- Sort Score
- Result 10 results
- Languages All
Results 81 - 90 of 623 for authorizes (0.23 sec)
-
pilot/pkg/credentials/kube/secrets.go
} log.Debugf("cached authorization for user %s: %v", user, response) s.authorizationCache[key] = authorizationResponse{ expiration: time.Now().Add(expDelta), authorized: response, } } func (s *CredentialsController) Authorize(serviceAccount, namespace string) error { user := sa.MakeUsername(namespace, serviceAccount) if cached, f := s.cachedAuthorization(user); f { return cached }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Feb 23 19:18:21 UTC 2024 - 10K bytes - Viewed (0) -
pilot/pkg/xds/sds.go
var authzResult *bool var authzError error // isAuthorized is a small wrapper around credscontroller.Authorize so we only call it once instead of each time in the loop isAuthorized := func() bool { if authzResult != nil { return *authzResult } res := false if err := secrets.Authorize(proxy.VerifiedIdentity.ServiceAccount, proxy.VerifiedIdentity.Namespace); err == nil { res = true } else {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Apr 15 23:04:36 UTC 2024 - 15.8K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/server/genericapiserver_test.go
} } type mockAuthorizer struct { lastURI string } func (authz *mockAuthorizer) Authorize(ctx context.Context, a authorizer.Attributes) (authorized authorizer.Decision, reason string, err error) { authz.lastURI = a.GetPath() return authorizer.DecisionAllow, "", nil } type testGetterStorage struct { Version string }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Mon Apr 29 18:59:21 UTC 2024 - 23.2K bytes - Viewed (0) -
pkg/kubelet/server/auth.go
authorizer.Authorizer } // NewKubeletAuth returns a kubelet.AuthInterface composed of the given authenticator, attribute getter, and authorizer func NewKubeletAuth(authenticator authenticator.Request, authorizerAttributeGetter authorizer.RequestAttributesGetter, authorizer authorizer.Authorizer) AuthInterface { return &KubeletAuth{authenticator, authorizerAttributeGetter, authorizer} }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Mon Feb 19 18:09:38 UTC 2024 - 4K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/authorization/path/path.go
} else { paths.Insert(p) } } return authorizer.AuthorizerFunc(func(ctx context.Context, a authorizer.Attributes) (authorizer.Decision, string, error) { if a.IsResourceRequest() { return authorizer.DecisionNoOpinion, "", nil } pth := strings.TrimPrefix(a.GetPath(), "/") if paths.Has(pth) { return authorizer.DecisionAllow, "", nil } for _, prefix := range prefixes {
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri Apr 09 13:47:19 UTC 2021 - 1.9K bytes - Viewed (0) -
plugin/pkg/admission/certificates/approval/admission.go
type Plugin struct { *admission.Handler authz authorizer.Authorizer } // SetAuthorizer sets the authorizer. func (p *Plugin) SetAuthorizer(authz authorizer.Authorizer) { p.authz = authz } // ValidateInitialization ensures an authorizer is set. func (p *Plugin) ValidateInitialization() error { if p.authz == nil { return fmt.Errorf("%s requires an authorizer", PluginName) } return nil }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Sat May 16 11:54:27 UTC 2020 - 3.2K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/admission/plugin/cel/interface.go
VersionedParams runtime.Object // Authorizer provides the authorizer used for the "authorizer" and // "authorizer.requestResource" variable bindings. If the expression was compiled with // OptionalVariableDeclarations.HasAuthorizer set to true this must be non-nil. Authorizer authorizer.Authorizer } // Filter contains a function to evaluate compiled CEL-typed values
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri May 10 22:07:40 UTC 2024 - 3.9K bytes - Viewed (0) -
pkg/registry/rbac/role/policybased/storage.go
type Storage struct { rest.StandardStorage authorizer authorizer.Authorizer ruleResolver rbacregistryvalidation.AuthorizationRuleResolver } func NewStorage(s rest.StandardStorage, authorizer authorizer.Authorizer, ruleResolver rbacregistryvalidation.AuthorizationRuleResolver) *Storage { return &Storage{s, authorizer, ruleResolver} } // Destroy cleans up resources on shutdown.
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri Nov 18 10:11:16 UTC 2022 - 3.9K bytes - Viewed (0) -
pkg/registry/authorization/util/helpers.go
"k8s.io/apiserver/pkg/authorization/authorizer" authorizationapi "k8s.io/kubernetes/pkg/apis/authorization" ) // ResourceAttributesFrom combines the API object information and the user.Info from the context to build a full authorizer.AttributesRecord for resource access func ResourceAttributesFrom(user user.Info, in authorizationapi.ResourceAttributes) authorizer.AttributesRecord { return authorizer.AttributesRecord{ User: user,
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Tue Apr 25 16:06:18 UTC 2023 - 2.8K bytes - Viewed (0) -
pkg/registry/authorization/rest/storage_authorization.go
) type RESTStorageProvider struct { Authorizer authorizer.Authorizer RuleResolver authorizer.RuleResolver } func (p RESTStorageProvider) NewRESTStorage(apiResourceConfigSource serverstorage.APIResourceConfigSource, restOptionsGetter generic.RESTOptionsGetter) (genericapiserver.APIGroupInfo, error) { if p.Authorizer == nil { return genericapiserver.APIGroupInfo{}, nil }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Wed Feb 23 18:36:33 UTC 2022 - 3.4K bytes - Viewed (0)