41 Repos
Utilities for managing and forwarding HTTP request headers in proxy and load balancing environments.
Distinguishing note: Focuses specifically on header manipulation for proxying, distinct from general network protocol implementations.
Explore 41 awesome GitHub repositories matching networking & communication · Proxy Headers. Refine with filters or upvote what's useful.
NetBird is a zero-trust networking platform that builds secure, encrypted peer-to-peer overlay networks using the WireGuard protocol. It functions as a software-defined perimeter, connecting distributed infrastructure across cloud environments and physical locations while hiding network resources from the public internet. By integrating with external identity providers, the platform enforces granular access control and identity-based segmentation for every user and device. The platform distinguishes itself through extensive automation and programmatic management capabilities. It provides a ce
Configures trusted proxy headers to allow backend services to identify original client IP addresses through secure tunnels.
Sanic is an asynchronous Python web framework designed for building high-performance APIs and services. It operates as a production-ready ASGI web server, utilizing a non-blocking event loop to handle concurrent requests and maximize throughput. The framework is built to support scalable architectures, offering built-in worker process management to distribute traffic across available CPU cores. What distinguishes Sanic is its focus on modularity and developer-centric tooling. It features a blueprint-based system for organizing complex applications into pluggable components, alongside a robust
Configures the application to trust forwarded headers from reverse proxies for accurate client IP identification.
Quarkus is a Kubernetes-native Java framework designed for building high-performance, memory-efficient applications. It utilizes ahead-of-time native compilation to transform Java code into standalone, optimized binaries that eliminate the need for a virtual machine, enabling rapid startup and reduced memory consumption. By performing code augmentation during the build phase, it shifts heavy processing tasks away from runtime, ensuring that applications are optimized for cloud-native environments. The framework distinguishes itself through a unified approach to reactive and imperative program
Updates request metadata based on proxy headers to ensure correct routing and client identification.
BrowserSync is a web development synchronization tool and live reload server. It functions as a local static web server, a reverse proxy server for existing sites, and a browser testing orchestrator that coordinates page state across different browsers and physical devices. The tool is distinguished by its ability to mirror user interactions, such as clicks, scrolls, and form inputs, in real time across all connected devices. It also provides a web-based device control interface and the capability to create public URL tunnels for remote testing of local sites. The system covers a broad range
Adds HTTP access control headers to served assets to permit cross-origin resource sharing.
Homer is a JSON-driven web dashboard and self-hosted application portal that serves as a centralized entry point for server-hosted tools. It functions as a static home page and service launcher, organizing application links and shortcuts into a configurable grid. The project distinguishes itself through its ability to act as a service status dashboard, fetching real-time health metrics and version data from remote APIs to display on service cards. It further supports a progressive web app model for standalone installation and includes a fuzzy search system to quickly locate services across th
Injects custom authentication credentials and headers into API requests to fetch data from protected endpoints.
Dex is an OpenID Connect provider and identity federation proxy that translates authentication signals from various upstream sources into a unified OpenID Connect interface. It functions as a multi-protocol identity broker, enabling client applications to implement a single standard while delegating user verification to external identity providers. The project distinguishes itself through a pluggable connector architecture that bridges disparate protocols including LDAP, SAML, and OAuth2. It provides specific integrations for services such as GitHub, Google, GitLab, and Microsoft, while offer
Configures specific HTTP headers to supply user email and group lists from a proxy.
Owncast is a self-hosted live streaming server that provides full control over broadcast infrastructure and audience data. It functions as an RTMP video streaming server, accepting incoming video feeds and distributing them to viewers through HLS-based segmented streaming. The platform includes a built-in, stateful web-based chat interface that enables real-time viewer engagement during broadcasts. The project distinguishes itself through deep integration with the decentralized Fediverse, allowing servers to automatically broadcast stream status updates and notify followers across distributed
Extracts user identity information from HTTP headers passed through a reverse proxy.
Gunicorn is a production-grade WSGI HTTP server designed for deploying Python web applications. It functions as a process manager that utilizes a pre-fork worker model, where a master process initializes the application and spawns multiple child processes to handle incoming requests in parallel. This architecture ensures high performance and stability by isolating application execution within persistent worker processes. The server distinguishes itself through its flexible concurrency models and robust process lifecycle management. It supports interchangeable worker types, including synchrono
Restricts the processing of forwarded headers to trusted IP addresses to prevent header spoofing in proxy environments.
This project is a Node.js HTTP proxy server that enables cross-domain API requests from browsers by injecting Cross-Origin Resource Sharing headers into HTTP responses. It functions as a reverse proxy gateway and header manipulator, allowing for the interception and modification of traffic between a client and a target server. The proxy provides mechanisms to bypass browser same-origin policy restrictions through automated header injection. It includes capabilities for origin-based rate limiting and request interception to control traffic flow and prevent unauthorized usage of the proxy servi
Injects required Access-Control-Allow-Origin headers into responses to allow browsers to bypass same-origin policy restrictions.
