3pp-mirror/pomerium: Pomerium is an identity and context-aware access proxy.

mirror of https://github.com/pomerium/pomerium.git synced 2025-09-28 15:49:23 +02:00

Pomerium is an identity and context-aware access proxy.

beyondcorp gateway go iam identity identity-aware-proxy pomerium reverse-proxy vpn zero-trust

Find a file

Denis Mishin 31a57e7b48 mcp: 401 with www-authorize (#5851 ) ## Summary The 2025-06-18 revision of MCP protocol requires to set `www-authenticate` header for MCP server routes and implement oauth protected resource endpoint. ## Related issues Fix https://linear.app/pomerium/issue/ENG-2948/mcp-respond-with-www-authenticate ## User Explanation <!-- How would you explain this change to the user? If this change doesn't create any user-facing changes, you can leave this blank. If filled out, add the `docs` label --> ## Checklist - [x] reference any related issues - [x] updated unit tests - [x] add appropriate label (`enhancement`, `bug`, `breaking`, `dependencies`, `ci`) - [x] ready for review		2025-09-26 11:39:23 -04:00
.github	chore(deps): bump the github-actions group with 6 updates (#5806 )	2025-09-02 13:07:47 -06:00
.vscode	use tlsClientConfig instead of custom dialer (#3830 )	2022-12-27 09:55:36 -07:00
authenticate	core: replace atomicutil.Value with atomic.Pointer (#5848 )	2025-09-23 14:18:27 -06:00
authorize	mcp: 401 with www-authorize (#5851 )	2025-09-26 11:39:23 -04:00
changelogs	changelog for v0.30.0 (#5704 )	2025-07-07 14:38:51 -07:00
cmd/pomerium	feat: health check CLI (#5823 )	2025-09-15 16:43:07 -04:00
config	mcp: 401 with www-authorize (#5851 )	2025-09-26 11:39:23 -04:00
databroker	core: replace atomicutil.Value with atomic.Pointer (#5848 )	2025-09-23 14:18:27 -06:00
examples	ci: address Dockerfile warnings (#5283 )	2024-09-11 16:56:47 -07:00
integration	fix: split service expected checks (#5839 )	2025-09-19 16:13:42 -04:00
internal	mcp: 401 with www-authorize (#5851 )	2025-09-26 11:39:23 -04:00
k8s/zero	Fix kustomization warning (#5735 )	2025-07-21 14:05:26 -04:00
ospkg	enable systemd health checks by default (#5850 )	2025-09-25 11:24:08 -04:00
pkg	fix: handle os.Interrupt for shutdown (#5829 )	2025-09-25 11:58:54 -04:00
proxy	core: replace atomicutil.Value with atomic.Pointer (#5848 )	2025-09-23 14:18:27 -06:00
scripts	proto: fix dependencies (#5450 )	2025-01-27 14:41:08 -07:00
ui	ui: do not show upstream error page for local errors (#5756 )	2025-08-27 11:29:03 -07:00
.clang-format	config: add circuit breaker thresholds (#5650 )	2025-06-16 09:38:39 -06:00
.codecov.yml
.dockerignore	frontend: react+mui (#3004 )	2022-02-07 08:47:58 -07:00
.fossa.yml	rm cli code (#2824 )	2021-12-15 16:25:21 -05:00
.gitattributes
.gitignore	core/ui: improve frontend build size (#5109 )	2024-05-09 07:10:00 -06:00
.golangci.yml	upgrade to go v1.24 (#5562 )	2025-04-02 15:53:09 -06:00
.pre-commit-config.yaml	integration: add single-cluster integration tests (#2516 )	2021-08-24 15:35:05 -06:00
3RD-PARTY	dependencies: vendor base58, remove shortuuid (#2739 )	2021-11-02 09:23:15 -06:00
DEBUG.MD
Dockerfile	chore(deps): bump the docker group with 3 updates (#5807 )	2025-09-11 15:40:15 -04:00
Dockerfile.debug	chore(deps): bump the docker group with 3 updates (#5807 )	2025-09-11 15:40:15 -04:00
go.mod	mcp: 401 with www-authorize (#5851 )	2025-09-26 11:39:23 -04:00
go.sum	mcp: 401 with www-authorize (#5851 )	2025-09-26 11:39:23 -04:00
LICENSE
Makefile	test improvements (#5741 )	2025-07-23 14:07:11 -06:00
pomerium.go	fix go get, improve redis test (#2450 )	2021-08-06 12:07:20 -06:00
README.md	core/ui: update logo (#5249 )	2024-09-05 18:13:06 +02:00
RELEASING.md	deployment: update RELEASING.md (#3503 )	2022-08-16 10:40:03 -07:00
SECURITY.md	Fix SECURITY.md treated as symlink (#5211 )	2024-08-07 17:20:18 -04:00

README.md

Pomerium builds secure, clientless connections to internal web apps and services without a corporate VPN.

Pomerium is:

Easier with clientless access.
Faster by being tunnel-free and deployed where your apps and services are.
Safer because every single action is verified before allowed to execute.
Tailored to your organization’s needs by integrating all data for context-aware access.

It’s not a VPN alternative – it’s the trusted, foolproof way to protect your business. Want a hosted control plane and management GUI? Give Pomerium Zero a try today!

Docs

For comprehensive docs, and tutorials see our documentation.

Contributing

See Contributing for information on how you can contribute to Pomerium.

README.md Unescape Escape

Docs

Contributing

README.md