Serveur mandataire inverse ("reverse proxy") avec fonctionnalités avancées pilotable par API REST.
Go to file
wpetit 0b032fccc9
Cadoles/bouncer/pipeline/head This commit looks good Details
Merge pull request 'Moteur de règles V2' (#40) from rule-engine-2 into develop
Reviewed-on: #40
2024-09-25 09:11:46 +02:00
cmd/bouncer feat: initial commit 2023-05-21 22:27:25 +02:00
doc feat: reusable rule engine to prevent memory reallocation 2024-09-24 18:45:34 +02:00
internal feat: reusable rule engine to prevent memory reallocation 2024-09-24 18:45:34 +02:00
layers feat(authn): add templatized error page 2024-06-05 15:53:17 +02:00
misc feat: use shared redis client to maximize pooling usage (#39) 2024-09-23 15:16:30 +02:00
templates feat: templatized proxy error page 2024-06-26 14:36:28 +02:00
.dockerignore feat(k8s): use secret as shared source for admin private key 2024-03-28 15:53:40 +01:00
.env.dist chore: add http debug env in default environment file 2024-06-26 13:53:52 +02:00
.gitignore feat: create profiling package + rewrite profiling tutorial 2024-06-28 17:44:51 +02:00
.goreleaser.yaml feat: templatized proxy error page 2024-06-26 14:36:28 +02:00
Dockerfile fix: security vulnerabilities 2024-06-27 10:04:29 +02:00
Jenkinsfile chore(ci): release docker image 2023-07-07 10:10:22 -06:00
LICENCE fix: add missing licence file 2024-05-21 15:43:33 +02:00
Makefile feat: reusable rule engine to prevent memory reallocation 2024-09-24 18:45:34 +02:00
README.md feat: passthrough proxies 2024-06-26 16:22:30 +02:00
commitlint.config.js feat: initial commit 2023-05-21 22:27:25 +02:00
go.mod fix: security vulnerabilities 2024-06-27 10:04:29 +02:00
go.sum fix: security vulnerabilities 2024-06-27 10:04:29 +02:00
modd.conf feat: new openid connect authentication layer 2024-05-17 11:53:19 +02:00
skaffold.yaml feat: kubernetes basic integration 2024-03-27 17:47:39 +01:00

README.md

Bouncer

Serveur mandataire inverse ("reverse proxy") avec fonctionnalités avancées pilotable par API REST.

Fonctionnalités

  • Authentification unique basée sur entêtes HTTP ("Trusted headers SSO") avec:
    • Fournisseur d'identité OpenID Connect ;
    • Basic Auth ;
    • Origine réseau ;
  • Gestion de files d'attente dynamiques pour maîtriser la charge sur les services protégés ;
  • Réécriture dynamique des attributs (notamment entêtes HTTP) des requêtes/réponses via un DSL.

Documentation

Voir le répertoire doc/

Licence

AGPL-3.0