istio.io/istio@v0.0.0-20240520182934-d79c90f27776/pilot/pkg/security/authz/builder/testdata/http/multiple-policies-in.yaml

istio.io/istio@v0.0.0-20240520182934-d79c90f27776/pilot/pkg/security/authz/builder/testdata/http/multiple-policies-in.yaml (about)

     1  apiVersion: security.istio.io/v1beta1
     2  kind: AuthorizationPolicy
     3  metadata:
     4    name: httpbin-1
     5    namespace: foo
     6  spec:
     7    selector:
     8      matchLabels:
     9        app: httpbin
    10        version: v1
    11    rules:
    12    - to:
    13      - operation:
    14          methods: ["GET", "POST"]
    15  ---
    16  apiVersion: security.istio.io/v1beta1
    17  kind: AuthorizationPolicy
    18  metadata:
    19    name: httpbin-2
    20    namespace: foo
    21  spec:
    22    selector:
    23      matchLabels:
    24        app: httpbin
    25    rules:
    26      - to:
    27        - operation:
    28            paths: ["/v1", "/v2"]
    29  ---
    30  apiVersion: security.istio.io/v1beta1
    31  kind: AuthorizationPolicy
    32  metadata:
    33    name: httpbin-3
    34    namespace: foo
    35  spec:
    36    selector:
    37      matchLabels:
    38        version: v1
    39    rules:
    40      - to:
    41          - operation:
    42              hosts: ["google.com", "httpbin.org"]
    43  ---
    44  apiVersion: security.istio.io/v1beta1
    45  kind: AuthorizationPolicy
    46  metadata:
    47    name: httpbin-4
    48    namespace: foo
    49  spec:
    50    rules:
    51      - to:
    52          - operation:
    53              ports: ["80", "90"]
    54  ---
    55  apiVersion: security.istio.io/v1beta1
    56  kind: AuthorizationPolicy
    57  metadata:
    58    name: httpbin-5
    59    namespace: foo
    60  spec:
    61    rules:
    62      - from:
    63          - source:
    64              principals: ["principals1", "principals2"]
    65  ---
    66  apiVersion: security.istio.io/v1beta1
    67  kind: AuthorizationPolicy
    68  metadata:
    69    name: httpbin-6
    70    namespace: foo
    71  spec:
    72    rules:
    73      - from:
    74          - source:
    75              requestPrincipals: ["requestPrincipals1", "requestPrincipals2"]
    76  ---
    77  apiVersion: security.istio.io/v1beta1
    78  kind: AuthorizationPolicy
    79  metadata:
    80    name: httpbin-7
    81    namespace: foo
    82  spec:
    83    rules:
    84      - from:
    85          - source:
    86              namespaces: ["namespaces1", "namespaces2"]
    87  ---
    88  apiVersion: security.istio.io/v1beta1
    89  kind: AuthorizationPolicy
    90  metadata:
    91    name: httpbin-8
    92    namespace: foo
    93  spec:
    94    rules:
    95      - from:
    96          - source:
    97              ipBlocks: ["1.2.3.4", "5.6.7.0/24"]
    98  ---
    99  apiVersion: security.istio.io/v1beta1
   100  kind: AuthorizationPolicy
   101  metadata:
   102    name: httpbin-9
   103    namespace: foo
   104  spec:
   105    rules:
   106      - when:
   107          - key: "request.headers[X-abc]"
   108            values: ["abc1", "abc2"]
   109  ---