Skip to content
This repository was archived by the owner on Sep 22, 2020. It is now read-only.

Commit 4324f75

Browse files
offboarded-x233534offboarded-x233534
committed
readme
1 parent 173f6de commit 4324f75

1 file changed

Lines changed: 7 additions & 6 deletions

File tree

README.md

Lines changed: 7 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -6,7 +6,7 @@ A simple python based proxy to secure github pages via a small cloud-proxy-insta
66

77
:bangbang: **BETA: THIS IS WORKING BUT NOT RECOMMENDED FOR PRODUCTION USE!** :bangbang:
88

9-
**DEMO**
9+
### 1.1 Demo
1010

1111
* Secured Page by Proxy:
1212
* https://my-secure-github-page.comsysto.com/
@@ -17,15 +17,15 @@ A simple python based proxy to secure github pages via a small cloud-proxy-insta
1717
* https://comsysto.github.io/github-pages-basic-auth-proxy/086e41eb6ff7a50ad33ad742dbaa2e70b75740c4950fd5bbbdc71981e6fe88e3/
1818
* (normally you would not tell anyone that URL. But just that you see that these pages are identical)
1919

20-
### 1.1 Who needs this?
20+
### 1.2 Who needs this?
2121

2222
* If you have a GitHub organization account with organization members.
2323
* If you have a private organization github repository.
2424
* If you have a `gh-pages` branch in that repository.
2525
* And if you want to secure the gh-pages page via basic auth, then this proxy is for you.
2626
* Only members of the GitHub organization OR normal GitHub users will have access
2727

28-
### 1.2 What it will do
28+
### 1.3 What it will do
2929

3030
![](./doc/basic-proxy.png)
3131

@@ -38,10 +38,11 @@ A simple python based proxy to secure github pages via a small cloud-proxy-insta
3838
* the JWT Token is valid for 4 hours.
3939
* After the Token has expired or the cookie is removed you will have to perform Authentication again.
4040

41-
### 1.3 How is this secure?
41+
### 1.4 Is this really secure?
4242

43-
* Basically `gh-pages` URLs are public
44-
* BUT if you create a directory in your `gh-pages` branch which is called e.g. `086e41eb6ff7a50ad33ad742dbaa2e70b75740c4950fd5bbbdc71981e6fe88e3` and proxy to this dir, it will be secure as long as no one knows this **obfuscator**.
43+
* Basically `gh-pages` URLs are public. But if you use a private repository you can only **guess** the actual URLs.
44+
* If you create a directory in your `gh-pages` branch which is called e.g. `086e41eb6ff7a50ad33ad742dbaa2e70b75740c4950fd5bbbdc71981e6fe88e3` and proxy to this dir, it will be secure as long as no one knows **obfuscator** (you should keep it secret).
45+
* You proxy to https (TLS) so no man in the middle attack could get a hold of the obfuscator.
4546

4647
## 2. Installation
4748

0 commit comments

Comments
 (0)