3pp-mirror/pomerium
1
0
Fork 0
mirror of https://github.com/pomerium/pomerium.git synced 2025-04-30 10:56:28 +02:00
Code Issues Projects Releases Packages Wiki Activity
pomerium/docs/guides/readme.md
Alex Fornuto d864aa64e5
DOCS: GitLab Integration guide (#2800) 
* WiP draft of GitLab Integration guide

* fix multiline docker command

* more steps

* complete guide

* add GitLab to Guides index

* add splash frame to video

* rewrite GitLab guide based on tech review

* Apply suggestions from code review

Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>

* reduce complexity, note additional config

* rm whitespace

* Apply suggestions from code review

Co-authored-by: cmo-pomerium <91488121+cmo-pomerium@users.noreply.github.com>

* fix indent for numbering

* Update docs/guides/gitlab.md

Co-authored-by: cmo-pomerium <91488121+cmo-pomerium@users.noreply.github.com>

Co-authored-by: bobby <1544881+desimone@users.noreply.github.com>
Co-authored-by: cmo-pomerium <91488121+cmo-pomerium@users.noreply.github.com>
2022-01-05 13:48:07 -06:00

2.8 KiB
Raw Blame History

Overview

This section contains applications, and scenario specific guides for Pomerium.

  • The ad-guard recipe demonstrates how Pomerium can be used to augment web applications that only support simplistic authorization mechanisms like basic-auth with single-sign-on driven access policy.
  • The argo guide demonstrates how Pomerium can be used to add access control to Argo.
  • The Client-Side mTLS guide demonstrates how Pomerium can be used to add mutual authentication to end-user connections using client certificates and a custom certificate authority.
  • The Cloud Run recipe demonstrates deploying Pomerium to Google Cloud Run as well as using it to Authorize users to protected Cloud Run endpoints.
  • The code-server guide demonstrates how Pomerium can be used to add access control to third-party applications that don't ship with fine-grained access control. code-server is a tool to run Visual Studio code as a web application.
  • See Enroll a Device to learn how to register a security device (TPM, Yubikey, etc) to access routes requiring a device ID.
  • The GitLab guide covers securing a self-hosted instance of GitLab using Pomerium.
  • Our Grafana guide explains how to secure Grafana with Pomerium and integrate user sign-in using our JWT.
  • The JWT Verification guide demonstrates how to verify the Pomerium JWT assertion header using Envoy.
  • The Kubernetes Dashboard guide covers how to secure Kubernetes dashboard using Pomerium.
  • The kubernetes guide covers how to add authentication and authorization to kubernetes dashboard using helm, and letsencrypt certificates. This guide also shows how third party reverse-proxies like nginx/traefik can be used in conjunction with Pomerium using forward-auth.
  • The local OIDC guide demonstrates how Pomerium can be used with local OIDC server for dev/testing.
  • Our Synology guide demonstrates how lightweight Pomerium is by installing it on a Synology NAS or similar low-resource product.
  • The TiddlyWiki guide demonstrates how Pomerium can be used to add authentication and authorization to web application using authenticated header.
  • The Transmission guide demonstrates how Pomerium can act as an authentication and authorization proxy for your Transmission daemon's RPC interface, which only provides unencrypted HTTP auth out of the box.
  • Upstream mTLS With Pomerium explains how to provide a client certificate (mTLS) from Pomerium to an upstream service.