3pp-mirror/pomerium
1
0
Fork 0
mirror of https://github.com/pomerium/pomerium.git synced 2025-05-07 06:16:18 +02:00
Code Issues Projects Releases Packages Wiki Activity
2640 commits 159 branches 125 tags 104 MiB
Commit graph

2640 commits

This branch
This branch
All branches
Author SHA1 Message Date
dependabot[bot]
b027d91395
chore(deps): bump github.com/cenkalti/backoff/v4 from 4.1.0 to 4.1.1 (#2252) 
Bumps [github.com/cenkalti/backoff/v4](https://github.com/cenkalti/backoff) from 4.1.0 to 4.1.1.
- [Release notes](https://github.com/cenkalti/backoff/releases)
- [Commits](https://github.com/cenkalti/backoff/compare/v4.1.0...v4.1.1)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-05-31 12:48:01 -04:00
dependabot[bot]
4117fce3c7
chore(deps): bump github.com/mitchellh/hashstructure/v2 (#2251) 
Bumps [github.com/mitchellh/hashstructure/v2](https://github.com/mitchellh/hashstructure) from 2.0.1 to 2.0.2.
- [Release notes](https://github.com/mitchellh/hashstructure/releases)
- [Commits](https://github.com/mitchellh/hashstructure/compare/v2.0.1...v2.0.2)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-05-31 12:47:32 -04:00
dependabot[bot]
5f3a68df3b
chore(deps): bump github.com/go-redis/redis/v8 from 8.8.3 to 8.9.0 (#2249) 
Bumps [github.com/go-redis/redis/v8](https://github.com/go-redis/redis) from 8.8.3 to 8.9.0.
- [Release notes](https://github.com/go-redis/redis/releases)
- [Changelog](https://github.com/go-redis/redis/blob/master/CHANGELOG.md)
- [Commits](https://github.com/go-redis/redis/compare/v8.8.3...v8.9.0)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-05-31 12:45:46 -04:00
Caleb Doxsey
1eea197859
darwin: use x86 envoy build for arm64 (#2246) 
* darwin: use x86 envoy build for arm64

* allow arm64 build for darwin
 2021-05-28 15:59:09 -07:00
wasaga
db00821001
auth: do not strip query parameters in forward auth (#2216) 2021-05-28 17:19:18 -04:00
Caleb Doxsey
d538f1d104
darwin: use gopsutil v3 to fix arm issue (#2245) 
* darwin: use gopsutil v3 to fix arm issue

* remove getenvoy
 2021-05-28 12:20:46 -06:00
Caleb Doxsey
9b61d04dd8
envoyconfig: fallback to global custom ca when no policy ca is defined (#2235) 
* envoyconfig: fallback to global custom ca when no policy ca is defined

* update upgrading

* combine custom ca with root cas
 2021-05-28 09:36:15 -06:00
Travis Groth
88902003f7
docs: update helm values for chart v20.0.0 (#2242) 2021-05-27 18:46:23 -04:00
Caleb Doxsey
91dd937468
policy: fix allowed idp claims PPL generation (#2243) 2021-05-27 15:12:12 -06:00
Caleb Doxsey
ef62d9bb31
envoy: exit if envoy exits (#2240) 2021-05-27 15:11:12 -06:00
bobby
1cf0c701ba
Update _redirects (#2237) 2021-05-24 21:59:02 -06:00
dependabot[bot]
e9ffc5fde3
chore(deps): bump google.golang.org/grpc from 1.37.1 to 1.38.0 (#2231) 
* chore(deps): bump google.golang.org/grpc from 1.37.1 to 1.38.0

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.37.1 to 1.38.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.37.1...v1.38.0)

Signed-off-by: dependabot[bot] <support@github.com>

* chore(deps): bump google.golang.org/grpc from 1.37.1 to 1.38.0

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.37.1 to 1.38.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.37.1...v1.38.0)

Signed-off-by: dependabot[bot] <support@github.com>

* fix UpdateState method

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Caleb Doxsey <cdoxsey@pomerium.com>
 2021-05-24 09:33:53 -06:00
dependabot[bot]
acdcdff2a7
chore(deps): bump github.com/go-redis/redis/v8 from 8.8.2 to 8.8.3 (#2232) 
* chore(deps): bump github.com/go-redis/redis/v8 from 8.8.2 to 8.8.3

Bumps [github.com/go-redis/redis/v8](https://github.com/go-redis/redis) from 8.8.2 to 8.8.3.
- [Release notes](https://github.com/go-redis/redis/releases)
- [Changelog](https://github.com/go-redis/redis/blob/master/CHANGELOG.md)
- [Commits](https://github.com/go-redis/redis/compare/v8.8.2...v8.8.3)

