3pp-mirror/pomerium
1
0
Fork 0
mirror of https://github.com/pomerium/pomerium.git synced 2025-04-28 18:06:34 +02:00
Code Issues Projects Releases Packages Wiki Activity
Pomerium is an identity and context-aware access proxy.
2411 commits 159 branches 125 tags 103 MiB
Go 96.1%
TypeScript 2.2%
Jsonnet 1%
Shell 0.3%
Lua 0.2%
Other 0.2%
Find a file
Nathan Hayfield 0e73bd31f7
add the traces error details (#3557)
2022-08-16 18:04:02 +02:00
.devcontainer try pinning docker dependency (#3185) 2022-03-23 13:47:35 -06:00
.github chore(deps): bump actions/cache from 3.0.6 to 3.0.7 (#3552) 2022-08-15 10:20:07 -06:00
.vscode config related metrics (#2065) 2021-04-07 12:29:36 -07:00
authenticate controlplane: add well-known endpoint to the controlplane http handler (#3555) 2022-08-16 09:59:39 -06:00
authorize authorize: add policy error details for custom error messages (#3542) 2022-08-09 14:46:31 -06:00
cmd/pomerium allow pomerium to be embedded as a library (#3415) 2022-06-15 20:29:19 -04:00
config authorize: add policy error details for custom error messages (#3542) 2022-08-09 14:46:31 -06:00
databroker atomicutil: use atomicutil.Value wherever possible (#3517) 2022-07-28 15:38:38 -06:00
examples docs: update references, remove docs dir (#3420) 2022-06-13 16:52:52 -07:00
integration authorize: add request id to context (#3497) 2022-07-26 14:34:48 -06:00
internal controlplane: add well-known endpoint to the controlplane http handler (#3555) 2022-08-16 09:59:39 -06:00
ospkg updates examples for current routes/policy keys (#3034) 2022-02-16 14:06:52 -06:00
pkg authorize: add policy error details for custom error messages (#3542) 2022-08-09 14:46:31 -06:00
proxy atomicutil: use atomicutil.Value wherever possible (#3517) 2022-07-28 15:38:38 -06:00
scripts allow pomerium to be embedded as a library (#3415) 2022-06-15 20:29:19 -04:00
ui add the traces error details (#3557) 2022-08-16 18:04:02 +02:00
.codecov.yml development: change codecov precision 2019-07-18 16:49:37 -07:00
.dockerignore frontend: react+mui (#3004) 2022-02-07 08:47:58 -07:00
.fossa.yml rm cli code (#2824) 2021-12-15 16:25:21 -05:00
.gitattributes assets: use embed instead of statik (#1960) 2021-03-03 18:56:55 -07:00
.gitignore allow pomerium to be embedded as a library (#3415) 2022-06-15 20:29:19 -04:00
.golangci.yml chore(deps): bump github.com/golangci/golangci-lint from 1.46.2 to 1.47.2 (#3499) 2022-07-29 09:57:12 -06:00
.pre-commit-config.yaml integration: add single-cluster integration tests (#2516) 2021-08-24 15:35:05 -06:00
3RD-PARTY dependencies: vendor base58, remove shortuuid (#2739) 2021-11-02 09:23:15 -06:00
DEBUG.MD deplyoment: add debug build / container / docs (#1513) 2020-10-13 16:54:21 -04:00
Dockerfile chore(deps): bump distroless/base from 3a62194 to ec73486 (#3554) 2022-08-15 10:53:37 -06:00
Dockerfile.debug chore(deps): bump alpine from 7580ece to bc41182 (#3553) 2022-08-15 10:53:55 -06:00
go.mod chore(deps): bump go.uber.org/zap from 1.21.0 to 1.22.0 (#3551) 2022-08-15 10:20:52 -06:00
go.sum chore(deps): bump go.uber.org/zap from 1.21.0 to 1.22.0 (#3551) 2022-08-15 10:20:52 -06:00
LICENSE initial release 2019-01-02 12:13:36 -08:00
Makefile databroker: support rotating shared secret (#3502) 2022-07-26 10:59:54 -06:00
pomerium.go fix go get, improve redis test (#2450) 2021-08-06 12:07:20 -06:00
README.md docs: update references, remove docs dir (#3420) 2022-06-13 16:52:52 -07:00
RELEASING.md ci: rename master to main (#3045) 2022-02-15 16:02:40 -05:00
SECURITY.md symlink security policy to root of project (#2396) 2021-07-26 10:42:21 -07:00
tools.go protoc: add xds repo (#2687) 2021-10-19 14:36:23 -06:00

README.md

pomerium logo

pomerium chat GitHub Actions Go Report Card GoDoc LICENSE Docker Pulls

Pomerium is an identity-aware proxy that enables secure access to internal applications. Pomerium provides a standardized interface to add access control to applications regardless of whether the application itself has authorization or authentication baked-in. Pomerium gateways both internal and external requests, and can be used in situations where you'd typically reach for a VPN.

Pomerium can be used to:

  • provide a single-sign-on gateway to internal applications.
  • enforce dynamic access policy based on context, identity, and device identity.
  • aggregate access logs and telemetry data.
  • a VPN alternative.

Docs

For comprehensive docs, and tutorials see our documentation.

Integration Tests

To run the integration tests locally, first build a local development image:

./scripts/build-dev-docker.bash

Next go to the integration/clusters folder and pick a cluster, for example google-single, then use docker-compose to start the cluster. We use an environment variable to specify the dev docker image we built earlier:

cd integration/clusters/google-single
env POMERIUM_TAG=dev docker-compose up -V

Once that's up and running you can run the integration tests from another terminal:

go test -count=1 -v ./integration/...

If you need to make a change to the clusters themselves, there's a tpl folder that contains jsonnet files. Make a change and then rebuild the clusters by running:

go run ./integration/cmd/pomerium-integration-tests/ generate-configuration