own CA and for the CA of a Keycloak server, a Kubernetes secret can be created from the certificate files using `kubectl`: ``` kubectl -n minio create secret generic minio-trusted-certs --from-file=public.crt --from-file=keycloak.crt ``` If TLS is not enabled, you would need only the third party CA: ``` kubectl -n minio create secret generic minio-trusted-certs --from-file=keycloak.crt ``` The name of the generated secret can then be passed to Helm using a values file or the `--set` parameter: ```...

        synchronized (this.sidCache) {
            try (DcerpcHandle handle = DcerpcHandle.getHandle("ncacn_np:" + server + "[\\PIPE\\lsarpc]", tc)) {
                // NetApp doesn't like the 'generic' access mask values
                try (LsaPolicyHandle policyHandle = new LsaPolicyHandle(handle, null, 0x00000001)) {

    //                                                                           =========
    /**
     * Gets the current user bean from the session.
     * This method returns the concrete FessUserBean class instead of the generic type.
     *
     * @return an optional containing the current user bean, or empty if not logged in
     */
    @Override
    protected OptionalThing<FessUserBean> getUserBean() { // to return as concrete class

			maxErr = err
		}
	}
	return maxCnt, maxErr
}

// reduceQuorumErrs behaves like reduceErrs by only for returning
// values of maximally occurring errors validated against a generic
// quorum number that can be read or write quorum depending on usage.
func reduceQuorumErrs(ctx context.Context, errs []error, ignoredErrs []error, quorum int, quorumErr error) error {
	if contextCanceled(ctx) {

import com.google.common.testing.SerializableTester;
import java.lang.reflect.Method;
import java.util.List;
import java.util.concurrent.CopyOnWriteArrayList;
import org.junit.Ignore;

/**
 * A generic JUnit test which tests {@code subList()} operations on a list. Can't be invoked
 * directly; please see {@link com.google.common.collect.testing.ListTestSuiteBuilder}.
 *
 * @author Chris Povirk
 */
@GwtCompatible

    }

    /**
     * Test decode with unknown AvPair type
     */
    @Test
    @DisplayName("Decode unknown AvPair type as generic AvPair")
    void testDecodeUnknownType() throws CIFSException {
        byte[] data = new byte[] { 0x01, 0x02, 0x03, 0x04 };
        int unknownType = 0xFF;
        byte[] avPairData = createAvPairData(unknownType, data);

		return
	}

	dnList := r.Form["userDNs"]
	isAll := r.Form.Get("all") == "true"
	selfOnly := !isAll && len(dnList) == 0

	if isAll && len(dnList) > 0 {
		// This should be checked on client side, so return generic error
		writeErrorResponseJSON(ctx, w, errorCodes.ToAPIErr(ErrInvalidRequest), r.URL)
		return
	}

	// Empty DN list and not self, list access keys for all users
	if isAll {

      Class<X> exceptionType, ClosingFunction<? super X, ? extends V> fallback, Executor executor) {
    return catchingMoreGeneric(exceptionType, fallback, executor);
  }

  // Avoids generic type capture inconsistency problems where |? extends V| is incompatible with V.
  private <X extends Throwable, W extends V> ClosingFuture<V> catchingMoreGeneric(

                        java.lang.reflect.Modifier.isStatic(method.getModifiers()));
            }
        }
    }

    public void test_generic_type_safety() {
        // Test generic type safety of getObject method
        // Since we're in test environment without request context, this will return null
        String stringResult = WebApiUtil.getObject("testString");

#### Cryptographic Primitives

The SSE schemes described in [Secret Keys](#Secret-Keys) and [Content Encryption](#Content-Encryption) are generic over the cryptographic primitives. However, the MinIO server uses the following cryptographic primitive implementations:

- [PRF](#prf): HMAC-SHA-256