Pomerium is an identity and context-aware access proxy.
Find a file
2023-10-20 15:14:20 -04:00
.github chore(deps): bump mikefarah/yq from 4.35.1 to 4.35.2 (#4610) 2023-10-03 15:46:33 -06:00
.vscode use tlsClientConfig instead of custom dialer (#3830) 2022-12-27 09:55:36 -07:00
authenticate core/authenticate: refactor idp sign out (#4582) 2023-09-28 08:41:19 -07:00
authorize core/authorize: check for expired tokens (#4543) 2023-09-15 16:06:13 -06:00
cmd/pomerium zero: managed mode controller (#4459) 2023-08-17 14:22:52 -04:00
config config: remove set_authorization_header option (#4489) 2023-08-29 09:02:08 -07:00
databroker config: remove source, remove deadcode, fix linting issues (#4118) 2023-04-21 17:25:11 -06:00
examples Docs: remove tcp example (#4616) 2023-10-03 17:47:33 -04:00
integration add integration test for https IP address route (#4476) 2023-08-18 09:32:21 -07:00
internal zero: derive signing key first thing (#4631) 2023-10-20 15:14:20 -04:00
ospkg move directory providers (#3633) 2022-11-03 11:33:56 -06:00
pkg core/authorize: check for expired tokens (#4543) 2023-09-15 16:06:13 -06:00
proxy config: add cookie_same_site option (#4148) 2023-05-03 14:36:42 -06:00
scripts upgrade envoy to v1.27.1 (#4625) 2023-10-12 08:55:18 -07:00
ui chore(deps): bump @fontsource/dm-mono from 5.0.12 to 5.0.14 in /ui (#4619) 2023-10-04 15:53:23 -07:00
.codecov.yml
.dockerignore frontend: react+mui (#3004) 2022-02-07 08:47:58 -07:00
.fossa.yml rm cli code (#2824) 2021-12-15 16:25:21 -05:00
.gitattributes
.gitignore tls: wildcard catch-all cert must be at the end of cert list (#4119) 2023-04-21 12:37:32 -04:00
.golangci.yml config: remove source, remove deadcode, fix linting issues (#4118) 2023-04-21 17:25:11 -06:00
.pre-commit-config.yaml
.tool-versions dependencies: upgrade go and envoy (#4116) 2023-04-17 16:44:58 -06:00
3RD-PARTY
DEBUG.MD
Dockerfile chore(deps): bump node from 7923c64 to 2daec43 (#4609) 2023-10-03 15:45:02 -06:00
Dockerfile.debug chore(deps): bump node from 7923c64 to 2daec43 (#4609) 2023-10-03 15:45:02 -06:00
go.mod Merge branch 'main' into feature/zero 2023-10-12 21:09:29 -04:00
go.sum Merge branch 'main' into feature/zero 2023-10-12 21:09:29 -04:00
LICENSE
Makefile config: remove source, remove deadcode, fix linting issues (#4118) 2023-04-21 17:25:11 -06:00
pomerium.go
README.md Docs: remove tcp example (#4616) 2023-10-03 17:47:33 -04:00
RELEASING.md deployment: update RELEASING.md (#3503) 2022-08-16 10:40:03 -07:00
SECURITY.md Update SECURITY.md (#4144) 2023-05-01 15:17:50 -04:00
tools.go config: remove source, remove deadcode, fix linting issues (#4118) 2023-04-21 17:25:11 -06:00

pomerium logo

Go Report Card GoDoc LICENSE Docker Pulls

Pomerium builds secure, clientless connections to internal web apps and services without a corporate VPN.

Pomerium is:

  • Easier because you dont have to maintain a client or software.
  • Faster because its deployed directly where your apps and services are. No more expensive data backhauling.
  • Safer because every single action is verified for trusted identity, device, and context.

Its not a VPN alternative its the trusted, foolproof way to protect your business.

Docs

For comprehensive docs, and tutorials see our documentation.

Integration Tests

To run the integration tests locally, first build a local development image:

./scripts/build-dev-docker.bash

Next go to the integration/clusters folder and pick a cluster, for example google-single, then use docker-compose to start the cluster. We use an environment variable to specify the dev docker image we built earlier:

cd integration/clusters/google-single
env POMERIUM_TAG=dev docker-compose up -V

Once that's up and running you can run the integration tests from another terminal:

go test -count=1 -v ./integration/...

If you need to make a change to the clusters themselves, there's a tpl folder that contains jsonnet files. Make a change and then rebuild the clusters by running:

go run ./integration/cmd/pomerium-integration-tests/ generate-configuration