Merge pull request #236 from desimone/feature/deployment-add-spellcheck

deployment: add docs spellcheck to pipeline
2025-04-29 10:26:29 +02:00 · 2019-07-22 14:22:30 -07:00 · 2019-07-22 14:22:30 -07:00 · 50fbfd9aff
commit 50fbfd9aff
parent e524a421b8 f8843eabac
3 changed files with 66 additions and 63 deletions
--- a/8
+++ b/8
@ -30,7 +30,7 @@ GOOSARCHES = linux/amd64 darwin/amd64 windows/amd64
 .PHONY: all
-all: clean build lint test ## Runs a clean, build, fmt, lint, test, and vet.
+all: clean build lint spellcheck test ## Runs a clean, build, fmt, lint, test, and vet.
 .PHONY: tag
 tag: ## Create a new git tag to prepare to build a release
@ -54,6 +54,12 @@ test: ## Runs the go tests.
 	@echo "==> $@"
 	@go test -tags "$(BUILDTAGS)" $(shell go list ./... | grep -v vendor)
 .PHONY: spellcheck
 spellcheck: # Spellcheck docs
 	@echo "==> Spell checking docs..."
 	@GO111MODULE=off go get -u github.com/client9/misspell/cmd/misspell
 	@misspell -error -source=text docs/
 .PHONY: cover
 cover: ## Runs go test with coverage
--- a/docs/docs/identity-providers.md
+++ b/docs/docs/identity-providers.md
@ -14,7 +14,7 @@ There are a few configuration steps required for identity provider integration.
 In this guide we'll cover how to do the following for each identity provider:
-1. Set a **Redirect URL** pointing back to Pomerium. That is, `https://${AUTHENTICATE_SERVICE_URL}/oauth2/callback` 
+1. Set a **Redirect URL** pointing back to Pomerium. That is, `https://${AUTHENTICATE_SERVICE_URL}/oauth2/callback`
 2. Generate a **[Client ID]** and **[Client Secret]**.
 3. Configure Pomerium to use the **[Client ID]** and **[Client Secret]** keys.
@ -105,7 +105,7 @@ https://login.microsoftonline.com/0303f438-3c5c-4190-9854-08d3eb31bd9f/v2.0
 ### Configure Pomerium
-Finally, configure Pomerium with the identity provider settings retrieved in the pervious steps. Your [environmental variables] should look something like:
+Finally, configure Pomerium with the identity provider settings retrieved in the previous steps. Your [environmental variables] should look something like:
 ```bash
 # Azure
@ -129,11 +129,11 @@ Navigate to **User Settings** then **Applications** using the left-hand menu.
 On the **Applications** page, add a new application by setting the following parameters:
-| Field        | Description                                                                |
+Field        | Description
-| ------------ | -------------------------------------------------------------------------- |
+------------ | --------------------------------------------------------------------------
-| Name         | The name of your web app                                                   |
+Name         | The name of your web app
-| Redirect URI | Redirect URL (e.g.`https://authenticate.corp.example.com/oauth2/callback`) |
+Redirect URI | Redirect URL (e.g.`https://authenticate.corp.example.com/oauth2/callback`)
-| Scopes       | **Must** select **read_user** and **openid**                               |
+Scopes       | **Must** select **read_user** and **openid**
 ![Create New Credentials](./gitlab/gitlab-create-application.png)
@ -170,10 +170,10 @@ On the **Credentials** page, click **Create credentials** and choose **OAuth [Cl
 On the **Create [Client ID]** page, select **Web application**. In the new fields that display, set the following parameters:
-| Field                    | Description                                                                |
+Field                    | Description
-| ------------------------ | -------------------------------------------------------------------------- |
+------------------------ | --------------------------------------------------------------------------
-| Name                     | The name of your web app                                                   |
+Name                     | The name of your web app
-| Authorized redirect URIs | Redirect URL (e.g.`https://authenticate.corp.example.com/oauth2/callback`) |
+Authorized redirect URIs | Redirect URL (e.g.`https://authenticate.corp.example.com/oauth2/callback`)
 ![Web App Credentials Configuration](./google/google-create-client-id-config.png)
@ -194,12 +194,10 @@ Then, you'll need to manually open an editor and add an `impersonate_user` field
 ::: warning
- [Google requires](https://stackoverflow.com/questions/48585700/is-it-possible-to-call-apis-from-service-account-without-acting-on-behalf-of-a-u/48601364#48601364) that service accounts act on behalf of another user. You MUST add the `impersonate_user` field to your json key file.
