Skip to content
/ pomerium Public
forked from pomerium/pomerium

Pomerium is an identity and context-aware access proxy.

www.pomerium.com

License

Apache-2.0 license
0 stars 285 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ma-ts/pomerium

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2,902 Commits
.github
.github
 
 
.vscode
.vscode
 
 
authenticate
authenticate
 
 
authorize
authorize
 
 
cmd/pomerium
cmd/pomerium
 
 
config
config
 
 
databroker
databroker
 
 
examples
examples
 
 
integration
integration
 
 
internal
internal
 
 
ospkg
ospkg
 
 
pkg
pkg
 
 
proxy
proxy
 
 
scripts
scripts
 
 
ui
ui
 
 
.codecov.yml
.codecov.yml
 
 
.dockerignore
.dockerignore
 
 
.fossa.yml
.fossa.yml
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
.golangci.yml
.golangci.yml
 
 
.pre-commit-config.yaml
.pre-commit-config.yaml
 
 
.tool-versions
.tool-versions
 
 
3RD-PARTY
3RD-PARTY
 
 
DEBUG.MD
DEBUG.MD
 
 
Dockerfile
Dockerfile
 
 
Dockerfile.debug
Dockerfile.debug
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
RELEASING.md
RELEASING.md
 
 
SECURITY.md
SECURITY.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
pomerium.go
pomerium.go
 
 
tools.go
tools.go
 
 

Repository files navigation

pomerium logo

Go Report Card GoDoc LICENSE Docker Pulls

Pomerium is an identity and context-aware reverse proxy that brokers secure access to apps and services at scale. Pomerium provides a standardized interface to add access control to applications regardless of whether the application itself has authorization or authentication baked-in.

Pomerium can be used in situations where you'd typically reach for a VPN, but, unlike a VPN, does not require a client and uses identity and context, not network locality to determine access.

Pomerium can be used to:

  • provide a single-sign-on gateway to internal applications.
  • enforce dynamic access policy based on context, identity, and device identity.
  • aggregate access logs and telemetry data.
  • a VPN alternative.

Docs

For comprehensive docs, and tutorials see our documentation.

Integration Tests

To run the integration tests locally, first build a local development image:

./scripts/build-dev-docker.bash

Next go to the integration/clusters folder and pick a cluster, for example google-single, then use docker-compose to start the cluster. We use an environment variable to specify the dev docker image we built earlier:

cd integration/clusters/google-single
env POMERIUM_TAG=dev docker-compose up -V

Once that's up and running you can run the integration tests from another terminal:

go test -count=1 -v ./integration/...

If you need to make a change to the clusters themselves, there's a tpl folder that contains jsonnet files. Make a change and then rebuild the clusters by running:

go run ./integration/cmd/pomerium-integration-tests/ generate-configuration

About

Pomerium is an identity and context-aware access proxy.

www.pomerium.com

Resources

Readme

License

Apache-2.0 license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

110 tags

Packages

 
 
 

Languages

  • Go 94.1%
  • TypeScript 2.9%
  • Jsonnet 1.5%
  • Shell 0.5%
  • Open Policy Agent 0.3%
  • Lua 0.2%
  • Other 0.5%