https://github.com/lifememoryteam/pomerium-config-generator

Config generator for Pomerium with Role-based Access Control locally.
https://github.com/lifememoryteam/pomerium-config-generator

pomerium

Last synced: about 2 months ago
JSON representation

Config generator for Pomerium with Role-based Access Control locally.

• Host: GitHub
• URL: https://github.com/lifememoryteam/pomerium-config-generator
• Owner: lifememoryteam
• License: mit
• Created: 2019-12-23T16:44:32.000Z (almost 6 years ago)
• Default Branch: master
• Last Pushed: 2019-12-23T16:49:31.000Z (almost 6 years ago)
• Last Synced: 2025-03-25T15:52:12.106Z (7 months ago)
• Topics: pomerium
• Language: Python
• Size: 7.81 KB
• Stars: 2
• Watchers: 3
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
# pomerium-config-generator

Config generator for Pomerium with Role-based Access Control locally.

Pomerium supports filtering access with IdP-defined group, but we want to define roles locally on the file.

## Usage

```shell

$ docker run -v $(pwd):/data docker.pkg.github.com/lifememoryteam/pomerium-config-generator/pomerium-config-generator:latest pomerium-config-generator --config=/data/testdata/config.yaml.tmpl --policy=/data/testdata/policy.yaml --team=/data/testdata/team.yaml --output=/data/testdata/output.yaml

```

## File structure

- config.yaml.tmpl

  - Template with Pomerium Configuration

  - To merge policy.yaml and team.yaml automatically.

- policy.yaml

  - Put Pomerium Proxy Policy with `pomerium`

  - Put pomerium-config-generator Configuration with `poerium-config-generator`

    - Supports only `group`

- team.yaml

  - Role / Group Definition