3pp-mirror/pomerium
1
0
Fork 0
mirror of https://github.com/pomerium/pomerium.git synced 2025-04-28 18:06:34 +02:00
Code Issues Projects Releases Packages Wiki Activity
pomerium/pkg
History
Kenneth Jenkins 21b9e7890c
authorize: add filter options for JWT groups (#5417) 
Add a new option for filtering to a subset of directory groups in the
Pomerium JWT and Impersonate-Group headers. Add a JWTGroupsFilter field
to both the Options struct (for a global filter) and to the Policy
struct (for per-route filter). These will be populated only from the
config protos, and not from a config file.

If either filter is set, then for each of a user's groups, the group
name or group ID will be added to the JWT groups claim only if it is an
exact string match with one of the elements of either filter.
2025-01-08 13:57:57 -08:00
..
cmd/pomerium testenv: embedded envoy cpu/memory profiling config (#5377) 2025-01-03 17:41:54 -05:00
contextutil core/lint: upgrade golangci-lint, replace interface{} with any (#5099) 2024-05-02 14:33:52 -06:00
counter metrics: add linear probabilistic counter (#4776) 2023-12-04 08:51:41 -05:00
cryptutil chore(deps): bump the go group across 1 directory with 26 updates (#5385) 2024-12-02 15:24:28 -07:00
derivecert cryptutil: generate certificates from deriveca (#3992) 2023-02-23 08:38:56 -07:00
encoding/base58 core/ci: update linting (#4844) 2023-12-14 09:07:54 -08:00
envoy testenv: embedded envoy cpu/memory profiling config (#5377) 2025-01-03 17:41:54 -05:00
fanout Fix many instances of contexts and loggers not being propagated (#5340) 2024-10-25 14:50:56 -04:00
grpc authorize: add filter options for JWT groups (#5417) 2025-01-08 13:57:57 -08:00
grpcutil grpcutil: additional JWT validation (#5303) 2024-09-23 13:17:03 -07:00
health zero/health-checks: fix early checks sometimes missing (#5229) 2024-08-20 22:13:45 -04:00
hpke config: no longer stub out HPKE public key fetch (#4853) 2023-12-12 09:57:58 -08:00
httputil core/lint: upgrade golangci-lint, replace interface{} with any (#5099) 2024-05-02 14:33:52 -06:00
identity add options to adjust databroker lease ttl, and retry initial interval (#5391) 2024-12-13 14:01:43 -05:00
logutil protoutil: add NewAny method for deterministic serialization (#2462) 2021-08-09 17:51:57 -06:00
metrics Envoy resource monitoring & overload manager configuration (#5106) 2024-05-28 16:57:09 -04:00
netutil add metrics aggregation (#3452) 2022-06-30 10:52:45 -04:00
policy ppl: support additional types for string matchers (#5348) 2024-10-30 13:16:03 -06:00
protoutil authorize/log: remove audit logging (#5369) 2024-11-22 14:32:52 -05:00
slices integration: check for profile cookies (#4847) 2023-12-12 10:07:13 -08:00
storage authorize: additional header evaluator tests (#5363) 2024-11-07 09:22:35 -07:00
telemetry/requestid core/authorize: require new login when authenticate url changes (#5165) 2024-07-12 10:57:41 -06:00
webauthnutil core/lint: upgrade golangci-lint, replace interface{} with any (#5099) 2024-05-02 14:33:52 -06:00
zero Core-Zero Import (#5288) 2024-10-09 18:51:56 -04:00