-
Notifications
You must be signed in to change notification settings - Fork 16
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Adds Pomerium Zero Fundamentals courses (#1372)
* adds PZ directory * adds PZ courses files * moves core fundamentals directory * adds routes guide * adds policies guide to courses * Adds policies video * adds intro * adds jwt guide * updates advanced policies guide * adds advanced policies guide * adds first part of advanced routes guide * adds most of advanced routes guide * adds advanced routing guide * adds TCP guide * small changes to text * fixes broken link * fixes prettier and cspell errors * fixes broken links * updates tcp commands * runs prettier * adds changes to advanced routes * updates all guides formatting and videos * replaces screenshots * runs prettier * removes incompatible docs link * fixes formatting issue * updates routes * renames zero fundamentals files and directories * adds wistia videos * updates sidebar * fixes sidebar and broken links * Update content/docs/courses/fundamentals/zero-build-routes.mdx Co-authored-by: ssveta7ak <[email protected]> * Update content/docs/courses/fundamentals/zero-single-sign-on.mdx Co-authored-by: ssveta7ak <[email protected]> * Update content/docs/courses/fundamentals/zero-single-sign-on.mdx Co-authored-by: ssveta7ak <[email protected]> * updates text * Update content/docs/courses/fundamentals/zero-build-policies.mdx Co-authored-by: ssveta7ak <[email protected]> * Update content/docs/courses/fundamentals/zero-advanced-routes.mdx Co-authored-by: ssveta7ak <[email protected]> * adds requested changes * fixes breaking links --------- Co-authored-by: ssveta7ak <[email protected]>
- Loading branch information
Showing
61 changed files
with
1,361 additions
and
69 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,62 +1,16 @@ | ||
--- | ||
title: Pomerium Fundamentals | ||
title: Pomerium Zero Fundamentals | ||
id: courses | ||
sidebar_label: Courses | ||
description: Welcome to Pomerium Fundamentals, a series of courses designed to teach you the fundamentals of Pomerium so you can secure your applications with confidence. | ||
--- | ||
|
||
Welcome to **Pomerium Fundamentals**, a series of courses designed to teach you the basics of Pomerium so you can secure your apps with confidence. | ||
# Pomerium Zero Fundamentals | ||
|
||
Each course provides a structured approach to learning how Pomerium works. There are 10 courses in all. | ||
**Pomerium Zero Fundamentals** is a series of courses designed to help you understand how Pomerium works so you can secure your apps and services with confidence. | ||
|
||
Head to [**Get Started**](/docs/courses/fundamentals/get-started) to get a Pomerium instance up and running. From there, you'll add on to your configuration file in each tutorial. | ||
We'll cover routing, policies, TLS certificates, identity verification, and more. | ||
|
||
Below, we’ve included some background information about Pomerium and reverse proxies (if you're not unfamiliar). | ||
To get started, complete the [**Quickstart guide**](/docs/quickstart) first. | ||
|
||
## Reverse Proxies: a Primer | ||
|
||
### What is a Reverse Proxy? | ||
|
||
A reverse proxy is a server that sits between a client (like your browser) and an application’s origin server. When a client sends a request to an application behind a reverse proxy, the proxy receives the request before forwarding it to the origin server. When the origin server responds, the reverse proxy receives the request before sending it back to the client. | ||
|
||
This model affords several benefits: | ||
|
||
#### **Security** | ||
|
||
Because reverse proxies sit in front of an application’s origin server, the origin server’s IP address is hidden. If a malicious attacker attempts to overload or compromise the origin server, the reverse proxy would be targeted instead. | ||
|
||
#### **Load Balancing** | ||
|
||
You can use reverse proxies in your load balancing strategy to distribute traffic to available, healthy servers. So, if a website experiences high volumes of traffic, the reverse proxy can distribute traffic to a healthy server so that no single server is overloaded. | ||
|
||
#### **Transport Layer Security (TLS)** | ||
|
||
TLS encryption is computationally expensive for an origin server. A reverse proxy relieves the burden on the origin server because it can decrypt incoming requests and encrypt outgoing responses. | ||
|
||
Check out these posts to learn more: | ||
|
||
- [Proxy vs. Reverse Proxy](https://www.pomerium.com/blog/proxy-vs-reverse-proxy/) | ||
- [Zero Trust](/docs/concepts/zero-trust) | ||
|
||
## Pomerium Architecture | ||
|
||
To use Pomerium effectively, it helps to understand how Pomerium communicates with clients, identity providers, and upstream applications. | ||
|
||
### Request Lifecycle | ||
|
||
This diagram illustrates how Pomerium handles client requests to access upstream applications: | ||
|
||
![The request lifecyle](./internals/img/architecture/pomerium-request-flow.svg) | ||
|
||
Head to our [Architecture](/docs/internals/architecture) page to see these steps in detail and to learn more about how Pomerium at a system and component level. | ||
|
||
## Pomerium Terminology | ||
|
||
You’ll come across a lot of reverse proxy terminology in our documentation and guided tutorials that may not be intuitive or understandable at first. | ||
