mirror of
https://github.com/pomerium/pomerium.git
synced 2025-04-30 02:46:30 +02:00
a95aa7cb77
* rename mtls.md to be client-side specific * init upstream mTLS guide * Apply suggestions from code review Co-authored-by: Travis Groth <travisgroth@users.noreply.github.com> * clarify assumed config dir * Apply suggestions from code review Co-authored-by: bobby <1544881+desimone@users.noreply.github.com> * link to before-you-begin anchor * Update docs/guides/upstream-mtls.md Co-authored-by: Travis Groth <travisgroth@users.noreply.github.com> Co-authored-by: bobby <1544881+desimone@users.noreply.github.com> |
||
|---|---|---|
| .. | ||
| img | ||
| ad-guard.md | ||
| argo.md | ||
| cloud-run.md | ||
| code-server.md | ||
| grafana.md | ||
| istio.md | ||
| jwt-verification.md | ||
| kubernetes-dashboard.md | ||
| kubernetes.md | ||
| local-oidc.md | ||
| mtls.md | ||
| nginx.md | ||
| readme.md | ||
| synology.md | ||
| tcp.md | ||
| tiddlywiki.md | ||
| traefik-ingress.md | ||
| transmission.md | ||
| upstream-mtls.md | ||
Overview
This section contains applications, and scenario specific guides for Pomerium.
- The ad-guard recipe demonstrates how Pomerium can be used to augment web applications that only support simplistic authorization mechanisms like basic-auth with single-sign-on driven access policy.
- The argo guide demonstrates how Pomerium can be used to add access control to Argo.
- The Client-Side mTLS guide demonstrates how Pomerium can be used to add mutual authentication to end-user connections using client certificates and a custom certificate authority.
- The Cloud Run recipe demonstrates deploying Pomerium to Google Cloud Run as well as using it to Authorize users to protected Cloud Run endpoints.
- The code-server guide demonstrates how Pomerium can be used to add access control to third-party applications that don't ship with fine-grained access control. code-server is a tool to run Visual Studio code as a web application.
- Our Grafana guide explains how to secure Grafana with Pomerium and integrate user sign-in using our JWT.
- The JWT Verification guide demonstrates how to verify the Pomerium JWT assertion header using Envoy.
- The Kubernetes Dashboard guide covers how to secure Kubernetes dashboard using Pomerium.
- The kubernetes guide covers how to add authentication and authorization to kubernetes dashboard using helm, and letsencrypt certificates. This guide also shows how third party reverse-proxies like nginx/traefik can be used in conjunction with Pomerium using forward-auth.
- The local OIDC guide demonstrates how Pomerium can be used with local OIDC server for dev/testing.
- Our Synology guide demonstrates how lightweight Pomerium is by installing it on a Synology NAS or similar low-resource product.
- The TiddlyWiki guide demonstrates how Pomerium can be used to add authentication and authorization to web application using authenticated header.
- The Transmission guide demonstrates how Pomerium can act as an authentication and authorization proxy for your Transmission daemon's RPC interface, which only provides unencrypted HTTP auth out of the box.
- Upstream mTLS With Pomerium explains how to provide a client certificate (mTLS) from Pomerium to an upstream service.