- Sort Score
- Result 10 results
- Languages All
Results 61 - 70 of 390 for mtls (0.04 sec)
-
pilot/pkg/model/authentication.go
) // MutualTLSMode is the mutual TLS mode specified by authentication policy. type MutualTLSMode int const ( // MTLSUnknown is used to indicate the variable hasn't been initialized correctly (with the authentication policy). MTLSUnknown MutualTLSMode = iota // MTLSDisable if authentication policy disable mTLS. MTLSDisable // MTLSPermissive if authentication policy enable mTLS in permissive mode. MTLSPermissive
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Apr 17 22:20:44 UTC 2024 - 10.1K bytes - Viewed (0) -
manifests/addons/dashboards/istio-workload-dashboard.json
"format": "time_series", "intervalFactor": 1, "legendFormat": "{{ source_workload }}.{{ source_workload_namespace }} : {{ response_code }} (🔐mTLS)", "refId": "A", "step": 2 }, { "datasource": { "type": "prometheus", "uid": "${datasource}" },
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Mar 27 03:47:04 UTC 2024 - 102.7K bytes - Viewed (0) -
tests/integration/security/sds_ingress/quic/ingress_test.go
ingressutil.RunTestMultiQUICGateways(t, inst, ingressutil.TLS, namespace.Future(&echo1NS)) }) }) } // TestMtlsGatewaysWithQUIC deploys multiple mTLS gateways with SDS enabled, and creates kubernetes that store // private key, server certificate and CA certificate for each mTLS gateway. Verifies that client can communicate // by using both QUIC and TCP/mTLS func TestMtlsGatewaysWithQUIC(t *testing.T) { // nolint: staticcheck
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Apr 08 22:02:59 UTC 2024 - 3.6K bytes - Viewed (0) -
pilot/pkg/security/authn/utils/utils.go
// Compliance for downstream mesh mTLS. authn_model.EnforceCompliance(ctx.CommonTlsContext) return ctx } // GetMinTLSVersion returns the minimum TLS version for workloads based on the mesh config. func GetMinTLSVersion(ver meshconfig.MeshConfig_TLSConfig_TLSProtocol) tls.TlsParameters_TlsProtocol { switch ver { case meshconfig.MeshConfig_TLSConfig_TLSV1_3: return tls.TlsParameters_TLSv1_3 default:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Feb 23 00:16:21 UTC 2024 - 3.8K bytes - Viewed (0) -
tests/integration/security/reachability_test.go
expectCrossNetwork: never, expectSuccess: always, }, // --------start of auto mtls partial test cases --------------- // The follow three consecutive test together ensures the auto mtls works as intended // for sidecar migration scenario. { name: "migration no tls", configs: config.Sources{ config.File("testdata/reachability/global-peer-authn.yaml.tmpl"),
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu May 02 21:29:40 UTC 2024 - 20.6K bytes - Viewed (0) -
pilot/pkg/security/authn/policy_applier.go
} } } return outputPolicy } func isMtlsModeUnset(mtls *v1beta1.PeerAuthentication_MutualTLS) bool { return mtls == nil || mtls.Mode == v1beta1.PeerAuthentication_MutualTLS_UNSET
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Feb 23 09:47:21 UTC 2024 - 19.2K bytes - Viewed (0) -
releasenotes/notes/35111.yaml
apiVersion: release-notes/v2 kind: feature area: security issue: - https://github.com/istio/istio/issues/35111 releaseNotes: - | **Added** TLS settings to the sidecar API in order to enable TLS/mTLS termination on the sidecar proxy for requests coming from outside the mesh. docs: - https://docs.google.com/document/d/15Qhr7errbylXEzxxCK7ij_oUpn4E5SFU2uDdl_n2GIc/edit#heading=h.h3lxcxfhqndp securityNotes: - |
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Jan 14 00:19:57 UTC 2022 - 580 bytes - Viewed (0) -
tests/integration/security/sds_ingress/util/util.go
) const ( // The ID/name for the certificate chain in kubernetes tls secret. tlsScrtCert = "tls.crt" // The ID/name for the k8sKey in kubernetes tls secret. tlsScrtKey = "tls.key" // The ID/name for the CA certificate in kubernetes tls secret tlsScrtCaCert = "ca.crt" // The ID/name for the CRL in kubernetes tls secret tlsScrtCaCrl = "ca.crl"
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue Jul 25 05:12:36 UTC 2023 - 20.2K bytes - Viewed (0) -
pilot/pkg/serviceregistry/serviceentry/conversion_test.go
makeInstance(httpStatic, "2.2.2.2", 18080, httpStatic.Spec.(*networking.ServiceEntry).Ports[1], nil, MTLS), makeInstance(httpStatic, "3.3.3.3", 1080, httpStatic.Spec.(*networking.ServiceEntry).Ports[0], nil, MTLS), makeInstance(httpStatic, "3.3.3.3", 8080, httpStatic.Spec.(*networking.ServiceEntry).Ports[1], nil, MTLS),
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu May 23 21:07:03 UTC 2024 - 39K bytes - Viewed (0) -
tests/integration/security/egress_gateway_origination_test.go
var ( credNameGeneric = "mtls-credential-generic" credNameNotGeneric = "mtls-credential-not-generic" fakeCredNameA = "fake-mtls-credential-a" credNameMissing = "mtls-credential-not-created" simpleCredName = "tls-credential-simple-cacert" credWithCRL = "mtls-credential-crl" credWithDummyCRL = "mtls-credential-dummy-crl" )
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Apr 08 22:02:59 UTC 2024 - 15.4K bytes - Viewed (0)