- Sort Score
- Result 10 results
- Languages All
Results 11 - 20 of 23 for impersonate (0.19 sec)
-
cmd/kubeadm/app/apis/kubeadm/v1beta3/types.go
// UnsafeSkipCAVerification allows token-based discovery // without CA verification via CACertHashes. This can weaken // the security of kubeadm since other nodes can impersonate the control-plane. // +optional UnsafeSkipCAVerification bool `json:"unsafeSkipCAVerification,omitempty"` }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Sat May 11 10:21:20 UTC 2024 - 19.6K bytes - Viewed (0) -
cmd/kubeadm/app/cmd/join.go
the --discovery-token-unsafe-skip-ca-verification flag to disable this verification. This weakens the kubeadm security model since other nodes can potentially impersonate the Kubernetes Control Plane. The TLS bootstrap mechanism is also driven via a shared token. This is used to temporarily authenticate with the Kubernetes Control Plane to submit a
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri Feb 16 15:33:38 UTC 2024 - 25.2K bytes - Viewed (0) -
plugin/pkg/auth/authorizer/rbac/bootstrappolicy/policy.go
rbacv1helpers.NewRule(Read...).Groups(legacyGroup).Resources("pods/attach", "pods/proxy", "pods/exec", "pods/portforward", "secrets", "services/proxy").RuleOrDie(), rbacv1helpers.NewRule("impersonate").Groups(legacyGroup).Resources("serviceaccounts").RuleOrDie(), rbacv1helpers.NewRule(Write...).Groups(legacyGroup).Resources("pods", "pods/attach", "pods/proxy", "pods/exec", "pods/portforward").RuleOrDie(),
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri Mar 08 19:25:10 UTC 2024 - 34.4K bytes - Viewed (0) -
src/os/exec/exec_test.go
if poll.IsPollDescriptor(fd) { continue } if fdtest.Exists(fd) { haveUnexpectedFDs = true return } } } // TestMain allows the test binary to impersonate many other binaries, // some of which may manipulate os.Stdin, os.Stdout, and/or os.Stderr // (and thus cannot run as an ordinary Test function, since the testing // package monkey-patches those variables before running tests).
Registered: Wed Jun 12 16:32:35 UTC 2024 - Last Modified: Fri Jun 07 20:13:53 UTC 2024 - 48.4K bytes - Viewed (0) -
platforms/documentation/docs/src/docs/userguide/optimizing-performance/build-cache/build_cache.adoc
Enabling this option is a security risk, as it allows any cache server to impersonate the intended server. It should only be used as a temporary measure or in very tightly controlled network environments. .Allow untrusted cache server ====
Registered: Wed Jun 12 18:38:38 UTC 2024 - Last Modified: Wed May 15 11:30:10 UTC 2024 - 26.1K bytes - Viewed (0) -
cmd/kubeadm/app/apis/kubeadm/types.go
CACertHashes []string // UnsafeSkipCAVerification allows token-based discovery // without CA verification via CACertHashes. This can weaken // the security of kubeadm since other nodes can impersonate the control-plane. UnsafeSkipCAVerification bool } // FileDiscovery is used to specify a file or URL to a kubeconfig file from which to load cluster information type FileDiscovery struct {
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri May 17 03:12:52 UTC 2024 - 32.6K bytes - Viewed (0) -
cmd/kubeadm/app/apis/kubeadm/v1beta4/types.go
// UnsafeSkipCAVerification allows token-based discovery // without CA verification via CACertHashes. This can weaken // the security of kubeadm since other nodes can impersonate the control-plane. // +optional UnsafeSkipCAVerification bool `json:"unsafeSkipCAVerification,omitempty"` }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri May 17 03:12:52 UTC 2024 - 34.5K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/apis/audit/v1/generated.proto
// For non-resource requests, this is the lower-cased HTTP method. optional string verb = 5; // Authenticated user information. optional .k8s.io.api.authentication.v1.UserInfo user = 6; // Impersonated user information. // +optional optional .k8s.io.api.authentication.v1.UserInfo impersonatedUser = 7; // Source IPs, from where the request originated and intermediate proxies.
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu Mar 28 15:34:11 UTC 2024 - 10.6K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/apis/audit/types.go
// Verb is the kubernetes verb associated with the request. // For non-resource requests, this is the lower-cased HTTP method. Verb string // Authenticated user information. User authnv1.UserInfo // Impersonated user information. // +optional ImpersonatedUser *authnv1.UserInfo // Source IPs, from where the request originated and intermediate proxies. // The source IPs are listed from (in order):
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Tue Oct 03 09:18:23 UTC 2023 - 11.8K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/apis/audit/v1/types.go
Verb string `json:"verb" protobuf:"bytes,5,opt,name=verb"` // Authenticated user information. User authnv1.UserInfo `json:"user" protobuf:"bytes,6,opt,name=user"` // Impersonated user information. // +optional ImpersonatedUser *authnv1.UserInfo `json:"impersonatedUser,omitempty" protobuf:"bytes,7,opt,name=impersonatedUser"` // Source IPs, from where the request originated and intermediate proxies.
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Mon Nov 27 20:24:10 UTC 2023 - 14.5K bytes - Viewed (0)