- Sort Score
- Result 10 results
- Languages All
Results 11 - 20 of 49 for subjectAltNames (0.23 sec)
-
tests/fuzz/testdata/FuzzConfigValidation2/fuzz_config_validation2.dict
"servers" "port" "number" "protocol" "name" "hosts" "template" "probe" "mode" "tls" "targetPort" "httpsRedirect" "serverCertificate" "privateKey" "caCertificates" "credentialName" "subjectAltNames" "verifyCertificateSpki" "verifyCertificateHash" "minProtocolVersion" "maxProtocolVersion" "cipherSuites" "trafficPolicy" "subsets" "exportTo" "loadBalancer" "connectionPool" "outlierDetection"
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Jul 07 17:07:53 UTC 2021 - 2K bytes - Viewed (0) -
tests/integration/security/file_mounted_certs/p2p_mtls_test.go
trafficPolicy: tls: mode: MUTUAL caCertificates: /client-certs/root-cert.pem clientCertificate: /client-certs/cert-chain.pem privateKey: /client-certs/key.pem subjectAltNames: - server.mounted-certs.svc ` PeerAuthenticationConfig = ` apiVersion: security.istio.io/v1beta1 kind: PeerAuthentication metadata: name: default namespace: "istio-system" spec:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Apr 08 22:02:59 UTC 2024 - 2.8K bytes - Viewed (0) -
pkg/bootstrap/option/convert.go
CombinedValidationContext: &auth.CommonTlsContext_CombinedCertificateValidationContext{ DefaultValidationContext: &auth.CertificateValidationContext{MatchSubjectAltNames: model.StringToExactMatch(tls.SubjectAltNames)}, ValidationContextSdsSecretConfig: model.ConstructSdsSecretConfig(res.GetRootResourceName()), }, } tlsContext.CommonTlsContext.AlpnProtocols = model.ALPNH2Only tlsContext.Sni = tls.Sni
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue Apr 02 00:35:05 UTC 2024 - 10.2K bytes - Viewed (0) -
pilot/pkg/serviceregistry/kube/controller/ambient/services.go
Name: svc.Name, Namespace: svc.Namespace, Hostname: h, Addresses: addresses, Ports: ports, Waypoint: waypointAddress, SubjectAltNames: svc.Spec.SubjectAltNames, }) } return res } func (a *index) constructService(svc *v1.Service, w *Waypoint) *workloadapi.Service { ports := make([]*workloadapi.Port, 0, len(svc.Spec.Ports))
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Jun 05 12:29:55 UTC 2024 - 7.6K bytes - Viewed (0) -
pilot/pkg/xds/cds_test.go
Spec: &networking.ServiceEntry{ Hosts: []string{"example.default.svc.cluster.local"}, Ports: []*networking.ServicePort{{ Number: 80, Protocol: "HTTP", Name: "http", }}, SubjectAltNames: []string{"se-top"}, Resolution: networking.ServiceEntry_STATIC, Endpoints: []*networking.WorkloadEntry{{ Address: "1.1.1.1", ServiceAccount: "se-endpoint", }}, }, }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed May 01 02:06:39 UTC 2024 - 9.2K bytes - Viewed (0) -
okhttp/src/main/kotlin/okhttp3/internal/tls/OkHostnameVerifier.kt
} private fun getSubjectAltNames( certificate: X509Certificate, type: Int, ): List<String> { try { val subjectAltNames = certificate.subjectAlternativeNames ?: return emptyList() val result = mutableListOf<String>() for (subjectAltName in subjectAltNames) { if (subjectAltName == null || subjectAltName.size < 2) continue if (subjectAltName[0] != type) continue
Registered: Sun Jun 16 04:42:17 UTC 2024 - Last Modified: Mon Apr 15 14:55:09 UTC 2024 - 7.7K bytes - Viewed (0) -
pilot/pkg/security/authn/utils/utils.go
CipherSuites: ciphers, TlsMinimumProtocolVersion: minTLSVersion, TlsMaximumProtocolVersion: tls.TlsParameters_TLSv1_3, } authn_model.ApplyToCommonTLSContext(ctx.CommonTlsContext, node, []string{}, /*subjectAltNames*/ "", /*crl*/ trustDomainAliases, ctx.RequireClientCertificate.Value) // Compliance for downstream mesh mTLS. authn_model.EnforceCompliance(ctx.CommonTlsContext) return ctx }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Feb 23 00:16:21 UTC 2024 - 3.8K bytes - Viewed (0) -
pkg/config/validation/agent/validation.go
// In tls simple mode, we can specify ca cert by CaCertificates or CredentialName. if settings.CaCertificates != "" || settings.CredentialName != "" || settings.SubjectAltNames != nil { errs = AppendErrors(errs, fmt.Errorf("cannot specify CaCertificates or CredentialName or SubjectAltNames when InsecureSkipVerify is set true")) } } if settings.Mode == networking.ClientTLSSettings_MUTUAL {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Apr 17 20:06:41 UTC 2024 - 30.9K bytes - Viewed (0) -
pilot/pkg/networking/core/cluster_builder_test.go
Tls: &networking.ClientTLSSettings{ Mode: networking.ClientTLSSettings_SIMPLE, CaCertificates: constants.RootCertFilename, Sni: "foo.default.svc.cluster.local", SubjectAltNames: []string{"foo.default.svc.cluster.local"}, }, }, }, enableAutoSni: false, enableVerifyCertAtClient: false, expectTLSContext: &tls.UpstreamTlsContext{
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 01:56:28 UTC 2024 - 110.4K bytes - Viewed (0) -
pilot/pkg/serviceregistry/serviceentry/conversion.go
Addresses: svc.GetAddresses(proxy), // This is based on alpha.istio.io/canonical-serviceaccounts and // alpha.istio.io/kubernetes-serviceaccounts. SubjectAltNames: svc.ServiceAccounts, } if len(svc.Attributes.LabelSelectors) > 0 { se.WorkloadSelector = &networking.WorkloadSelector{Labels: svc.Attributes.LabelSelectors} }
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed May 29 02:03:58 UTC 2024 - 16.9K bytes - Viewed (0)