3pp-mirror/pomerium
1
0
Fork 0
mirror of https://github.com/pomerium/pomerium.git synced 2025-04-29 10:26:29 +02:00
Code Issues Projects Releases Packages Wiki Activity
pomerium/config/envoyconfig
History
Joe Kralicky e3e7de741c
envoy: support http2 prior knowledge for insecure upstream targets (#5205) 
This allows using the scheme 'h2c' to indicate http2 prior knowledge for
insecure upstream servers. This can be used to perform TLS termination for
GRPC servers configured with insecure credentials.

As an example, this allows the following route configuration:

routes:
  - from: https://grpc.localhost.pomerium.io
    to: h2c://localhost:9090
2024-08-13 13:40:44 -04:00
..
filemgr core/filemgr: use xxhash instead of sha512 for filenames (#4697) 2023-11-01 13:52:32 -06:00
luascripts core/envoy: fix remove cookie lua script (#4641) 2023-11-09 10:49:56 -07:00
testdata core/envoy: exclude unauthorized access from local replies (#5108) 2024-05-09 11:09:38 -06:00
acmetlsalpn.go envoyconfig: address strconv.Atoi warnings (#5076) 2024-04-26 09:38:41 -07:00
acmetlsalpn_test.go core/ci: update linting (#4844) 2023-12-14 09:07:54 -08:00
bootstrap.go core/lint: upgrade golangci-lint, replace interface{} with any (#5099) 2024-05-02 14:33:52 -06:00
bootstrap_test.go envoy: migrate deprecated overload setting (#5082) 2024-04-22 18:53:24 -07:00
builder.go avoid null reproxy handler (#3345) 2022-05-11 12:16:59 -04:00
clusters.go envoyconfig: address strconv.Atoi warnings (#5076) 2024-04-26 09:38:41 -07:00
clusters_envoy_admin.go config: remove source, remove deadcode, fix linting issues (#4118) 2023-04-21 17:25:11 -06:00
clusters_test.go config: add runtime flags (#5050) 2024-04-04 17:51:04 -04:00
envoyconfig.go envoyconfig: address strconv.Atoi warnings (#5076) 2024-04-26 09:38:41 -07:00
filters.go authorize: incorporate mTLS validation from Envoy (#4374) 2023-07-21 12:17:01 -07:00
http_connection_manager.go core/envoy: exclude unauthorized access from local replies (#5108) 2024-05-09 11:09:38 -06:00
listeners.go envoy: log mtls failures (#5210) 2024-08-09 14:05:10 -04:00
listeners_envoy_admin.go config: remove source, remove deadcode, fix linting issues (#4118) 2023-04-21 17:25:11 -06:00
listeners_test.go add mTLS UserPrincipalName SAN match (#5177) 2024-07-26 10:23:19 -07:00
lua.go envoy: add a filter to store client cert info (#4372) 2023-07-19 13:02:13 -07:00
lua_test.go core/lint: upgrade golangci-lint, replace interface{} with any (#5099) 2024-05-02 14:33:52 -06:00
outbound.go zero/telemetry: internal envoy stats scraper and metrics producer (#5136) 2024-06-16 20:41:05 -04:00
outbound_test.go zero/telemetry: internal envoy stats scraper and metrics producer (#5136) 2024-06-16 20:41:05 -04:00
per_filter_config.go core/grpc: fix deprecated protobuf package, remove tools (#4643) 2023-10-26 11:38:54 -06:00
protocols.go envoy: support http2 prior knowledge for insecure upstream targets (#5205) 2024-08-13 13:40:44 -04:00
protocols_int_test.go envoy: support http2 prior knowledge for insecure upstream targets (#5205) 2024-08-13 13:40:44 -04:00
protocols_test.go envoy: support http2 prior knowledge for insecure upstream targets (#5205) 2024-08-13 13:40:44 -04:00
route_configurations.go core/config: add config version, additional telemetry (#4645) 2023-10-27 15:16:40 -06:00
route_configurations_test.go core/config: implement direct response (#4960) 2024-02-15 14:33:56 -07:00
routes.go core/lint: upgrade golangci-lint, replace interface{} with any (#5099) 2024-05-02 14:33:52 -06:00
routes_test.go config: add support for TCP proxy chaining (#5053) 2024-04-24 16:35:18 -07:00
tls.go envoy: configure upstream IP SAN match as needed (#4380) 2023-07-21 12:02:51 -07:00
tls_test.go envoy: configure upstream IP SAN match as needed (#4380) 2023-07-21 12:02:51 -07:00
tracing.go protoutil: add NewAny method for deterministic serialization (#2462) 2021-08-09 17:51:57 -06:00
tracing_test.go envoyconfig: use zipkin tracer (#2265) 2021-06-03 09:28:00 -06:00