Signed-off-by: dependabot[bot] <support@github.com>

* remove unused field

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Caleb Doxsey <cdoxsey@pomerium.com>
 2021-05-24 08:17:41 -06:00
dependabot[bot]
98790b9456
chore(deps): bump google.golang.org/api from 0.46.0 to 0.47.0 (#2233) 
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.46.0 to 0.47.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/master/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.46.0...v0.47.0)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-05-24 07:50:31 -06:00
dependabot[bot]
36cabbac90
chore(deps): bump github.com/prometheus/common from 0.24.0 to 0.25.0 (#2234) 
Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.24.0 to 0.25.0.
- [Release notes](https://github.com/prometheus/common/releases)
- [Commits](https://github.com/prometheus/common/compare/v0.24.0...v0.25.0)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-05-24 07:49:57 -06:00
Caleb Doxsey
96b9702ee3
ppl: add data type, implement string and list matchers (#2228) 
* ppl: add data type, implement string and list matchers

* update policy converter
 2021-05-21 11:28:41 -06:00
Ben Potter
1cd95e808d
add support for latest version of code-server (#2229) 
* add support for latest version of code-server

* golang version

Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>

* golang version

Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>

* install zip

Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>
 2021-05-21 09:57:47 -07:00
Caleb Doxsey
dad35bcfb0
ppl: refactor authorize to evaluate PPL (#2224) 
* ppl: refactor authorize to evaluate PPL

* remove opa test step

* add log statement

* simplify assignment

* deny with forbidden if logged in

* add safeEval function

* create evaluator-specific config and options

* embed the headers rego file directly
 2021-05-21 09:50:18 -06:00
Alex Fornuto
8c56d64f31
docs: rm broken link (#2215) 
* docs: rm broken link

The was the only image on this page that was also a link to the image, which failed with a 404 (which is the default Nginx 404 page, BTW).

* fmt and typo

Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>

Co-authored-by: Bobby DeSimone <bobbydesimone@gmail.com>
 2021-05-20 21:13:41 -07:00
Joe Previte
38a7591395
fix(docs): use correct name for code-server (#2223) 
* fix: use correct name for code-server

* chore: update config.js for code-server

* chore: add redirect for code-server
 2021-05-20 20:44:52 -07:00
bobby
2227ca5b6a
depedency: update /x/net (#2227) 
Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
 2021-05-20 19:44:26 -07:00
Caleb Doxsey
a1061c5c03
envoy: add global response headers to local replies (#2217) 2021-05-20 08:56:43 -06:00
Alex Fornuto
5b1b6e5ee5
match tenses (#2214) 
The ordered list at the end changed from simple present tense to present progressive tense, which can break reader flow.
 2021-05-19 11:46:30 -07:00
Caleb Doxsey
c489391bbf
ppl: convert config policy to ppl (#2218) 2021-05-19 12:42:36 -06:00
Caleb Doxsey
bdccd4f785
ppl: bubble up values, bug fixes (#2213) 2021-05-18 14:01:36 -06:00
Caleb Doxsey
e138054cb9
Pomerium Policy Language (#2202) 
* policy: add parser and generator for Pomerium Policy Language

* add criteria

* add additional criteria
 2021-05-17 15:30:51 -06:00
dependabot[bot]
9fe941ccee
chore(deps): bump gopkg.in/auth0.v5 from 5.16.0 to 5.17.0 (#2208) 
Bumps [gopkg.in/auth0.v5](https://github.com/go-auth0/auth0) from 5.16.0 to 5.17.0.
- [Release notes](https://github.com/go-auth0/auth0/releases)
- [Changelog](https://github.com/go-auth0/auth0/blob/master/CHANGELOG.md)
- [Commits](https://github.com/go-auth0/auth0/compare/v5.16.0...v5.17.0)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-05-17 09:50:32 -06:00
dependabot[bot]
b3a5613488
chore(deps): bump github.com/lithammer/shortuuid/v3 from 3.0.6 to 3.0.7 (#2211) 
Bumps [github.com/lithammer/shortuuid/v3](https://github.com/lithammer/shortuuid) from 3.0.6 to 3.0.7.
- [Release notes](https://github.com/lithammer/shortuuid/releases)
- [Commits](https://github.com/lithammer/shortuuid/compare/v3.0.6...v3.0.7)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-05-17 09:28:04 -04:00
dependabot[bot]
7cf170d842
chore(deps): bump github.com/rs/zerolog from 1.21.0 to 1.22.0 (#2209) 
Bumps [github.com/rs/zerolog](https://github.com/rs/zerolog) from 1.21.0 to 1.22.0.
- [Release notes](https://github.com/rs/zerolog/releases)
- [Commits](https://github.com/rs/zerolog/compare/v1.21.0...v1.22.0)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-05-17 09:27:36 -04:00
dependabot[bot]
b488728436
chore(deps): bump google.golang.org/grpc from 1.37.0 to 1.37.1 (#2207) 
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.37.0 to 1.37.1.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.37.0...v1.37.1)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-05-17 09:27:12 -04:00
dependabot[bot]
5c822331ac
chore(deps): bump github.com/prometheus/common from 0.23.0 to 0.24.0 (#2210) 
Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.23.0 to 0.24.0.
- [Release notes](https://github.com/prometheus/common/releases)
- [Commits](https://github.com/prometheus/common/compare/v0.23.0...v0.24.0)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-05-17 09:26:34 -04:00
Joseph Chiocchi
640dfdcfc7
Update programmatic-access.md (#2190) 
* Update programmatic-access.md

