mirror of
https://github.com/pomerium/pomerium.git
synced 2025-06-15 01:02:54 +02:00
de603f87de
* Add new configurable bootstrap writers (#2405) This PR adds the ability to configure different backends to use for storing modifications to the zero bootstrap config. The two currently implemented backends allow writing changes to a file or to a Kubernetes secret. Backend selection is determined by the scheme in a URI passed to the flag '--config-writeback-uri'. In a Kubernetes environment, where the bootstrap config is mounted into the pod from a secret, this option allows Pomerium to write changes back to the secret, as writes to the mounted secret file on disk are not persisted. * Use env vars for bootstrap config filepath/writeback uri * linter pass and code cleanup * Add new config writer options mechanism This moves the encryption cipher parameter out of the WriteConfig() method in the ConfigWriter interface and into a new ConfigWriterOptions struct. Options (e.g. cipher) can be applied to an existing ConfigWriter to allow customizing implementation-specific behavior. * Code cleanup/lint fixes * Move vendored k8s code into separate package, and add license header and package comment |
||
|---|---|---|
| .. | ||
| atomicutil | ||
| authenticateflow | ||
| autocert | ||
| chanutil | ||
| contextkeys | ||
| controlplane | ||
| databroker | ||
| deterministicecdsa | ||
| enabler | ||
| encoding | ||
| errgrouputil | ||
| events | ||
| fileutil | ||
| handlers | ||
| hashutil | ||
| httputil | ||
| log | ||
| middleware | ||
| registry | ||
| retry | ||
| scheduler | ||
| sessions | ||
| sets | ||
| signal | ||
| syncutil | ||
| telemetry | ||
| tests/xdserr | ||
| testutil | ||
| tripper | ||
| urlutil | ||
| version | ||
| zero | ||