Affected by GO-2022-0413 and 3 other vulnerabilities

GO-2022-0413: Exposure of Sensitive Information in Pomerium in github.com/pomerium/pomerium

GO-2023-1800: Pomerium vulnerable to Incorrect Authorization with specially crafted requests in github.com/pomerium/pomerium

GO-2024-2965: Pomerium exposed OAuth2 access and ID tokens in user info endpoint response in github.com/pomerium/pomerium

GO-2024-3179: Pomerium service account access token may grant unintended access to databroker API in github.com/pomerium/pomerium

envoy

package

v0.16.3 Latest Latest Go to latest Published: Feb 11, 2022 License: Apache-2.0 Imports: 36 Imported by: 0

Details

Rendered for

Package envoy creates and configures an envoy server.

This section is empty.

View Source

var OverrideEnvoyPath = ""

OverrideEnvoyPath is an override for using an envoy path instead of the embedded envoy path.

func ParseAddress(raw string) (*envoy_config_core_v3.Address, error)

ParseAddress parses a string address into an envoy address.

type Server struct {
	// contains filtered or unexported fields
}

A Server is a pomerium proxy implemented via envoy.

func NewServer(ctx context.Context, src config.Source, builder *envoyconfig.Builder) (*Server, error)

NewServer creates a new server with traffic routed by envoy.

func (srv *Server) Close() error

Close kills any underlying envoy process.

Path	Synopsis
files Package files contains files for use with envoy.	Package files contains files for use with envoy.