+[Google requires](https://stackoverflow.com/questions/48585700/is-it-possible-to-call-apis-from-service-account-without-acting-on-behalf-of-a-u/48601364#48601364) that service accounts act on behalf of another user. You MUST add the `impersonate_user` field to your json key file.
 :::
 ```json
 {
  "type": "service_account",
@ -210,7 +208,7 @@ Then, you'll need to manually open an editor and add an `impersonate_user` field
 }
 ```
-The base64 encoded contents of this public/private key pair json file will used for the value of the `IDP_SERVICE_ACCOUNT` configuration setting. 
+The base64 encoded contents of this public/private key pair json file will used for the value of the `IDP_SERVICE_ACCOUNT` configuration setting.
 Next we'll delegate G-suite group membership access to the service account we just created .
@ -246,13 +244,13 @@ On the **Create New Application** page, select the **Web** for your application.
 Next, provide the following information for your application settings:
-| Field                        | Description                                                                 |
+Field                        | Description
-| ---------------------------- | --------------------------------------------------------------------------- |
+---------------------------- | ---------------------------------------------------------------------------
-| Name                         | The name of your application.                                               |
+Name                         | The name of your application.
-| Base URIs (optional)         | The domain(s) of your application.                                          |
+Base URIs (optional)         | The domain(s) of your application.
-| Login redirect URIs          | Redirect URL (e.g.`https://authenticate.corp.example.com/oauth2/callback`). |
+Login redirect URIs          | Redirect URL (e.g.`https://authenticate.corp.example.com/oauth2/callback`).
-| Group assignments (optional) | The user groups that can sign in to this application.                       |
+Group assignments (optional) | The user groups that can sign in to this application.
-| Grant type allowed           | **You must enable Refresh Token.**                                          |
+Grant type allowed           | **You must enable Refresh Token.**
 ![Okta Create Application Settings](./okta/okta-create-app-settings.png)
@ -270,27 +268,27 @@ Select your desired authorization server and navigate to the **claims tab**. Cli
 ![Okta configure group claim](./okta/okta-configure-groups-claim.png)
-| Field                 | Value                 |
+Field                 | Value
-| --------------------- | --------------------- |
+--------------------- | ---------------------
-| Name                  | groups                |
+Name                  | groups
-| Include in token type | **ID Token**, Always. |
+Include in token type | **ID Token**, Always.
-| Value Type            | Groups                |
+Value Type            | Groups
-| Filter                | Matches regex `.*`    |
+Filter                | Matches regex `.*`
-| Include in            | Any scope             |
+Include in            | Any scope
 Add an another, almost identical, claim but this time for **Access Token**.
-| Field                 | Value                     |
+Field                 | Value
-| --------------------- | ------------------------- |
+--------------------- | -------------------------
-| Name                  | groups                    |
+Name                  | groups
-| Include in token type | **Access Token**, Always. |
+Include in token type | **Access Token**, Always.
-| Value Type            | Groups                    |
+Value Type            | Groups
-| Filter                | Matches regex `.*`        |
+Filter                | Matches regex `.*`
-| Include in            | Any scope                 |
+Include in            | Any scope
 ![Okta list group claims](./okta/okta-list-groups-claim.png)
-Finally, configure Pomerium with the identity provider settings retrieved in the pervious steps. Your [environmental variables] should look something like this.
+Finally, configure Pomerium with the identity provider settings retrieved in the previous steps. Your [environmental variables] should look something like this.
 ```bash
 IDP_PROVIDER="okta"
@ -323,8 +321,7 @@ Go to the **SSO** page. This section contains the **[Client ID]** and **[Client
 Set the application type to **Web** and the token endpoint to be **POST**.
-Under **Token Timeout settings** set **Refresh Token** to 60 minutes (or whatever value makes sense for your organization). Note, however, if you don't enable refresh tokens the user will be prompted to authenticate whenever the access token expires which can result in a poor user experience. 
+Under **Token Timeout settings** set **Refresh Token** to 60 minutes (or whatever value makes sense for your organization). Note, however, if you don't enable refresh tokens the user will be prompted to authenticate whenever the access token expires which can result in a poor user experience.
