26 repository-uri
Mechanisms for verifying the authenticity and integrity of incoming requests.
Distinguishing note: Focuses on HMAC signature validation rather than user authentication.
Explore 26 awesome GitHub repositories matching security & cryptography · Request Authentication. Refine with filters or upvote what's useful.
Twenty is a headless customer relationship management framework that enables developers to build, version, and deploy custom business applications using code. By utilizing a declarative approach to data modeling, the platform allows for the definition of custom objects, fields, and complex relationships directly within the source code. This schema-driven architecture automatically generates corresponding REST and GraphQL APIs, ensuring that data structures and interface components remain synchronized across development and production environments. The platform distinguishes itself through a m
Verify incoming webhook requests by checking HMAC signatures using the provided timestamp and secret to ensure data authenticity and security.
This project is a comprehensive link management and marketing attribution platform designed for creating, tracking, and analyzing shortened URLs. It functions as a centralized hub for marketing analytics, providing tools to monitor link performance, visualize conversion funnels, and manage affiliate programs through a unified dashboard. The platform distinguishes itself by integrating advanced attribution modeling and partner management directly into the link infrastructure. It supports complex marketing workflows, including automated commission calculations, fraud detection, and payout distr
Validates the signature of incoming webhook requests using a shared secret to confirm data integrity and origin.
FastMCP is a Python framework designed for building servers that expose functions, resources, and prompts to AI models using the Model Context Protocol. It simplifies the development process by automatically deriving tool metadata, input schemas, and documentation directly from Python function signatures and type hints. The framework provides a unified container for managing these components, allowing developers to build modular applications that integrate seamlessly with AI assistants. The project distinguishes itself through its support for interactive, server-defined user interface compone
Secures server endpoints by validating OAuth tokens against Keycloak.
Agentic is a tool marketplace and management platform designed for the Model Context Protocol. It provides a gateway and proxy that enables the discovery, publishing, and distribution of vetted tools for agentic AI frameworks. The platform specializes in Model Context Protocol monetization, allowing developers to transform services into paid products through integrated authentication, usage-based billing, and subscription management. It also includes a converter that transforms OpenAPI specifications into compatible protocol servers for use in AI workflows. The system covers a broad range of
Validates tool calls using shared proxy secrets in headers to prevent unauthorized access.
This project provides a system for managing agent context and session memory, featuring an agent context compactor, an AI session memory manager, and a tool output sandbox. It functions as a middleware layer and server extension for the Model Context Protocol to optimize context windows and reduce token usage. The system optimizes agent performance by sandboxing tool outputs and externalizing large data sets, replacing raw I/O with pointers and concise summaries. It employs a persistent knowledge base that indexes session history and tool outputs for retrieval via full-text search, ensuring s
Blocks dangerous URL schemes and redacts sensitive credentials from tool arguments before execution.
Presto is a distributed SQL query engine designed for high-performance analytical processing across heterogeneous data sources. It functions as a data federation platform and massively parallel processing engine, allowing users to execute interactive queries against diverse storage systems without requiring data migration. By mapping remote metadata and structures to a unified relational namespace, it enables seamless cross-platform analysis through a standard SQL interface. The engine distinguishes itself through a pluggable connector architecture and a shared-nothing distributed processing
Implements custom request filters and authentication mechanisms to secure communication between clients and the engine.
Quarkus is a Kubernetes-native Java framework designed for building high-performance, memory-efficient applications. It utilizes ahead-of-time native compilation to transform Java code into standalone, optimized binaries that eliminate the need for a virtual machine, enabling rapid startup and reduced memory consumption. By performing code augmentation during the build phase, it shifts heavy processing tasks away from runtime, ensuring that applications are optimized for cloud-native environments. The framework distinguishes itself through a unified approach to reactive and imperative program
Extracts credentials from incoming requests and challenges unauthenticated clients to provide valid identity information.
Tengine is an enhanced Nginx web server distribution designed for high-traffic environments. It functions as a high-performance reverse proxy, dynamic load balancer, and HTTP/3 proxy server, integrating an embedded Lua scripting engine to allow for custom business logic and dynamic request processing. The project distinguishes itself through a focus on modern transport protocols and efficiency, featuring native support for QUIC and HTTP/3 to reduce connection latency. It implements userspace UDP forwarding to bypass the kernel for higher throughput and provides the ability to dynamically upda
Intercepts and processes request payloads to implement security measures like web application firewalls.
Orleans is a .NET distributed actor framework designed for building scalable, cloud-native applications. It implements a virtual actor model where entities with stable identities manage their own state and lifecycle across a cluster of servers. The framework provides a distributed state management system with ACID transaction support and a distributed pub/sub streaming engine for real-time data processing. It distinguishes itself through location-transparent routing, automatic actor activation and deactivation, and elastic cluster scaling that redistributes workloads during node failures. Th
Implements a pipeline of filters to intercept actor calls for cross-cutting concerns like logging and authorization.
Healthchecks is a heartbeat monitoring service and cron job monitoring tool designed to track the execution and success of scheduled tasks and systemd timers. It functions as a dead man switch, alerting users when expected periodic signals from remote processes fail to arrive. The system accepts health signals via HTTP and SMTP, allowing it to track infrastructure heartbeats from sources ranging from CI/CD workflows to network routers. It distinguishes itself by supporting the capture of diagnostic data, including exit codes and execution logs, and by calculating the duration between start an
Validates pings based on HTTP methods or keywords to classify signals as start, success, or failure.
xh is a command-line HTTP client used for sending network requests, testing REST APIs, and debugging connections. It functions as a terminal-based tool for executing requests with custom headers and bodies, while providing built-in formatting for network responses. The project includes a generator that converts configured network requests into equivalent shell commands for use in a standard terminal. It also features a response formatter that applies syntax highlighting and custom formatting to response headers and bodies to improve readability. The tool covers a broad range of network capab
Provides support for basic, bearer, and digest authentication with credentials managed via local configuration files.
