- Sort Score
- Result 10 results
- Languages All
Results 41 - 50 of 226 for Principals (0.32 sec)
-
pilot/pkg/security/authz/builder/testdata/tcp/allow-both-http-tcp-out.yaml
policies: ns[foo]-policy[httpbin-deny]-rule[3]: permissions: - andRules: rules: - orRules: rules: - destinationPort: 80 principals: - andIds: ids: - orIds: ids: - authenticated: principalName: safeRegex:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue Oct 17 16:35:46 UTC 2023 - 642 bytes - Viewed (0) -
pilot/pkg/security/authz/builder/testdata/http/extended-td-aliases-source-principal-out.yaml
rules: policies: ns[foo]-policy[httpbin]-rule[0]: permissions: - andRules: rules: - any: true principals: - andIds: ids: - orIds: ids: - authenticated: principalName: safeRegex:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Mar 25 10:39:25 UTC 2024 - 1.2K bytes - Viewed (0) -
pilot/pkg/security/authz/builder/testdata/http/extended-deny-and-allow-out2.yaml
rules: policies: ns[foo]-policy[httpbin-allow]-rule[0]: permissions: - andRules: rules: - any: true principals: - andIds: ids: - orIds: ids: - authenticated: principalName: exact: spiffe://allow
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Mar 25 10:39:25 UTC 2024 - 524 bytes - Viewed (0) -
pilot/pkg/security/authz/builder/testdata/http/extended-allow-nil-rule-out.yaml
typedConfig: '@type': type.googleapis.com/envoy.extensions.filters.http.rbac.v3.RBAC rules: policies: ns[foo]-policy[allow-none]-rule[0]: permissions: - notRule: any: true principals: - notId: any: true
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Mar 25 10:39:25 UTC 2024 - 349 bytes - Viewed (0) -
pilot/pkg/security/authz/builder/testdata/http/deny-and-allow-out1.yaml
rules: action: DENY policies: ns[foo]-policy[httpbin-deny]-rule[0]: permissions: - andRules: rules: - any: true principals: - andIds: ids: - orIds: ids: - authenticated: principalName: exact: spiffe://deny
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue Oct 17 16:35:46 UTC 2023 - 539 bytes - Viewed (0) -
pilot/pkg/security/authz/builder/testdata/http/extended-allow-empty-rule-out.yaml
rules: policies: ns[foo]-policy[allow-all]-rule[0]: permissions: - andRules: rules: - any: true principals: - andIds: ids: - any: true
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Mar 25 10:39:25 UTC 2024 - 390 bytes - Viewed (0) -
pilot/pkg/security/authz/builder/testdata/http/extended-dry-run-allow-and-deny-out2.yaml
permissions: - andRules: rules: - orRules: rules: - urlPath: path: exact: /allow principals: - andIds: ids: - any: true
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Mar 25 10:39:25 UTC 2024 - 507 bytes - Viewed (0) -
pilot/pkg/security/authz/builder/testdata/http/multiple-policies-in.yaml
--- apiVersion: security.istio.io/v1beta1 kind: AuthorizationPolicy metadata: name: httpbin-5 namespace: foo spec: rules: - from: - source: principals: ["principals1", "principals2"] --- apiVersion: security.istio.io/v1beta1 kind: AuthorizationPolicy metadata: name: httpbin-6 namespace: foo spec: rules: - from: - source:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Apr 01 19:25:01 UTC 2021 - 2K bytes - Viewed (0) -
pilot/pkg/xds/auth.go
"istio.io/istio/pkg/spiffe" ) // authenticate authenticates the ADS request using the configured authenticators. // Returns the validated principals or an error. // If no authenticators are configured, or if the request is on a non-secure // stream ( 15010 ) - returns an empty list of principals and no errors. func (s *DiscoveryServer) authenticate(ctx context.Context) ([]string, error) { c, err := security.Authenticate(ctx, s.Authenticators)
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue Apr 30 00:26:45 UTC 2024 - 2.4K bytes - Viewed (0) -
pkg/test/datasets/validation/dataset/security-v1-AuthorizationPolicy.yaml
apiVersion: security.istio.io/v1 kind: AuthorizationPolicy metadata: name: authorization-policy spec: selector: matchLabels: app: httpbin version: v1 rules: - from: - source: principals: ["cluster.local/ns/default/sa/sleep"] - source: namespaces: ["test"] to: - operation: methods: ["GET"] paths: ["/info*"] - operation: methods: ["POST"]
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue Oct 17 07:02:38 UTC 2023 - 519 bytes - Viewed (0)