# azukaar/cosmos-server

**Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/azukaar-cosmos-server).**

5,980 stars · 231 forks · JavaScript · NOASSERTION

## Links

- GitHub: https://github.com/azukaar/Cosmos-Server
- Homepage: https://cosmos-cloud.io
- awesome-repositories: https://awesome-repositories.com/repository/azukaar-cosmos-server.md

## Topics

`authentication` `cloud` `cosmos` `reverse-proxy` `security` `self-hosted` `self-hosting` `selfhosted` `selfhosting` `server` `sso`

## Description

Cosmos-Server is a self-hosted server platform that combines an authentication gateway, a reverse proxy with dynamic rate limiting, and a Docker container orchestrator into a single management interface. It provides automatic HTTPS certificate management with wildcard support through DNS challenges, and secures self-hosted applications with token-based session management and plugin-based authentication middleware.

The platform distinguishes itself by integrating these capabilities into a unified system where the reverse proxy enforces authentication, rate limiting, and TLS termination before traffic reaches backend services. It includes a health-check and auto-recovery system that monitors service endpoints and automatically restarts failing containers, along with a dynamic rate-limiting engine that adjusts per-client limits in real time and applies exponential backoff or bans for abusive patterns.

Cosmos-Server handles the full lifecycle of TLS certificates via the ACME protocol, automates DNS record creation and deletion for domain validation, and manages Docker container deployment with networking, volume mounts, and restart policies. It also offers programmatic server management through SDKs in JavaScript, TypeScript, or Go, as well as a Terraform provider for infrastructure-as-code deployments.

## Tags

### DevOps & Infrastructure

- [Self-Hosted Infrastructure](https://awesome-repositories.com/f/devops-infrastructure/self-hosted-infrastructure.md) — Hosts personal and business data on self-managed infrastructure, restoring ownership and privacy without sacrificing convenience. ([source](https://cosmos-cloud.io/))
- [Self-Hosted Server Platforms](https://awesome-repositories.com/f/devops-infrastructure/self-hosted-server-platforms.md) — Ships a unified self-hosted server platform combining authentication, reverse proxy, rate limiting, and container orchestration.
- [Docker Container Orchestrators](https://awesome-repositories.com/f/devops-infrastructure/container-orchestration/container-runtimes/runtime-configuration-interfaces/docker-socket-orchestrators/docker-target-configurators/docker-container-orchestrators.md) — Manages the full lifecycle of Docker containers with networking, volume mounts, and restart policies.
- [Containerized Service Orchestration](https://awesome-repositories.com/f/devops-infrastructure/containerized-service-orchestration.md) — Deploys and manages Docker containers with automated networking, volume mounts, and restart policies.
- [Reverse Proxies with Integrated Security](https://awesome-repositories.com/f/devops-infrastructure/reverse-proxies/reverse-proxies-with-integrated-security.md) — Routes all internal traffic through a central proxy that enforces authentication, rate limiting, and TLS termination before reaching backend services.
- [Self-Hosted Server Platforms](https://awesome-repositories.com/f/devops-infrastructure/self-hosted-infrastructure-platforms/self-hosted-server-platforms.md) — Ships a unified self-hosted server platform combining authentication, reverse proxy, rate limiting, and container orchestration.
- [Programmatic Server Setups](https://awesome-repositories.com/f/devops-infrastructure/infrastructure/infrastructure-as-code/provisioning-and-deployment/server-installation-methods/automated-production-server-setup/programmatic-server-setups.md) — Configures and deploys servers programmatically using SDKs in JavaScript, TypeScript, or Go, or through a Terraform provider. ([source](https://cdn.jsdelivr.net/gh/azukaar/cosmos-server@master/README.md))
- [Dynamic Rate Limiting](https://awesome-repositories.com/f/devops-infrastructure/request-rate-limiting/gateway-rate-limiters/dynamic-rate-limiting.md) — Applies dynamic rate limiting that adjusts per-client limits in real time and bans abusive patterns.

### Part of an Awesome List

- [Centralized App Authentication Layers](https://awesome-repositories.com/f/awesome-lists/security/authentication-and-permissions/centralized-app-authentication-layers.md) — Adds user login, token management, and access control to applications using a ready-to-use centralized authentication system. ([source](https://cdn.jsdelivr.net/gh/azukaar/cosmos-server@master/README.md))

### Development Tools & Productivity

- [Self-Hosted Authentication Gateways](https://awesome-repositories.com/f/development-tools-productivity/developer-portals/portal-authentication/self-hosted-authentication-gateways.md) — Provides a self-hosted authentication gateway that adds login, token management, and access control to applications.