 ![One Login SSO settings](./one-login/one-login-sso-settings.png)
@ -338,7 +335,7 @@ To return the user's Active Directory field, configure the group to return `memb
 ![OneLogin set role](./one-login/one-login-oidc-groups-param.png)
-Finally, configure Pomerium with the identity provider settings retrieved in the pervious steps. Your [environmental variables] should look something like this.
+Finally, configure Pomerium with the identity provider settings retrieved in the previous steps. Your [environmental variables] should look something like this.
 ```bash
 IDP_PROVIDER="onelogin"
--- a/docs/reference/readme.md
+++ b/docs/reference/readme.md
@ -164,28 +164,28 @@ Expose a prometheus format HTTP endpoint on the specified port. Disabled by defa
 #### Metrics tracked
-Name                            | Type      | Description
+Name                                          | Type      | Description
-:------------------------------ | :-------- | :--------------------------------------------
+:-------------------------------------------- | :-------- | :----------------------------------------------------------------------
-grpc_client_request_duration_ms | Histogram | GRPC client request duration by service
+grpc_client_request_duration_ms               | Histogram | GRPC client request duration by service
-grpc_client_request_size_bytes | Histogram | GRPC client request size by service
+grpc_client_request_size_bytes                | Histogram | GRPC client request size by service
-grpc_client_requests_total      | Counter   | Total GRPC client requests made by service
+grpc_client_requests_total                    | Counter   | Total GRPC client requests made by service
-grpc_client_response_size_bytes | Histogram | GRPC client response size by service
+grpc_client_response_size_bytes               | Histogram | GRPC client response size by service
-grpc_server_request_duration_ms | Histogram | GRPC server request duration by service
+grpc_server_request_duration_ms               | Histogram | GRPC server request duration by service
-grpc_server_request_size_bytes | Histogram | GRPC server request size by service
+grpc_server_request_size_bytes                | Histogram | GRPC server request size by service
-grpc_server_requests_total      | Counter   | Total GRPC server requests made by service
+grpc_server_requests_total                    | Counter   | Total GRPC server requests made by service
-grpc_server_response_size_bytes | Histogram | GRPC server response size by service
+grpc_server_response_size_bytes               | Histogram | GRPC server response size by service
-http_client_request_duration_ms | Histogram | HTTP client request duration by service
+http_client_request_duration_ms               | Histogram | HTTP client request duration by service
-http_client_request_size_bytes | Histogram | HTTP client request size by service
+http_client_request_size_bytes                | Histogram | HTTP client request size by service
-http_client_requests_total      | Counter   | Total HTTP client requests made by service
+http_client_requests_total                    | Counter   | Total HTTP client requests made by service
-http_client_response_size_bytes | Histogram | HTTP client response size by service
+http_client_response_size_bytes               | Histogram | HTTP client response size by service
-http_server_request_duration_ms | Histogram | HTTP server request duration by service
+http_server_request_duration_ms               | Histogram | HTTP server request duration by service
-http_server_request_size_bytes | Histogram | HTTP server request size by service
+http_server_request_size_bytes                | Histogram | HTTP server request size by service
-http_server_requests_total      | Counter   | Total HTTP server requests handled by service
+http_server_requests_total                    | Counter   | Total HTTP server requests handled by service
-http_server_response_size_bytes | Histogram | HTTP server response size by service
+http_server_response_size_bytes               | Histogram | HTTP server response size by service
-pomerium_config_checksum_int64 | Gauge | Currently loaded configuration checksum by service
+pomerium_config_checksum_int64                | Gauge     | Currently loaded configuration checksum by service
-pomerium_config_last_reload_success | Gauge | Whether the last configuration reload succeeded by service
+pomerium_config_last_reload_success           | Gauge     | Whether the last configuration reload succeeded by service
-pomerium_config_last_reload_success_timestamp | Guage | The timestamp of the last successful configuration reload by service
+pomerium_config_last_reload_success_timestamp | Gauge     | The timestamp of the last successful configuration reload by service
-pomerium_build_info | Gauge | Pomerium build metadata by git revision, service, version and goversion
+pomerium_build_info                           | Gauge     | Pomerium build metadata by git revision, service, version and goversion
 ### Policy