Smart SSH, HTTPS and MySQL bastion that needs no client-side software
Find a file
dependabot[bot] f7c5e4059e Bump clap from 3.2.1 to 3.2.2
Bumps [clap](https://github.com/clap-rs/clap) from 3.2.1 to 3.2.2.
- [Release notes](https://github.com/clap-rs/clap/releases)
- [Changelog](https://github.com/clap-rs/clap/blob/master/CHANGELOG.md)
- [Commits](https://github.com/clap-rs/clap/compare/clap_complete-v3.2.1...v3.2.2)

---
updated-dependencies:
- dependency-name: clap
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-06-21 09:23:16 +02:00
.cargo import 2022-04-10 22:58:58 +02:00
.github build against older glibc - fixes #33 2022-05-18 01:13:25 -07:00
docker build against older glibc - fixes #33 2022-05-18 01:13:25 -07:00
warpgate Merge branch 'v0.2' into main 2022-06-17 19:25:15 +02:00
warpgate-admin Bump typescript from 4.7.3 to 4.7.4 in /warpgate-admin/app 2022-06-21 09:22:36 +02:00
warpgate-common fixed RSA client key auth - #20 2022-06-16 18:52:55 +02:00
warpgate-db-entities lint 2022-05-30 12:55:09 +02:00
warpgate-db-migrations lint 2022-05-30 12:55:09 +02:00
warpgate-protocol-ssh bumped russh: RSA-SHA1 support - fixes #139 2022-06-18 21:31:09 +02:00
.all-contributorsrc Add @apiening as a contributor 2022-04-12 18:58:50 +02:00
.bumpversion.cfg Bump version: 0.2.4 → 0.2.5 2022-06-17 19:22:45 +02:00
.env import 2022-04-10 22:58:58 +02:00
.gitignore import 2022-04-10 22:58:58 +02:00
Cargo.lock Bump clap from 3.2.1 to 3.2.2 2022-06-21 09:23:16 +02:00
Cargo.toml import 2022-04-10 22:58:58 +02:00
Cross.toml build against older glibc - fixes #33 2022-05-18 01:13:25 -07:00
deny.toml import 2022-04-10 22:58:58 +02:00
justfile lint 2022-05-30 12:55:09 +02:00
LICENSE Update LICENSE 2022-04-14 11:14:56 +02:00
README.md Update README.md 2022-05-30 18:18:41 +02:00
rust-toolchain.toml import 2022-04-10 22:58:58 +02:00
rustfmt.toml import 2022-04-10 22:58:58 +02:00

Warpgate

GitHub All Releases    

Warpgate is a smart SSH bastion host for Linux that can be used with any SSH client.

  • Set it up in your DMZ, add user accounts and easily assign them to specific hosts within the network.
  • Warpgate will record every session for you to view (live) and replay later through a built-in admin web UI.
  • Not a jump host - forwards your connections straight to the target instead.
  • 2FA support
  • Single-file statically linked binary with no dependencies.
  • Written in 100% safe Rust.

Getting started & downloads

image
image image

Project Status

The project is currently in alpha stage and is gathering community feedback. See the official roadmap for the upcoming features.

In particular, we're working on:

  • Support for exposing HTTP(S) endpoints through the bastion,
  • Support for tunneling database connections,
  • Requesting admin approval for sessions
  • and much more.

How it works

Warpgate is a service that you deploy on the bastion/DMZ host, which will accept SSH connections and provide an (optional) web admin UI.

Run warpgate setup to interactively generate a config file, including port bindings. See Getting started for details.

It receives SSH connections with specifically formatted credentials, authenticates the user locally, connects to the target itself, and then connects both parties together while (optionally) recording the session.

You manage the target and user lists and assign them to each other through a config file (default: /etc/warpgate.yaml), and the session history is stored in an SQLite database (default: in /var/lib/warpgate).

You can use the web interface to view the live session list, review session recordings and more.

Contributing / building from source

  • You'll need nightly Rust (will be installed automatically), NodeJS and Yarn
  • Clone the repo
  • Just is used to run tasks - install it: cargo install just
  • Install the admin UI deps: just yarn
  • Build the API SDK: just openapi-client
  • Build the frontend: just yarn build
  • Build Warpgate: cargo build (optionally --release)

Contributors

Thanks goes to these wonderful people (emoji key):


Eugeny

💻

Spencer Heywood

💻

Andreas Piening

💻

This project follows the all-contributors specification. Contributions of any kind welcome!