Application-Gateway
jit-access
| Application-Gateway | jit-access | |
|---|---|---|
| 2 | 1 | |
| 83 | 214 | |
| - | 3.3% | |
| 7.9 | 9.2 | |
| 3 months ago | 8 days ago | |
| Java | Java | |
| Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Application-Gateway
-
What are the security measures to implement when using reverse proxy?
Authentication and Session Management Depending on your architecture you may want to implement authentication and session management on your reverse proxy. The OWASP Application Gateway (https://github.com/gianlucafrei/Application-Gateway) implements such functionality.
- New OWASP Project: Application Gateway. Still in early development.
jit-access
-
access control | database
Most IAM resources on Google Cloud have time boxing built in and you can control access to resources that way. Google have a self serve application that devs can use to get access, see: https://github.com/GoogleCloudPlatform/jit-access
What are some alternatives?
spring-boot-security-saml-sample - SBS3 — A sample SAML 2.0 Service Provider built on Spring Boot.
magpie - A Cloud Security Posture Manager or CSPM with a focus on security analysis for the modern cloud stack and a focus on the emerging threat landscape such as cloud ransomware and supply chain attacks.
Armeria - Your go-to microservice framework for any situation, from the creator of Netty et al. You can build any type of microservice leveraging your favorite technologies, including gRPC, Thrift, Kotlin, Retrofit, Reactive Streams, Spring Boot and Dropwizard.
bank-of-anthos - Retail banking sample application showcasing Kubernetes and Google Cloud
oauth2-proxy - A reverse proxy that provides authentication with Google, Azure, OpenID Connect and many more identity providers.
auth - A GitHub Action for authenticating to Google Cloud.
product-apim - Welcome to the WSO2 API Manager source code! For info on working with the WSO2 API Manager repository and contributing code, click the link below.
wrongsecrets - Vulnerable app with examples showing how to not use secrets [Moved to: https://github.com/OWASP/wrongsecrets]
Spring Boot - Spring Boot
wrongsecrets - Vulnerable app with examples showing how to not use secrets
jeecg-boot - 🔥「企业级低代码平台」前后端分离架构SpringBoot 2.x/3.x,SpringCloud,Ant Design&Vue,Mybatis,Shiro,JWT。强大的代码生成器让前后端代码一键生成,无需写任何代码! 引领新的开发模式OnlineCoding->代码生成->手工MERGE,帮助Java项目解决70%重复工作,让开发更关注业务,既能快速提高效率,帮助公司节省成本,同时又不失灵活性。