istio.io/istio@v0.0.0-20240520182934-d79c90f27776/pilot/pkg/serviceregistry/kube/controller/ambient/testdata/allow-full.yaml (about) 1 groups: 2 - rules: 3 - matches: 4 - notPrincipals: 5 - exact: not-principal 6 - prefix: not-principal-prefix- 7 - suffix: -suffix-not-principal 8 - presence: {} 9 principals: 10 - exact: principal 11 - prefix: principal-prefix- 12 - suffix: -suffix-principal 13 - presence: {} 14 - rules: 15 - matches: 16 - namespaces: 17 - exact: ns 18 - prefix: ns-prefix- 19 - suffix: -ns-suffix 20 - presence: {} 21 notNamespaces: 22 - exact: not-ns 23 - prefix: not-ns-prefix- 24 - suffix: -not-ns-suffix 25 - presence: {} 26 - rules: 27 - matches: 28 - notSourceIps: 29 - address: AgIDBA== 30 length: 32 31 - address: BgYAAA== 32 length: 16 33 sourceIps: 34 - address: AQIDBA== 35 length: 32 36 - address: BQYAAA== 37 length: 16 38 - rules: 39 - matches: 40 - destinationPorts: 41 - 80 42 - 90 43 notDestinationPorts: 44 - 800 45 - 900 46 - rules: 47 - matches: 48 - notSourceIps: 49 - address: WgoKCg== 50 length: 32 51 - address: WqgKAA== 52 length: 24 53 sourceIps: 54 - address: CgoKCg== 55 length: 32 56 - address: wKgKAA== 57 length: 24 58 - rules: 59 - matches: 60 - namespaces: 61 - exact: ns 62 - prefix: ns-prefix- 63 - suffix: -ns-suffix 64 - presence: {} 65 notNamespaces: 66 - exact: not-ns 67 - prefix: not-ns-prefix- 68 - suffix: -not-ns-suffix 69 - presence: {} 70 - rules: 71 - matches: 72 - notPrincipals: 73 - exact: not-principal 74 - prefix: not-principal-prefix- 75 - suffix: -not-suffix-principal 76 - presence: {} 77 principals: 78 - exact: principal 79 - prefix: principal-prefix- 80 - suffix: -suffix-principal 81 - presence: {} 82 - rules: 83 - matches: 84 - destinationIps: 85 - address: CgoKCg== 86 length: 32 87 - address: wKgKAA== 88 length: 24 89 notDestinationIps: 90 - address: WgoKCg== 91 length: 32 92 - address: WqgKAA== 93 length: 24 94 - rules: 95 - matches: 96 - destinationPorts: 97 - 91 98 - 92 99 notDestinationPorts: 100 - 9001 101 - 9002 102 name: allow 103 scope: NAMESPACE