- Sort Score
- Result 10 results
- Languages All
Results 11 - 20 of 81 for wspolicy (0.17 sec)
-
istioctl/pkg/tag/generate_test.go
Go - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Tue Jan 16 17:43:49 GMT 2024 - 12.1K bytes - Viewed (0) -
common-protos/k8s.io/api/authorization/v1beta1/generated.proto
repeated string items = 1; } // LocalSubjectAccessReview checks whether or not a user or group can perform an action in a given namespace. // Having a namespace scoped resource makes it much easier to grant namespace scoped policy that includes permissions // checking. message LocalSubjectAccessReview { // Standard list metadata. // More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
Plain Text - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Mon Mar 11 18:43:24 GMT 2024 - 11.9K bytes - Viewed (0) -
operator/cmd/mesh/testdata/manifest-generate/data-snapshot.tar.gz
be separated from the control plane. ```console helm install -n istio-system istio-ingress manifests/charts/gateways/istio-ingress --set global.jwtPolicy=first-party-jwt ``` Egress secrets and access should be separated from the control plane. ```console helm install -n istio-system istio-egress manifests/charts/gateways/istio-egress --set global.jwtPolicy=first-party-jwt ``` manifests/charts/UPDATING-CHARTS.md # Updating charts and values.yaml ## Acceptable Pull Requests Helm charts `values.yaml`...
Others - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Wed Jan 10 05:10:03 GMT 2024 - 198.1K bytes - Viewed (1) -
istioctl/pkg/authz/listener.go
"istio.io/istio/pkg/log" "istio.io/istio/pkg/wellknown" ) const ( anonymousName = "_anonymous_match_nothing_" ) // Matches the policy name in RBAC filter config with format like ns[default]-policy[some-policy]-rule[1]. var re = regexp.MustCompile(`ns\[(.+)\]-policy\[(.+)\]-rule\[(.+)\]`) type filterChain struct { rbacHTTP []*rbachttp.RBAC rbacTCP []*rbactcp.RBAC } type parsedListener struct {
Go - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Mon Sep 11 15:29:30 GMT 2023 - 6K bytes - Viewed (0) -
common-protos/k8s.io/api/policy/v1/generated.proto
// as pods that have status.conditions item with type="Ready",status="True". // // Valid policies are IfHealthyBudget and AlwaysAllow. // If no policy is specified, the default behavior will be used, // which corresponds to the IfHealthyBudget policy. // // IfHealthyBudget policy means that running pods (status.phase="Running"), // but not yet healthy can be evicted only if the guarded application is not
Plain Text - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Mon Mar 11 18:43:24 GMT 2024 - 8K bytes - Viewed (0) -
manifests/charts/base/templates/validatingadmissionpolicy.yaml
Others - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Mon Apr 29 21:07:45 GMT 2024 - 1.7K bytes - Viewed (0) -
architecture/ambient/peer-authentication.md
```yaml
Plain Text - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Wed Aug 09 22:09:18 GMT 2023 - 3.9K bytes - Viewed (0) -
istioctl/pkg/authz/testdata/configdump.yaml
Others - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Wed Jun 21 14:20:23 GMT 2023 - 206.7K bytes - Viewed (2) -
manifests/charts/README.md
It is strongly recommended that different namespaces are used, with different service accounts. In particular access to the security-critical production components (root CA, policy, control) should be locked down and restricted. The new installer allows multiple instances of policy/control/telemetry - so testing/staging of new settings and versions can be performed by a different role than the prod version.
Plain Text - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Wed Feb 07 17:53:24 GMT 2024 - 6.7K bytes - Viewed (0) -
common-protos/k8s.io/api/networking/v1/generated.proto
// If you want to write an egress-only policy, you must explicitly specify policyTypes [ "Egress" ]. // Likewise, if you want to write a policy that specifies that no egress is allowed, // you must specify a policyTypes value that include "Egress" (since such a policy would not include // an egress section and would otherwise default to just [ "Ingress" ]).
Plain Text - Registered: Wed May 08 22:53:08 GMT 2024 - Last Modified: Mon Mar 11 18:43:24 GMT 2024 - 25.2K bytes - Viewed (0)