Search Options

Results per page
Sort
Preferred Languages
Advance

Results 41 - 50 of 226 for Principals (0.32 sec)

  2. github.com/istio/istio

    pilot/pkg/security/authz/builder/testdata/tcp/allow-both-http-tcp-out.yaml 

        policies:
      ns[foo]-policy[httpbin-deny]-rule[3]:
        permissions:
        - andRules:
            rules:
            - orRules:
                rules:
                - destinationPort: 80
        principals:
        - andIds:
            ids:
            - orIds:
                ids:
                - authenticated:
                    principalName:
                      safeRegex:
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Tue Oct 17 16:35:46 UTC 2023
    - 642 bytes
    - Viewed (0)
  3. github.com/istio/istio

    pilot/pkg/security/authz/builder/testdata/http/extended-td-aliases-source-principal-out.yaml 

      rules:
    policies:
      ns[foo]-policy[httpbin]-rule[0]:
        permissions:
        - andRules:
            rules:
            - any: true
        principals:
        - andIds:
            ids:
            - orIds:
                ids:
                - authenticated:
                    principalName:
                      safeRegex:
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Mon Mar 25 10:39:25 UTC 2024
    - 1.2K bytes
    - Viewed (0)
  4. github.com/istio/istio

    pilot/pkg/security/authz/builder/testdata/http/extended-deny-and-allow-out2.yaml 

      rules:
    policies:
      ns[foo]-policy[httpbin-allow]-rule[0]:
        permissions:
        - andRules:
            rules:
            - any: true
        principals:
        - andIds:
            ids:
            - orIds:
                ids:
                - authenticated:
                    principalName:
                      exact: spiffe://allow
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Mon Mar 25 10:39:25 UTC 2024
    - 524 bytes
    - Viewed (0)
  5. github.com/istio/istio

    pilot/pkg/security/authz/builder/testdata/http/extended-allow-nil-rule-out.yaml 

    typedConfig:
  '@type': type.googleapis.com/envoy.extensions.filters.http.rbac.v3.RBAC
  rules:
    policies:
      ns[foo]-policy[allow-none]-rule[0]:
        permissions:
        - notRule:
            any: true
        principals:
        - notId:
            any: true
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Mon Mar 25 10:39:25 UTC 2024
    - 349 bytes
    - Viewed (0)
  6. github.com/istio/istio

    pilot/pkg/security/authz/builder/testdata/http/deny-and-allow-out1.yaml 

      rules:
    action: DENY
    policies:
      ns[foo]-policy[httpbin-deny]-rule[0]:
        permissions:
        - andRules:
            rules:
            - any: true
        principals:
        - andIds:
            ids:
            - orIds:
                ids:
                - authenticated:
                    principalName:
                      exact: spiffe://deny
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Tue Oct 17 16:35:46 UTC 2023
    - 539 bytes
    - Viewed (0)
  7. github.com/istio/istio

    pilot/pkg/security/authz/builder/testdata/http/extended-allow-empty-rule-out.yaml 

      rules:
    policies:
      ns[foo]-policy[allow-all]-rule[0]:
        permissions:
        - andRules:
            rules:
            - any: true
        principals:
        - andIds:
            ids:
            - any: true
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Mon Mar 25 10:39:25 UTC 2024
    - 390 bytes
    - Viewed (0)
  8. github.com/istio/istio

    pilot/pkg/security/authz/builder/testdata/http/extended-dry-run-allow-and-deny-out2.yaml 

            permissions:
        - andRules:
            rules:
            - orRules:
                rules:
                - urlPath:
                    path:
                      exact: /allow
        principals:
        - andIds:
            ids:
            - any: true
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Mon Mar 25 10:39:25 UTC 2024
    - 507 bytes
    - Viewed (0)
  9. github.com/istio/istio

    pilot/pkg/security/authz/builder/testdata/http/multiple-policies-in.yaml 

    ---
apiVersion: security.istio.io/v1beta1
kind: AuthorizationPolicy
metadata:
  name: httpbin-5
  namespace: foo
spec:
  rules:
    - from:
        - source:
            principals: ["principals1", "principals2"]
---
apiVersion: security.istio.io/v1beta1
kind: AuthorizationPolicy
metadata:
  name: httpbin-6
  namespace: foo
spec:
  rules:
    - from:
        - source:
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Thu Apr 01 19:25:01 UTC 2021
    - 2K bytes
    - Viewed (0)
  10. github.com/istio/istio

    pilot/pkg/xds/auth.go 

    	"istio.io/istio/pkg/spiffe"
)

// authenticate authenticates the ADS request using the configured authenticators.
// Returns the validated principals or an error.
// If no authenticators are configured, or if the request is on a non-secure
// stream ( 15010 ) - returns an empty list of principals and no errors.
func (s *DiscoveryServer) authenticate(ctx context.Context) ([]string, error) {
	c, err := security.Authenticate(ctx, s.Authenticators)
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Tue Apr 30 00:26:45 UTC 2024
    - 2.4K bytes
    - Viewed (0)
  11. github.com/istio/istio

    pkg/test/datasets/validation/dataset/security-v1-AuthorizationPolicy.yaml 

    apiVersion: security.istio.io/v1
kind: AuthorizationPolicy
metadata:
 name: authorization-policy
spec:
 selector:
   matchLabels:
     app: httpbin
     version: v1
 rules:
 - from:
   - source:
       principals: ["cluster.local/ns/default/sa/sleep"]
   - source:
       namespaces: ["test"]
   to:
   - operation:
       methods: ["GET"]
       paths: ["/info*"]
   - operation:
       methods: ["POST"]
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Tue Oct 17 07:02:38 UTC 2023
    - 519 bytes
    - Viewed (0)
Back to top