|
||
Below are are a few terms you should know: | ||
|
||
- **Resource**, **Asset**, **Application**, or **Service**: These terms all essentially represent the same thing: a sensitive destination within your private network that you want to secure behind Pomerium. We typically try not to use “resource” or “asset” because, well, they can mean different things depending on the context. | ||
- **Downstream** and **Upstream**: Pomerium sits between a client and a web app or service. If Pomerium is in the middle, then the client is “downstream” of Pomerium, and the protected app or service is “upstream” of Pomerium. | ||
|
||
See our [Glossary](/docs/internals/glossary) to review more terms. | ||
When you're finished, learn how to [**Build Routes**](/docs/courses/fundamentals/zero-build-routes.mdx) in Pomerium Zero. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
File renamed without changes
File renamed without changes
File renamed without changes
File renamed without changes
File renamed without changes
File renamed without changes
File renamed without changes
File renamed without changes
File renamed without changes
File renamed without changes
File renamed without changes
File renamed without changes
File renamed without changes
File renamed without changes
File renamed without changes
Binary file added
BIN
+32.7 KB
...s/courses/fundamentals/img/zero-advanced-policies/change-and-to-or-operator.gif
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added
BIN
+182 KB
content/docs/courses/fundamentals/img/zero-advanced-policies/decoding-jwt.png
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added
BIN
+37.9 KB
content/docs/courses/fundamentals/img/zero-advanced-policies/email-allowlist.png
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added
BIN
+44.7 KB
content/docs/courses/fundamentals/img/zero-advanced-policies/email-claim.png
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added
BIN
+16.9 KB
content/docs/courses/fundamentals/img/zero-advanced-policies/matching-domain.png
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added
BIN
+69.4 KB
...t/docs/courses/fundamentals/img/zero-advanced-policies/multiple-deny-blocks.png
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added
BIN
+32.8 KB
content/docs/courses/fundamentals/img/zero-advanced-policies/multiple-policies.png
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added
BIN
+50.4 KB
...courses/fundamentals/img/zero-advanced-routes/add-redirects-in-zero-console.png
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added
BIN
+11.7 KB
...courses/fundamentals/img/zero-advanced-routes/host-rewrite-to-literal-value.png
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added
BIN
+188 KB
...ent/docs/courses/fundamentals/img/zero-advanced-routes/jwt-assertion-header.png
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added
BIN
+23.6 KB
content/docs/courses/fundamentals/img/zero-advanced-routes/jwt-claim-headers.png
Oops, something went wrong.
Binary file added
BIN
+172 KB
content/docs/courses/fundamentals/img/zero-advanced-routes/jwt-claims-response.png
Oops, something went wrong.
Binary file added
BIN
+41.2 KB
content/docs/courses/fundamentals/img/zero-advanced-routes/node-server-route.png
Oops, something went wrong.
Binary file added
BIN
+94.2 KB
...ses/fundamentals/img/zero-advanced-routes/nodeserver-prefix-rewrite-setting.gif
Oops, something went wrong.
Binary file added
BIN
+135 KB
...ocs/courses/fundamentals/img/zero-advanced-routes/nodeserver-prefix-setting.gif
Oops, something went wrong.
Binary file added
BIN
+16.3 KB
content/docs/courses/fundamentals/img/zero-advanced-routes/pz-redirect.gif
Oops, something went wrong.
Binary file added
BIN
+32.7 KB
content/docs/courses/fundamentals/img/zero-advanced-routes/server-endpoints.gif
Oops, something went wrong.
Binary file added
BIN
+149 KB
.../fundamentals/img/zero-advanced-routes/set-and-remove-headers-response-body.png
Oops, something went wrong.
Binary file added
BIN
+32.1 KB
...ourses/fundamentals/img/zero-advanced-routes/set-and-remove-request-headers.png
Oops, something went wrong.
Binary file added
BIN
+34.7 KB
content/docs/courses/fundamentals/img/zero-policies/pz-courses-ppl-editor.png
Oops, something went wrong.
Binary file added
BIN
+18.7 KB
content/docs/courses/fundamentals/img/zero-policies/pz-courses-ppl-example-1.png
Oops, something went wrong.
Binary file added
BIN
+17.7 KB
content/docs/courses/fundamentals/img/zero-policies/pz-courses-ppl-example-2.png
Oops, something went wrong.
Binary file added
BIN
+39.3 KB
content/docs/courses/fundamentals/img/zero-routes/from-and-to-urls.png
Oops, something went wrong.
Binary file added
BIN
+40.4 KB
content/docs/courses/fundamentals/img/zero-routes/pz-courses-first-route.png
Oops, something went wrong.
Binary file added
BIN
+259 KB
content/docs/courses/fundamentals/img/zero-routes/pz-courses-route-details.png
Oops, something went wrong.
Large diffs are not rendered by default.
Oops, something went wrong.
Binary file added
BIN
+72.5 KB
...ent/docs/courses/fundamentals/img/zero-sso/pz-courses-apply-pass-id-headers.gif
Oops, something went wrong.
Binary file added
BIN
+43.4 KB
content/docs/courses/fundamentals/img/zero-sso/pz-courses-jwt-synced.png
Oops, something went wrong.
Oops, something went wrong.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.