• Stars
    star
    4
  • Rank 3,304,323 (Top 66 %)
  • Language
    Go
  • License
    Apache License 2.0
  • Created over 1 year ago
  • Updated 7 months ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

TPM based TLS using Attested Keys

More Repositories

1

gcpsamples

Simple "Hello world" samples for accessing Google Cloud APIs in (node,dotnet,java,golang,python)
Go
100
star
2

squid_proxy

Multi-mode Squid Proxy container running SSL intercept
Dockerfile
99
star
3

gcegrpc

gRPC client/server running loadbalanced/failover on Google Compute Engine and Google App Engine
Go
79
star
4

istio_helloworld

easy walkthrough of basic istio
JavaScript
75
star
5

envoy_discovery

Envoy Discovery service 'hello world'
Go
64
star
6

envoy_control

Sample Envoy control plane 'hello world'
Go
63
star
7

gce_metadata_server

Simple emulator for the Google Compute Engine Metadata Server
Go
58
star
8

grpc_xds

gRPC xDS Loadbalancing
Go
52
star
9

istio_external_authorization_server

Tutorial to setup a simple Istio external authorization server
Go
51
star
10

google_id_token

Authenticating using Google OpenID Connect Tokens
C
43
star
11

grpc_web_with_gke

gRPC over browser Javascript: Using gRPC-Web on Google Kubernetes Engine Ingress
JavaScript
37
star
12

envoy_external_authz

Envoy External Authorization server (envoy.ext_authz) HelloWorld
Go
34
star
13

tpm2

TPM2 samples with go-tpm and tpm2_tools
Go
32
star
14

flask-gcp-log-groups

Flask logging handler specifically for Google Cloud combined request and app logs
Python
25
star
15

envoy_ext_proc

Envoy External Processing Filter
Go
24
star
16

go-grpc-bazel-docker

Deterministic Bazel build with gRPC + go
Starlark
22
star
17

signer

golang crypto.Signer, crypto.Decrypter for Google Cloud KMS, TPM and PEM file
Go
20
star
18

wasm_http_go

Browser WebAssembly with golang http client
JavaScript
19
star
19

go_tpm_remote_attestation

TPM Remote Attestation protocol using go-tpm and gRPC
Go
19
star
20

go_pkcs11

PKCS 11 Samples in Go using SoftHSM
Go
19
star
21

gcpcompat-oidc

Exchange Generic OIDC Credentials for GCP Credentials using GCP STS Service
Go
18
star
22

envoy_mtls

Sample configuration for HTTP and Network mTLS using envoy yaml
Go
17
star
23

istio_custom_auth_adapter

Custom Istio Mixer Authorization Adapter
Go
17
star
24

grpc_curl

Supporting image/server demonstrating grpc+curl
Python
16
star
25

grpc_health_proxy

HTTP Proxy for gRPC HealthChecks
Go
15
star
26

envoy_ratelimit

Sample Envoy ratelimit 'hello world'
15
star
27

mtls_pkcs11

mTLS with PKCS11 keys
Go
15
star
28

ca_scratchpad

CA and Subordiante CA sample
Go
14
star
29

confidential_space

Constructing Trusted Execution Environment (TEE) with GCP Confidential Space
Go
13
star
30

iam_autorevoke

Time limited, auto-expiring group memberships for users on Google Cloud
Go
13
star
31

terraform-provider-http-full

Terraform HTTP provider with mTLS and JSON POST support
Go
13
star
32

gcpdotnet

Samples running .NET (coreclr) on Google Appengine, Container Engine and Container VM
C#
12
star
33

gcp_iam

Utility functions to troubleshoot for GCP IAM Permissions, Roles and Resources
Go
12
star
34

envoy_iap

Envoy proxy JWT validator for Google Identity Aware proxy and Google ID Tokens
Python
12
star
35

grpc_stats_envoy_istio

gRPC per method observability with envoy and Istio
Go
12
star
36

gcp_impersonated_credentials

Using ImpersonatedCredentials for Google Cloud API and id_tokens
C#
11
star
37

k8s_federation_with_gcp

Using Kubernetes Service Accounts for Google Workload Identity Federation
11
star
38

gcpcompat-aws

Exchange AWS Credentials for GCP Credentials using GCP STS Service
Go
11
star
39

golang-jwt-tpm

Generate and verify JWT tokens with Trusted Platform Module (TPM)
Go
11
star
40

secure_boot

Testing Secure Boot, dm-crypt, fscrypt, dm-verity with QEMU and debian 10.8.0
11
star
41

k8s_webhook_helloworld

Kubernetes Auth/Authz WebHook Hellworld sample
Go
11
star
42

grpc_sslkeylog

Using Wireshark to decrypt TLS gRPC Client-Server protobuf messages
Go
11
star
43

go_tpm_https_embed

TPM based mTLS
Go
10
star
44

gcp_pubsub_message_encryption

Message Payload Encryption in Google Cloud PubSub
Python
10
star
45

bq-udf-protobuf

BigQuery UDF Marshall/Unmarshall Protocolbuffers
JavaScript
10
star
46

envoy_wasm

Envoy WASM with external gRPC server
C++
10
star
47

gcs_post_signedurl_js

Upload/Download files from a browser with GCS Signed URLs and Signed Policy Documents
HTML
9
star
48

