Identity-aware reverse proxy for clientless access to internal apps without a corporate VPN
- Stars4.9k
- Forks337
- Open Issues126
Apache-2.0
- Go
- TypeScript
- Jsonnet
About Pomerium
Pomerium is an identity and context-aware reverse proxy for secure, clientless connections to internal web apps and other services. It is built to replace VPN-based access for organizations that want access control in front of applications instead of on the network.
It supports clientless access, tunnel-free deployment where apps and services run, and continuous verification that checks every action before it is allowed to execute. It also uses context-aware access by integrating data for authorization decisions.
Pomerium offers a hosted control plane and management GUI through Pomerium Zero. The open source proxy is maintained in the Pomerium project, and the product is positioned for deployments where access policy and app connectivity are controlled by the organization.
Key features
- Clientless access to internal web apps and services
- Tunnel-free deployment near apps and services
- Continuous verification before actions execute
- Context-aware access using integrated data
- Hosted control plane and management GUI available via Pomerium Zero
Details
- First released
- 2019
- Platforms
- Web
- Deployment
- self-hostable · cloud
- Access model
- Identity and context-aware
- Use case
- Clientless access without VPN
- Product type
- Identity-aware reverse proxy