-
Notifications
You must be signed in to change notification settings - Fork 16
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
quickstart: remove optionals settings for certificates, and cookie secrets #161
Conversation
✅ Deploy Preview for pomerium-docs ready!
To edit notification comments on pull requests, go to your Netlify site settings. |
content/docs/guides/hedgedoc.md
Outdated
description: This guide covers how to use Pomerium to authenticate and authorize users of HedgeDoc. | ||
--- | ||
|
||
# HedgeDoc |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Let's keep this in #141
content/docs/guides/hedgedoc.md
Outdated
5. After IdP establishes user's identity, Pomerium checks permissions against the secured app | ||
6. User can make authorized requests in the secured app | ||
|
||
![Pomerium IAP flow](img/pom-auth-flow.png) |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
![Pomerium IAP flow](img/pom-auth-flow.png) | |
![Pomerium IAP flow](img/pom-auth-flow.png) |
For images, to keep organization easy we should subdir the docs. e.g. img/hedgedoc/pom-auth-flow.png
|
||
Your browser will redirect you to the route defined in your policy: | ||
|
||
![user details page](./img/user-details-page.png) |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Heads up! There are tools like https://shottr.cc/ that make blurring out / calling out in screenshots much cleaner.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I installed Shottr, WAY cleaner. I'm updating the image.
@desimone and @calebdoxsey apologies on the confusion with the HedgeDoc guide and the PoC/Quickstart update – I'll create feature branches for updates going forward. I've added cleaner images to both docs and created a HedgeDoc subdir for images. Please let me know if anything else needs updating and I'll be happy to jump on it! |
Quickstart LGTM |
content/docs/install/quickstart.mdx
Outdated
|
||
![currently logged in user](./img/logged-in-as.png) | ||
![hsts error](./img/hsts-error.png) |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
![hsts error](./img/hsts-error.png) | |
![self-signed warning](./img/hsts-error.png) |
content/docs/install/quickstart.mdx
Outdated
|
||
You can also navigate to the special pomerium endpoint `verify.localhost.pomerium.io/.pomerium/` to see your current user details. | ||
### Handle HSTS Errors | ||
When navigating to the `https://verify.localhost.pomerium.io` route defined in your policy, you may encouter the following HSTS error: |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
When navigating to the `https://verify.localhost.pomerium.io` route defined in your policy, you may encouter the following HSTS error: | |
When navigating to the `https://verify.localhost.pomerium.io` route defined in your policy, you may encounter the following self-signed certificate warning: |
content/docs/install/quickstart.mdx
Outdated
|
||
You can also navigate to the special pomerium endpoint `verify.localhost.pomerium.io/.pomerium/` to see your current user details. | ||
### Handle HSTS Errors |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
### Handle HSTS Errors | |
### Handle Self-Signed Certificate Warning |
9a10ef8
to
22ed832
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Lots of unrelated changes. Looks like you branched off an old main, then did a soft reset?
22ed832
to
d45b0cc
Compare
@desimone hopefully this is the final push needed to get this up to date. Requesting review. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
🥳
Changes
These changes remove the optional settings for certificates, mounting wild-card certs with docker, secrets, and provides workarounds for when the user is presented with a warning for self-signed certificates.
Related issues
Closes #141 (as dupe)
Closes pomerium/pomerium#3737