Affected by GO-2022-0783 and 4 other vulnerabilities

GO-2022-0783: JWT leak via Open Redirect in Programmatic access in github.com/pomerium/pomerium

GO-2022-0933: Incorrect handling of H2 GOAWAY + SETTINGS frames in github.com/pomerium/pomerium

GO-2023-1800: Pomerium vulnerable to Incorrect Authorization with specially crafted requests in github.com/pomerium/pomerium

GO-2024-2965: Pomerium exposed OAuth2 access and ID tokens in user info endpoint response in github.com/pomerium/pomerium

GO-2024-3179: Pomerium service account access token may grant unintended access to databroker API in github.com/pomerium/pomerium

envoy

package

v0.9.5 Latest Latest Go to latest Published: Jul 21, 2020 License: Apache-2.0 Imports: 29 Imported by: 0

Details

Rendered for

Package envoy creates and configures an envoy server.

This section is empty.

This section is empty.

This section is empty.

type Server struct {
	// contains filtered or unexported fields
}

A Server is a pomerium proxy implemented via envoy.

func NewServer(opts *config.Options, grpcPort, httpPort string) (*Server, error)

NewServer creates a new server with traffic routed by envoy.

func (srv *Server) Run(ctx context.Context) error

Run runs the server by extracting the embedded envoy and then executing it.