3pp-mirror/pomerium: Pomerium is an identity and context-aware access proxy.

mirror of https://github.com/pomerium/pomerium.git synced 2025-08-03 00:40:25 +02:00

Pomerium is an identity and context-aware access proxy.

beyondcorp gateway go iam identity identity-aware-proxy pomerium reverse-proxy vpn zero-trust

Find a file

Kenneth Jenkins 04585af9ef config: generate fallback cert only as last resort (#5250 ) Currently Pomerium will always generate a wildcard certificate for use as a fallback certificate. If any other certificate is configured, this fallback certificate will not normally be presented, except in the case of a TLS connection where the client does not include the Server Name Indication (SNI) extension. All modern browsers support SNI, so in practice this certificate should never be presented to end users. However, some network scanning tools will probe connections by IP addresses (without SNI), and so this fallback certificate may be presented. The presence of this certificate may be flagged as a problem in some automated vulnerability scans. Let's avoid generating this fallback certificate if Pomerium has any other certificate configured (unless specifically requested by the Auto TLS option). This should prevent false positive reports from these particular vulnerability scans.		2024-12-19 09:46:59 -08:00
.github	ci: run all benchmarks (#5371 )	2024-12-13 12:13:30 -07:00
.vscode	use tlsClientConfig instead of custom dialer (#3830 )	2022-12-27 09:55:36 -07:00
authenticate	Fix many instances of contexts and loggers not being propagated (#5340 )	2024-10-25 14:50:56 -04:00
authorize	authorize: handle gRPC requests (#5400 )	2024-12-19 08:46:53 -07:00
changelogs	add v0.27.0 changelog (#5271 )	2024-09-10 10:01:46 -04:00
cmd/pomerium	Fix many instances of contexts and loggers not being propagated (#5340 )	2024-10-25 14:50:56 -04:00
config	config: generate fallback cert only as last resort (#5250 )	2024-12-19 09:46:59 -08:00
databroker	add options to adjust databroker lease ttl, and retry initial interval (#5391 )	2024-12-13 14:01:43 -05:00
examples	ci: address Dockerfile warnings (#5283 )	2024-09-11 16:56:47 -07:00
integration	HTTP/3 Support (#5349 )	2024-11-19 08:48:30 -07:00
internal	metrics: restore global registry in unit tests (#5399 )	2024-12-18 13:21:06 -08:00
k8s/zero	zero: set k8s deployment to follow :latest tag (#5313 )	2024-10-03 11:39:55 -07:00
ospkg	move directory providers (#3633 )	2022-11-03 11:33:56 -06:00
pkg	config: fix lost branding settings when there are multiple configuration sources (#5401 )	2024-12-19 08:47:28 -07:00
proxy	Fix many instances of contexts and loggers not being propagated (#5340 )	2024-10-25 14:50:56 -04:00
scripts	core/proto: update protoc dependencies (#5218 )	2024-08-15 11:12:05 -06:00
ui	chore(deps): bump cross-spawn from 7.0.3 to 7.0.6 in /ui (#5373 )	2024-12-05 10:07:16 -07:00
.codecov.yml
.dockerignore	frontend: react+mui (#3004 )	2022-02-07 08:47:58 -07:00
.fossa.yml	rm cli code (#2824 )	2021-12-15 16:25:21 -05:00
.gitattributes	assets: use embed instead of statik (#1960 )	2021-03-03 18:56:55 -07:00
.gitignore	core/ui: improve frontend build size (#5109 )	2024-05-09 07:10:00 -06:00
.golangci.yml	New integration test fixtures (#5233 )	2024-11-05 14:31:40 -05:00
.pre-commit-config.yaml	integration: add single-cluster integration tests (#2516 )	2021-08-24 15:35:05 -06:00
.tool-versions	Update to Go 1.23 (#5216 )	2024-08-14 14:12:01 -04:00
3RD-PARTY	dependencies: vendor base58, remove shortuuid (#2739 )	2021-11-02 09:23:15 -06:00
DEBUG.MD
Dockerfile	chore(deps): bump the docker group with 3 updates (#5380 )	2024-12-02 09:00:33 -07:00
Dockerfile.debug	chore(deps): bump the docker group with 3 updates (#5380 )	2024-12-02 09:00:33 -07:00
go.mod	chore(deps): bump golang.org/x/crypto from 0.29.0 to 0.31.0 (#5396 )	2024-12-12 09:17:59 -08:00
go.sum	chore(deps): bump golang.org/x/crypto from 0.29.0 to 0.31.0 (#5396 )	2024-12-12 09:17:59 -08:00
LICENSE
Makefile	Makefile: unset GOOS for get-envoy target (#5300 )	2024-09-20 10:54:07 -07:00
pomerium.go	fix go get, improve redis test (#2450 )	2021-08-06 12:07:20 -06:00
README.md	core/ui: update logo (#5249 )	2024-09-05 18:13:06 +02:00
RELEASING.md	deployment: update RELEASING.md (#3503 )	2022-08-16 10:40:03 -07:00
SECURITY.md	Fix SECURITY.md treated as symlink (#5211 )	2024-08-07 17:20:18 -04:00

README.md

Pomerium builds secure, clientless connections to internal web apps and services without a corporate VPN.

Pomerium is:

Easier with clientless access.
Faster by being tunnel-free and deployed where your apps and services are.
Safer because every single action is verified before allowed to execute.
Tailored to your organization’s needs by integrating all data for context-aware access.

It’s not a VPN alternative – it’s the trusted, foolproof way to protect your business. Want a hosted control plane and management GUI? Give Pomerium Zero a try today!

Docs

For comprehensive docs, and tutorials see our documentation.

Contributing

See Contributing for information on how you can contribute to Pomerium.

README.md Unescape Escape

Docs

Contributing

README.md