27 个仓库
Mechanisms for verifying the authenticity and integrity of incoming requests.
Distinguishing note: Focuses on HMAC signature validation rather than user authentication.
Explore 27 awesome GitHub repositories matching security & cryptography · Request Authentication. Refine with filters or upvote what's useful.
Twenty is a headless customer relationship management framework that enables developers to build, version, and deploy custom business applications using code. By utilizing a declarative approach to data modeling, the platform allows for the definition of custom objects, fields, and complex relationships directly within the source code. This schema-driven architecture automatically generates corresponding REST and GraphQL APIs, ensuring that data structures and interface components remain synchronized across development and production environments. The platform distinguishes itself through a m
Verify incoming webhook requests by checking HMAC signatures using the provided timestamp and secret to ensure data authenticity and security.
This project is a comprehensive link management and marketing attribution platform designed for creating, tracking, and analyzing shortened URLs. It functions as a centralized hub for marketing analytics, providing tools to monitor link performance, visualize conversion funnels, and manage affiliate programs through a unified dashboard. The platform distinguishes itself by integrating advanced attribution modeling and partner management directly into the link infrastructure. It supports complex marketing workflows, including automated commission calculations, fraud detection, and payout distr
Validates the signature of incoming webhook requests using a shared secret to confirm data integrity and origin.
FastMCP is a Python framework designed for building servers that expose functions, resources, and prompts to AI models using the Model Context Protocol. It simplifies the development process by automatically deriving tool metadata, input schemas, and documentation directly from Python function signatures and type hints. The framework provides a unified container for managing these components, allowing developers to build modular applications that integrate seamlessly with AI assistants. The project distinguishes itself through its support for interactive, server-defined user interface compone
Secures server endpoints by validating OAuth tokens against Keycloak.
Agentic is a tool marketplace and management platform designed for the Model Context Protocol. It provides a gateway and proxy that enables the discovery, publishing, and distribution of vetted tools for agentic AI frameworks. The platform specializes in Model Context Protocol monetization, allowing developers to transform services into paid products through integrated authentication, usage-based billing, and subscription management. It also includes a converter that transforms OpenAPI specifications into compatible protocol servers for use in AI workflows. The system covers a broad range of
Validates tool calls using shared proxy secrets in headers to prevent unauthorized access.
This project provides a system for managing agent context and session memory, featuring an agent context compactor, an AI session memory manager, and a tool output sandbox. It functions as a middleware layer and server extension for the Model Context Protocol to optimize context windows and reduce token usage. The system optimizes agent performance by sandboxing tool outputs and externalizing large data sets, replacing raw I/O with pointers and concise summaries. It employs a persistent knowledge base that indexes session history and tool outputs for retrieval via full-text search, ensuring s
Blocks dangerous URL schemes and redacts sensitive credentials from tool arguments before execution.
Presto is a distributed SQL query engine designed for high-performance analytical processing across heterogeneous data sources. It functions as a data federation platform and massively parallel processing engine, allowing users to execute interactive queries against diverse storage systems without requiring data migration. By mapping remote metadata and structures to a unified relational namespace, it enables seamless cross-platform analysis through a standard SQL interface. The engine distinguishes itself through a pluggable connector architecture and a shared-nothing distributed processing
Implements custom request filters and authentication mechanisms to secure communication between clients and the engine.
Quarkus is a Kubernetes-native Java framework designed for building high-performance, memory-efficient applications. It utilizes ahead-of-time native compilation to transform Java code into standalone, optimized binaries that eliminate the need for a virtual machine, enabling rapid startup and reduced memory consumption. By performing code augmentation during the build phase, it shifts heavy processing tasks away from runtime, ensuring that applications are optimized for cloud-native environments. The framework distinguishes itself through a unified approach to reactive and imperative program
Extracts credentials from incoming requests and challenges unauthenticated clients to provide valid identity information.
Tengine is an enhanced Nginx web server distribution designed for high-traffic environments. It functions as a high-performance reverse proxy, dynamic load balancer, and HTTP/3 proxy server, integrating an embedded Lua scripting engine to allow for custom business logic and dynamic request processing. The project distinguishes itself through a focus on modern transport protocols and efficiency, featuring native support for QUIC and HTTP/3 to reduce connection latency. It implements userspace UDP forwarding to bypass the kernel for higher throughput and provides the ability to dynamically upda
Intercepts and processes request payloads to implement security measures like web application firewalls.
Orleans is a .NET distributed actor framework designed for building scalable, cloud-native applications. It implements a virtual actor model where entities with stable identities manage their own state and lifecycle across a cluster of servers. The framework provides a distributed state management system with ACID transaction support and a distributed pub/sub streaming engine for real-time data processing. It distinguishes itself through location-transparent routing, automatic actor activation and deactivation, and elastic cluster scaling that redistributes workloads during node failures. Th
Implements a pipeline of filters to intercept actor calls for cross-cutting concerns like logging and authorization.
Healthchecks is a heartbeat monitoring service and cron job monitoring tool designed to track the execution and success of scheduled tasks and systemd timers. It functions as a dead man switch, alerting users when expected periodic signals from remote processes fail to arrive. The system accepts health signals via HTTP and SMTP, allowing it to track infrastructure heartbeats from sources ranging from CI/CD workflows to network routers. It distinguishes itself by supporting the capture of diagnostic data, including exit codes and execution logs, and by calculating the duration between start an
Validates pings based on HTTP methods or keywords to classify signals as start, success, or failure.
xh is a command-line HTTP client used for sending network requests, testing REST APIs, and debugging connections. It functions as a terminal-based tool for executing requests with custom headers and bodies, while providing built-in formatting for network responses. The project includes a generator that converts configured network requests into equivalent shell commands for use in a standard terminal. It also features a response formatter that applies syntax highlighting and custom formatting to response headers and bodies to improve readability. The tool covers a broad range of network capab
Provides support for basic, bearer, and digest authentication with credentials managed via local configuration files.
