istio.io/istio@v0.0.0-20240520182934-d79c90f27776/pilot/pkg/serviceregistry/kube/controller/ambient/testdata/deny-groups.yaml (about) 1 action: DENY 2 groups: 3 - rules: 4 - matches: 5 - destinationPorts: 6 - 80 7 - matches: 8 - namespaces: 9 - exact: from-mix-ns 10 principals: 11 - exact: from-mix-principal 12 - rules: 13 - matches: 14 - destinationPorts: 15 - 80 16 - matches: 17 - namespaces: 18 - exact: to-mix-ns 19 principals: 20 - exact: to-mix-principal 21 - rules: 22 - matches: 23 - destinationPorts: 24 - 80 25 - matches: 26 - namespaces: 27 - exact: only-l4-ns 28 principals: 29 - exact: only-l4-principals 30 - rules: 31 - matches: 32 - {} 33 - matches: 34 - {} 35 - rules: 36 - matches: 37 - namespaces: 38 - exact: when-l4-l7-ns 39 - matches: 40 - {} 41 - rules: 42 - matches: 43 - namespaces: 44 - exact: when-l4-ns 45 - matches: 46 - notSourceIps: 47 - address: FBQUFA== 48 length: 32 49 sourceIps: 50 - address: CgoKCg== 51 length: 32 52 - rules: 53 - matches: 54 - {} 55 - matches: 56 - {} 57 name: groups-deny 58 scope: NAMESPACE