tries to give a bit more context to the curl snippet to get a token for programmatic access

include bastion host remote port forwarding and some other notes

include headers in request mention

update programmatic access

Update programmatic-access.md

Update programmatic-access.md

update programmatic access

* fumpt

Co-authored-by: Bobby DeSimone <bobbydesimone@gmail.com>
 2021-05-16 20:54:32 -07:00
bobby
51655a5502
Revert "authenticate,proxy: add same site lax to cookies (#2159)" (#2203) 
This reverts commit d9cc26a2e0.
 2021-05-14 15:36:05 -07:00
wasaga
c71f7dca5b
authorize: grpc health check (#2200) 2021-05-13 15:00:10 -04:00
Travis Groth
7d5754ec36
deps: bump envoy to v1.17.3 (#2198) 2021-05-13 09:32:39 -04:00
bobby
27c8cd9bd8
proxy / controplane: use old upstream cipher suite (#2196) 2021-05-12 15:37:20 -07:00
Travis Groth
d488b2d626
deployment: fix empty version on master builds (#2193) 2021-05-11 15:37:04 -07:00
wasaga
1ac93c2d3a
telemetry: add hostname tag to metrics (#2191) 2021-05-11 17:58:02 -04:00
Caleb Doxsey
da01082797
envoy: disable timeouts for kubernetes (#2189) 2021-05-11 14:42:49 -06:00
Caleb Doxsey
94aa0b1a48
databroker: implement leases (#2172) 
* databroker: implement leases

* return error

* handle gRPC errors
 2021-05-10 13:30:25 -06:00
Caleb Doxsey
a54d43b937
registry: implement redis backend (#2179) 2021-05-10 10:33:37 -06:00
dependabot[bot]
28155314e9
chore(deps): bump gopkg.in/auth0.v5 from 5.15.0 to 5.16.0 (#2187) 
Bumps [gopkg.in/auth0.v5](https://github.com/go-auth0/auth0) from 5.15.0 to 5.16.0.
- [Release notes](https://github.com/go-auth0/auth0/releases)
- [Changelog](https://github.com/go-auth0/auth0/blob/master/CHANGELOG.md)
- [Commits](https://github.com/go-auth0/auth0/compare/v5.15.0...v5.16.0)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-05-10 09:08:37 -06:00
dependabot[bot]
55adaa28fa
chore(deps): bump google.golang.org/api from 0.45.0 to 0.46.0 (#2186) 
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.45.0 to 0.46.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/master/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.45.0...v0.46.0)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-05-10 09:06:59 -06:00
dependabot[bot]
48fca7c1ff
chore(deps): bump github.com/caddyserver/certmagic from 0.13.0 to 0.13.1 (#2188) 
Bumps [github.com/caddyserver/certmagic](https://github.com/caddyserver/certmagic) from 0.13.0 to 0.13.1.
- [Release notes](https://github.com/caddyserver/certmagic/releases)
- [Commits](https://github.com/caddyserver/certmagic/compare/v0.13.0...v0.13.1)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-05-10 09:06:33 -06:00
Travis Groth
c23305f7b6
docs: add v0.14 feature highlights (#2183) 2021-05-08 17:15:20 -04:00
Travis Groth
264cf384a3
docs: update slack link to vanity url (#2177) 2021-05-05 17:37:14 -04:00
wasaga
cbaf33032d
report instance hostname (#2175) 2021-05-04 15:46:21 -06:00
Travis Groth
0071b4e7a5
docs: v0.14.0 (#2174) 2021-05-04 17:39:16 -04:00
Caleb Doxsey
aeece76928
databroker: store issued at timestamp with session (#2173) 2021-05-04 10:09:14 -06:00
Caleb Doxsey
69576cffe4
config: add support for set_response_headers in a policy (#2171) 
* config: add support for set_response_headers in a policy

* docs: add note about precedence
 2021-05-04 09:43:52 -06:00