3pp-mirror/pomerium
1
0
Fork 0
mirror of https://github.com/pomerium/pomerium.git synced 2025-07-29 22:48:15 +02:00
Code Issues Projects Releases Packages Wiki Activity
1989 commits 176 branches 133 tags 111 MiB
Commit graph

1989 commits

This branch
This branch
All branches
Author SHA1 Message Date
backport-actions-token[bot]
d20a14fbbb
add More Resources section (#2947) (#2948) 
Co-authored-by: Alex Fornuto <afornuto@pomerium.com>
 2022-01-19 09:18:01 -06:00
backport-actions-token[bot]
3992eb3da3
Update cache to databroker (#2932) (#2944) 
Co-authored-by: Alex Fornuto <afornuto@pomerium.com>
 2022-01-19 06:38:19 -06:00
backport-actions-token[bot]
e0edfb8518
webauthn: use absolute URL for delete redirect (#2935) (#2937) 
* authenticate: add callback endpoint

* webauthn: use absolute URL for delete redirect

Co-authored-by: Caleb Doxsey <cdoxsey@pomerium.com>
 2022-01-18 09:49:10 -07:00
backport-actions-token[bot]
2e333a2328
document service_proxy_upstream ingress annotation (#2915) (#2928) 2022-01-12 12:58:32 -05:00
backport-actions-token[bot]
3cb65e013a
handle device states in deny block, fix default device type (#2919) (#2924) 
* handle device states in deny block, fix default device type

* fix tests

Co-authored-by: Caleb Doxsey <cdoxsey@pomerium.com>
 2022-01-11 12:03:31 -07:00
backport-actions-token[bot]
2850df0e6a
DOCS: keyword tag updates (#2922) (#2923) 
* replace "zero-trust" with "zero trust"

* fix and update all keyword tags

Co-authored-by: Alex Fornuto <afornuto@pomerium.com>
 2022-01-11 10:49:28 -08:00
backport-actions-token[bot]
8d3e64bcd2
docs: fix argo link (#2918) (#2921) 
Co-authored-by: Jorge L. Fatta <jorge.fatta@auth0.com>
 2022-01-11 10:54:14 -06:00
Alex Fornuto
3e32209c75
update and align reference settings (#2905) (#2914) 2022-01-10 13:53:56 -06:00
backport-actions-token[bot]
bb51a0231d
envoy: check certificates for must-staple flag and drop them if they are missing the response (#2909) (#2917) 
* envoy: check certificates for must-staple flag and drop them if they are missing the response

* Update config/envoyconfig/tls_test.go

Co-authored-by: Denis Mishin <dmishin@pomerium.com>

Co-authored-by: Denis Mishin <dmishin@pomerium.com>

Co-authored-by: Caleb Doxsey <cdoxsey@pomerium.com>
Co-authored-by: Denis Mishin <dmishin@pomerium.com>
 2022-01-10 11:45:39 -07:00
backport-actions-token[bot]
8211bded0c
integration: fix default port for verify service (#2895) (#2908) 
Co-authored-by: Caleb Doxsey <cdoxsey@pomerium.com>
 2022-01-07 16:29:32 -05:00
backport-actions-token[bot]
b50bb6e331
fix references to common traffic patterns (#2906) (#2907) 
Co-authored-by: Alex Fornuto <afornuto@pomerium.com>
 2022-01-07 19:39:14 +00:00
backport-actions-token[bot]
4c879e781b
DOCS: GitLab Integration guide (#2800) (#2900) 
* WiP draft of GitLab Integration guide

* fix multiline docker command

* more steps

* complete guide

* add GitLab to Guides index

* add splash frame to video

* rewrite GitLab guide based on tech review

* Apply suggestions from code review

Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>

* reduce complexity, note additional config

* rm whitespace

* Apply suggestions from code review

Co-authored-by: cmo-pomerium <91488121+cmo-pomerium@users.noreply.github.com>

* fix indent for numbering

* Update docs/guides/gitlab.md

Co-authored-by: cmo-pomerium <91488121+cmo-pomerium@users.noreply.github.com>

Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>
Co-authored-by: cmo-pomerium <91488121+cmo-pomerium@users.noreply.github.com>