gcp_error_handler

Decoding GCP Errors Details
Java
9
star
49

grpc_google_id_tokens

gRPC Authentication using Google id_tokens
Java
9
star
50

google_cloud_directory_sync

Google Cloud Directory Sync with OpenLDAP
9
star
51

composer_gcf

Calling Cloud Composer > GCF > Composer securely
Python
9
star
52

gcp_cc_sev_demo

Google Cloud Confidential Compute AMD SEV Demo
C
8
star
53

workspace_saml_app

Google Workspace as Identity Provider for your SAML Application
Go
8
star
54

gsuites_gcp_graphdb

JanusGraph db representing Gsuites users,groups and GCP serviceAccounts, roles, permissions to resources
Go
8
star
55

kubehelloworld

Kubernetes HelloWorld Services sample
Go
8
star
56

cloud-functions-dotnet

Google Cloud Functions for .NET
C++
8
star
57

gcp_rclone

Rclone Storage bucket sync using Cloud Scheduler and Cloud Run
Go
7
star
58

squid_ssl_bump_gcp

Squid proxy cluster with ssl_bump on Google Cloud
Shell
7
star
59

vault_gcp

Vault auth and secrets on GCP
Go
7
star
60

openssl_trace

OpenSSL 3.0 docker with FIPS and TLS trace enabled
C
7
star
61

grpc_alts

Simple Helloworld of gRPC Application Layer Transport Security on Google Cloud
Go
7
star
62

gcp_tpm_sealed_keys

Sealing RSA and Symmetric keys to TPM PCR values on Google Cloud
Go
7
star
63

go-tpm-wrapping

Go-TPM-Wrapping - Go library for encrypting values through Trusted Platform Module (TPM)
Go
7
star
64

clam_av

Anti Virus file scanning on Google Cloud Storage using ClamAV
Go
7
star
65

request_reason

Request Annotation with Cloud Audit Logging and Monitoring on GCP
Go
7
star
66

cosign_bazel_cloud_build

Deterministic container hashes and container signing using Cosign, Bazel and Google Cloud Build
Starlark
7
star
67

workload_federation_cloudrun_gcf

Authenticating using Workload Identity Federation to Cloud Run, Cloud Functions
Go
7
star
68

iap_endpoints_app

Single Page webapp using GKE, App Engine, Google Cloud Endpoints and Identity Aware Proxy
Python
7
star
69

wasm_homomorphic_encryption

A simple soroban using WebAssembly and Homomorphic Encryption
JavaScript
6
star
70

gcp_cicp_saml

Setting up SAML for Google Cloud Identity for Customers and Partners (CICP)
Python
6
star
71

gcp_tokendistributor

Remote Authorization and TokenDistributor for GCP VMs
Go
6
star
72

envoy_oauth2

Envoy Oauth2 Filter helloworld
Go
6
star
73

iam_bq_dataset

BigQuery Dataset to query IAM Roles-Permissions daily changes
Go
6
star
74

tpm_daemonset

Kubernetes Trusted Platform Module (TPM) DaemonSet
Go
6
star
75

envoy_tap

Envoy TAP filter helloworld
Go
5
star
76

org_policy_audit

Auditing Google Cloud Organization Policy Enforcement using Asset Inventory API and BigQuery
Go
5
star
77

gcs_signedurl

Google Cloud Storage SignedURL with Cloud Run, Cloud Functions and GCE VMs
Go
5
star
78

envoy_grpc_decode

Filtering gRPC Messages using Envoy
Go
5
star
79

envoy_redis

Redis AUTH and mTLS with Envoy
Go
5
star
80

api_gateway_auth

API Gateway -> Cloud Run Auth Helloworld
Go
5
star
81

envoy_rbac

Envoy mTLS and JWT Auth with RBAC
5
star
82

tink_samples

Simple Examples of using Tink Encryption library in Golang
Go
5
star
83

jwt-samples

Samples for raw implementations of JSON WebTokens (JWT) for Google Authentication
C
5
star
84

fhe

Simple RideSharing "helloworld" with Homomorphic Encryption
Go
5
star
85

grpc_wireformat

gRPC Unary requests the hard way: using protorefelect, dynamicpB and wireencoding to send messages
Go
5
star
86

image_file_converter

Simple image file converter using GCP serverless components
Go
4
star
87

googlapps-sso

Script and container demonstrating SAML SSO for google apps domains
Python
4
star
88

docker_daemon_tpm

Docker daemon mTLS with TPM based keys
Go
4
star
89

gpg_gcf

GPG stream encryption and decryption on Google Cloud Functions and Cloud Run
Go
4
star
90

grpc_web_and_transcoding_with_envoy

Simple grpc web and grpc transcoding with Envoy
Go
4
star
91

bq-udf-xml

XML to JSON BigQuery UDF
TypeScript
4
star
92

cloud_run_grpc_auth

Cloud Run authentication with gRPC
Go
4
star
93

tpm2_evp_sign_decrypt

Simple "Helloworld" Sign and Decrypt using tpm2-tss-engine, openssl EVP. Google Cloud Authentication with tpm2
C
4
star
94

dataflow_pubsub_message_encryption

Message Encryption with Dataflow PubSub Stream Processing
Python
4
star
95

stackdriver_istio_helloworld

Samples on using the Stackdriver suite on istio, simplified
Go
4
star
96

quic_curl

QUIC HTTP/3 with nginx, envoy and curl
Go
4
star
97

k8s_grpc_xds

Kubernetes xDS service for gRPC loadbalancing
Go
4
star
98

sts_server

Serverless Security Token Exchange Server(STS) and gRPC STS credentials
Go
4
star
99

golang-jwt-pkcs11

Generate and verify JWT tokens with PKCS-11
Go
3
star
100

bq_cloud_function_golang

Google BigQuery Remote Functions using golang
Go
3
star