3pp-mirror/pomerium
1
0
Fork 0
mirror of https://github.com/pomerium/pomerium.git synced 2025-11-13 14:05:54 +01:00
Code Issues Projects Releases Packages Wiki Activity
Pomerium is an identity and context-aware access proxy.
2,583 commits 165 branches 139 tags 102 MiB
Find a file
Caleb Doxsey 090601873f
 urlutil: add time validation functions ()
2022-12-02 11:42:56 -07:00
.github ci: disable kubernetes integration test () 2022-12-02 09:11:32 -07:00
.vscode config related metrics () 2021-04-07 12:29:36 -07:00
authenticate remove forward auth () 2022-11-23 15:59:28 -07:00
authorize upgrade to golang-lru v2 () 2022-12-02 09:25:52 -07:00
cmd/pomerium chore(deps): bump github.com/golangci/golangci-lint from 1.48.0 to 1.50.0 () 2022-10-19 09:36:59 -06:00
config config: add option for tls renegotiation () 2022-11-28 14:34:06 -07:00
databroker test: use T.TempDir to create temporary test directory () 2022-11-08 09:16:32 -07:00
examples remove forward auth () 2022-11-23 15:59:28 -07:00
integration remove forward auth () 2022-11-23 15:59:28 -07:00
internal urlutil: add time validation functions () 2022-12-02 11:42:56 -07:00
ospkg move directory providers () 2022-11-03 11:33:56 -06:00
pkg identity: add identity profile () 2022-12-02 09:40:52 -07:00
proxy remove forward auth () 2022-11-23 15:59:28 -07:00
scripts bump envoy to v1.24.0 () 2022-11-28 09:32:31 -07:00
ui proxy: add userinfo and webauthn endpoints () 2022-11-22 10:26:35 -07:00
.codecov.yml development: change codecov precision 2019-07-18 16:49:37 -07:00
.dockerignore frontend: react+mui () 2022-02-07 08:47:58 -07:00
.fossa.yml rm cli code () 2021-12-15 16:25:21 -05:00
.gitattributes assets: use embed instead of statik () 2021-03-03 18:56:55 -07:00
.gitignore allow pomerium to be embedded as a library () 2022-06-15 20:29:19 -04:00
.golangci.yml lint: remove deprecated linters () 2022-10-19 13:52:03 -06:00
.pre-commit-config.yaml integration: add single-cluster integration tests () 2021-08-24 15:35:05 -06:00
.tool-versions upgrade go to 1.19.2 () 2022-10-20 12:18:19 -06:00
3RD-PARTY dependencies: vendor base58, remove shortuuid () 2021-11-02 09:23:15 -06:00
DEBUG.MD deplyoment: add debug build / container / docs () 2020-10-13 16:54:21 -04:00
Dockerfile chore(deps): bump golang from 1.19.2-buster to 1.19.3-buster () 2022-11-08 08:49:53 -05:00
Dockerfile.debug chore(deps): bump alpine from bc41182 to b95359c () 2022-11-14 09:16:36 -07:00
go.mod upgrade to golang-lru v2 () 2022-12-02 09:25:52 -07:00
go.sum upgrade to golang-lru v2 () 2022-12-02 09:25:52 -07:00
LICENSE initial release 2019-01-02 12:13:36 -08:00
Makefile databroker: support rotating shared secret () 2022-07-26 10:59:54 -06:00
pomerium.go fix go get, improve redis test () 2021-08-06 12:07:20 -06:00
README.md Update README.md () 2022-08-23 08:45:58 -07:00
RELEASING.md deployment: update RELEASING.md () 2022-08-16 10:40:03 -07:00
SECURITY.md symlink security policy to root of project () 2021-07-26 10:42:21 -07:00
tools.go protoc: add xds repo () 2021-10-19 14:36:23 -06:00

README.md

pomerium logo

pomerium chat GitHub Actions Go Report Card GoDoc LICENSE Docker Pulls

Pomerium is an identity and context-aware reverse proxy that brokers secure access to apps and services at scale. Pomerium provides a standardized interface to add access control to applications regardless of whether the application itself has authorization or authentication baked-in.

Pomerium can be used in situations where you'd typically reach for a VPN, but, unlike a VPN, does not require a client and uses identity and context, not network locality to determine access.

Pomerium can be used to:

  • provide a single-sign-on gateway to internal applications.
  • enforce dynamic access policy based on context, identity, and device identity.
  • aggregate access logs and telemetry data.
  • a VPN alternative.

Docs

For comprehensive docs, and tutorials see our documentation.

Integration Tests

To run the integration tests locally, first build a local development image:

./scripts/build-dev-docker.bash

Next go to the integration/clusters folder and pick a cluster, for example google-single, then use docker-compose to start the cluster. We use an environment variable to specify the dev docker image we built earlier:

cd integration/clusters/google-single
env POMERIUM_TAG=dev docker-compose up -V

Once that's up and running you can run the integration tests from another terminal:

go test -count=1 -v ./integration/...

If you need to make a change to the clusters themselves, there's a tpl folder that contains jsonnet files. Make a change and then rebuild the clusters by running:

go run ./integration/cmd/pomerium-integration-tests/ generate-configuration