- Sort Score
- Result 10 results
- Languages All
Results 51 - 60 of 89 for tokenreview (0.18 sec)
-
staging/src/k8s.io/api/authentication/v1/register.go
AddToScheme = localSchemeBuilder.AddToScheme ) // Adds the list of known types to the given scheme. func addKnownTypes(scheme *runtime.Scheme) error { scheme.AddKnownTypes(SchemeGroupVersion, &TokenReview{}, &TokenRequest{}, &SelfSubjectReview{}, ) metav1.AddToGroupVersion(scheme, SchemeGroupVersion) return nil
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Tue May 02 12:50:40 UTC 2023 - 1.7K bytes - Viewed (0) -
security/pkg/server/ca/authenticate/kubeauth/kube_jwt.go
"k8s.io/client-go/kubernetes" "istio.io/istio/pkg/cluster" "istio.io/istio/pkg/config/mesh" "istio.io/istio/pkg/security" "istio.io/istio/pkg/spiffe" "istio.io/istio/security/pkg/k8s/tokenreview" ) const ( KubeJWTAuthenticatorType = "KubeJWTAuthenticator" clusterIDMeta = "clusterid" ) type RemoteKubeClientGetter func(clusterID cluster.ID) kubernetes.Interface
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu May 23 21:07:03 UTC 2024 - 5K bytes - Viewed (0) -
staging/src/k8s.io/apimachinery/pkg/api/meta/testrestmapper/test_restmapper.go
{Group: "admissionregistration.k8s.io", Kind: "ValidatingWebhookConfiguration"}: true, {Group: "admissionregistration.k8s.io", Kind: "MutatingWebhookConfiguration"}: true, {Group: "authentication.k8s.io", Kind: "TokenReview"}: true, {Group: "authorization.k8s.io", Kind: "SubjectAccessReview"}: true, {Group: "authorization.k8s.io", Kind: "SelfSubjectAccessReview"}: true,
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri Jan 06 09:07:02 UTC 2023 - 6.5K bytes - Viewed (0) -
api/discovery/aggregated_v2beta1.json
] }, { "resource": "tokenreviews", "responseKind": { "group": "", "kind": "TokenReview", "version": "" }, "scope": "Cluster", "singularResource": "tokenreview", "verbs": [ "create" ] }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Fri Mar 08 04:18:56 UTC 2024 - 55.4K bytes - Viewed (0) -
api/discovery/aggregated_v2.json
] }, { "resource": "tokenreviews", "responseKind": { "group": "", "kind": "TokenReview", "version": "" }, "scope": "Cluster", "singularResource": "tokenreview", "verbs": [ "create" ] }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Tue Mar 12 17:29:14 UTC 2024 - 55.4K bytes - Viewed (0) -
samples/security/spire/spire-quickstart.yaml
kind: ClusterRole apiVersion: rbac.authorization.k8s.io/v1 metadata: name: spire-server-cluster-role rules: # allow TokenReview requests (to verify service account tokens for PSAT # attestation) - apiGroups: ["authentication.k8s.io"] resources: ["tokenreviews"] verbs: ["get", "create"] - apiGroups: [""] resources: ["nodes"] verbs: ["get"] ---
Registered: Fri Jun 14 15:00:06 UTC 2024 - Last Modified: Thu Oct 12 16:12:42 UTC 2023 - 32.2K bytes - Viewed (0) -
pkg/kubeapiserver/options/authentication.go
fs.StringVar(&o.WebHook.Version, "authentication-token-webhook-version", o.WebHook.Version, ""+ "The API version of the authentication.k8s.io TokenReview to send to and expect from the webhook.") fs.DurationVar(&o.WebHook.CacheTTL, "authentication-token-webhook-cache-ttl", o.WebHook.CacheTTL, "The duration to cache responses from the webhook token authenticator.") }
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Sat Mar 09 22:40:22 UTC 2024 - 32.4K bytes - Viewed (0) -
cmd/kubelet/app/options/options.go
"of system:anonymous, and a group name of system:unauthenticated.") fs.BoolVar(&c.Authentication.Webhook.Enabled, "authentication-token-webhook", c.Authentication.Webhook.Enabled, ""+ "Use the TokenReview API to determine authentication for bearer tokens.") fs.DurationVar(&c.Authentication.Webhook.CacheTTL.Duration, "authentication-token-webhook-cache-ttl", c.Authentication.Webhook.CacheTTL.Duration, ""+
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu Apr 18 07:00:05 UTC 2024 - 41.6K bytes - Viewed (0) -
CHANGELOG/CHANGELOG-1.17.md
- Kubelet and aggregated API servers now use v1 TokenReview and SubjectAccessReview endpoints to check authentication/authorization. ([#84768](https://github.com/kubernetes/kubernetes/pull/84768), [@liggitt](https://github.com/liggitt))
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu Jan 28 10:44:33 UTC 2021 - 346.2K bytes - Viewed (1) -
CHANGELOG/CHANGELOG-1.13.md
mission-controllers/#noderestriction). In authentication, we added alpha-level support for automounting improved service account tokens through projected volumes. We also enabled [audience validation in TokenReview](https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.13/#tokenreview-v1-authentication-k8s-io) for the new tokens for improved scoping. Under audit logging, the new alpha-level "dynamic audit configuration" adds support for [dynamically registering webhooks to receive a stream...
Registered: Sat Jun 15 01:39:40 UTC 2024 - Last Modified: Thu May 05 13:44:43 UTC 2022 - 273.1K bytes - Viewed (0)