* install VuePress Plugin Tabs
https://www.npmjs.com/package/vuepress-plugin-tabs
* init Enterprise documentation section
* replace Vuepress tab plugin
now using https://github.com/superbiger/vuepress-plugin-tabs
* init Enterprise Quickstart
* block of enterprise doc updates
* Helm Quickstart Update (#2380)
* removed/fixed redundant or incorrect config
And some small copy edits
* Update docs/docs/quick-start/helm.md
Co-authored-by: Travis Groth <travisgroth@users.noreply.github.com>
Co-authored-by: Travis Groth <travisgroth@users.noreply.github.com>
* init console with helm doc
* squash me
* codeblock fix
* init about page
* updates to Enterprise section
* consolidate on Postgres
* WIP helm updates
* update and align OS and Enterprise helm docs
* Enterprise settings docs (#2397)
* init console-specific reference docs files
* remove shortdoc for name
* init Enterprise Reference doc
* expanding Enterprise Reference
* init JS script for reference subpages
When reviewing please remember that I'm not a developer, be kind
* update script and apply
* remove errant dep
* document script and expand for CLI help output
* import pomerium-console_serve.yaml
In future iterations, this file should be sourced at build time as an artifact from the pomerium-console repo
* init new output file
* update script call and output
* fix anchor links
* BROKEN - import content from settings.yaml when dupe is true
* filtering WiP
* fix dupe script, more content
* replace if dupe with if not docs
* squash me
* squash me!
* add docs about PPL (#2404)
* squash meeeeee
* Update docs/enterprise/install/quickstart.md
Co-authored-by: Travis Groth <travisgroth@users.noreply.github.com>
* symlink img dir from docs/reference
* squash mee
* update install reqs
* Fixed links throughout
* Update docs/enterprise/install/quickstart.md
Co-authored-by: Travis Groth <travisgroth@users.noreply.github.com>
* Update docs/enterprise/install/quickstart.md
Co-authored-by: Travis Groth <travisgroth@users.noreply.github.com>
* remove internal note
* - format python with black
- format js with prettier
Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
* optimize images with imageOptim
Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
* run prettier on config.js
Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
* concepts.md
Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
* update concepts
Signed-off-by: Bobby DeSimone <bobbydesimone@gmail.com>
* copy edits
* typo
* symlink img dir from docs/reference
* modify TLS section in quick-start
* rm whitespace
* add common links postamble
* block of updates
* block of updates
* updates with @travisgroth
* turtles all the way down
* more content
* import all the things
* fill out reports
* fill out reports
* fix file extension
* fix links
* crosslink PPL ref
* document embedded prometheus
* expand example
* update reqs
* document non-directory users
* typo fix
* update metrics_address
* fix broken links in example configs
* update examples for route syntax
* replaced required with deprecated
Note that I didn't link to the route reference because I'm unsure what link formats are accepted when this file is used elsewhere. The warning block below includes a link.
* update enterprise/about
* Update docs/enterprise/console-settings.yaml
Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>
* Update docs/enterprise/console-settings.yaml
Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>
* Update docs/enterprise/concepts.md
Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>
* Update docs/enterprise/concepts.md
Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>
* Apply suggestions from code review
Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>
Co-authored-by: Travis Groth <travisgroth@users.noreply.github.com>
* Update docs/enterprise/concepts.md
Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>
* remove commented config lines
* update non-domain user section in concepts
* Update docs/enterprise/concepts.md
Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>
* Update docs/enterprise/concepts.md
Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>
* Update docs/enterprise/about.md
Co-authored-by: Travis Groth <travisgroth@users.noreply.github.com>
* Update docs/enterprise/concepts.md
Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>
* Update docs/enterprise/concepts.md
Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>
* add console route to OSS conf
* update enterprise settings copy from source file
* Update docs/enterprise/concepts.md
* Update reports reference
* merge conflict resolution
* update sourced doc content, fix whitespace
Co-authored-by: Travis Groth <travisgroth@users.noreply.github.com>
Co-authored-by: Caleb Doxsey <cdoxsey@pomerium.com>
Co-authored-by: Bobby DeSimone <bobbydesimone@gmail.com>
Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>
* databroker: add databroker, identity manager, update cache (#864)
* databroker: add databroker, identity manager, update cache
