3pp-mirror/pomerium
1
0
Fork 0
mirror of https://github.com/pomerium/pomerium.git synced 2025-05-06 13:56:04 +02:00
Code Issues Projects Releases Packages Wiki Activity
2640 commits 159 branches 125 tags 104 MiB
Commit graph

2640 commits

This branch
This branch
All branches
Author SHA1 Message Date
Caleb Doxsey
0620cfdc50
config: add support for embedded PPL policy (#2401) 2021-07-27 13:44:10 -06:00
Caleb Doxsey
c34118360d
ppl: remove support for aliases (#2400) 2021-07-27 12:29:42 -06:00
Caleb Doxsey
1c627e5724
disable http/2 for websockets (#2399) 2021-07-26 20:09:18 -06:00
dependabot[bot]
d9bc9d7005
chore(deps): bump github.com/prometheus/procfs from 0.7.0 to 0.7.1 (#2395) 
Bumps [github.com/prometheus/procfs](https://github.com/prometheus/procfs) from 0.7.0 to 0.7.1.
- [Release notes](https://github.com/prometheus/procfs/releases)
- [Commits](https://github.com/prometheus/procfs/compare/v0.7.0...v0.7.1)

---
updated-dependencies:
- dependency-name: github.com/prometheus/procfs
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-07-26 11:52:05 -06:00
dependabot[bot]
0fc9fece5a
chore(deps): bump google.golang.org/api from 0.50.0 to 0.51.0 (#2394) 
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.50.0 to 0.51.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/master/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.50.0...v0.51.0)

---
updated-dependencies:
- dependency-name: google.golang.org/api
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-07-26 11:50:59 -06:00
bobby
6bac8e1ace
symlink security policy to root of project (#2396) 
Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
 2021-07-26 10:42:21 -07:00
Travis Groth
91e4ddd9d5
ci: update gcloud action (#2393) 2021-07-24 10:22:52 -07:00
Caleb Doxsey
8f7357b333
google: remove WithHTTPClient (#2391) 2021-07-23 15:36:56 -06:00
Caleb Doxsey
ac8ae3ef5b
directory: add logging http client to help with debugging outbound http requests (#2385) 2021-07-22 11:58:52 -06:00
bobby
aa0e6872de
evaluator: use cryputil to hash (#2384) 
Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
 2021-07-22 06:15:54 -07:00
Caleb Doxsey
c7a8f11d9a
authorize: add additional tracing for rego evaluation (#2381) 2021-07-21 15:37:51 -06:00
Caleb Doxsey
8be71800c4
k8s: add flush-credentials command (#2379) 
* k8s: add flush-credentials command

* Update cmd/pomerium-cli/kubernetes.go

Co-authored-by: Travis Groth <travisgroth@users.noreply.github.com>

Co-authored-by: Travis Groth <travisgroth@users.noreply.github.com>
 2021-07-20 14:51:55 -07:00
Caleb Doxsey
8a74fae2e7
urlutil: improve error message for urls with port in path (#2377) 2021-07-20 11:08:50 -06:00
Caleb Doxsey
fbf44261c1
telemetry: support b3 headers on gRPC server calls (#2376) 2021-07-20 05:36:58 -06:00
dependabot[bot]
a02010409a
chore(deps): bump github.com/google/uuid from 1.2.0 to 1.3.0 (#2374) 
Bumps [github.com/google/uuid](https://github.com/google/uuid) from 1.2.0 to 1.3.0.
- [Release notes](https://github.com/google/uuid/releases)
- [Commits](https://github.com/google/uuid/compare/v1.2.0...v1.3.0)

---
updated-dependencies:
- dependency-name: github.com/google/uuid
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-07-19 13:28:32 -06:00
dependabot[bot]
e4c852d830
chore(deps): bump github.com/open-policy-agent/opa from 0.30.1 to 0.30.2 (#2373) 
Bumps [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) from 0.30.1 to 0.30.2.
- [Release notes](https://github.com/open-policy-agent/opa/releases)
- [Changelog](https://github.com/open-policy-agent/opa/blob/main/CHANGELOG.md)
- [Commits](https://github.com/open-policy-agent/opa/compare/v0.30.1...v0.30.2)

---
updated-dependencies:
- dependency-name: github.com/open-policy-agent/opa
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-07-19 13:27:51 -06:00
Travis Groth
ba6e4b129a
ci: convert to FOSSA scan (#2371) 2021-07-19 15:06:57 -04:00
Caleb Doxsey
1123de07a6
envoy: only allow embedding (#2368) 2021-07-19 08:32:48 -06:00
Caleb Doxsey
2a5dcc2848
ci: use revive instead of golint (#2370) 2021-07-16 10:26:47 -06:00
Caleb Doxsey
d45a7e9996
databroker: tests (#2367) 
* databroker: tests

