42 Repos
Components that intercept network requests to validate user sessions and enforce access control before processing application logic.
Distinguishing note: Specifically targets the middleware-based interception pattern for session validation rather than generic authentication libraries.
Explore 42 awesome GitHub repositories matching security & cryptography · Request Authentication Middleware. Refine with filters or upvote what's useful.
This project is a modular authentication framework designed to manage user identity, session tracking, and access control across web applications. It provides a unified solution for handling email-based credentials and social identity federation, allowing developers to implement secure login and registration flows that maintain consistent user states across client and server environments. The system utilizes a plugin-based architecture and middleware-driven request interception to allow for the extension of core authentication logic. It features type-safe schema generation, which derives data
Authentication checks are performed by intercepting incoming network requests to validate user sessions before allowing access to protected application routes.
Devise is a flexible authentication framework for Ruby on Rails applications. It serves as a user identity management system that handles registration, sign-in, password recovery, and account confirmation. The system integrates with the Warden middleware to manage user sessions and security across various request types. The framework functions as a multi-model authentication engine, allowing for the configuration of multiple distinct user models with independent routes and access controls. It also provides a standardized interface to connect with external identity providers and third-party lo
Delegates the core authentication and session management to a low-level Rack middleware layer for decoupled request handling.
Devise is a comprehensive identity management system and authentication framework for Ruby on Rails applications. It provides a complete set of tools for managing user registration, secure sign-in, and session handling using a modular strategy pattern. The framework distinguishes itself by offering a suite of security hardening features, including brute force protection through account locking and secure password recovery workflows. It also functions as an integrator for external identity providers and third-party authentication via standardized protocols. Broad capabilities cover the full u
Integrates Warden as a middleware layer to intercept and validate requests before they reach the application.
Passport is a Node.js authentication middleware designed to manage user identities and session states within web applications. It functions as a request identity verifier that secures application routes by validating user credentials before granting access. The system utilizes a modular authentication strategy, allowing identity verification through interchangeable plugins. This architecture supports the creation of custom authentication strategies for local credentials and the integration of federated identity providers using external protocols. The framework provides capabilities for sessi
Provides middleware that intercepts requests to validate user sessions and enforce access control.
This repository serves as an educational resource and technical guide for developers learning to integrate large language models into software applications. It provides practical lessons and code examples focused on building systems that perform automated text generation, data analysis, and interactive chat tasks. The project functions as a framework for understanding how to connect applications to external artificial intelligence services. It covers the implementation of secure authentication, the orchestration of network requests, and the configuration of model parameters such as temperatur
Provides middleware components that intercept network requests to validate credentials before processing application logic.
Gotty is a web-based terminal emulator that functions as a secure remote shell gateway. It exposes command-line processes as interactive web applications, allowing users to access and manage terminal sessions directly through a standard browser without requiring local terminal software. The system distinguishes itself by integrating with terminal multiplexers to enable shared, real-time collaboration among multiple remote clients. It enforces security through a combination of TLS-encrypted network transport and configurable access control mechanisms, including basic authentication and client
Intercepts incoming connection requests to validate user sessions and enforce access control policies before granting terminal access.
Wasp is a declarative full-stack web framework that enables developers to build and deploy applications by defining their architecture in a centralized configuration. By using a high-level specification, the framework automates the orchestration of frontend, backend, and database components, ensuring that infrastructure concerns like routing, authentication, and data modeling are handled consistently across the entire stack. The framework distinguishes itself through its compiler-driven approach, which translates declarative configurations into cohesive, production-ready codebases. It provide
Injects pre-configured security and session management logic into application routes and server operations via centralized settings.
VictoriaMetrics is a high-performance, scalable time series database and observability platform designed for long-term storage and analysis of metric, log, and trace data. It functions as a unified backend for monitoring ecosystems, offering full compatibility with industry-standard protocols and query languages. The system is built to handle massive data volumes through a distributed architecture that supports horizontal scaling and efficient data lifecycle management. The platform distinguishes itself through a storage engine that utilizes consistent hashing for data sharding and log-struct
Validates incoming client requests using multiple authentication schemes to control access to backend services.
This project is a reverse proxy server that secures internal web services by enforcing authentication against external identity providers. It acts as a gatekeeper for incoming HTTP traffic, validating user identity before forwarding requests to protected backend applications. By integrating with OAuth2 and OIDC providers, the proxy ensures that only authorized users can access internal resources. The proxy distinguishes itself through its flexible session management and granular access control. It maintains authenticated user state across requests using either encrypted client-side cookies or
Intercepts network requests to validate user sessions and enforce access control before processing application logic.
Gollum is a Git-powered wiki engine and content management system that provides a web-based interface for editing and organizing files stored in a Git repository. It functions as a self-hosted documentation tool, using a Git-based storage backend to manage page content and track version history. The system is characterized by a pluggable markup rendering architecture that converts multiple markup languages and specialized notations into HTML. It supports a wide array of rich content, including mathematical typesetting, BibTeX bibliographies, and diagrams rendered via Mermaid. Broad capabilit
Processes authentication and session identity through a series of request filters in the middleware.