Co-authored-by: Alex Fornuto <afornuto@pomerium.com>
Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>
Co-authored-by: cmo-pomerium <91488121+cmo-pomerium@users.noreply.github.com>
 2022-01-05 19:58:29 +00:00
backport-actions-token[bot]
d9e10c2b78
fix links, rm errant formatting attempt (#2888) (#2890) 
Co-authored-by: Alex Fornuto <afornuto@pomerium.com>
 2022-01-03 20:46:08 +00:00
backport-actions-token[bot]
629f1aa5cd
add link to background page (#2883) (#2885) 
Co-authored-by: Alex Fornuto <afornuto@pomerium.com>
 2021-12-31 22:00:35 +00:00
backport-actions-token[bot]
6916352aaa
Docs: Mutual Auth Topic page (#2820) (#2881) 
* WIP update

* init mutual auth topic page

* WIP

* update JWT verification guide

* s/Java/Json/g

* Add mTLS and update some charts

* resummarize

* get my updates in before Bobby gets here

* Apply suggestions from code review

Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>

* finish updates

* Apply suggestions from code review

Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>

* adjust styling for HRs and blockquotes

* mutual auth overhaul

* grammar adjustment

* Apply suggestions from code review

Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>

* remove new blockquote style

* manual review updates

Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>

Co-authored-by: Alex Fornuto <afornuto@pomerium.com>
Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>
 2021-12-30 22:11:56 +00:00
backport-actions-token[bot]
88ee1b5a98
fixes broken links, adds checker workarounds (#2878) (#2879) 
Co-authored-by: Alex Fornuto <afornuto@pomerium.com>
 2021-12-30 16:03:03 -06:00
backport-actions-token[bot]
74e329e332
DOCS: Remove duplicate configuration items (#2873) (#2875) 
Remove duplicate configuration items of route

Co-authored-by: cfanbo <haohtml@gmail.com>

Co-authored-by: Alex Fornuto <afornuto@pomerium.com>
Co-authored-by: cfanbo <haohtml@gmail.com>
 2021-12-29 21:23:55 +00:00
backport-actions-token[bot]
ac85c0023c
Rephrase Discussion around Discuss (#2870) (#2871) 
* rephrase discussion around Discuss

* rm whitespace

Co-authored-by: Alex Fornuto <afornuto@pomerium.com>
 2021-12-29 12:37:28 -06:00
backport-actions-token[bot]
0e6e15d92a
DOCS: Fixes to 16 release (#2856) (#2872) 
* clarify upgrade notes and certificate reference

* backport updated reference to source and sort

* Apply suggestions from code review

Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>

* update webauthn link

Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>

Co-authored-by: Alex Fornuto <afornuto@pomerium.com>
Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>
 2021-12-29 10:36:25 -08:00
backport-actions-token[bot]
992e33fc0c
DOCS: Document webauthn with device ID (#2830) (#2868) 
* init device identity topic page

* add device options to PPL

* init device enrollment guide

* adjust for #2835 and crosslink

* tooltip in PPL on finding device ID

* sort and link matchers

* adjust terminology and crosslink

* standardize new topic name

* Apply suggestions from code review

Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>

* rewrite device identity topic page

* rebase cleanup

* Apply suggestions from code review

Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>

* add links from review with footer refs

* Apply suggestions from code review

Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>

* rm errant newlines

Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>

Co-authored-by: Alex Fornuto <afornuto@pomerium.com>
Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>
 2021-12-29 10:10:20 -08:00
backport-actions-token[bot]
6c7fdc2dfc
docs: fix generation of the public key (#2864) (#2865) 
Signed-off-by: Sylvain Rabot <sylvain@abstraction.fr>

Co-authored-by: Sylvain Rabot <sylvain@abstraction.fr>
 2021-12-29 09:06:27 -06:00
backport-actions-token[bot]
f8efdd75e1
Fix typo (#2861) (#2863) 
Signed-off-by: Sylvain Rabot <sylvain@abstraction.fr>

Co-authored-by: Sylvain Rabot <sylvain@abstraction.fr>
 2021-12-28 13:18:49 -06:00
backport-actions-token[bot]
199a4ace09
DOCS: New Guide: Upstream mTLS (#2814) (#2860) 
* rename mtls.md to be client-side specific

* init upstream mTLS guide

* Apply suggestions from code review

Co-authored-by: Travis Groth <travisgroth@users.noreply.github.com>

* clarify assumed config dir

* Apply suggestions from code review

Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>

* link to before-you-begin anchor

* Update docs/guides/upstream-mtls.md

Co-authored-by: Travis Groth <travisgroth@users.noreply.github.com>
Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>

Co-authored-by: Alex Fornuto <afornuto@pomerium.com>
Co-authored-by: Travis Groth <travisgroth@users.noreply.github.com>
Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>
 2021-12-27 20:11:03 -06:00
backport-actions-token[bot]
46199efc37
Update mTLS guide (#2788) (#2858) 
* version 0.9 is old enough as to not warrant reference

* copy edits and formatting

* Consolidate 'before you begin' and warn that mkcert is for development.