* fix lint
 2021-07-16 10:26:29 -06:00
Travis Groth
d453c90fb6
ci: use github app for backport credentials (#2369) 2021-07-16 08:30:02 -06:00
Caleb Doxsey
cef08a1c2d
authorize: remove service account impersonate user id, email and groups (#2365) 2021-07-15 09:31:45 -06:00
Alex Fornuto
86b56ffd37
Docs bug fixes (#2362) 
* close warning block, syntax highlight

* Add title, grammar-fix link
 2021-07-14 12:34:06 -05:00
dependabot[bot]
34b8af77d1
chore(deps): bump github.com/rs/cors from 1.7.0 to 1.8.0 (#2334) 
* chore(deps): bump github.com/rs/cors from 1.7.0 to 1.8.0

Bumps [github.com/rs/cors](https://github.com/rs/cors) from 1.7.0 to 1.8.0.
- [Release notes](https://github.com/rs/cors/releases)
- [Commits](https://github.com/rs/cors/compare/v1.7.0...v1.8.0)

---
updated-dependencies:
- dependency-name: github.com/rs/cors
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

* fix test to handle 204

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Caleb Doxsey <cdoxsey@pomerium.com>
 2021-07-14 10:08:03 -06:00
dependabot[bot]
9d17e65a5d
chore(deps): bump github.com/open-policy-agent/opa from 0.29.4 to 0.30.1 (#2323) 
Bumps [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) from 0.29.4 to 0.30.1.
- [Release notes](https://github.com/open-policy-agent/opa/releases)
- [Changelog](https://github.com/open-policy-agent/opa/blob/main/CHANGELOG.md)
- [Commits](https://github.com/open-policy-agent/opa/compare/v0.29.4...v0.30.1)

---
updated-dependencies:
- dependency-name: github.com/open-policy-agent/opa
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-07-14 10:03:25 -06:00
Caleb Doxsey
360aa89505
authorize: allow redirects on deny (#2361) 2021-07-13 15:41:36 -06:00
Caleb Doxsey
b4b86dccb4
authorize: decode CheckRequest path for redirect (#2357) 2021-07-13 13:17:21 -06:00
Caleb Doxsey
ca8205f0b4
config: add warning about http URLs (#2358) 2021-07-13 11:12:03 -06:00
Caleb Doxsey
a9ba3ffff5
envoyconfig: default zipkin path to / when empty (#2359) 2021-07-13 11:11:49 -06:00
Caleb Doxsey
4c64daa8c2
envoy: only check for pid with monitor (#2355) 2021-07-13 09:58:37 -06:00
Caleb Doxsey
23552cfc1c
envoyconfig: only delete cached files, ignore noisy error (#2356) 2021-07-13 09:58:25 -06:00
dependabot[bot]
8973735d2c
chore(deps): bump github.com/caddyserver/certmagic from 0.14.0 to 0.14.1 (#2352) 
Bumps [github.com/caddyserver/certmagic](https://github.com/caddyserver/certmagic) from 0.14.0 to 0.14.1.
- [Release notes](https://github.com/caddyserver/certmagic/releases)
- [Commits](https://github.com/caddyserver/certmagic/compare/v0.14.0...v0.14.1)

---
updated-dependencies:
- dependency-name: github.com/caddyserver/certmagic
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-07-12 17:41:47 -07:00
dependabot[bot]
1c6c6bb9e8
chore(deps): bump github.com/golangci/golangci-lint (#2353) 
Bumps [github.com/golangci/golangci-lint](https://github.com/golangci/golangci-lint) from 1.40.1 to 1.41.1.
- [Release notes](https://github.com/golangci/golangci-lint/releases)
- [Changelog](https://github.com/golangci/golangci-lint/blob/master/CHANGELOG.md)
- [Commits](https://github.com/golangci/golangci-lint/compare/v1.40.1...v1.41.1)

---
updated-dependencies:
- dependency-name: github.com/golangci/golangci-lint
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-07-12 17:41:34 -07:00
Caleb Doxsey
8e155bdf61
authorize: log service account and impersonation details (#2354) 2021-07-12 14:21:37 -06:00
Alex Fornuto
97457a3223
Docs sorting (#2346) 
* fix Transmission sorting in sidebar