Open SaaS is a full-stack starter kit and development framework designed for building and deploying commercial web applications. It provides a production-ready foundation that integrates essential services, including user authentication, payment processing, file storage, and administrative oversight, into a single cohesive environment. The framework utilizes a declarative configuration approach to define application structure, which automatically generates the necessary boilerplate for both frontend and backend components. By employing database-first schema modeling, it ensures type-safe comm
Intercepts incoming requests to validate sessions and enforce access control before processing application logic.
This project is a production-ready starter template for building web applications with the React framework. It provides a structured environment that enforces type safety and consistent coding standards across the entire application stack using TypeScript. The boilerplate distinguishes itself by integrating pre-configured modules for authentication, database management, and internationalization. It includes built-in support for managing user sessions, performing type-safe database operations, and localizing interface content into multiple languages to support a global user base. The project
Intercepts incoming network requests to verify user identity tokens and manage access control before rendering protected routes.
node-elm is a Node.js and MongoDB backend framework designed for building data-driven applications, specifically e-commerce systems and food delivery management platforms. It provides a foundation for managing product catalogs, shopping carts, and payment workflows. The system includes a dedicated administrative management dashboard for tracking system statistics and managing users and merchants through role-based access control. It also features a digital coupon management system for tracking and exchanging promotional rewards. The framework incorporates geolocation services for IP-based po
Provides middleware that intercepts requests to verify user identity and session validity before granting resource access.
This framework serves as a bridge between backend services and AI agents by implementing the Model Context Protocol. It enables developers to expose existing application logic and web endpoints as standardized tools, allowing AI models to discover, interact with, and execute backend functions through a unified interface. The project distinguishes itself by automatically converting application request and response models into protocol-compliant schemas, ensuring that AI agents receive accurate functional context. It supports a transport-agnostic architecture that facilitates real-time bidirect
Integrates with authentication and authorization flows to verify agent identity before executing requests against exposed tools.
Grape is a RESTful web service framework for Ruby designed for building structured APIs. It provides a declarative syntax for routing and parameter validation, allowing developers to map HTTP verbs to logic through a domain specific language. The framework is distinguished by its built-in support for service versioning, which can be managed via URL paths, custom headers, or request parameters. It also features a modular architecture that allows large services to be constructed by nesting smaller API definitions. The project covers comprehensive API lifecycle capabilities, including schema-dr
Protects API endpoints using built-in HTTP Basic authentication and customizable authentication middleware strategies.
Loco is a full-stack web framework for Rust designed to accelerate application development using a convention-over-configuration approach. It functions as an MVC web framework that provides a structured environment for building web applications and REST APIs. The project distinguishes itself through an integrated API development toolkit and a command-line scaffolding engine. These tools automate the creation of controllers, models, and migrations, allowing for the rapid generation of functional CRUD resources and application boilerplate. The framework covers a broad range of backend capabili
Includes middleware that intercepts network requests to validate authentication tokens and session state.
OmniAuth is a rack authentication framework that allows applications to verify user identities through third-party service providers using a single standardized interface. It functions as middleware to separate identity verification from core application logic by intercepting incoming requests. The project employs a strategy-pattern provider model to encapsulate provider-specific logic into interchangeable classes. It provides a custom authentication strategy framework and base classes for building new providers based on industry standards. The framework handles the multi-step authentication
Implements authentication logic within the Rack request pipeline to separate identity verification from core logic.
Hertz is a high-performance Go HTTP framework designed for building scalable microservices, RESTful APIs, and AI applications. It functions as a high-performance web server and a communication framework for microservices, utilizing non-blocking I/O and zero-copy memory management to handle high-concurrency traffic. The project distinguishes itself through a microservices communication toolkit that supports high-efficiency remote procedure calls via gRPC and Thrift protocols. It implements an asynchronous middleware engine based on an onion model, allowing for a pluggable request-response pipe
Features an asynchronous middleware engine that intercepts requests to enforce authentication via tokens and API keys.
This project is a reference implementation and boilerplate for building RESTful services using the Gin web framework in Go. It provides a structured backend architecture featuring modular routing and middleware to serve as a template for Go web applications. The project distinguishes itself through a comprehensive set of integrated systems, including a security layer for user authentication and private endpoint protection using JSON Web Tokens. It also implements a high-speed memory storage layer via Redis to cache frequent database queries and a containerized runtime environment for consiste
Implements middleware that intercepts requests to validate security tokens before allowing access to protected routes.
Flower is a monitoring and administration tool for Celery task queues. It provides a real-time web dashboard and a REST API to monitor distributed task clusters, manage worker instances, and observe message broker health. The project distinguishes itself by offering centralized control over the task lifecycle, allowing users to trigger, revoke, or terminate tasks and apply execution rate limits. It also includes a Prometheus metrics exporter to surface internal performance and status data for external monitoring and alerting systems. The tool covers a broad range of observability and managem
Implements middleware that intercepts requests to validate user sessions before granting administrative access.