- Sort Score
- Result 10 results
- Languages All
Results 11 - 20 of 103 for peerAuthentication (0.2 sec)
-
pilot/pkg/serviceregistry/kube/controller/ambient/ambientindex_test.go
Kind: kind.PeerAuthentication, Name: selectorPolicyName, Namespace: "ns1", }))}) // Add global selector policy; nothing should happen since PeerAuthentication doesn't support global mesh wide selectors s.addPolicy(t, "global-selector", systemNS, map[string]string{"app": "a"}, gvk.PeerAuthentication, func(c controllers.Object) {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed May 08 01:04:50 UTC 2024 - 70.2K bytes - Viewed (0) -
tests/integration/ambient/testdata/beta-mtls-permissive.yaml
# Global PeerAuthentication can be removed for this test, once we remove the (alpha) mesh policy # during installation. apiVersion: security.istio.io/v1beta1 kind: PeerAuthentication metadata: name: "default" annotations: test-suite: "beta-mtls-permissive" spec: mtls: mode: PERMISSIVE --- apiVersion: networking.istio.io/v1alpha3 kind: DestinationRule metadata: name: "default" annotations:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Feb 16 18:55:23 UTC 2023 - 524 bytes - Viewed (0) -
pilot/pkg/serviceregistry/kube/controller/ambient/authorization.go
// [static STRICT policy, port-level STRICT policy] based on the effective PeerAuthentication policy func convertedSelectorPeerAuthentications(rootNamespace string, configs []*securityclient.PeerAuthentication) []string { var meshCfg, namespaceCfg, workloadCfg *securityclient.PeerAuthentication for _, cfg := range configs { spec := &cfg.Spec if spec.Selector == nil || len(spec.Selector.MatchLabels) == 0 {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Apr 15 16:23:36 UTC 2024 - 18.4K bytes - Viewed (0) -
pkg/config/schema/kind/resources.gen.go
return "MeshNetworks" case MutatingWebhookConfiguration: return "MutatingWebhookConfiguration" case Namespace: return "Namespace" case Node: return "Node" case PeerAuthentication: return "PeerAuthentication" case Pod: return "Pod" case ProxyConfig: return "ProxyConfig" case ReferenceGrant: return "ReferenceGrant" case RequestAuthentication: return "RequestAuthentication"
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue Feb 27 07:19:38 UTC 2024 - 4.9K bytes - Viewed (0) -
tests/integration/ambient/testdata/beta-mtls-automtls-workload.yaml
apiVersion: security.istio.io/v1beta1 kind: PeerAuthentication metadata: name: "a-disable" annotations: test-suite: "beta-mtls-automtls-workload" spec: selector: matchLabels: app: a mtls: mode: DISABLE --- apiVersion: security.istio.io/v1beta1 kind: PeerAuthentication metadata: name: "b-strict" annotations: test-suite: "beta-mtls-automtls-workload" spec: selector: matchLabels:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Feb 16 18:55:23 UTC 2023 - 560 bytes - Viewed (0) -
pkg/config/schema/kubetypes/resources.gen.go
case *k8sioapicorev1.Namespace: return gvk.Namespace, true case *k8sioapicorev1.Node: return gvk.Node, true case *istioioapisecurityv1beta1.PeerAuthentication: return gvk.PeerAuthentication, true case *apiistioioapisecurityv1beta1.PeerAuthentication: return gvk.PeerAuthentication, true case *k8sioapicorev1.Pod: return gvk.Pod, true case *istioioapinetworkingv1beta1.ProxyConfig: return gvk.ProxyConfig, true
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Apr 17 16:38:40 UTC 2024 - 6.2K bytes - Viewed (0) -
pilot/pkg/serviceregistry/kube/controller/ambient/workloads.go
func fetchPeerAuthentications( ctx krt.HandlerContext, PeerAuths krt.Collection[*securityclient.PeerAuthentication], meshCfg *MeshConfig, ns string, matchLabels map[string]string, ) []*securityclient.PeerAuthentication { return krt.Fetch(ctx, PeerAuths, krt.FilterGeneric(func(a any) bool { pol := a.(*securityclient.PeerAuthentication) if pol.Namespace == meshCfg.GetRootNamespace() && pol.Spec.Selector == nil { return true
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 16:51:29 UTC 2024 - 20.9K bytes - Viewed (0) -
pilot/pkg/xds/endpoints/ep_filters_test.go
IsMtlsDisabled bool SubsetName string }{ gvk.PeerAuthentication.String(): { "mtls-off-ineffective": { Config: config.Config{ Meta: config.Meta{ GroupVersionKind: gvk.PeerAuthentication, Name: "mtls-partial", Namespace: "istio-system", }, Spec: &security.PeerAuthentication{ Selector: &v1beta1.WorkloadSelector{
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed May 29 01:17:58 UTC 2024 - 26.8K bytes - Viewed (0) -
pilot/pkg/serviceregistry/kube/controller/ambient/testdata/peer-authn-strict-and-strict-port-mtls-in.yaml
apiVersion: security.istio.io/v1beta1 kind: PeerAuthentication metadata: name: strict-mtls spec: selector: matchLabels: app: a mtls: mode: STRICT portLevelMtls: 8080:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Feb 29 18:40:34 UTC 2024 - 213 bytes - Viewed (0) -
pilot/pkg/serviceregistry/kube/controller/ambient/testdata/peer-authn-strict-and-disable-port-mtls-in.yaml
apiVersion: security.istio.io/v1beta1 kind: PeerAuthentication metadata: name: strict-and-disable-mtls spec: selector: matchLabels: app: a mtls: mode: STRICT portLevelMtls: 9090:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Feb 29 18:40:34 UTC 2024 - 225 bytes - Viewed (0)