- Sort Score
- Result 10 results
- Languages All
Results 31 - 40 of 59 for sectre (0.17 sec)
-
manifests/charts/istiod-remote/templates/clusterrole.yaml
verbs: ["update", "patch"] - apiGroups: ["gateway.networking.k8s.io"] resources: ["gatewayclasses"] verbs: ["create", "update", "patch", "delete"] # Needed for multicluster secret reading, possibly ingress certs in the future - apiGroups: [""] resources: ["secrets"] verbs: ["get", "watch", "list"] # Used for MCS serviceexport management - apiGroups: ["{{ $mcsAPIGroup }}"]
Others - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Fri Apr 12 16:44:32 GMT 2024 - 5.8K bytes - Viewed (0) -
common-protos/k8s.io/api/authentication/v1/generated.proto
option go_package = "k8s.io/api/authentication/v1"; // BoundObjectReference is a reference to an object that a token is bound to. message BoundObjectReference { // Kind of the referent. Valid kinds are 'Pod' and 'Secret'. // +optional optional string kind = 1; // API version of the referent. // +optional optional string apiVersion = 2; // Name of the referent. // +optional optional string name = 3;
Plain Text - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Mon Mar 11 18:43:24 GMT 2024 - 6.7K bytes - Viewed (0) -
manifests/charts/istiod-remote/files/gateway-injection-template.yaml
configMap: name: istio-ca-root-cert {{- end }} {{- if .Values.global.mountMtlsCerts }} # Use the key and cert mounted to /etc/certs/ for the in-cluster mTLS communications. - name: istio-certs secret: optional: true {{ if eq .Spec.ServiceAccountName "" }} secretName: istio.default {{ else -}} secretName: {{ printf "istio.%s" .Spec.ServiceAccountName }} {{ end -}}
Others - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Tue Feb 27 16:55:16 GMT 2024 - 8.6K bytes - Viewed (0) -
manifests/charts/istiod-remote/files/injection-template.yaml
configMap: name: kube-root-ca.crt {{- end }} {{- if .Values.global.mountMtlsCerts }} # Use the key and cert mounted to /etc/certs/ for the in-cluster mTLS communications. - name: istio-certs secret: optional: true {{ if eq .Spec.ServiceAccountName "" }} secretName: istio.default {{ else -}} secretName: {{ printf "istio.%s" .Spec.ServiceAccountName }} {{ end -}}
Others - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Fri Apr 26 16:51:17 GMT 2024 - 23.7K bytes - Viewed (0) -
manifests/charts/istio-control/istio-discovery/files/injection-template.yaml
configMap: name: kube-root-ca.crt {{- end }} {{- if .Values.global.mountMtlsCerts }} # Use the key and cert mounted to /etc/certs/ for the in-cluster mTLS communications. - name: istio-certs secret: optional: true {{ if eq .Spec.ServiceAccountName "" }} secretName: istio.default {{ else -}} secretName: {{ printf "istio.%s" .Spec.ServiceAccountName }} {{ end -}}
Others - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Fri Apr 26 16:51:17 GMT 2024 - 23.7K bytes - Viewed (1) -
istioctl/pkg/util/configdump/secret.go
} // GetRootCAFromSecretConfigDump retrieves root CA from a secret config dump wrapper func (w *Wrapper) GetRootCAFromSecretConfigDump(anySec *anypb.Any) (string, error) { var secret extapi.Secret if err := anySec.UnmarshalTo(&secret); err != nil { return "", fmt.Errorf("failed to unmarshall ROOTCA secret: %v", err) } var returnStr string var returnErr error rCASecret := secret.GetValidationContext() if rCASecret != nil {
Go - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Sat Feb 25 04:09:53 GMT 2023 - 2.2K bytes - Viewed (0) -
istioctl/pkg/writer/compare/sds/writer_test.go
expected []string unexpected []string }{ { name: "test tabular output with no secret items is equivalent to the header", format: TABULAR, items: []SecretItem{}, expected: []string{}, unexpected: secretItemColumns, }, { name: "test tabular output with a single secret item", format: TABULAR, items: []SecretItem{ { Name: "olinger",
Go - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Fri May 29 20:42:01 GMT 2020 - 4.9K bytes - Viewed (0) -
istioctl/pkg/writer/envoy/configdump/testdata/secret/config_dump.json
"dynamic_active_secrets": [ { "name": "default", "last_updated": "2023-05-15T01:32:52.262Z", "secret": { "@type": "type.googleapis.com/envoy.extensions.transport_sockets.tls.v3.Secret", "name": "default", "tls_certificate": { "certificate_chain": {
Json - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Tue Jun 06 15:14:48 GMT 2023 - 5.4K bytes - Viewed (0) -
istioctl/pkg/proxyconfig/testdata/config_dump_summary.txt
RESOURCE NAME TYPE STATUS VALID CERT SERIAL NUMBER NOT AFTER NOT BEFORE secret/default Cert Chain ACTIVE false 6fbee254c22900615cb1f74e3d2f1713 2023-05-16T01:32:52Z 2023-05-15T01:30:52Z secret/ROOTCA CA ACTIVE true 193a543fe2b0d9cd4847675394dfc54 2033-05-02T03:41:33Z 2023-05-05T03:41:33Z
Plain Text - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Wed Jan 03 23:08:06 GMT 2024 - 2.2K bytes - Viewed (0) -
architecture/security/istio-agent.md
when a certificate is near expiration (configurable by `SECRET_GRACE_PERIOD_RATIO`, defaulting to half of the expiration). If the SDS server is still interested in this certificate (ie, Envoy is still connected and requesting the certificate), the SDS server will send another request to generate a new secret and push the updated certificate to Envoy. This ensures that we do not permanently watch certificates even after
Plain Text - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Tue Aug 22 16:45:50 GMT 2023 - 7.2K bytes - Viewed (1)