- Sort Score
- Result 10 results
- Languages All
Results 11 - 20 of 43 for Authz (0.04 sec)
-
pilot/pkg/networking/core/listener_inbound.go
TrafficDirection: core.TrafficDirection_INBOUND, ContinueOnListenerFiltersTimeout: true, } // Flush authz cache since we need filter state for the principal. oldBuilder := lb.authzBuilder lb.authzBuilder = authz.NewBuilder(authz.Local, lb.push, lb.node, true) inboundChainConfigs := lb.buildInboundChainConfigs() for _, cc := range inboundChainConfigs { cc.hbone = true
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 01:56:28 UTC 2024 - 35.1K bytes - Viewed (0) -
pilot/pkg/networking/core/extension/wasmplugin.go
Ads: &core.AggregatedConfigSource{}, }, ResourceApiVersion: core.ApiVersion_V3, // we block proxy init until WasmPlugins are loaded because they might be // critical for security (e.g. authn/authz) InitialFetchTimeout: &durationpb.Duration{Seconds: 0}, } // PopAppendHTTP takes a list of filters and a set of WASM plugins, keyed by phase. It will remove all
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Wed May 15 09:02:11 UTC 2024 - 5.4K bytes - Viewed (0) -
pilot/pkg/networking/core/listener_builder_test.go
t.Run(tt.name, func(t *testing.T) { push.Networks = tt.networks lb := &ListenerBuilder{ push: push, node: sidecarProxy, authzCustomBuilder: &authz.Builder{}, authzBuilder: &authz.Builder{}, } httpConnManager := lb.buildHTTPConnectionManager(&httpListenerOpts{}) if !reflect.DeepEqual(tt.expectedconfig, httpConnManager.InternalAddressConfig) {
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 01:56:28 UTC 2024 - 24.7K bytes - Viewed (0) -
cmd/kube-scheduler/app/server.go
func buildHandlerChain(handler http.Handler, authn authenticator.Request, authz authorizer.Authorizer) http.Handler { requestInfoResolver := &apirequest.RequestInfoFactory{} failedHandler := genericapifilters.Unauthorized(scheme.Codecs) handler = genericapifilters.WithAuthorization(handler, authz, scheme.Codecs) handler = genericapifilters.WithAuthentication(handler, authn, failedHandler, nil, nil)
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Mon May 27 19:11:24 UTC 2024 - 14.3K bytes - Viewed (0) -
pilot/pkg/networking/core/listener_test.go
testInboundListenerConfigWithSidecar(t, getProxy(), buildService("test.com", wildcardIPv4, protocol.HTTP, tnow)) }) t.Run("wasm, stats, authz", func(t *testing.T) { tcp := buildService("tcp.example.com", wildcardIPv4, protocol.TCP, tnow) tcp.Ports[0].Port = 1234 tcp.Ports[0].Name = "tcp" services := []*model.Service{ tcp,
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Jun 13 01:56:28 UTC 2024 - 93.6K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/server/config.go
// authz is nil, this function won't add a token authenticator or authorizer. func AuthorizeClientBearerToken(loopback *restclient.Config, authn *AuthenticationInfo, authz *AuthorizationInfo) { if loopback == nil || len(loopback.BearerToken) == 0 { return } if authn == nil || authz == nil { // prevent nil pointer panic return }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Tue May 28 08:48:22 UTC 2024 - 47.7K bytes - Viewed (0) -
pkg/test/framework/components/echo/common/deployment/echos.go
// will be generated unless NoExternalNamespace is specified. ExternalNamespace namespace.Getter // IncludeExtAuthz if enabled, an additional ext-authz container will be included in the deployment. // This is mainly used to test the CUSTOM authorization policy when the ext-authz server is deployed // locally with the application container in the same pod. IncludeExtAuthz bool
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Mon May 20 16:01:31 UTC 2024 - 16K bytes - Viewed (0) -
staging/src/k8s.io/apiserver/pkg/cel/environment/base.go
cel.CostTrackerOptions(interpreter.PresenceTestHasCost(false)), }, }, { IntroducedVersion: version.MajorMinor(1, 27), EnvOptions: []cel.EnvOption{ library.Authz(), }, }, { IntroducedVersion: version.MajorMinor(1, 28), EnvOptions: []cel.EnvOption{ cel.CrossTypeNumericComparisons(true), cel.OptionalTypes(), library.Quantity(), }, },
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Wed May 15 15:51:08 UTC 2024 - 6.4K bytes - Viewed (0) -
cmd/logging.go
} func authNLogIf(ctx context.Context, err error, errKind ...interface{}) { logger.LogIf(ctx, "authN", err, errKind...) } func authZLogIf(ctx context.Context, err error, errKind ...interface{}) { logger.LogIf(ctx, "authZ", err, errKind...) } func peersLogIf(ctx context.Context, err error, errKind ...interface{}) { if !errors.Is(err, grid.ErrDisconnected) { logger.LogIf(ctx, "peers", err, errKind...) } }
Registered: Sun Jun 16 00:44:34 UTC 2024 - Last Modified: Thu Jun 13 22:26:38 UTC 2024 - 7.2K bytes - Viewed (0) -
prow/lib.sh
# Build just the images needed for tests targets="docker.pilot docker.proxyv2 " # use ubuntu:jammy to test vms by default nonDistrolessTargets="docker.app docker.app_sidecar_ubuntu_noble docker.ext-authz " if [[ "${JOB_TYPE:-presubmit}" == "postsubmit" ]]; then # We run tests across all VM types only in postsubmit
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu May 09 12:26:52 UTC 2024 - 8.1K bytes - Viewed (0)