3pp-mirror/pomerium
1
0
Fork 0
mirror of https://github.com/pomerium/pomerium.git synced 2025-05-04 21:06:03 +02:00
Code Issues Projects Releases Packages Wiki Activity
512 commits 159 branches 125 tags 104 MiB
Commit graph

512 commits

This branch
This branch
All branches
Author SHA1 Message Date
Renovate Bot
df606bdff6 chore(deps): update golang.org/x/crypto commit hash to 891825f 2020-03-23 02:16:37 +00:00
Bobby DeSimone
c23db546fa
authorization: log audience claim failure (#553) 
Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
 2020-03-22 12:06:25 -07:00
Renovate Bot
74637ea4ac chore(deps): update module fsnotify/fsnotify to v1.4.9 2020-03-20 13:18:47 +00:00
Renovate Bot
ed963f9c38 chore(deps): update module prometheus/client_golang to v1.5.1 2020-03-20 02:40:33 +00:00
Bobby DeSimone
4491d1b0e9
sessions: sign-out bug fixes #530 (#544) 
Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
 2020-03-19 18:43:43 -07:00
Renovate Bot
d5d180aa01 chore(deps): update golang.org/x/crypto commit hash to 1b76d66 2020-03-17 17:59:51 +00:00
Renovate Bot
d597af9de4 chore(deps): update module golang/protobuf to v1.3.5 2020-03-17 13:35:07 +00:00
Renovate Bot
8ddb702572 chore(deps): update module golang/mock to v1.4.3 2020-03-17 11:48:19 +00:00
Ogundele Olumide
3dd9188004
feat: gitlab oidc/ oauth provider (#518) 
- implement gitlab oauth support
 - add documentation for the gitlab support
 2020-03-16 19:58:49 -07:00
Bobby DeSimone
ba14ea246d
*: remove import path comments (#545) 
- import path comments are obsoleted by the go.mod file's module statement

Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
 2020-03-16 10:13:47 -07:00
Mihai Todor
c14e3d8b34
Make IDP_PROVIDER env var mandatory (#536) 2020-03-15 19:00:23 -07:00
Renovate Bot
1b8db111f5 chore(deps): update github.com/pomerium/autocache commit hash to 227c993 2020-03-16 01:34:39 +00:00
Bobby DeSimone
6f4b26abe2
identity: support oidc UserInfo Response (#529) 
Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
 2020-03-12 20:56:40 -07:00
Bobby DeSimone
8d1732582e
authorize: use jwt insead of state struct (#514) 
authenticate: unmarshal and verify state from jwt, instead of middleware
authorize: embed opa policy using statik
authorize: have IsAuthorized handle authorization for all routes
authorize: if no signing key is provided, one is generated
authorize: remove IsAdmin grpc endpoint
authorize/client: return authorize decision struct
cmd/pomerium: main logger no longer contains email and group
cryptutil: add ECDSA signing methods
dashboard: have impersonate form show up for all users, but have api gated by authz
docs: fix typo in signed jwt header
encoding/jws: remove unused es256 signer
frontend: namespace static web assets
internal/sessions: remove leeway to match authz policy
proxy:  move signing functionality to authz
proxy: remove jwt attestation from proxy (authZ does now)
proxy: remove non-signed headers from headers
proxy: remove special handling of x-forwarded-host
sessions: do not verify state in middleware
sessions: remove leeway from state to match authz
sessions/{all}: store jwt directly instead of state

Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
 2020-03-10 11:19:26 -07:00
Renovate Bot
a477af9378 chore(deps): update module prometheus/client_golang to v1.5.0 2020-03-10 11:42:23 +00:00
Bobby DeSimone
855860136c
depedency: use go mod versioned redis (#528) 
Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
 2020-03-08 10:48:53 -07:00
Renovate Bot
7e1c4fa498 chore(deps): update module google.golang.org/api to v0.20.0 2020-03-07 15:53:20 +00:00
Renovate Bot
9515a48ba0 chore(deps): update golang.org/x/crypto commit hash to 78000ba 2020-03-07 14:44:21 +00:00
Renovate Bot
702f63fea1 chore(deps): update module open-policy-agent/opa to v0.17.3 2020-03-07 13:01:58 +00:00
Renovate Bot
32904cfe36 chore(deps): update module rakyll/statik to v0.1.7 2020-03-07 03:03:35 +00:00
Renovate Bot
3378a5ecf8 chore(deps): update module golang/protobuf to v1.3.4 2020-03-07 01:18:26 +00:00
Renovate Bot
37a50b3a34 chore(deps): update module gorilla/mux to v1.7.4 2020-03-06 23:49:00 +00:00
Renovate Bot
c6281d1f49 chore(deps): update github.com/pomerium/autocache commit hash to 6c66ed5 2020-03-06 23:40:24 +00:00
Travis Groth
aa0ce1ecc7
deps: enable automerge and set labels on renovate PRs (#527) 2020-03-06 18:33:21 -05:00
renovate[bot]
f64edc0914
chore(deps): update module rs/zerolog to v1.18.0 (#507) 
Co-authored-by: Renovate Bot <bot@renovateapp.com>
 2020-03-06 18:03:55 -05:00
Travis Groth
e666306ef8
Remove superfluous Options.Checksum type conversions (#522) 2020-03-06 17:59:26 -05:00
Bobby DeSimone
27909f22ce
docs: make from source quickstart (#519) 
- move building from so
- remove dnsmasq instructions

Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
 2020-03-05 18:07:43 -08:00
Travis Groth
3d211a8931
ci: Consolidate matrix build parameters (#521) 2020-03-05 21:04:59 -05:00
Travis Groth
87d3d8c798
Ensure service name is passed to grpc metrics handlers (#510) 2020-02-21 06:25:43 -05:00
Travis Groth
3654f44384
config: Expose and set default GRPC Server Keepalive Parameters (#509) 2020-02-19 21:21:28 -05:00
Bobby DeSimone
8f6f686bbe
docs: fix tpos in dashboard recipe (#504) 
Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
 2020-02-16 09:58:24 -08:00
Bobby DeSimone
8c7fdf4b80
docs: update background (#505) 
Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
 2020-02-15 12:17:10 -08:00
renovate[bot]
7c67599efd
chore(deps): update module google.golang.org/grpc to v1.27.1 (#496) 2020-02-12 20:23:29 -05:00
renovate[bot]
23fe11f562
chore(deps): update module prometheus/client_golang to v1.4.1 (#498) 2020-02-10 22:02:08 -05:00
renovate[bot]
b13603c55b
chore(deps): update module open-policy-agent/opa to v0.17.1 (#497) 
Co-authored-by: WhiteSource Renovate <renovatebot@gmail.com>
 2020-02-10 08:55:26 -08:00
renovate[bot]
55b50af101
chore(deps): update module go.opencensus.io to v0.22.3 (#483) 
Co-authored-by: WhiteSource Renovate <renovatebot@gmail.com>
 2020-02-10 08:54:46 -08:00
Bobby DeSimone
5716113c2a
authenticate: make callback path configurable (#493) 
Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
 2020-02-08 09:06:23 -08:00
Travis Groth
1901cb5ca0
Roll back grpc to v1.25.1 (#484) 2020-02-03 06:30:54 -05:00
Bobby DeSimone
2f13488598
authorize: use opa for policy engine (#474) 
Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
 2020-02-02 11:18:22 -08:00
ohdarling88
111aa8f4d5
move set request headers before handle allow public access to fix https://github.com/pomerium/pomerium/issues/477 (#479) 2020-02-02 11:15:13 -08:00
Bobby DeSimone
50754bed31
docs: various fixes (#478) 
Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
 2020-02-02 11:08:34 -08:00
Bobby DeSimone
06433e0d53
internal/cryptutil: standardize leeway to 5 mins (#476) 
Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
 2020-02-01 09:32:43 -08:00
Bobby DeSimone
b80790a061
cache: add option validations (#468) 
Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
 2020-01-31 20:24:52 -08:00
Bobby DeSimone
9f02c79b90
docs: update helm for v3 (#469) 
Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
 2020-01-31 20:23:56 -08:00
Travis Groth
2d2b16566a
Add yaml tag to Options.Policies (#475) 2020-01-30 20:41:39 -08:00
nitper
6a10112ebe docs: fix cookie_domain (#472) 2020-01-28 09:35:07 -08:00
renovate[bot]
36abc9fd65 chore(deps): update module golang/mock to v1.4.0 (#470) 
Co-authored-by: WhiteSource Renovate <renovatebot@gmail.com>
 2020-01-27 11:58:43 -08:00
renovate[bot]
78c396ea9d chore(deps): update module yaml to v2.2.8 (#471) 
Co-authored-by: WhiteSource Renovate <renovatebot@gmail.com>
 2020-01-27 11:58:31 -08:00
Bobby DeSimone
e82477ea5c
deployment: throw away golanglint-ci defaults (#439) 
* deployment: throw away golanglint-ci defaults

Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
 2020-01-26 12:33:45 -08:00
Bobby DeSimone
dd54ce4481
v0.6.0 
Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
 2020-01-24 16:09:47 -08:00