* update and refresh

* add troubleshooting partial

* standardize img path for partial

* Apply suggestions from code review

Co-authored-by: Travis Groth <travisgroth@users.noreply.github.com>

* clarify all route mtls config

* remove troubleshooting section

This commit requires that the PR **not** be backported, since the fix that negates this workaround will not be backported.

Co-authored-by: Travis Groth <travisgroth@users.noreply.github.com>

Co-authored-by: Alex Fornuto <afornuto@pomerium.com>
Co-authored-by: Travis Groth <travisgroth@users.noreply.github.com>
 2021-12-27 22:29:25 +00:00
backport-actions-token[bot]
ea49feff43
docs: update version menu for v0.16 (#2847) (#2848) 
Co-authored-by: Travis Groth <travisgroth@users.noreply.github.com>
 2021-12-22 23:28:05 +00:00
Travis Groth
45a348de2a
docs: v0.16 release (#2845) 2021-12-22 18:04:43 -05:00
Denis Mishin
c19dd80fe6
more idp metrics (#2842) 2021-12-22 17:30:16 -05:00
Caleb Doxsey
6b949a5c2e
config: allow specifying auto codec type in all-in-one mode (#2846) 
* config: allow specifying auto codec type in all-in-one mode

* fix test

* fix test
 2021-12-22 12:34:58 -07:00
Caleb Doxsey
0ee6a72c02
dashboard: add confirmation dialog, fix button in firefox (#2841) 2021-12-21 14:12:41 -07:00
Alex Fornuto
f48191fe45
DOCS: Create Consolidated Troubleshooting Guide and Replace FAQ (#2797) 
* replace FAQ with troubleshooting

* Apply suggestions from code review

Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>

* clarify JWT authentication issue

* elevate and clarify HSTS issue

* expand Set Response Header reference section

* Apply suggestions from code review

Co-authored-by: cmo-pomerium <91488121+cmo-pomerium@users.noreply.github.com>

* capitalize Pomerium serivice names

* additional capitalization

Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>
Co-authored-by: cmo-pomerium <91488121+cmo-pomerium@users.noreply.github.com>
 2021-12-21 12:33:01 -06:00
Denis Mishin
6b592afd3e
set default codec type to auto/http1 (#2839) 2021-12-21 13:26:07 -05:00
Caleb Doxsey
70e0e866fc
devices: add experimental icon (#2836) 2021-12-20 14:26:03 -07:00
dependabot[bot]
bdbcfe3cda
chore(deps): bump github.com/spf13/viper from 1.10.0 to 1.10.1 (#2832) 
Bumps [github.com/spf13/viper](https://github.com/spf13/viper) from 1.10.0 to 1.10.1.
- [Release notes](https://github.com/spf13/viper/releases)
- [Commits](https://github.com/spf13/viper/compare/v1.10.0...v1.10.1)

---
updated-dependencies:
- dependency-name: github.com/spf13/viper
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-12-20 11:40:33 -08:00
Caleb Doxsey
838c9e3a3d
dashboard: improve display of device credentials, allow deletion (#2829) 
* dashboard: improve display of device credentials, allow deletion

* fix test
 2021-12-20 12:19:54 -07:00
dependabot[bot]
c064bc8e0e
chore(deps): bump google.golang.org/api from 0.62.0 to 0.63.0 (#2834) 
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.62.0 to 0.63.0.
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.62.0...v0.63.0)

---
updated-dependencies:
- dependency-name: google.golang.org/api
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-12-20 14:19:07 -05:00
Caleb Doxsey
a3be1b7cc5
devices: switch "default" device type to two built-in default device types (#2835) 2021-12-20 10:44:29 -07:00
dependabot[bot]
9408401dbd
chore(deps): bump github.com/rs/zerolog from 1.26.0 to 1.26.1 (#2833) 
Bumps [github.com/rs/zerolog](https://github.com/rs/zerolog) from 1.26.0 to 1.26.1.
- [Release notes](https://github.com/rs/zerolog/releases)
- [Commits](https://github.com/rs/zerolog/compare/v1.26.0...v1.26.1)

