- Sort Score
- Result 10 results
- Languages All
Results 21 - 30 of 215 for Authz (0.04 sec)
-
pkg/test/framework/components/authz/kube.go
) const ( httpName = "ext-authz-http" grpcName = "ext-authz-grpc" httpPort = 8000 grpcPort = 9000 providerTemplate = ` extensionProviders: - name: "{{ .httpName }}" envoyExtAuthzHttp: service: "{{ .fqdn }}" port: {{ .httpPort }} headersToUpstreamOnAllow: ["x-ext-authz-*"] headersToDownstreamOnDeny: ["x-ext-authz-*"] includeRequestHeadersInCheck: ["x-ext-authz"]
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Apr 10 20:33:28 UTC 2024 - 7K bytes - Viewed (0) -
pkg/config/analysis/analyzers/testdata/envoy-filter-add-operation.yaml
patch: operation: ADD filterClass: AUTHZ # This filter will run *after* the Istio authz filter. value: name: envoy.filters.http.ext_authz typed_config: "@type": type.googleapis.com/envoy.extensions.filters.http.ext_authz.v3.ExtAuthz grpc_service: envoy_grpc: cluster_name: acme-ext-authz initial_metadata: - key: foo
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue May 31 19:38:42 UTC 2022 - 3.6K bytes - Viewed (0) -
releasenotes/notes/filter-order.yaml
* Metadata Exchange * CUSTOM Authz * WASM Authn * Authn * WASM Authz * Authz * WASM Stats * Stats * WASM unspecified This changes the following areas: * Inbound TCP filters now place Metadata Exchange before Authn.
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Sep 15 18:28:50 UTC 2023 - 895 bytes - Viewed (0) -
pkg/test/framework/components/authz/headers.go
// See the License for the specific language governing permissions and // limitations under the License. package authz const ( XExtAuthz = "X-Ext-Authz" XExtAuthzAllow = "allow" XExtAuthzCheckReceived = "X-Ext-Authz-Check-Received" XExtAuthzAdditionalHeaderOverride = "X-Ext-Authz-Additional-Header-Override" GRPCAdditionalHeaderOverrideValue = "grpc-additional-header-override-value"
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Sat Apr 23 16:02:21 UTC 2022 - 928 bytes - Viewed (0) -
pilot/pkg/security/authz/builder/testdata/http/extended-custom-grpc-provider-out2.yaml
path: - key: istio_ext_authz_shadow_effective_policy_id value: stringMatch: prefix: istio-ext-authz grpcService: envoyGrpc: authority: my-custom-ext-authz.foo.svc.cluster.local clusterName: outbound|9000||my-custom-ext-authz.foo.svc.cluster.local timeout: 0.002s statusOnError: code: Forbidden transportApiVersion: V3 withRequestBody:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Mar 25 10:39:25 UTC 2024 - 666 bytes - Viewed (0) -
tests/integration/security/policy_attachment_only/main_test.go
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Jan 10 01:47:52 UTC 2024 - 2.9K bytes - Viewed (0) -
pilot/pkg/security/authz/builder/testdata/tcp/custom-both-http-tcp-out1.yaml
shadowRules: action: DENY policies: istio-ext-authz-ns[foo]-policy[httpbin-deny]-rule[0]: permissions: - andRules: rules: - any: true principals: - andIds: ids: - any: true istio-ext-authz-ns[foo]-policy[httpbin-deny]-rule[1]: permissions: - andRules: rules:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Apr 15 22:42:30 UTC 2021 - 2.7K bytes - Viewed (0) -
pilot/pkg/security/authz/builder/testdata/http/custom-grpc-provider-out2.yaml
path: - key: istio_ext_authz_shadow_effective_policy_id value: stringMatch: prefix: istio-ext-authz grpcService: envoyGrpc: authority: my-custom-ext-authz.foo.svc.cluster.local clusterName: outbound|9000||my-custom-ext-authz.foo.svc.cluster.local timeout: 0.002s statusOnError: code: Forbidden transportApiVersion: V3 withRequestBody:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Aug 07 15:18:13 UTC 2023 - 666 bytes - Viewed (0) -
pkg/test/framework/components/authz/server.go
// See the License for the specific language governing permissions and // limitations under the License. package authz import ( "istio.io/istio/pkg/test/framework" "istio.io/istio/pkg/test/framework/components/namespace" "istio.io/istio/pkg/test/framework/resource" ) // Server for custom authz. type Server interface { Namespace() namespace.Instance // Providers returns the list of Provider instances.
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Tue Jun 14 23:39:05 UTC 2022 - 2.4K bytes - Viewed (0) -
pilot/pkg/security/authz/builder/testdata/tcp/custom-both-http-tcp-out2.yaml
path: - key: istio_ext_authz_shadow_effective_policy_id value: stringMatch: prefix: istio-ext-authz grpcService: envoyGrpc: authority: my-custom-ext-authz.foo.svc.cluster.local clusterName: outbound|9000||my-custom-ext-authz.foo.svc.cluster.local timeout: 0.002s statPrefix: tcp.
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Aug 07 15:18:13 UTC 2023 - 582 bytes - Viewed (0)