- Sort Score
- Result 10 results
- Languages All
Results 11 - 20 of 77 for Authz (0.07 sec)
-
pkg/config/analysis/analyzers/all.go
// limitations under the License. package analyzers import ( "istio.io/istio/pkg/config/analysis" "istio.io/istio/pkg/config/analysis/analyzers/annotations" "istio.io/istio/pkg/config/analysis/analyzers/authz" "istio.io/istio/pkg/config/analysis/analyzers/deployment" "istio.io/istio/pkg/config/analysis/analyzers/deprecation" "istio.io/istio/pkg/config/analysis/analyzers/destinationrule"
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed May 22 10:13:03 UTC 2024 - 3.6K bytes - Viewed (0) -
pilot/pkg/security/authz/builder/builder_test.go
AuthzPolicies: yamlPolicy(t, basePath+input), Mesh: mc, } p.ServiceIndex.HostnameAndNamespace = map[host.Name]map[string]*model.Service{ "my-custom-ext-authz.foo.svc.cluster.local": { "foo": &model.Service{ Hostname: "my-custom-ext-authz.foo.svc.cluster.local", }, }, } return p } func node(version *model.IstioVersion) *model.Proxy { return &model.Proxy{
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Apr 17 22:20:44 UTC 2024 - 13.8K bytes - Viewed (0) -
internal/config/policy/plugin/config.go
} // Handle large OPA responses when OPA URL is of // form http://localhost:8181/v1/data/httpapi/authz type opaResultAllow struct { Result struct { Allow bool `json:"allow"` } `json:"result"` } // Handle simpler OPA responses when OPA URL is of // form http://localhost:8181/v1/data/httpapi/authz/allow type opaResult struct { Result bool `json:"result"` }
Registered: Sun Jun 16 00:44:34 UTC 2024 - Last Modified: Fri May 24 23:05:23 UTC 2024 - 5.8K bytes - Viewed (0) -
tools/docker.yaml
# Test images - name: app dockerfile: pkg/test/echo/docker/Dockerfile.app files: - tests/testdata/certs targets: - ${TARGET_OUT_LINUX}/client - ${TARGET_OUT_LINUX}/server # Sample authz server - name: ext-authz dockerfile: samples/extauthz/docker/Dockerfile targets: - ${TARGET_OUT_LINUX}/extauthz # TODO(https://github.com/istio/istio/issues/38224) - name: app_sidecar_rockylinux_9
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu May 09 12:26:52 UTC 2024 - 4.4K bytes - Viewed (0) -
pkg/test/framework/components/echo/kube/templates/deployment.yaml
imagePullPolicy: {{ $.ImagePullPolicy }} securityContext: # to allow core dumps readOnlyRootFilesystem: false {{- end }} {{- if $.IncludeExtAuthz }} - name: ext-authz image: {{ $.ImageHub }}/ext-authz:{{ $.ImageTag }} imagePullPolicy: {{ $.ImagePullPolicy }} ports: - containerPort: 8000 - containerPort: 9000 {{- end }}
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu May 02 21:29:40 UTC 2024 - 6.1K bytes - Viewed (0) -
tests/integration/ambient/testdata/requestauthn/waypoint-jwt.yaml.tmpl
- issuer: "******@****.***" jwksUri: "https://raw.githubusercontent.com/istio/istio/master/tests/common/jwt/jwks.json" --- apiVersion: security.istio.io/v1beta1 kind: AuthorizationPolicy metadata: name: authz-gateway-{{ .To.ServiceName }} spec: targetRefs: - kind: Gateway group: gateway.networking.k8s.io name: waypoint rules: - from: - source:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Apr 15 16:23:36 UTC 2024 - 1.3K bytes - Viewed (0) -
pilot/pkg/networking/core/listener_waypoint.go
authnBuilder := lb.authnBuilder if svc != nil { authnBuilder = authn.NewBuilderForService(lb.push, lb.node, svc) authzBuilder = authz.NewBuilderForService(authz.Local, lb.push, lb.node, true, svc) authzCustomBuilder = authz.NewBuilderForService(authz.Custom, lb.push, lb.node, true, svc) } // TODO: consider dedicated listener class for waypoint filters cls := istionetworking.ListenerClassSidecarInbound
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Jun 14 04:34:37 UTC 2024 - 27.6K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/server/genericapiserver_test.go
} } } // TestNotRestRoutesHaveAuth checks that special non-routes are behind authz/authn. func TestNotRestRoutesHaveAuth(t *testing.T) { config, _ := setUp(t) authz := mockAuthorizer{} config.LegacyAPIGroupPrefixes = sets.NewString("/apiPrefix") config.Authorization.Authorizer = &authz config.EnableIndex = true config.EnableProfiling = true kubeVersion := fakeVersion()
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Mon Apr 29 18:59:21 UTC 2024 - 23.2K bytes - Viewed (0) -
internal/config/policy/opa/config.go
} // Handle large OPA responses when OPA URL is of // form http://localhost:8181/v1/data/httpapi/authz type opaResultAllow struct { Result struct { Allow bool `json:"allow"` } `json:"result"` } // Handle simpler OPA responses when OPA URL is of // form http://localhost:8181/v1/data/httpapi/authz/allow type opaResult struct { Result bool `json:"result"` }
Registered: Sun Jun 16 00:44:34 UTC 2024 - Last Modified: Fri May 24 23:05:23 UTC 2024 - 5.2K bytes - Viewed (0) -
pilot/pkg/security/authz/builder/extauthz.go
meshconfig "istio.io/api/mesh/v1alpha1" "istio.io/istio/pilot/pkg/model" authzmodel "istio.io/istio/pilot/pkg/security/authz/model" "istio.io/istio/pkg/config/validation/agent" "istio.io/istio/pkg/maps" "istio.io/istio/pkg/wellknown" ) const ( extAuthzMatchPrefix = "istio-ext-authz" badCustomActionSuffix = `-deny-due-to-bad-CUSTOM-action` ) var supportedStatus = func() []int { var supported []int
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Apr 17 20:06:41 UTC 2024 - 12.7K bytes - Viewed (0)