Higress is an AI API gateway and cloud-native traffic manager that functions as a Kubernetes ingress controller. It provides a centralized system for routing, securing, and optimizing traffic directed toward large language models, AI agents, and microservice architectures. The project distinguishes itself through deep AI orchestration, including the ability to host and manage Model Context Protocol servers that transform REST APIs into tools for AI agents. It features specialized AI infrastructure for model request proxying, protocol translation across multiple providers, and semantic-based c
Verifies caller identity by validating a cryptographic HMAC signature generated from a shared secret.
go-grpc-middleware is a gRPC middleware framework for Go designed to handle cross-cutting concerns, reliability, and observability. It provides a collection of interceptors that can be used to modify inbound and outbound calls to enforce system-wide policies. The framework distinguishes itself through specialized toolkits for service reliability, including automatic retry logic for failed client calls and panic recovery mechanisms that translate runtime crashes into standard error responses. It also features an observability suite for collecting performance metrics and recording request activ
Validates the authenticity and integrity of incoming requests using custom authentication functions.
Webhook.site is a web-based tool that captures, inspects, and debugs incoming HTTP requests and emails sent to a unique URL, without requiring any server setup. It also functions as an API mocking and response modification tool, capable of generating mock APIs from OpenAPI specifications and altering HTTP responses, headers, and status codes for testing purposes. Beyond inspection, it serves as a platform for webhook automation and workflow orchestration, triggering multi-step automations—including database queries, SSH commands, and HTTP calls—when a webhook is received. The service distingu
Requires Basic Auth or custom header conditions before saving or processing incoming webhook requests.
CodeIgniter is a PHP web framework built on the Model-View-Controller pattern, designed for building full-stack web applications. It provides a lightweight toolkit with minimal configuration, organizing application logic into controllers, models, and views for clean separation of concerns. The framework includes a fluent query builder for constructing SQL statements programmatically, PSR-4 autoloading with namespace mapping, and a service-based dependency injection container for managing shared class instances. The framework distinguishes itself through its comprehensive set of built-in tools
Provides HTTP Basic and Digest authentication for securing endpoints.
Validates incoming requests against a configured token before forwarding them to the upstream API.
This project is an Objective-C HTTP networking library that provides an object-oriented wrapper for CFNetwork to execute synchronous and asynchronous requests on macOS and iOS. It functions as a framework for managing HTTP sessions, performing resumable file transfers, and handling offline content caching. The library distinguishes itself through a resumable file transfer manager that tracks byte offsets and utilizes disk-backed streaming for large uploads and downloads. It also includes a secure credential manager that integrates with the system keychain to handle client certificates and aut
Maintains session state by automatically tracking and updating cookies and custom HTTP headers.
Acest proiect este un ghid cuprinzător de pregătire pentru interviuri tehnice și o bază de cunoștințe de informatică. Acesta servește ca resursă de studiu structurată, concepută pentru a ajuta inginerii software să revizuiască conceptele fundamentale de inginerie și să se pregătească pentru evaluările profesionale de codare. Repository-ul se concentrează pe o gamă largă de domenii teoretice și practice, inclusiv referințe detaliate pentru arhitectura aplicațiilor mobile și fundamentele sistemelor de operare. Oferă materiale curatoriate despre tiparele de arhitectură software și analiza protocoalelor de rețea pentru a sprijini dezvoltarea profesională. Conținutul acoperă capabilități fundamentale precum structurile de date și algoritmii, concurența și multithreading-ul, și gestionarea memoriei. Include, de asemenea, detalii despre arhitectura sistemelor, inclusiv programarea proceselor, comunicarea între procese și optimizarea randării UI.
Covers maintaining state across stateless requests using cookies and session identifiers.
Acest proiect este o bază de cunoștințe cuprinzătoare de programare Java și un depozit de referință tehnică. Oferă o colecție curată de răspunsuri distilate, documentație API și ghiduri de depanare concepute pentru a ajuta dezvoltatorii să rezolve provocările comune de codare și capcanele limbajului. Depozitul se remarcă printr-o abordare arhitecturală structurată a cunoștințelor, utilizând analiza centrată pe comparație pentru a evidenția compromisurile între diferite implementări de biblioteci și caracteristici ale limbajului. Acesta agregă discuțiile comunității cu impact ridicat într-un format standardizat, organizând soluțiile tehnice pe tipare arhitecturale, de concurență și de securitate. Conținutul acoperă o gamă largă de domenii tehnice, inclusiv specificațiile de bază ale limbajului, gestionarea concurenței, gestionarea memoriei și tiparele de design software. Include, de asemenea, îndrumări privind depanarea runtime-ului, implementarea structurilor de date, reflexia și metadatele, precum și tiparele de integrare API. Documentația servește ca referință tehnică pentru implementarea tiparelor standard de arhitectură software și rezolvarea problemelor de configurare a mediului.
Describes maintaining state across network requests by reading and updating session cookies.
Plano is an AI agent orchestrator and LLM gateway proxy that unifies access to multiple AI providers through a single interoperable interface. It functions as a model routing engine that decouples applications from specific vendors using semantic aliases, allowing traffic to be shifted between providers without modifying application code. The system distinguishes itself with intent-based agent routing, which directs prompts to specialized agents based on semantic analysis. It features an interceptor-based filter chain system that acts as guardrail middleware to enforce safety policies, rewrit
Executes a sequence of interceptor filters to apply guardrails, rewrite prompts, and enrich context.