Higress is an AI API gateway and cloud-native traffic manager that functions as a Kubernetes ingress controller. It provides a centralized system for routing, securing, and optimizing traffic directed toward large language models, AI agents, and microservice architectures. The project distinguishes itself through deep AI orchestration, including the ability to host and manage Model Context Protocol servers that transform REST APIs into tools for AI agents. It features specialized AI infrastructure for model request proxying, protocol translation across multiple providers, and semantic-based c
Verifies caller identity by validating a cryptographic HMAC signature generated from a shared secret.
go-grpc-middleware is a gRPC middleware framework for Go designed to handle cross-cutting concerns, reliability, and observability. It provides a collection of interceptors that can be used to modify inbound and outbound calls to enforce system-wide policies. The framework distinguishes itself through specialized toolkits for service reliability, including automatic retry logic for failed client calls and panic recovery mechanisms that translate runtime crashes into standard error responses. It also features an observability suite for collecting performance metrics and recording request activ
Validates the authenticity and integrity of incoming requests using custom authentication functions.
Webhook.site is a web-based tool that captures, inspects, and debugs incoming HTTP requests and emails sent to a unique URL, without requiring any server setup. It also functions as an API mocking and response modification tool, capable of generating mock APIs from OpenAPI specifications and altering HTTP responses, headers, and status codes for testing purposes. Beyond inspection, it serves as a platform for webhook automation and workflow orchestration, triggering multi-step automations—including database queries, SSH commands, and HTTP calls—when a webhook is received. The service distingu
Requires Basic Auth or custom header conditions before saving or processing incoming webhook requests.
CodeIgniter is a PHP web framework built on the Model-View-Controller pattern, designed for building full-stack web applications. It provides a lightweight toolkit with minimal configuration, organizing application logic into controllers, models, and views for clean separation of concerns. The framework includes a fluent query builder for constructing SQL statements programmatically, PSR-4 autoloading with namespace mapping, and a service-based dependency injection container for managing shared class instances. The framework distinguishes itself through its comprehensive set of built-in tools
Provides HTTP Basic and Digest authentication for securing endpoints.
Validates incoming requests against a configured token before forwarding them to the upstream API.
该项目是一个 Objective-C HTTP 网络库,为 CFNetwork 提供了一个面向对象的包装器,用于在 macOS 和 iOS 上执行同步和异步请求。它作为一个框架,用于管理 HTTP 会话、执行可恢复的文件传输以及处理离线内容缓存。 该库的特色在于其可恢复的文件传输管理器,它能够跟踪字节偏移量并利用基于磁盘的流式传输来处理大文件上传和下载。它还包含一个与系统钥匙串集成的安全凭证管理器,用于处理客户端证书和身份验证令牌。 其功能涵盖了具有自动 Cookie 处理、安全 Web 身份验证和获取完整网页以供离线查看的 HTTP 会话管理。它还提供了用于后台请求处理、网络流量压缩、带宽限制和代理配置的工具。
Maintains session state by automatically tracking and updating cookies and custom HTTP headers.
该项目是一个全面的技术面试准备指南和计算机科学知识库。它作为一个结构化的学习资源,旨在帮助软件工程师复习核心工程概念并准备专业编码评估。 该仓库专注于广泛的理论和实践领域,包括移动应用架构和操作系统基础的详细参考。它提供了关于软件架构模式和网络协议分析的精选材料,以支持职业发展。 该内容涵盖了基础能力,如数据结构与算法、并发与多线程以及内存管理。它还深入探讨了系统架构,包括进程调度、进程间通信和 UI 渲染优化。
Covers maintaining state across stateless requests using cookies and session identifiers.
本项目是一个全面的 Java 编程知识库和技术参考存储库。它提供了一个精选的提炼答案、API 文档和故障排除指南集合,旨在帮助开发者解决常见的编码挑战和语言陷阱。 该存储库的特色在于结构化的知识架构方法,利用以比较为中心的分析来突出不同库实现和语言特性之间的权衡。它将高影响力的社区讨论整理为标准化格式,按架构、并发和安全模式组织技术解决方案。 内容涵盖了广泛的技术领域,包括核心语言规范、并发管理、内存管理和软件设计模式。它还包括关于运行时故障排除、数据结构实现、反射与元数据以及 API 集成模式的指导。 该文档作为实现标准软件架构模式和解决环境配置问题的技术参考。
Describes maintaining state across network requests by reading and updating session cookies.
Plano is an AI agent orchestrator and LLM gateway proxy that unifies access to multiple AI providers through a single interoperable interface. It functions as a model routing engine that decouples applications from specific vendors using semantic aliases, allowing traffic to be shifted between providers without modifying application code. The system distinguishes itself with intent-based agent routing, which directs prompts to specialized agents based on semantic analysis. It features an interceptor-based filter chain system that acts as guardrail middleware to enforce safety policies, rewrit
Executes a sequence of interceptor filters to apply guardrails, rewrite prompts, and enrich context.