3pp-mirror/pomerium: Pomerium is an identity and context-aware access proxy.

mirror of https://github.com/pomerium/pomerium.git synced 2025-04-28 09:56:31 +02:00

Pomerium is an identity and context-aware access proxy.

beyondcorp gateway go iam identity identity-aware-proxy pomerium reverse-proxy vpn zero-trust

Find a file

Kenneth Jenkins 2e7d1c7f12 authorize: refactor logAuthorizeCheck() (#5576 ) Currently, policy evaluation and authorize logging are coupled to the Envoy CheckRequest proto message (part of the ext_authz API). In the context of ssh proxy authentication, we won't have a CheckRequest. Instead, let's make the existing evaluator.Request type the source of truth for the authorize log fields. This way, whether we populate the evaluator.Request struct from an ext_authz request or from an ssh proxy request, we can use the same logAuthorizeCheck() method for logging. Add some additional fields to evaluator.RequestHTTP for the authorize log fields that are not currently represented in this struct.		2025-04-23 09:21:52 -07:00
.github	add code of conduct (#5572 )	2025-04-14 12:53:28 -06:00
.vscode	use tlsClientConfig instead of custom dialer (#3830 )	2022-12-27 09:55:36 -07:00
authenticate	logging: standardize on hyphens in attribute names (#5577 )	2025-04-22 10:57:19 -07:00
authorize	authorize: refactor logAuthorizeCheck() (#5576 )	2025-04-23 09:21:52 -07:00
changelogs	add v0.29.0 release notes (#5515 )	2025-04-08 11:34:20 -04:00
cmd/pomerium	cleanup logs (#5571 )	2025-04-14 08:20:10 -06:00
config	storage: add sync querier (#5570 )	2025-04-23 10:15:48 -06:00
databroker	logging: standardize on hyphens in attribute names (#5577 )	2025-04-22 10:57:19 -07:00
examples	ci: address Dockerfile warnings (#5283 )	2024-09-11 16:56:47 -07:00
integration	upgrade to go v1.24 (#5562 )	2025-04-02 15:53:09 -06:00
internal	storage: add sync querier (#5570 )	2025-04-23 10:15:48 -06:00
k8s/zero	zero: set k8s deployment to follow :latest tag (#5313 )	2024-10-03 11:39:55 -07:00
ospkg	move directory providers (#3633 )	2022-11-03 11:33:56 -06:00
pkg	storage: add sync querier (#5570 )	2025-04-23 10:15:48 -06:00
proxy	multi-domain login redirects (#5564 )	2025-04-04 13:14:30 -07:00
scripts	proto: fix dependencies (#5450 )	2025-01-27 14:41:08 -07:00
ui	chore(deps): bump @babel/runtime from 7.24.4 to 7.26.10 in /ui (#5522 )	2025-04-11 08:02:05 -06:00
.codecov.yml	development: change codecov precision	2019-07-18 16:49:37 -07:00
.dockerignore	frontend: react+mui (#3004 )	2022-02-07 08:47:58 -07:00
.fossa.yml	rm cli code (#2824 )	2021-12-15 16:25:21 -05:00
.gitattributes	assets: use embed instead of statik (#1960 )	2021-03-03 18:56:55 -07:00
.gitignore	core/ui: improve frontend build size (#5109 )	2024-05-09 07:10:00 -06:00
.golangci.yml	upgrade to go v1.24 (#5562 )	2025-04-02 15:53:09 -06:00
.pre-commit-config.yaml	integration: add single-cluster integration tests (#2516 )	2021-08-24 15:35:05 -06:00
3RD-PARTY	dependencies: vendor base58, remove shortuuid (#2739 )	2021-11-02 09:23:15 -06:00
DEBUG.MD	deplyoment: add debug build / container / docs (#1513 )	2020-10-13 16:54:21 -04:00
Dockerfile	chore(deps): bump the docker group with 3 updates (#5558 )	2025-04-01 16:56:57 -06:00
Dockerfile.debug	chore(deps): bump the docker group with 3 updates (#5558 )	2025-04-01 16:56:57 -06:00
go.mod	storage: support ip address indexing for the in-memory store (#5568 )	2025-04-10 08:21:52 -06:00
go.sum	storage: support ip address indexing for the in-memory store (#5568 )	2025-04-10 08:21:52 -06:00
LICENSE	initial release	2019-01-02 12:13:36 -08:00
Makefile	upgrade to go v1.24 (#5562 )	2025-04-02 15:53:09 -06:00
pomerium.go	fix go get, improve redis test (#2450 )	2021-08-06 12:07:20 -06:00
README.md	core/ui: update logo (#5249 )	2024-09-05 18:13:06 +02:00
RELEASING.md	deployment: update RELEASING.md (#3503 )	2022-08-16 10:40:03 -07:00
SECURITY.md	Fix SECURITY.md treated as symlink (#5211 )	2024-08-07 17:20:18 -04:00

README.md

Pomerium builds secure, clientless connections to internal web apps and services without a corporate VPN.

Pomerium is:

Easier with clientless access.
Faster by being tunnel-free and deployed where your apps and services are.
Safer because every single action is verified before allowed to execute.
Tailored to your organization’s needs by integrating all data for context-aware access.

It’s not a VPN alternative – it’s the trusted, foolproof way to protect your business. Want a hosted control plane and management GUI? Give Pomerium Zero a try today!

Docs

For comprehensive docs, and tutorials see our documentation.

Contributing

See Contributing for information on how you can contribute to Pomerium.

README.md Unescape Escape

Docs

Contributing

README.md