1
0
Fork 0
mirror of https://github.com/pomerium/pomerium.git synced 2025-07-14 15:28:28 +02:00
Commit graph

13 commits

Author SHA1 Message Date
Joe Kralicky
fe31799eb5
Fix many instances of contexts and loggers not being propagated ()
This also replaces instances where we manually write "return ctx.Err()"
with "return context.Cause(ctx)" which is functionally identical, but
will also correctly propagate cause errors if present.
2024-10-25 14:50:56 -04:00
Joe Kralicky
0e13248685
Core-Zero Import ()
* initial core-zero import implementation

* Update /config/import openapi description and use PUT instead of POST

* update import ui tests

* Add 413 as a possible response for /config/import

* Options/Settings type conversion tests and related bugfixes

* Fixes for proto type conversion and tests

* Update core-zero import client

* Update core-zero import client

* Update import api and environment detection

* update go.mod

* remove old testdata

* Remove usage of deleted setting after merge

* remove extra newline from --version output
2024-10-09 18:51:56 -04:00
Denis Mishin
09f1585b01
zero/cmd: make it more evident what caused shutdown () 2024-08-06 15:10:58 -04:00
Joe Kralicky
de603f87de
Add new configurable bootstrap writers () ()
* Add new configurable bootstrap writers ()

This PR adds the ability to configure different backends to use for
storing modifications to the zero bootstrap config. The two currently
implemented backends allow writing changes to a file or to a Kubernetes
secret. Backend selection is determined by the scheme in a URI passed to
the flag '--config-writeback-uri'.

In a Kubernetes environment, where the bootstrap config is mounted into
the pod from a secret, this option allows Pomerium to write changes back
to the secret, as writes to the mounted secret file on disk are not
persisted.

* Use env vars for bootstrap config filepath/writeback uri

* linter pass and code cleanup

* Add new config writer options mechanism

This moves the encryption cipher parameter out of the WriteConfig()
method in the ConfigWriter interface and into a new ConfigWriterOptions
struct. Options (e.g. cipher) can be applied to an existing ConfigWriter
to allow customizing implementation-specific behavior.

* Code cleanup/lint fixes

* Move vendored k8s code into separate package, and add license header and package comment
2024-05-31 12:26:17 -04:00
Denis Mishin
d20e99ca8c
zero: fix bootstrap config path () 2024-03-21 20:39:52 -04:00
Denis Mishin
faa2a8652b
zero/telemetry: add reporter () 2023-12-20 14:53:06 -05:00
Caleb Doxsey
d6221c07ce
core/config: remove debug option, always use json logs ()
* core/config: remove debug option, always use json logs

* go mod tidy
2023-12-15 11:29:05 -07:00
Denis Mishin
d2b2ad3250
zero: use production urls by default () 2023-12-04 20:01:46 -05:00
Denis Mishin
d610b9c25c
zero/core: set drwx------ for cache dir () 2023-11-27 10:36:25 -05:00
Kenneth Jenkins
14b13bb791
zero: use os.UserCacheDir for boostrap config path () 2023-11-17 14:44:32 -08:00
Caleb Doxsey
6810091d38
core/zero: add support for managed mode from config file () 2023-11-17 09:04:59 -07:00
Caleb Doxsey
3c2dc5e0a2 core/zero: fix urls () 2023-11-15 09:21:56 -08:00
Denis Mishin
e0236d3737 zero: managed mode controller () 2023-11-15 09:21:56 -08:00