- Sort Score
- Result 10 results
- Languages All
Results 11 - 20 of 31 for credentialName (0.19 sec)
-
pilot/pkg/networking/core/cluster_tls.go
if tls == nil { return nil, nil } // Hack to avoid egress sds cluster config generation for sidecar when // CredentialName is set in DestinationRule without a workloadSelector. // We do not want to support CredentialName setting in non workloadSelector based DestinationRules, because // that would result in the CredentialName being supplied to all the sidecars which the DestinationRule is scoped to,
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Apr 18 19:09:43 UTC 2024 - 19.2K bytes - Viewed (0) -
releasenotes/notes/51568.yaml
apiVersion: release-notes/v2 kind: bug-fix area: istioctl issue: - 51567 releaseNotes: - |
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Jun 14 07:22:31 UTC 2024 - 194 bytes - Viewed (0) -
pkg/config/analysis/analyzers/util/find_errorline_utils_test.go
"{.spec.containers[0].image}": 1, "{.spec.rules[0].from[0].source.namespaces[0]}": 1, "{.spec.selector.test}": 1, "{.spec.servers[0].tls.credentialName}": 1, "{.networks.test.endpoints[0]}": 1, "{.spec.trafficPolicy.tls.caCertificates}": 1,
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Feb 02 17:36:47 UTC 2024 - 3.5K bytes - Viewed (0) -
pilot/pkg/networking/core/gateway_test.go
name: "tls mode ISTIO_MUTUAL, with credentialName", server: &networking.Server{ Hosts: []string{"httpbin.example.com"}, Port: &networking.Port{ Protocol: string(protocol.HTTPS), }, Tls: &networking.ServerTLSSettings{ Mode: networking.ServerTLSSettings_ISTIO_MUTUAL, CredentialName: "ignored", }, }, result: &auth.DownstreamTlsContext{
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon May 06 04:44:06 UTC 2024 - 144K bytes - Viewed (0) -
pkg/config/validation/agent/validation.go
if settings.Mode == networking.ClientTLSSettings_SIMPLE { // In tls simple mode, we can specify ca cert by CaCertificates or CredentialName. if settings.CaCertificates != "" || settings.CredentialName != "" || settings.SubjectAltNames != nil { errs = AppendErrors(errs, fmt.Errorf("cannot specify CaCertificates or CredentialName or SubjectAltNames when InsecureSkipVerify is set true")) } }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Apr 17 20:06:41 UTC 2024 - 30.9K bytes - Viewed (0) -
tests/integration/security/sds_ingress/ingress_test.go
echotest.New(t, instances). SetupForDestination(func(t framework.TestContext, to echo.Target) error { ingressutil.SetupConfig(t, echo1NS, ingressutil.TestConfig{ Mode: "SIMPLE", CredentialName: credName, Host: host, ServiceName: to.Config().Service, GatewayLabel: inst.Settings().IngressGatewayIstioLabel, }) return nil }).
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Apr 08 22:02:59 UTC 2024 - 32.7K bytes - Viewed (0) -
pkg/config/validation/validation_test.go
&networking.ServerTLSSettings{ Mode: networking.ServerTLSSettings_ISTIO_MUTUAL, CredentialName: "some-cred", }, "cannot have associated credentialName", "", }, { "invalid cipher suites", &networking.ServerTLSSettings{ Mode: networking.ServerTLSSettings_SIMPLE, CredentialName: "sds-name", CipherSuites: []string{"not-a-cipher-suite"}, }, "", "not-a-cipher-suite",
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue Apr 30 03:11:45 UTC 2024 - 196K bytes - Viewed (0) -
pkg/config/analysis/analyzers/analyzers_test.go
}, }, { name: "destinationrule with credentialname, simple at destinationlevel, workloadSelector", inputFiles: []string{ "testdata/destinationrule-simple-destination-credentialname-selector.yaml", }, analyzer: &destinationrule.CaCertificateAnalyzer{}, expected: []message{}, }, { name: "destinationrule with credentialname, simple at portlevel, no workloadSelector", inputFiles: []string{
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Jun 14 07:22:31 UTC 2024 - 42.6K bytes - Viewed (0) -
pkg/config/validation/validation.go
} if tls.CaCertificates != "" { v = AppendValidation(v, fmt.Errorf("ISTIO_MUTUAL TLS cannot have associated CA bundle")) } if tls.CredentialName != "" { v = AppendValidation(v, fmt.Errorf("ISTIO_MUTUAL TLS cannot have associated credentialName")) } return } if tls.Mode == networking.ServerTLSSettings_PASSTHROUGH || tls.Mode == networking.ServerTLSSettings_AUTO_PASSTHROUGH {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Jun 12 04:03:33 UTC 2024 - 107.2K bytes - Viewed (0) -
istioctl/pkg/precheck/precheck.go
if tls == nil { return false } if tls.Mode == networking.ClientTLSSettings_DISABLE || tls.Mode == networking.ClientTLSSettings_ISTIO_MUTUAL { return false } return tls.CaCertificates == "" && tls.CredentialName == "" && !tls.InsecureSkipVerify.GetValue() } checkSNI := func(tls *networking.ClientTLSSettings) bool { if tls == nil { return false }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Apr 12 02:57:30 UTC 2024 - 19.3K bytes - Viewed (0)