* rename VSCode Server for alphabetizing and clarity

* capitalize Pomerium

* Update docs/guides/code-server.md

Co-authored-by: Joe Previte <jjprevite@gmail.com>

* fix naming and sorting for coder-server, add description

Co-authored-by: Joe Previte <jjprevite@gmail.com>
 2021-07-12 10:13:02 -05:00
Taylor
93e735831f
authclient - use proxy from environment (#2316) 2021-07-08 08:16:15 -07:00
Caleb Doxsey
4ecb43454d
tools: add tools.go to pin go run apps (#2344) 
* tools: add tools.go to pin go run apps

* remove deps-lint
 2021-07-07 17:34:51 -06:00
Alex Fornuto
e23d42b070
update installation source for mkcert (#2340) 2021-07-07 16:26:51 -05:00
Caleb Doxsey
cb09aa4199
envoyconfig: add bootstrap layered runtime configuration (#2343) 2021-07-07 15:18:02 -06:00
wasaga
3073146ff2
fix: timeout field in protobuf, add websocket tests 2021-07-07 12:06:56 -04:00
Caleb Doxsey
163e53823c
registry/redis: call publish from within lua function (#2337) 2021-07-07 07:28:02 -06:00
Caleb Doxsey
21ffe44dff
authorize: support boolean deny results (#2338) 
* authorize: support boolean deny results

* add client certificate test

* handle different array lengths
 2021-07-06 12:52:26 -06:00
Travis Groth
937f1cc83f
chore(deps): upgrade kind action to v1.2.0 (#2331) 2021-07-06 14:51:12 -04:00
Caleb Doxsey
031fa1a91b
storage/inmemory: add tests for close behavior (#2336) 2021-07-06 09:36:04 -06:00
Caleb Doxsey
0bca5c9556
redis: refactor change signal test to be more deterministic (#2335) 2021-07-06 09:14:15 -06:00
dependabot[bot]
a7ce0494dd
chore(deps): bump github.com/prometheus/common from 0.25.0 to 0.29.0 (#2289) 
* chore(deps): bump github.com/prometheus/common from 0.25.0 to 0.29.0

Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.25.0 to 0.29.0.
- [Release notes](https://github.com/prometheus/common/releases)
- [Commits](https://github.com/prometheus/common/compare/v0.25.0...v0.29.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/common
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

* resolve deps conflict

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Denis Mishin <dmishin@pomerium.com>
 2021-07-06 11:10:23 -04:00
dependabot[bot]
670c77c67e
chore(deps): bump google.golang.org/api from 0.49.0 to 0.50.0 (#2333) 
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.49.0 to 0.50.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/master/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.49.0...v0.50.0)

---
updated-dependencies:
- dependency-name: google.golang.org/api
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-07-06 10:51:32 -04:00
dependabot[bot]
fe9cce8813
chore(deps): bump github.com/go-redis/redis/v8 from 8.10.0 to 8.11.0 (#2329) 
Bumps [github.com/go-redis/redis/v8](https://github.com/go-redis/redis) from 8.10.0 to 8.11.0.
- [Release notes](https://github.com/go-redis/redis/releases)
- [Changelog](https://github.com/go-redis/redis/blob/master/CHANGELOG.md)
- [Commits](https://github.com/go-redis/redis/compare/v8.10.0...v8.11.0)

---
updated-dependencies:
- dependency-name: github.com/go-redis/redis/v8
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-07-06 07:35:12 -07:00
dependabot[bot]
2411a64f02
chore(deps): bump github.com/spf13/cobra from 1.1.3 to 1.2.1 (#2330) 
Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra) from 1.1.3 to 1.2.1.
- [Release notes](https://github.com/spf13/cobra/releases)
- [Changelog](https://github.com/spf13/cobra/blob/master/CHANGELOG.md)
- [Commits](https://github.com/spf13/cobra/compare/v1.1.3...v1.2.1)

---
updated-dependencies:
- dependency-name: github.com/spf13/cobra
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-07-06 10:26:57 -04:00
dependabot[bot]
3062fd8e0b
chore(deps): bump github.com/prometheus/procfs from 0.6.0 to 0.7.0 (#2328) 
Bumps [github.com/prometheus/procfs](https://github.com/prometheus/procfs) from 0.6.0 to 0.7.0.
- [Release notes](https://github.com/prometheus/procfs/releases)
- [Commits](https://github.com/prometheus/procfs/compare/v0.6.0...v0.7.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/procfs
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-07-06 10:26:44 -04:00