---
updated-dependencies:
- dependency-name: github.com/rs/zerolog
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-12-20 11:45:51 -05:00
dependabot[bot]
c3267c8306
chore(deps): bump google.golang.org/grpc from 1.42.0 to 1.43.0 (#2831) 
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.42.0 to 1.43.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.42.0...v1.43.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-12-20 11:43:59 -05:00
Denis Mishin
5e8fcf8d20
move NewGRPCClientConn to public package (#2826) 2021-12-19 22:10:24 -05:00
cfanbo
8f62b06425
fix: Fixed return description error (#2825) 
* fix: Fixed return description error

* config/options: Adjust the position of TracingJaegerAgentEndpoint option
 2021-12-17 08:57:35 -08:00
Denis Mishin
52920eaf72
add docs for ingress regex path (#2822) 2021-12-16 16:33:24 -05:00
Denis Mishin
9466d7ef53
rm cli code (#2824) 2021-12-15 16:25:21 -05:00
Denis Mishin
41877e166b
fix typo in docs (#2819) 2021-12-13 16:48:51 -05:00
dependabot[bot]
6325d82fe2
chore(deps): bump github.com/docker/docker (#2817) 
Bumps [github.com/docker/docker](https://github.com/docker/docker) from 20.10.11+incompatible to 20.10.12+incompatible.
- [Release notes](https://github.com/docker/docker/releases)
- [Changelog](https://github.com/moby/moby/blob/master/CHANGELOG.md)
- [Commits](https://github.com/docker/docker/compare/v20.10.11...v20.10.12)

---
updated-dependencies:
- dependency-name: github.com/docker/docker
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Caleb Doxsey <cdoxsey@pomerium.com>
 2021-12-13 10:32:58 -07:00
dependabot[bot]
84409437d9
chore(deps): bump github.com/open-policy-agent/opa from 0.34.2 to 0.35.0 (#2804) 
Bumps [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) from 0.34.2 to 0.35.0.
- [Release notes](https://github.com/open-policy-agent/opa/releases)
- [Changelog](https://github.com/open-policy-agent/opa/blob/main/CHANGELOG.md)
- [Commits](https://github.com/open-policy-agent/opa/compare/v0.34.2...v0.35.0)

---
updated-dependencies:
- dependency-name: github.com/open-policy-agent/opa
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-12-13 10:29:22 -07:00
dependabot[bot]
c8fb03d718
chore(deps): bump github.com/spf13/viper from 1.9.0 to 1.10.0 (#2816) 
Bumps [github.com/spf13/viper](https://github.com/spf13/viper) from 1.9.0 to 1.10.0.
- [Release notes](https://github.com/spf13/viper/releases)
- [Commits](https://github.com/spf13/viper/compare/v1.9.0...v1.10.0)

---
updated-dependencies:
- dependency-name: github.com/spf13/viper
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2021-12-13 11:44:42 -05:00
Denis Mishin
993da5704b
dev build support for darwin-arm64 from envoy tip (#2815) 2021-12-13 11:37:24 -05:00
Caleb Doxsey
5a858f5d48
config: add internal service URLs (#2801) 
* config: add internal service URLs

* maybe fix integration tests

* add docs

* fix integration tests

* for databroker connect to external name, but listen on internal name

* Update docs/reference/readme.md

Co-authored-by: Travis Groth <travisgroth@users.noreply.github.com>

* Update docs/reference/readme.md

Co-authored-by: Travis Groth <travisgroth@users.noreply.github.com>

* Update docs/reference/readme.md

Co-authored-by: Travis Groth <travisgroth@users.noreply.github.com>

* Update docs/reference/settings.yaml

Co-authored-by: Travis Groth <travisgroth@users.noreply.github.com>

* Update docs/reference/settings.yaml

Co-authored-by: Travis Groth <travisgroth@users.noreply.github.com>

* Update docs/reference/settings.yaml

Co-authored-by: Travis Groth <travisgroth@users.noreply.github.com>

Co-authored-by: Travis Groth <travisgroth@users.noreply.github.com>
 2021-12-10 14:04:37 -05:00
Caleb Doxsey
2d04106e6d
ppl: add support for http_path and http_method (#2813) 
* ppl: add support for http_path and http_method

* fix import ordering
 2021-12-10 07:28:51 -07:00
Travis Groth
54ec88fb93
internal/telemetry: fix grpc server stats (#2811) 2021-12-08 16:13:08 -05:00