* fix cache tests
* directory service (#885)
* directory: add google and okta
* add onelogin
* add directory provider
* initialize before sync, upate google provider, remove dead code
* add azure provider
* fix azure provider
* fix gitlab
* add gitlab test, fix azure test
* hook up okta
* remove dead code
* fix tests
* fix flaky test
* authorize: use databroker data for rego policy (#904)
* wip
* add directory provider
* initialize before sync, upate google provider, remove dead code
* fix flaky test
* update authorize to use databroker data
* implement signed jwt
* wait for session and user to appear
* fix test
* directory service (#885)
* directory: add google and okta
* add onelogin
* add directory provider
* initialize before sync, upate google provider, remove dead code
* add azure provider
* fix azure provider
* fix gitlab
* add gitlab test, fix azure test
* hook up okta
* remove dead code
* fix tests
* fix flaky test
* remove log line
* only redirect when no session id exists
* prepare rego query as part of create
* return on ctx done
* retry on disconnect for sync
* move jwt signing
* use !=
* use parent ctx for wait
* remove session state, remove logs
* rename function
* add log message
* pre-allocate slice
* use errgroup
* return nil on eof for sync
* move check
* disable timeout on gRPC requests in envoy
* fix gitlab test
* use v4 backoff
* authenticate: databroker changes (#914)
* wip
* add directory provider
* initialize before sync, upate google provider, remove dead code
* fix flaky test
* update authorize to use databroker data
* implement signed jwt
* wait for session and user to appear
* fix test
* directory service (#885)
* directory: add google and okta
* add onelogin
* add directory provider
* initialize before sync, upate google provider, remove dead code
* add azure provider
* fix azure provider
* fix gitlab
* add gitlab test, fix azure test
* hook up okta
* remove dead code
* fix tests
* fix flaky test
* remove log line
* only redirect when no session id exists
* prepare rego query as part of create
* return on ctx done
* retry on disconnect for sync
* move jwt signing
* use !=
* use parent ctx for wait
* remove session state, remove logs
* rename function
* add log message
* pre-allocate slice
* use errgroup
* return nil on eof for sync
* move check
* disable timeout on gRPC requests in envoy
* fix dashboard
* delete session on logout
* permanently delete sessions once they are marked as deleted
* remove permanent delete
* fix tests
* remove groups and refresh test
* databroker: remove dead code, rename cache url, move dashboard (#925)
* wip
* add directory provider
* initialize before sync, upate google provider, remove dead code
* fix flaky test
* update authorize to use databroker data
* implement signed jwt
* wait for session and user to appear
* fix test
* directory service (#885)
* directory: add google and okta
* add onelogin
* add directory provider
* initialize before sync, upate google provider, remove dead code
* add azure provider
* fix azure provider
* fix gitlab
* add gitlab test, fix azure test
* hook up okta
* remove dead code
* fix tests
* fix flaky test
* remove log line
* only redirect when no session id exists
* prepare rego query as part of create
* return on ctx done
* retry on disconnect for sync
* move jwt signing
* use !=
* use parent ctx for wait
* remove session state, remove logs
* rename function
* add log message
* pre-allocate slice
* use errgroup
* return nil on eof for sync
* move check
* disable timeout on gRPC requests in envoy
* fix dashboard
* delete session on logout
* permanently delete sessions once they are marked as deleted
* remove permanent delete
* fix tests
* remove cache service
* remove kv
* remove refresh docs
* remove obsolete cache docs
* add databroker url option
* cache: use memberlist to detect multiple instances
* add databroker service url
* remove cache service
* remove kv
* remove refresh docs
* remove obsolete cache docs
* add databroker url option
* cache: use memberlist to detect multiple instances
* add databroker service url
* wip
* remove groups and refresh test
* fix redirect, signout
* remove databroker client from proxy
* remove unused method
* remove user dashboard test
* handle missing session ids
* session: reject sessions with no id
* sessions: invalidate old sessions via databroker server version (#930)
* session: add a version field tied to the databroker server version that can be used to invalidate sessions
* fix tests
* add log
* authenticate: create user record immediately, call "get" directly in authorize (#931)
* authorize: add client mtls support
* authorize: better error messages for envoy
* switch from function to input
* add TrustedCa to envoy config so that users are prompted for the correct client certificate
* update documentation
* fix invalid ClientCAFile
* regenerate cache protobuf
* avoid recursion, add test
* move comment line
* use http.StatusOK
* various fixes
