- Sort Score
- Result 10 results
- Languages All
Results 21 - 30 of 79 for PERMISSIVE (0.24 sec)
-
pilot/pkg/networking/core/peer_authentication_simulation_test.go
mode: DISABLE ---` paPermissive := ` apiVersion: security.istio.io/v1beta1 kind: PeerAuthentication metadata: name: default spec: selector: matchLabels: app: foo mtls: mode: PERMISSIVE ---` paStrictWithDisableOnPort9000 := ` apiVersion: security.istio.io/v1beta1 kind: PeerAuthentication metadata: name: default spec: selector: matchLabels: app: foo mtls:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 01:56:28 UTC 2024 - 16.2K bytes - Viewed (0) -
releasenotes/notes/protocol-detection-timeout.yaml
releaseNotes: - | **Removed** the protocol detection timeout by default, reducing traffic failures during slow connections. upgradeNotes: - title: Protocol Detection Timeout Changes content: | In order to support permissive mTLS traffic as well as [automatic protocol detection](istio.io/latest/docs/ops/configuration/traffic-management/protocol-selection/#automatic-protocol-selection),
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Oct 21 00:53:45 UTC 2020 - 1.6K bytes - Viewed (0) -
pilot/pkg/model/authentication.go
MTLSUnknown MutualTLSMode = iota // MTLSDisable if authentication policy disable mTLS. MTLSDisable // MTLSPermissive if authentication policy enable mTLS in permissive mode. MTLSPermissive // MTLSStrict if authentication policy enable mTLS in strict mode. MTLSStrict ) // In Ambient, we convert k8s PeerAuthentication resources to the same type as AuthorizationPolicies
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Apr 17 22:20:44 UTC 2024 - 10.1K bytes - Viewed (0) -
pilot/pkg/networking/grpcgen/lds.go
// replacement for permissive. mode = model.MTLSDisable } var out []*listener.FilterChain switch mode { case model.MTLSDisable: out = append(out, buildInboundFilterChain(node, push, "plaintext", nil)) case model.MTLSStrict: out = append(out, buildInboundFilterChain(node, push, "mtls", tlsContext))
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Apr 17 22:20:44 UTC 2024 - 14.6K bytes - Viewed (0) -
pilot/pkg/security/authn/utils/utils.go
if features.DisableMxALPN { ctx.CommonTlsContext.AlpnProtocols = util.ALPNDownstream } else { ctx.CommonTlsContext.AlpnProtocols = util.ALPNDownstreamWithMxc } } else { // Note that in the PERMISSIVE mode, we match filter chain on "istio" ALPN, // which is used to differentiate between service mesh and legacy traffic. // // Client sidecar outbound cluster's TLSContext.ALPN must include "istio". //
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Feb 23 00:16:21 UTC 2024 - 3.8K bytes - Viewed (0) -
pilot/pkg/serviceregistry/kube/controller/ambient/authorization.go
Name: workloadCfg.Name, Kind: kind.PeerAuthentication, Namespace: workloadCfg.Namespace, }) } } else { // Permissive mesh or namespace policy isEffectiveStrictPolicy = false // any ports that aren't specified will be PERMISSIVE so this workload isn't effectively under a STRICT policy foundStrict := false for _, portMtls := range workloadSpec.PortLevelMtls {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Apr 15 16:23:36 UTC 2024 - 18.4K bytes - Viewed (0) -
fastapi/security/oauth2.py
Registered: Mon Jun 17 08:32:26 UTC 2024 - Last Modified: Tue Apr 02 02:48:51 UTC 2024 - 21.1K bytes - Viewed (0) -
platforms/core-execution/workers/src/integTest/groovy/org/gradle/workers/internal/WorkerExecutorJdkVersionsIntegrationTest.groovy
Registered: Wed Jun 12 18:38:38 UTC 2024 - Last Modified: Fri Sep 22 09:36:27 UTC 2023 - 4.3K bytes - Viewed (0) -
tests/integration/security/reachability_test.go
expectCrossCluster: notFromNaked, expectCrossNetwork: notNaked, expectSuccess: notNaked, minIstioVersion: integIstioVersion, }, { name: "global mtls permissive", configs: config.Sources{ config.File("testdata/reachability/global-peer-authn.yaml.tmpl"), config.File("testdata/reachability/global-dr.yaml.tmpl"), }.WithParams(param.Params{
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu May 02 21:29:40 UTC 2024 - 20.6K bytes - Viewed (0) -
subprojects/core/src/main/java/org/gradle/api/internal/artifacts/configurations/ConfigurationRoles.java
/** * Meant as a temporary solution for situations where we need to declare dependencies against a consumable configuration. * * This <strong>SHOULD NOT</strong> be necessary, and is a symptom of an over-permissive configuration. */ @Deprecated public static final ConfigurationRole CONSUMABLE_DEPENDENCY_SCOPE = createNonDeprecatedRole("Consumable Dependency Scope", true, false, true); /**
Registered: Wed Jun 12 18:38:38 UTC 2024 - Last Modified: Wed Jul 12 16:55:27 UTC 2023 - 4.4K bytes - Viewed (0)