Search Options

Results per page
Sort
Preferred Languages
Advance

Results 11 - 20 of 42 for AuthZ (0.03 sec)

  1. istioctl/pkg/authz/analyzer_test.go

    // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    // See the License for the specific language governing permissions and
    // limitations under the License.
    
    package authz
    
    import (
    	"bytes"
    	"reflect"
    	"testing"
    
    	envoy_admin "github.com/envoyproxy/go-control-plane/envoy/admin/v3"
    	"google.golang.org/protobuf/types/known/anypb"
    Registered: Wed Nov 06 22:53:10 UTC 2024
    - Last Modified: Sun Apr 21 17:42:54 UTC 2024
    - 2.8K bytes
    - Viewed (0)
  2. istioctl/cmd/istioctl_test.go

    	case istioctlutil.CommandParseError:
    		// do nothing
    	default:
    		t.Errorf("Expected a CommandParseError, but got %q.", fErr)
    	}
    
    	// all of the subcommands
    	rootCmd = GetRootCmd([]string{"x", "authz", "check", "--unknown-flag"})
    	fErr = rootCmd.Execute()
    
    	switch fErr.(type) {
    	case istioctlutil.CommandParseError:
    		// do nothing
    	default:
    		t.Errorf("Expected a CommandParseError, but got %q.", fErr)
    	}
    Registered: Wed Nov 06 22:53:10 UTC 2024
    - Last Modified: Tue Aug 29 14:53:25 UTC 2023
    - 1.5K bytes
    - Viewed (0)
  3. istioctl/pkg/authz/listener.go

    // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    // See the License for the specific language governing permissions and
    // limitations under the License.
    
    package authz
    
    import (
    	"fmt"
    	"io"
    	"regexp"
    	"sort"
    	"strings"
    	"text/tabwriter"
    
    	listener "github.com/envoyproxy/go-control-plane/envoy/config/listener/v3"
    Registered: Wed Nov 06 22:53:10 UTC 2024
    - Last Modified: Mon Sep 11 15:29:30 UTC 2023
    - 6K bytes
    - Viewed (0)
  4. docs/iam/access-management-plugin.md

    KEY:
    policy_plugin  enable Access Management Plugin for policy enforcement
    
    ARGS:
    MINIO_POLICY_PLUGIN_URL*          (url)       plugin hook endpoint (HTTP(S)) e.g. "http://localhost:8181/v1/data/httpapi/authz/allow"
    MINIO_POLICY_PLUGIN_AUTH_TOKEN    (string)    authorization header for plugin hook endpoint
    MINIO_POLICY_PLUGIN_ENABLE_HTTP2  (bool)      Enable experimental HTTP2 support to connect to plugin service (default: 'off')
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Tue Dec 13 22:28:48 UTC 2022
    - 4.4K bytes
    - Viewed (0)
  5. cmd/kms-handlers.go

    		Prefix: r.Form.Get("pattern"),
    	})
    	if err != nil {
    		writeErrorResponseJSON(ctx, w, toAdminAPIErr(ctx, err), r.URL)
    		return
    	}
    
    	// Get the cred and owner for checking authz below.
    	cred, owner, s3Err := validateAdminSignature(ctx, r, "")
    	if s3Err != ErrNone {
    		writeErrorResponseJSON(ctx, w, errorCodes.ToAPIErr(s3Err), r.URL)
    		return
    	}
    
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Sun Aug 18 06:43:03 UTC 2024
    - 10.1K bytes
    - Viewed (0)
  6. CODEOWNERS

    /pilot/pkg/config/                                               @istio/wg-networking-maintainers
    /pilot/pkg/networking/plugin/authn/                              @istio/wg-security-maintainers
    /pilot/pkg/networking/plugin/authz/                              @istio/wg-security-maintainers
    /pilot/pkg/serviceregistry/                                      @istio/wg-networking-maintainers-pilot
    Registered: Wed Nov 06 22:53:10 UTC 2024
    - Last Modified: Mon Apr 22 19:22:33 UTC 2024
    - 7.2K bytes
    - Viewed (0)
  7. cmd/iam.go

    }
    
    // IsAllowed - checks given policy args is allowed to continue the Rest API.
    func (sys *IAMSys) IsAllowed(args policy.Args) bool {
    	// If opa is configured, use OPA always.
    	if authz := newGlobalAuthZPluginFn(); authz != nil {
    		ok, err := authz.IsAllowed(args)
    		if err != nil {
    			authZLogIf(GlobalContext, err)
    		}
    		return ok
    	}
    
    	// Policies don't apply to the owner.
    	if args.IsOwner {
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Tue Oct 29 16:01:48 UTC 2024
    - 74.6K bytes
    - Viewed (0)
  8. common-protos/k8s.io/api/certificates/v1/generated.proto

      //
      // More details are available at https://k8s.io/docs/reference/access-authn-authz/certificate-signing-requests/#kubernetes-signers
      //
      // Custom signerNames can also be specified. The signer defines:
      //  1. Trust distribution: how trust (CA bundles) are distributed.
    Registered: Wed Nov 06 22:53:10 UTC 2024
    - Last Modified: Mon Mar 11 18:43:24 UTC 2024
    - 11.6K bytes
    - Viewed (0)
  9. cmd/logging.go

    }
    
    func authNLogIf(ctx context.Context, err error, errKind ...interface{}) {
    	logger.LogIf(ctx, "authN", err, errKind...)
    }
    
    func authZLogIf(ctx context.Context, err error, errKind ...interface{}) {
    	logger.LogIf(ctx, "authZ", err, errKind...)
    }
    
    func peersLogIf(ctx context.Context, err error, errKind ...interface{}) {
    	if !errors.Is(err, grid.ErrDisconnected) {
    		logger.LogIf(ctx, "peers", err, errKind...)
    	}
    }
    
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Wed Jul 03 18:49:48 UTC 2024
    - 7.1K bytes
    - Viewed (0)
  10. common-protos/k8s.io/api/admissionregistration/v1beta1/generated.proto

      // 'authorizer' - A CEL Authorizer. May be used to perform authorization checks for the principal (user or service account) of the request.
      //   See https://pkg.go.dev/k8s.io/apiserver/pkg/cel/library#Authz
      // 'authorizer.requestResource' - A CEL ResourceCheck constructed from the 'authorizer' and configured with the
      //   request resource.
      // Documentation on CEL: https://kubernetes.io/docs/reference/using-api/cel/
      //
    Registered: Wed Nov 06 22:53:10 UTC 2024
    - Last Modified: Mon Mar 11 18:43:24 UTC 2024
    - 22.6K bytes
    - Viewed (0)
Back to top