Restore deleted files

Author: sg-writer

iam/index.mdx

@@ -0,0 +1,44 @@
+---
+title: Identity and Access Management
+sidebarTitle: IAM
+---
+
+## Overview
+
+ngrok includes a robust identity and access management (IAM) system. ngrok's
+IAM functionality enables you to:
+
+- Issue, rotate and revoke unique credentials for each principal in your account (either a human user or an automated process).
+- Enforce least-privilege access for each principal acting within your ngrok account
+- Attribute all mutations to distinct principals in your ngrok account recorded in audit logs
+- Configure single sign-on (SSO) to federate identity and SCIM to enable provisioning from your own IdP
+- Administrate multiple ngrok accounts with a single user
+
+## Concepts
+
+Before diving into ngrok's IAM system, it's helpful to be acquainted with the
+terminology and concepts ngrok uses to describe its IAM primitives.
+
+- **Accounts**: ngrok Accounts are the containers in which you create and consume ngrok services.
+- [**Users**](/iam/users/): An Account contains one or more **Users**. Users are members of
+  the Account who can take actions within it, like creating objects, start agents
+  or making API requests. Users may be members of multiple accounts and are not owned by any single account.
+- [**Service Users**](/iam/service-users): Accounts also contain **Service Users** which are like Users but
+  meant to be used for automated processes. Other systems may call these 'Service
+  Accounts'.
+- [**Principals**](/obs/events/#principal-object): A principal is either a User or Service User. Principals are
+  members of an Account that may take actions inside of it.
+- [**Credentials**](/iam/users/#credentials): These are the keys and tokens that Principals use to
+  authenticate with the ngrok service. Types of Credential include Authtokens,
+  API Keys, and SSH Public Keys.
+- [**Authtokens**](/agent/#authtokens): Principals begin Agent sessions and create Endpoints by
+  authenticating with Authtoken.
+- [**API Keys**](/api/#authentication): Principals make API Requests by authenticating with an API Key.
+- [**SSH Public Keys**](/agent/ssh-reverse-tunnel-agent/#authentication): Principals create Endpoints via the SSH Reverse Tunnel
+  Agent with an SSH Public Key.
+- [**Invitations**](/iam/users/#invitations): Invitations are a mechanism to add a new User with a given
+  email address to an Account.
+- [**RBAC**](/iam/rbac/): Role Base Access Control is used to limit the permissions of what
+  actions a User may take within your account.
+- [**Account Domain Controls**](/iam/domain-controls/): Account Domain Controls are used to create
+  policy on Users who log in or sign up with a given email domain.

obs/index.mdx

@@ -0,0 +1,27 @@
+---
+title: Traffic Observability
+sidebarTitle: Overview
+---
+
+ngrok provides two powerful mechanisms that allow you to observe and introspect
+the network traffic flowing through your Endpoints. An in-dashboard real-time
+view of requests and a fully-fledged event system to export events to your own
+logging systems.
+
+## Traffic Inspector
+
+Traffic Inspector gives you a view into the HTTP traffic flowing through the
+endpoints in your account. You can choose whether Traffic Inspector captures
+only request metadata or full request and response bodies. You can even replay
+requests against your endpoints for easy debugging replication.
+
+[Get Started with Traffic Inspector →](/obs/traffic-inspection/)
+
+## Log Exporting
+
+Whenever changes occur in your ngrok account or when traffic transits through
+your endpoints, an event is fired. You may subscribe to these events and
+publish them to destinations like AWS Cloudwatch Logs, AWS Firehose, AWS S3,
+Datadog Logs, Azure Monitor and more.
+
+[Get Started with Log Exporting Events →](/obs/events/)

traffic-policy/concepts/index.mdx

@@ -0,0 +1,17 @@
+---
+title: Traffic Policy Concepts
+sidebarTitle: Overview
+description: Learn about the key concepts of ngrok's Traffic Policy engine.
+---
+
+The ngrok Traffic Policy engine enables you to manage traffic consistently across your endpoints. It allows you to inspect, manipulate, and route traffic in a structured way.
+
+Traffic Policy is composed of a few key components:
+
+- [**Phases:**](/traffic-policy/concepts/phases) Defined points in the traffic lifecycle where you can apply logic.
+- [**Phase Rules:**](/traffic-policy/concepts/phase-rules) The set of conditions and actions applied during specific phases to filter, manipulate, or manage traffic.
+- [**Expressions:**](/traffic-policy/concepts/expressions) Conditions used in Phase Rules to determine when an action should be applied.
+- [**Actions:**](/traffic-policy/concepts/actions) Logic that is triggered when a Phase Rule condition is met.
+- [**CEL Interpolation:**](/traffic-policy/concepts/cel-interpolation) A way to dynamically evaluate variables and macros inside configuration values, such as URLs or headers.
+
+By combining these components, Traffic Policy provides a powerful way to control your traffic flow at a fine-grained level.

universal-gateway/overview.mdx

@@ -0,0 +1,58 @@
+---
+title: Universal Gateway Overview
+sidebarTitle: Overview
+---
+
+ngrok's Universal Gateway is a suite of common tools for building API and device gateways, identity-aware proxies, and site-to-site connectivity.
+It secures, accelerates, and protects your applications.
+We call it a Universal Gateway because it supports [TCP](/universal-gateway/tcp/) and [TLS](/universal-gateway/tls/) applications as well as [HTTP/S](/universal-gateway/http/).
+
+## Concepts
+
+Dive into the different parts of the Universal Gateway like Endpoints, Bindings, Pools, and Domains to understand how they work.
+
+Learn more about Universal Gateway Concepts:
+
+- [Domains →](/universal-gateway/domains/)
+- [TCP Addresses →](/universal-gateway/tcp-addresses/)
+- [TLS Certificates →](/universal-gateway/tls-certificates/)
+- [Edges →](/universal-gateway/edges/)
+
+## Endpoints
+
+[Endpoints](/universal-gateway/endpoints/) are how ngrok enables traffic to reach your services.
+
+Learn more about Endpoints:
+
+- [Bindings →](/universal-gateway/bindings/)
+- [Internal Endpoints →](/universal-gateway/internal-endpoints/)
+- [Public Endpoints →](/universal-gateway/public-endpoints/)
+- [Kubernetes Endpoints →](/universal-gateway/kubernetes-endpoints/)
+
+## Load Balancing
+
+Endpoints Pools make load balancing dead simple.
+When your create two endpoints with the same URL (and binding), those endpoints automatically "pool" together and traffic to their URL is balanced among them.
+
+- [Learn more about Load Balancing with Endpoint Pools →](/universal-gateway/endpoint-pooling/)
+
+## TLS
+
+ngrok automatically handles TLS (SSL) termination and certificate management for you.
+There is typically nothing to setup, configure, or manage.
+
+- [Learn more about TLS Certificates →](/universal-gateway/tls-certificates/)
+- [Learn more about the TLS Termination →](/universal-gateway/tls-termination/)
+
+## Global Load Balancer
+
+ngrok's Global Load Balancer automatically improves the performance and resiliency of your applications by distributing traffic to the nearest healthy point of presence, measured by latency, from the perspective of the connecting client.
+
+- [Learn more about the Global Load Balancer →](/universal-gateway/global-load-balancer/)
+- [See ngrok's Global Points of Presence →](/universal-gateway/points-of-presence)
+
+## DDoS Protection
+
+ngrok automatically protects your applications with out-of-the-box protection from distributed denial-of-service (DDoS) attacks.
+
+- [Learn more about DDoS Protection →](/universal-gateway/ddos-protection)