### Security & Cryptography

- [DNS Record Automations](https://awesome-repositories.com/f/security-cryptography/cryptography/ssl-tls-certificate-management/certificate-verification/dns-challenge-verifiers/dns-record-automations.md) — Automates DNS record creation and deletion for domain validation during certificate issuance, supporting multiple DNS provider APIs.
- [DNS Challenge Automation](https://awesome-repositories.com/f/security-cryptography/governance-policy-frameworks/security-infrastructure/tls-certificate-management/dns-challenge-automation.md) — Automates DNS record creation and deletion for ACME DNS challenges to issue wildcard TLS certificates.
- [Automatic Container HTTPS](https://awesome-repositories.com/f/security-cryptography/network-infrastructure-security/web-network-security/security-https/automatic-container-https.md) — Generates and renews TLS certificates for applications with wildcard support through DNS challenges. ([source](https://cdn.jsdelivr.net/gh/azukaar/cosmos-server@master/README.md))
- [Rate Limiting & Abuse Prevention](https://awesome-repositories.com/f/security-cryptography/rate-limiting-abuse-prevention.md) — Protects APIs by dynamically adjusting rate limits and throttling or banning abusive clients based on behavior.
- [Endpoint Protection Measures](https://awesome-repositories.com/f/security-cryptography/security-and-access-control/endpoint-protection-measures.md) — Adjusts rate limits dynamically, throttles abusive users, and enforces bans to safeguard server resources without manual tuning. ([source](https://cdn.jsdelivr.net/gh/azukaar/cosmos-server@master/README.md))
- [DNS Challenge Automation](https://awesome-repositories.com/f/security-cryptography/self-hosted-certificate-lifecycle-managers/dns-challenge-automation.md) — Automates DNS record creation and deletion for ACME DNS challenges to issue wildcard TLS certificates.
- [Self-Hosted Security Tools](https://awesome-repositories.com/f/security-cryptography/self-hosted-security-tools.md) — Applies enterprise-grade security measures to protect applications and data on a personal server. ([source](https://cosmos-cloud.io/))
- [TLS Certificate Configuration](https://awesome-repositories.com/f/security-cryptography/tls-certificate-configuration.md) — Obtains and renews TLS certificates from Let's Encrypt automatically, including wildcard certificates via DNS challenges. ([source](https://cdn.jsdelivr.net/gh/azukaar/cosmos-server@master/README.md))
- [Session Token Issuance](https://awesome-repositories.com/f/security-cryptography/token-based-authentication/session-token-issuance.md) — Issues signed JSON Web Tokens for user sessions with configurable expiration and refresh mechanisms to maintain secure access.
- [User Authentication Systems](https://awesome-repositories.com/f/security-cryptography/user-authentication-systems.md) — Handles user login, token storage, and access checks so applications do not need to build their own authentication system. ([source](https://cdn.jsdelivr.net/gh/azukaar/cosmos-server@master/README.md))

### Software Engineering & Architecture

- [Dynamic Rate Limiters](https://awesome-repositories.com/f/software-engineering-architecture/request-throttling/rate-limiting/dynamic-rate-limiters.md) — Adjusts per-client rate limits in real time by tracking request frequency and applying exponential backoff or bans for abusive patterns.
- [Dynamic](https://awesome-repositories.com/f/software-engineering-architecture/request-throttling/rate-limiting/dynamic.md) — Applies dynamic rate limiting that adjusts per-client limits in real time and bans abusive patterns.

### System Administration & Monitoring

- [ACME Certificate Lifecycle Managers](https://awesome-repositories.com/f/system-administration-monitoring/administrative-operations/configuration-control-utilities/system-administration-tools/instance-settings/identity-customizers/identity-certificate-configuration/automated-certificate-rotation/acme-certificate-lifecycle-managers.md) — Manages the full lifecycle of TLS certificates via the ACME protocol with automatic renewal and wildcard DNS challenge resolution.
- [Auto-Recovery Systems](https://awesome-repositories.com/f/system-administration-monitoring/health-checks/auto-recovery-systems.md) — Monitors service endpoints with periodic probes and automatically restarts or reconfigures failing containers to maintain uptime.
- [Automated Server Maintenance](https://awesome-repositories.com/f/system-administration-monitoring/automated-server-maintenance.md) — Runs routine server tasks and deployments automatically to reduce manual intervention and maintenance effort.
- [Automated Server Configurations](https://awesome-repositories.com/f/system-administration-monitoring/server-administration/automated-server-configurations.md) — Runs routine server tasks intelligently without manual intervention, simplifying ongoing administration. ([source](https://cosmos-cloud.io/))

### Web Development

- [API Rate Limiting](https://awesome-repositories.com/f/web-development/api-rate-limiting.md) — Adjusts rate limits based on user behavior and throttles or bans abusive clients to maintain API health. ([source](https://cdn.jsdelivr.net/gh/azukaar/cosmos-server@master/README.md))
- [Authentication Middlewares](https://awesome-repositories.com/f/web-development/authentication-middlewares.md) — Inserts authentication checks as middleware layers that validate tokens and session data before any application logic executes.
- [Plugin-Based Authentication Middleware](https://awesome-repositories.com/f/web-development/authentication-middlewares/plugin-based-authentication-middleware.md) — Implements plugin-based authentication middleware that validates tokens and sessions before application logic executes.