Skip to content

Latest commit

 

History

History
259 lines (152 loc) · 7.02 KB

README.md

File metadata and controls

259 lines (152 loc) · 7.02 KB

Build Status

English Readme

提供快速、安全的应用交付

Janusec Application Gateway

介绍PPT: https://www.janusec.com/download/Janusec-Application-Gateway-CN.pdf

主要特性

  • 快速: Web化配置

  • 安全

    • 安全接入: 一键启用HTTPS

    • 安全认证:

      • OAuth2: WxWork(企业微信), DingTalk(钉钉), Feishu(飞书)
      • LDAP+认证码双因子
      • CAS 2.0
    • 安全防御

      • WAF (Web应用防火墙,拦截SQL注入/XSS/敏感数据泄露等)
      • 拦截CC攻击
      • 支持CAPTCHA (验证码)
    • 安全运维: Web界面执行SSH运维

    • 安全存储: 加密证书私钥

  • 可扩展

    • 多节点负载均衡
    • 静态文件缓存加速

截图

SQL注入截图

Janusec Application Gateway Screenshot

敏感信息泄露截图

Janusec Application Gateway Screenshot

产品网站

https://doc.janusec.com/cn/

需求

  • PostgreSQL 10/11/12+ (开发环境,及生产环境主节点需要)
  • Debian 9/10+, CentOS/RHEL 7/8+, 首选Debian 10+
  • systemd
  • nftables
  • Golang 1.15+ (仅开发环境需要)

部署快速指引

详细文档可在这里获取: Janusec应用网关快速入门

如希望快速体验,可尝试使用 Docker镜像

开发快速指引

git clone https://github.com/Janusec/janusec.git

编辑config.json

"host": "127.0.0.1",
"port": "5432",
"user": "janusec",
"password": "123456",
"dbname": "janusec"

Janusec将自动加密数据库口令
然后:

go build
su (切换到root)
./janusec

Web管理入口

当config.json中listen=false时 ,使用如下地址:

http://your_primary_node_ip_address/janusec-admin/ (首次使用)
https://your_application_domain_name/janusec-admin/ (配置证书后)

当config.json中listen=true时,使用如下地址:

http://your_primary_node_ip_address:9080/janusec-admin/ (首次使用)
https://your_primary_node_domain_name:9443/janusec-admin/ (配置证书和应用后)

只使用主节点时,任意应用域名均可用于访问管理入口。
如果使用了副本节点,应为主节点申请一个单独的域名。

Janusec应用网关配置

发布

目前仅支持Linux

go build
su
./release.sh

生成的发布包位于./dist目录。

Web管理发布

Web化管理所需的文件在 ./static/janusec-admin/ 目录, 源码在 Janusec-Admin Github ,前端源码使用Angular 9.

许可证

Janusec应用网关源文件使用GNU AGPLv3授权.

支持


Provide Fast and Secure Application Delivery

Janusec Application Gateway

Introduction Slides: https://www.janusec.com/download/Janusec-Application-Gateway.pdf

Key Features

  • Fast Delivery : Web-based Configuration

  • Security

    • Secure Access: Enable HTTPS by One Click

    • Secure Authentication:

      • OAuth2: WxWork, DingTalk, Feishu, Lark
      • LDAP + Authenticator 2FA
      • CAS 2.0
    • Secure Defense

      • WAF (Web Application Firewall), Block SQL Injection, XSS, Sensitive Data leakage etc.
      • Block CC Attacks
      • CAPTCHA
    • Secure Operation: Web SSH Operation

    • Secure Storage: Encryption of Private Key

  • Scalable

    • Multiple Nodes Load Balance
    • Static Content Cache and Acceleration

Screenshots

SQL Injection Screenshot

Janusec Application Gateway Screenshot

Sensitive Data Leakage Screenshot

Janusec Application Gateway Screenshot

Product Web Site

English:
https://janusec.github.io/

Requirements

  • PostgreSQL 10/11/12+ (Required by Development and Primary Node of Deployment)
  • Debian 9/10+, CentOS/RHEL 7/8+, Debian 10+ is preferred
  • systemd
  • nftables
  • Golang 1.15+ (Required by Development Only)

Quick Start for Deployment

Detailed documentation is available at: Janusec Application Gateway Quick Start.

You can also try it with Docker Image

Quick Start for Developer

git clone https://github.com/Janusec/janusec.git

Edit config.json

"host": "127.0.0.1",
"port": "5432",
"user": "janusec",
"password": "123456",
"dbname": "janusec"

Janusec will encrypt the password automatically, then:

go build
su (switch to root)
./janusec

Web Administration

When listen=false in config.json:

http://your_primary_node_ip_address/janusec-admin/ (first use)
https://your_application_domain_name/janusec-admin/ (after certificate configured)

When listen=true in config.json :

http://your_primary_node_ip_address:9080/janusec-admin/ (first use)
https://your_primary_node_domain_name:9443/janusec-admin/ (after certificate configured)

When using primary node only, any application domain name can be used for admin.
But if you have one or more replica nodes, you should apply for a seperate domain name for primary node.

Janusec Application Gateway Configuration

Release

Only support Linux Now

go build
su
./release.sh

The release package is under ./dist .

Web Administration Release

Release directory is ./static/janusec-admin/ , and source code is available at Janusec-Admin Github with Angular 9.

LICENSE

Janusec Application Gateway source files are made available under the terms of the GNU Affero General Public License (GNU AGPLv3).

Support