1
0
Fork 0
mirror of https://github.com/pomerium/pomerium.git synced 2025-06-01 02:12:50 +02:00
Commit graph

28 commits

Author SHA1 Message Date
Joe Kralicky
396c35b6b4
New tracing system ()
* update tracing config definitions

* new tracing system

* performance improvements

* only configure tracing in envoy if it is enabled in pomerium

* [tracing] refactor to use custom extension for trace id editing ()

refactor to use custom extension for trace id editing

* set default tracing sample rate to 1.0

* fix proxy service http middleware

* improve some existing auth related traces

* test fixes

* bump envoyproxy/go-control-plane

* code cleanup

* test fixes

* Fix missing spans for well-known endpoints

* import extension apis from pomerium/envoy-custom
2025-01-21 13:26:32 -05:00
Joe Kralicky
fe31799eb5
Fix many instances of contexts and loggers not being propagated ()
This also replaces instances where we manually write "return ctx.Err()"
with "return context.Cause(ctx)" which is functionally identical, but
will also correctly propagate cause errors if present.
2024-10-25 14:50:56 -04:00
Caleb Doxsey
d2c14cd6d2
logging: remove ctx from global log methods ()
* log: remove warn

* log: update debug

* log: update info

* remove level, log

* remove contextLogger function
2024-10-23 14:18:52 -06:00
Joe Kralicky
da866c1ac0
Fix race condition in databroker restart test () 2024-10-07 18:48:05 -04:00
Caleb Doxsey
bfc782ff06
core/zero: add pseudonymization key () 2024-09-19 14:43:01 -06:00
Caleb Doxsey
146efc1b13
core/zero: add usage reporter ()
* wip

* add response

* handle empty email

* use set, update log

* add test

* add coalesce, comments, test

* add test, fix bug

* use builtin cmp.Or

* remove wait ready call

* use api error
2024-09-12 15:45:54 -06:00
Denis Mishin
0503b41108
zero/connect: add re-run health checks command ()
* zero/connect: add run health checks and shutdown commands

* fix proto

* trigger re-run on command

* add handler

* rename runPeriodicHealthChecksLeased
2024-08-22 16:17:53 -04:00
Denis Mishin
6e766233c7
zero/health-checks: fix early checks sometimes missing ()
* zero/health-checks: fix early checks sometimes missing

* rm closure

* fix test
2024-08-20 22:13:45 -04:00
Denis Mishin
09f1585b01
zero/cmd: make it more evident what caused shutdown () 2024-08-06 15:10:58 -04:00
Denis Mishin
c1dec06afa
zero/telemetry: internal envoy stats scraper and metrics producer () 2024-06-16 20:41:05 -04:00
Denis Mishin
114f730dba
zero: refactor telemetry and controller ()
* zero: refactor controller

* refactor zero telemetry and controller

* wire with connect handler

* cr
2024-06-12 21:59:25 -04:00
Denis Mishin
cc636be707
zero: refactor controller () 2024-06-12 16:31:42 -04:00
Joe Kralicky
de603f87de
Add new configurable bootstrap writers () ()
* Add new configurable bootstrap writers ()

This PR adds the ability to configure different backends to use for
storing modifications to the zero bootstrap config. The two currently
implemented backends allow writing changes to a file or to a Kubernetes
secret. Backend selection is determined by the scheme in a URI passed to
the flag '--config-writeback-uri'.

In a Kubernetes environment, where the bootstrap config is mounted into
the pod from a secret, this option allows Pomerium to write changes back
to the secret, as writes to the mounted secret file on disk are not
persisted.

* Use env vars for bootstrap config filepath/writeback uri

* linter pass and code cleanup

* Add new config writer options mechanism

This moves the encryption cipher parameter out of the WriteConfig()
method in the ConfigWriter interface and into a new ConfigWriterOptions
struct. Options (e.g. cipher) can be applied to an existing ConfigWriter
to allow customizing implementation-specific behavior.

* Code cleanup/lint fixes

* Move vendored k8s code into separate package, and add license header and package comment
2024-05-31 12:26:17 -04:00
Caleb Doxsey
1a5b8b606f
core/lint: upgrade golangci-lint, replace interface{} with any ()
* core/lint: upgrade golangci-lint, replace interface{} with any

* regen proto
2024-05-02 14:33:52 -06:00
Denis Mishin
614048ae9c
health-checks: add route reachability ()
* health-checks: add route reachability

* rm tls check bypass
2024-05-02 13:31:48 -04:00
Denis Mishin
991fca496c
healthcheck: add common package, zero reporter and first xds check () 2024-04-10 15:21:39 -04:00
Caleb Doxsey
4ac06d3bbd
core/logging: less verbose logs () 2024-03-29 15:26:20 -06:00
Denis Mishin
d20e99ca8c
zero: fix bootstrap config path () 2024-03-21 20:39:52 -04:00
Denis Mishin
4193583301
zero: add service accounts support ()
* zero: add service accounts support

* quit on terminal errors
2024-03-20 17:03:03 -04:00
Denis Mishin
07d608792f
zero: group funcs that need run within a lease () 2023-12-21 11:41:41 -05:00
Denis Mishin
faa2a8652b
zero/telemetry: add reporter () 2023-12-20 14:53:06 -05:00
Denis Mishin
b66634d1e6
zero: only leave public packages in pkg/zero () 2023-12-12 14:24:37 -05:00
Denis Mishin
ea64902a73
zero: merge pomerium/zero-sdk () 2023-12-11 17:31:39 -05:00
Denis Mishin
c4dd965f2d
zero/telemetry: calculate DAU and MAU () 2023-12-11 13:37:01 -05:00
Denis Mishin
8a2cf3faf2
zero: add more verbose logging about background control loops () 2023-12-05 11:22:01 -05:00
Kenneth Jenkins
14b13bb791
zero: use os.UserCacheDir for boostrap config path () 2023-11-17 14:44:32 -08:00
Denis Mishin
0e1061d813 zero: restart config reconciliation when databroker storage is changed () 2023-11-15 09:21:56 -08:00
Denis Mishin
e0236d3737 zero: managed mode controller () 2023-11-15 09:21:56 -08:00