Search Options

Results per page
Sort
Preferred Languages
Advance

Results 11 - 20 of 51 for ISTIO_MUTUAL (0.24 sec)

  2. github.com/istio/istio

    releasenotes/notes/46678.yaml 

    # release notes.
releaseNotes:
- |
  **Fixed** attempting to reach multi-network endpoints that are unreachable due to `DestinationRule` TLS mode
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Thu Aug 24 21:40:59 UTC 2023
    - 407 bytes
    - Viewed (0)
  3. github.com/istio/istio

    tests/integration/pilot/testdata/tunneling/gateway/tls/istio-mutual/mtls.tmpl.yaml 

    spec:
  host: {{ .EgressGatewayServiceName | default "istio-egressgateway" }}.{{ .EgressGatewayServiceNamespace | default "istio-system" }}.svc.cluster.local
  trafficPolicy:
    tls:
      mode: ISTIO_MUTUAL
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Wed Jul 05 17:19:27 UTC 2023
    - 387 bytes
    - Viewed (0)
  4. github.com/istio/istio

    tests/integration/ambient/testdata/beta-mtls-on.yaml 

    ---
apiVersion: networking.istio.io/v1alpha3
kind: DestinationRule
metadata:
  name: "default"
  annotations:
    test-suite: "beta-mtls-on"
spec:
  host: "*.local"
  trafficPolicy:
    tls:
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Thu Feb 16 18:55:23 UTC 2023
    - 384 bytes
    - Viewed (0)
  5. github.com/istio/istio

    tests/integration/ambient/testdata/beta-mtls-permissive.yaml 

    apiVersion: networking.istio.io/v1alpha3
kind: DestinationRule
metadata:
  name: "default"
  annotations:
    test-suite: "beta-mtls-permissive"
spec:
  host: "*.local"
  trafficPolicy:
    tls:
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Thu Feb 16 18:55:23 UTC 2023
    - 524 bytes
    - Viewed (0)
  6. github.com/istio/istio

    pilot/pkg/networking/core/cluster_traffic_policy_test.go 

    				Version: networking.TrafficPolicy_ProxyProtocol_V2,
			},
			expectTransportSocket:      false,
			expectTransportSocketMatch: false,
		},
		{
			name:          "user specified with istio_mutual tls",
			mtlsCtx:       userSupplied,
			discoveryType: cluster.Cluster_EDS,
			tls:           istioMutualTLSSettings,
			proxyProtocolSettings: &networking.TrafficPolicy_ProxyProtocol{
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Mon May 06 03:53:05 UTC 2024
    - 9K bytes
    - Viewed (0)
  7. github.com/istio/istio

    pilot/pkg/networking/core/cluster_tls.go 

    	}
}

// buildUpstreamTLSSettings fills key cert fields for all TLSSettings when the mode is `ISTIO_MUTUAL`.
// If the (input) TLS setting is nil (i.e not set), *and* the service mTLS mode is STRICT, it also
// creates and populates the config as if they are set as ISTIO_MUTUAL.
func (cb *ClusterBuilder) buildUpstreamTLSSettings(
	tls *networking.ClientTLSSettings,
	serviceAccounts []string,
	sni string,
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Thu Apr 18 19:09:43 UTC 2024
    - 19.2K bytes
    - Viewed (0)
  8. github.com/istio/istio

    tests/integration/security/reachability_test.go 

    						config.File("testdata/reachability/global-dr.yaml.tmpl"),
					}.WithParams(param.Params{
						mtlsModeParam:            model.MTLSStrict.String(),
						tlsModeParam:             "ISTIO_MUTUAL",
						param.Namespace.String(): systemNS,
					}),
					fromMatch:          notMigration,
					toMatch:            notMigration,
					expectMTLS:         notNaked,
					expectCrossCluster: notFromNaked,
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Thu May 02 21:29:40 UTC 2024
    - 20.6K bytes
    - Viewed (0)
  9. github.com/istio/istio

    tests/integration/security/ca_custom_root/trust_domain_alias_secure_naming_test.go 

    spec:
  mtls:
    mode: STRICT
---
apiVersion: networking.istio.io/v1alpha3
kind: DestinationRule
metadata:
  name: "server-naked"
spec:
  host: "*.local"
  trafficPolicy:
    tls:
      mode: ISTIO_MUTUAL
`
)

// TestTrustDomainAliasSecureNaming scope:
// The client side mTLS connection should validate the trust domain alias during secure naming validation.
//
// Setup:
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Mon Apr 08 22:02:59 UTC 2024
    - 3.7K bytes
    - Viewed (0)
  10. github.com/istio/istio

    tests/integration/security/testdata/authz/plaintext.yaml.tmpl 

    kind: DestinationRule
metadata:
  name: default
  namespace: {{ .To.NamespaceName }}
spec:
  host: "*.{{ .To.NamespaceName }}.svc.cluster.local"
  trafficPolicy:
    tls:
      mode: ISTIO_MUTUAL

---
# This authz policy denies access to the service if the request was not mTLS, since
# mTLS is required in order to match source principals.

apiVersion: security.istio.io/v1beta1
kind: AuthorizationPolicy
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Mon May 08 07:03:01 UTC 2023
    - 1.3K bytes
    - Viewed (0)
  11. github.com/istio/istio

    pilot/pkg/config/file/store_test.go 

    		configTemplate := `apiVersion: networking.istio.io/v1beta1
kind: DestinationRule
metadata:
  name: productpage
  labels:
    version: %s
spec:
  host: productpage
  trafficPolicy:
    tls:
      mode: ISTIO_MUTUAL
  subsets:
  - name: %s
    labels:
      version: %s`
		config := fmt.Sprintf(configTemplate, version, version, version)
		err := src.ApplyContent("test", config)
		g.Expect(err).To(BeNil())
    Registered: Fri Jun 14 15:00:06 UTC 2024
    - Last Modified: Fri Jan 05 18:44:58 UTC 2024
    - 1.5K bytes
    - Viewed (0)
Back to top