Ladder is a web proxy server and HTTP response modifier designed to circumvent bot protections, CORS restrictions, and paywalls. It functions by intercepting traffic to modify HTML, CSS, and JavaScript via regular expressions and altering HTTP headers to reveal restricted content. The project distinguishes itself through its ability to bypass anti-scraping mechanisms and specialized bot detection, such as Cloudflare, by integrating with external challenge-solving services. It also enables client identity emulation by spoofing user agents and network identifiers to masquerade as different brow
Manipulates HTTP headers to strip CORS and Content-Security-Policy restrictions from target servers.
Mockoon is an HTTP API simulation platform and design tool used to create fake API endpoints that simulate server responses without a backend. It functions as an OpenAPI mock server tool and a JSON API mocking utility, allowing for the rapid iteration of API contracts and the generation of response templates. The project distinguishes itself through a combination of stateful mocking, using a local JSON database to simulate CRUD operations, and the ability to run as a headless API mock server via a command line interface. It supports real-time collaborative editing and AI-assisted prototyping
Automatically attaches Access-Control-Allow-Origin and other necessary headers to OPTIONS requests.
This PHP routing library is an HTTP request router and matcher designed to map incoming URL paths to specific controller actions using defined patterns and configuration. It serves as a programmatic interface for defining, loading, and resolving URL patterns, while providing a URL generator to produce absolute or relative URIs from route names and parameters. The system supports diverse route loading through YAML, XML, PHP arrays, and class attributes, utilizing compiled route matching to optimize performance. It enables sophisticated request handling through regex-based path matching, sub-do
Calculates the correct base URL by analyzing forwarded HTTP headers when the application is served behind a reverse proxy.
Higress is an AI API gateway and cloud-native traffic manager that functions as a Kubernetes ingress controller. It provides a centralized system for routing, securing, and optimizing traffic directed toward large language models, AI agents, and microservice architectures. The project distinguishes itself through deep AI orchestration, including the ability to host and manage Model Context Protocol servers that transform REST APIs into tools for AI agents. It features specialized AI infrastructure for model request proxying, protocol translation across multiple providers, and semantic-based c
Manages the addition of real-IP headers and removal of proxy headers before forwarding traffic.
Fabio is a network gateway that provides reverse proxying, layer 7 traffic management, and automated service discovery mapping. It functions as an HTTP reverse proxy, a gRPC and TCP proxy, and a service discovery gateway to route incoming traffic to healthy backend instances. The project distinguishes itself through deep integration with service registries, specifically acting as a Consul load balancer to automatically synchronize routing tables and update destination targets. It manages diverse traffic types using SNI-based routing for raw TCP streams and maintains full protocol compatibilit
Appends original client connection details to request headers to maintain transparency across network hops.
PSR-7 HTTP Message Interfaces is a set of standardized PHP interfaces for representing HTTP request and response messages, URIs, streams, and uploaded files as immutable value objects. These interfaces define a common contract that enables interoperability between PHP frameworks and libraries when handling HTTP messages, ensuring that any implementation can be used interchangeably. The interfaces model HTTP messages as immutable value objects where any modification produces a new instance, guaranteeing message integrity throughout the request lifecycle. They provide case-insensitive header ac
Provides case-insensitive header normalization as a core part of the PSR-7 HTTP message interface.
Tinyauth is an authentication middleware service and identity provider that verifies user identities to grant system access. It operates as a standalone server or as an authentication gateway, utilizing a reverse proxy model to intercept requests and validate credentials before traffic reaches protected backend services. The project functions as an OpenID Connect provider for single sign-on experiences and an OAuth 2.0 gateway that delegates verification to external providers such as Google and GitHub. It also acts as an LDAP authentication server, allowing for centralized user management and
Manages forwarded HTTP request headers to ensure correct domain resolution for redirect URIs.
Proxyman is a cross-platform HTTP debugging proxy that captures, inspects, and modifies HTTP, HTTPS, and WebSocket traffic. It functions as a man-in-the-middle proxy, decrypting SSL/TLS traffic to allow real-time inspection and modification of encrypted requests and responses. The tool is designed for debugging web and mobile applications, with capabilities for API mocking and simulation, scriptable traffic modification, and team collaboration on network logs. What distinguishes Proxyman is its deep integration with mobile and cross-platform development workflows. It provides automated certif
Adds new headers with specified values to HTTP requests or responses during debugging.
This is a local development server extension for VS Code that provides static file hosting and automatic browser reloading upon saving source files. It functions as a live reloading tool and static file web server, allowing developers to preview web pages locally with support for custom ports and root directories. The project distinguishes itself by offering a local network preview server that exposes projects to other devices on the same wireless network via IP. It also includes a development proxy capable of adding Cross-Origin Resource Sharing headers and proxying traffic to external URIs.
Injects Access-Control-Allow-Origin headers into responses to enable requests from different domains.
Webhook.site is a web-based tool that captures, inspects, and debugs incoming HTTP requests and emails sent to a unique URL, without requiring any server setup. It also functions as an API mocking and response modification tool, capable of generating mock APIs from OpenAPI specifications and altering HTTP responses, headers, and status codes for testing purposes. Beyond inspection, it serves as a platform for webhook automation and workflow orchestration, triggering multi-step automations—including database queries, SSH commands, and HTTP calls—when a webhook is received. The service distingu
Webhook.site adds CORS headers to the endpoint so that JavaScript from other domains can make cross-origin requests.
Provides CORS header injection to configure cross-origin resource sharing for API requests.