authn/v2alpha1" _ "istio.io/api/envoy/config/filter/http/jwt_auth/v2alpha1" _ "istio.io/api/envoy/config/filter/network/tcp_cluster_rewrite/v2alpha1"
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Sun Jun 02 02:48:23 UTC 2024 - 26.9K bytes - Viewed (0) -
cmd/kube-controller-manager/app/controllermanager.go
} healthzHandler := controllerhealthz.NewMutableHealthzHandler(checks...) // Start the controller manager HTTP server // unsecuredMux is the handler for these controller *after* authn/authz filters have been applied var unsecuredMux *mux.PathRecorderMux if c.SecureServing != nil { unsecuredMux = genericcontrollermanager.NewBaseHandler(&c.ComponentConfig.Generic.Debugging, healthzHandler)
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Wed May 01 13:03:53 UTC 2024 - 37.5K bytes - Viewed (0)