- Sort Score
- Result 10 results
- Languages All
Results 11 - 20 of 51 for ISTIO_MUTUAL (0.24 sec)
-
releasenotes/notes/46678.yaml
# release notes. releaseNotes: - | **Fixed** attempting to reach multi-network endpoints that are unreachable due to `DestinationRule` TLS mode
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Aug 24 21:40:59 UTC 2023 - 407 bytes - Viewed (0) -
tests/integration/pilot/testdata/tunneling/gateway/tls/istio-mutual/mtls.tmpl.yaml
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed Jul 05 17:19:27 UTC 2023 - 387 bytes - Viewed (0) -
tests/integration/ambient/testdata/beta-mtls-on.yaml
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Feb 16 18:55:23 UTC 2023 - 384 bytes - Viewed (0) -
tests/integration/ambient/testdata/beta-mtls-permissive.yaml
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Feb 16 18:55:23 UTC 2023 - 524 bytes - Viewed (0) -
pilot/pkg/networking/core/cluster_traffic_policy_test.go
Version: networking.TrafficPolicy_ProxyProtocol_V2, }, expectTransportSocket: false, expectTransportSocketMatch: false, }, { name: "user specified with istio_mutual tls", mtlsCtx: userSupplied, discoveryType: cluster.Cluster_EDS, tls: istioMutualTLSSettings, proxyProtocolSettings: &networking.TrafficPolicy_ProxyProtocol{
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon May 06 03:53:05 UTC 2024 - 9K bytes - Viewed (0) -
pilot/pkg/networking/core/cluster_tls.go
} } // buildUpstreamTLSSettings fills key cert fields for all TLSSettings when the mode is `ISTIO_MUTUAL`. // If the (input) TLS setting is nil (i.e not set), *and* the service mTLS mode is STRICT, it also // creates and populates the config as if they are set as ISTIO_MUTUAL. func (cb *ClusterBuilder) buildUpstreamTLSSettings( tls *networking.ClientTLSSettings, serviceAccounts []string, sni string,
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Apr 18 19:09:43 UTC 2024 - 19.2K bytes - Viewed (0) -
tests/integration/security/reachability_test.go
config.File("testdata/reachability/global-dr.yaml.tmpl"), }.WithParams(param.Params{ mtlsModeParam: model.MTLSStrict.String(), tlsModeParam: "ISTIO_MUTUAL", param.Namespace.String(): systemNS, }), fromMatch: notMigration, toMatch: notMigration, expectMTLS: notNaked, expectCrossCluster: notFromNaked,
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu May 02 21:29:40 UTC 2024 - 20.6K bytes - Viewed (0) -
tests/integration/security/ca_custom_root/trust_domain_alias_secure_naming_test.go
spec: mtls: mode: STRICT --- apiVersion: networking.istio.io/v1alpha3 kind: DestinationRule metadata: name: "server-naked" spec: host: "*.local" trafficPolicy: tls: mode: ISTIO_MUTUAL ` ) // TestTrustDomainAliasSecureNaming scope: // The client side mTLS connection should validate the trust domain alias during secure naming validation. // // Setup:
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon Apr 08 22:02:59 UTC 2024 - 3.7K bytes - Viewed (0) -
tests/integration/security/testdata/authz/plaintext.yaml.tmpl
kind: DestinationRule metadata: name: default namespace: {{ .To.NamespaceName }} spec: host: "*.{{ .To.NamespaceName }}.svc.cluster.local" trafficPolicy: tls: mode: ISTIO_MUTUAL --- # This authz policy denies access to the service if the request was not mTLS, since # mTLS is required in order to match source principals. apiVersion: security.istio.io/v1beta1 kind: AuthorizationPolicy
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon May 08 07:03:01 UTC 2023 - 1.3K bytes - Viewed (0) -
pilot/pkg/config/file/store_test.go
configTemplate := `apiVersion: networking.istio.io/v1beta1 kind: DestinationRule metadata: name: productpage labels: version: %s spec: host: productpage trafficPolicy: tls: mode: ISTIO_MUTUAL subsets: - name: %s labels: version: %s` config := fmt.Sprintf(configTemplate, version, version, version) err := src.ApplyContent("test", config) g.Expect(err).To(BeNil())
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Fri Jan 05 18:44:58 UTC 2024 - 1.5K bytes - Viewed (0)