- Sort Score
- Result 10 results
- Languages All
Results 61 - 70 of 411 for audiences (0.17 sec)
-
pilot/pkg/security/authn/policy_applier.go
outterOrList := []*envoy_jwt.JwtRequirement{} for i, jwtRule := range jwtRules { provider := &envoy_jwt.JwtProvider{ Issuer: jwtRule.Issuer, Audiences: jwtRule.Audiences, Forward: jwtRule.ForwardOriginalToken, ForwardPayloadHeader: jwtRule.OutputPayloadToHeader, PayloadInMetadata: jwtRule.Issuer, } if useExtendedJwt {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Feb 23 09:47:21 UTC 2024 - 19.2K bytes - Viewed (0) -
pkg/config/security/security.go
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Jun 07 04:43:34 UTC 2024 - 9.4K bytes - Viewed (0) -
pkg/volume/projected/projected_test.go
tr := action.(clitesting.CreateAction).GetObject().(*authenticationv1.TokenRequest) scheme.Default(tr) if len(tr.Spec.Audiences) == 0 { tr.Spec.Audiences = []string{"https://api"} } tr.Status.Token = fmt.Sprintf("%v:%v:%d:%v", action.GetNamespace(), "foo", *tr.Spec.ExpirationSeconds, tr.Spec.Audiences) return true, tr, nil })) tempDir, host := newTestHost(t, client) defer os.RemoveAll(tempDir)
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri Nov 03 18:40:48 UTC 2023 - 40.5K bytes - Viewed (0) -
pkg/volume/projected/projected.go
mode = 0600 } var auds []string if len(tp.Audience) != 0 { auds = []string{tp.Audience} } tr, err := s.plugin.getServiceAccountToken(s.pod.Namespace, s.pod.Spec.ServiceAccountName, &authenticationv1.TokenRequest{ Spec: authenticationv1.TokenRequestSpec{ Audiences: auds, ExpirationSeconds: tp.ExpirationSeconds,
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Tue May 14 06:17:25 UTC 2024 - 12.8K bytes - Viewed (0) -
pkg/volume/csi/csi_mounter_test.go
tr := action.(clitesting.CreateAction).GetObject().(*authenticationv1.TokenRequest) scheme.Default(tr) if len(tr.Spec.Audiences) == 0 { tr.Spec.Audiences = []string{"api"} } tr.Status.Token = fmt.Sprintf("%v:%v:%d:%v", action.GetNamespace(), testAccount, *tr.Spec.ExpirationSeconds, tr.Spec.Audiences) tr.Status.ExpirationTimestamp = meta.NewTime(time.Unix(1, 1)) return true, tr, nil }))
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Wed Apr 24 18:25:29 UTC 2024 - 50.1K bytes - Viewed (0) -
pilot/pkg/security/authz/model/model.go
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Mar 25 10:39:25 UTC 2024 - 13.8K bytes - Viewed (0) -
pkg/kube/client.go
}) } return g.Wait() } func (c *client) CreatePerRPCCredentials(_ context.Context, tokenNamespace, tokenServiceAccount string, audiences []string, expirationSeconds int64, ) (credentials.PerRPCCredentials, error) { return NewRPCCredentials(c, tokenNamespace, tokenServiceAccount, audiences, expirationSeconds, 60) } func (c *client) UtilFactory() PartialFactory { return c.clientFactory }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Apr 25 14:44:17 UTC 2024 - 39K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/apis/apiserver/types.go
// Required to be unique across all JWT authenticators. // Note that egress selection configuration is not used for this network connection. // +optional DiscoveryURL string CertificateAuthority string Audiences []string AudienceMatchPolicy AudienceMatchPolicyType } // AudienceMatchPolicyType is a set of valid values for Issuer.AudienceMatchPolicy type AudienceMatchPolicyType string
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Mon Mar 04 00:57:24 UTC 2024 - 14.2K bytes - Viewed (0) -
pkg/serviceaccount/jwt_test.go
Client: nil, Keys: []interface{}{getPublicKey(ecdsaPublicKey)}, ExpectedErr: false, ExpectedOK: false, }, } for k, tc := range testCases { auds := authenticator.Audiences{"api"} getter := serviceaccountcontroller.NewGetterFromClient( tc.Client, v1listers.NewSecretLister(newIndexer(func(namespace, name string) (interface{}, error) {
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Tue Feb 27 22:16:08 UTC 2024 - 17K bytes - Viewed (0) -
pilot/pkg/bootstrap/istio_ca.go
// This value can also be extracted from the mounted token trustedIssuer = env.Register("TOKEN_ISSUER", "", "OIDC token issuer. If set, will be used to check the tokens.") audience = env.Register("AUDIENCE", "", "Expected audience in the tokens. ") caRSAKeySize = env.Register("CITADEL_SELF_SIGNED_CA_RSA_KEY_SIZE", 2048, "Specify the RSA key size to use for self-signed Istio CA certificates.")
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 17:48:28 UTC 2024 - 20.6K bytes - Viewed (0)