3pp-mirror/pomerium
1
0
Fork 0
mirror of https://github.com/pomerium/pomerium.git synced 2025-07-30 23:09:23 +02:00
Code Issues Projects Releases Packages Wiki Activity
Pomerium is an identity and context-aware access proxy.
3785 commits 174 branches 133 tags 111 MiB
Find a file
Denis Mishin 55dd6ba7d0
mcp: send request body to authorize (#5660) 
## Summary

In order to inspect the MCP requests and use the request payload in the
authorization decisions,
configure `ext_authz` to send the request payload as well. 

the body then would be available for inspection as it would contain the
json-rpc message like
```json
{"jsonrpc":"2.0","id":1,"method":"tools/call","params":{"_meta":{"progressToken":1},"name":"list_tables","arguments":{}}}
```

## Related issues

Ref:
https://linear.app/pomerium/issue/ENG-2393/mcp-authorize-each-incoming-request-to-an-mcp-route

## User Explanation

<!-- How would you explain this change to the user? If this
change doesn't create any user-facing changes, you can leave
this blank. If filled out, add the `docs` label -->

## Checklist

- [ ] reference any related issues
- [ ] updated unit tests
- [ ] add appropriate label (`enhancement`, `bug`, `breaking`,
`dependencies`, `ci`)
- [ ] ready for review
2025-06-20 14:45:00 -04:00
.github move mac build to mac-builds (#5633) 2025-06-10 14:06:05 -04:00
.vscode
authenticate chore(deps): bump the go group with 24 updates (#5638) 2025-06-17 09:36:50 -07:00
authorize chore(deps): bump the go group with 24 updates (#5638) 2025-06-17 09:36:50 -07:00
changelogs add v0.29.0 release notes (#5515) 2025-04-08 11:34:20 -04:00
cmd/pomerium cleanup logs (#5571) 2025-04-14 08:20:10 -06:00
config mcp: send request body to authorize (#5660) 2025-06-20 14:45:00 -04:00
databroker chore(deps): bump the go group with 24 updates (#5638) 2025-06-17 09:36:50 -07:00
examples ci: address Dockerfile warnings (#5283) 2024-09-11 16:56:47 -07:00
integration chore(deps): bump the go group with 24 updates (#5638) 2025-06-17 09:36:50 -07:00
internal chore(deps): bump the go group with 24 updates (#5638) 2025-06-17 09:36:50 -07:00
k8s/zero zero: set k8s deployment to follow :latest tag (#5313) 2024-10-03 11:39:55 -07:00
ospkg
pkg chore(deps): bump the go group with 24 updates (#5638) 2025-06-17 09:36:50 -07:00
proxy chore(deps): bump the go group with 24 updates (#5638) 2025-06-17 09:36:50 -07:00
scripts proto: fix dependencies (#5450) 2025-01-27 14:41:08 -07:00
ui chore(deps): bump @babel/runtime from 7.24.4 to 7.26.10 in /ui (#5522) 2025-04-11 08:02:05 -06:00
.clang-format config: add circuit breaker thresholds (#5650) 2025-06-16 09:38:39 -06:00
.codecov.yml
.dockerignore
.fossa.yml
.gitattributes
.gitignore core/ui: improve frontend build size (#5109) 2024-05-09 07:10:00 -06:00
.golangci.yml upgrade to go v1.24 (#5562) 2025-04-02 15:53:09 -06:00
.pre-commit-config.yaml
3RD-PARTY
DEBUG.MD
Dockerfile chore(deps): bump the docker group with 3 updates (#5635) 2025-06-03 06:13:51 -07:00
Dockerfile.debug chore(deps): bump the docker group with 3 updates (#5635) 2025-06-03 06:13:51 -07:00
go.mod chore(deps): bump the go group with 24 updates (#5638) 2025-06-17 09:36:50 -07:00
go.sum chore(deps): bump the go group with 24 updates (#5638) 2025-06-17 09:36:50 -07:00
LICENSE
Makefile upgrade to go v1.24 (#5562) 2025-04-02 15:53:09 -06:00
pomerium.go
README.md core/ui: update logo (#5249) 2024-09-05 18:13:06 +02:00
RELEASING.md
SECURITY.md Fix SECURITY.md treated as symlink (#5211) 2024-08-07 17:20:18 -04:00

README.md

pomerium logo

Go Report Card GoDoc LICENSE Docker Pulls

Pomerium builds secure, clientless connections to internal web apps and services without a corporate VPN.

Pomerium is:

Its not a VPN alternative its the trusted, foolproof way to protect your business. Want a hosted control plane and management GUI? Give Pomerium Zero a try today!

Docs

For comprehensive docs, and tutorials see our documentation.

Contributing

See Contributing for information on how you can contribute to Pomerium.