10 个仓库
Controlling whether network calls are intercepted, passed through, or trigger custom events.
Distinct from Traffic Flow Control: Distinct from Traffic Flow Control as it manages interception logic for testing rather than load limiting for stability.
Explore 10 awesome GitHub repositories matching software engineering & architecture · Request Interception Control. Refine with filters or upvote what's useful.
Pollyjs is an HTTP mocking and recording library designed to capture and replay network interactions to create deterministic tests. It functions as a request interceptor and stubbing framework that records real API responses into files, ensuring consistent test results across different environments without relying on live network servers. The tool utilizes pluggable network adapters to support various environments and employs a state-based mode switching system to toggle between recording, replaying, and stubbing behaviors. It uses pattern-based request matching and persistent interaction sto
Controls whether network calls are intercepted or passed to a server to regulate traffic during test execution.
Hazelcast is a distributed data platform that combines an in-memory data grid with a stream processing engine to support real-time analytics and event-driven applications. It functions as a partitioned, distributed key-value store that replicates data across cluster nodes to provide low-latency access and high availability. The platform also serves as a distributed SQL query engine, allowing users to execute standard SQL statements against both in-memory datasets and external data sources. What distinguishes Hazelcast is its use of a distributed consensus subsystem to maintain strongly consis
Executes custom logic during socket connection or client operations to perform identity verification before access is granted.
GlusterFS 是一个软件定义的分布式文件系统和横向扩展存储集群,将来自多个服务器的磁盘资源聚合到一个单一的全局命名空间中。它作为一个统一的存储平台,允许通过文件、块和对象存储接口暴露相同的基础数据。 该系统通过去中心化架构脱颖而出,该架构使用一致性哈希在网络节点之间分发文件,而无需中央元数据服务器。它通过自愈复制、基于仲裁的一致性来防止脑裂场景,以及用于跨地理位置灾难恢复的异步地理复制,确保了数据完整性和可用性。 该平台通过 NFS、Samba 和 iSCSI 提供广泛的多协议存储导出功能,以及全面的卷管理功能,包括时间点快照、存储配额和弹性容量扩展。安全性通过传输中的 TLS 加密、身份管理集成和细粒度的 POSIX 访问控制来处理。 该软件可通过社区仓库以二进制包的形式提供,适用于各种 Linux 发行版。
Uses a translator pipeline to intercept, modify, or redirect storage requests for encryption and access control.
本项目是一个 .NET 身份栈与服务器框架,用于构建经过认证的 OpenID Connect 与 OAuth 2.0 身份提供商。它提供了签发与验证安全令牌,以及跨各种授权类型与协议流管理用户认证所需的核心逻辑。 该框架包含一个协议转换层,连接 OpenID Connect 与 SAML,以实现不同身份提供商间的互操作性。它还支持无状态运行模式,该模式移除了内置验证与存储,以允许对令牌与客户端验证进行手动控制。 该系统涵盖了广泛的能力,包括通过令牌验证中间件实现的 API 访问控制,以及针对桌面与移动应用的跨平台身份集成。它具备一个可自定义的请求处理流水线,带有用于存储身份数据与缓存授权请求的可插拔持久化提供商。
Captures authorization, logout, and token callbacks within the request pipeline for custom processing.
本项目是用于在 Java Web 应用程序中部署 Apache Shiro 安全框架的参考实现和代码示例集合。它作为实现身份验证、授权和用户身份管理的演示。 该实现具有分布式会话管理功能,可协调多个服务器实例之间的用户状态以实现高可用性。它还包括第三方 OAuth2 集成示例,支持外部账号身份验证,以及授予对多个相关应用程序访问权限的单点登录 (SSO) 支持。 该项目涵盖了广泛的安全功能,包括具有动态 URL 权限和资源访问限制的基于角色的访问控制。它还演示了用于请求拦截、并发登录控制和敏感数据加密的安全过滤器的使用。
Uses a chain of security filters to enforce authentication and authorization on incoming HTTP requests.
Cerbos is an open-source authorization service that provides a centralized, language-agnostic engine for managing access control. It functions as a policy-as-code platform, allowing teams to define, test, and distribute authorization rules using declarative YAML or JSON configurations. By decoupling access logic from application code, it enables consistent permission enforcement across diverse service stacks. The project distinguishes itself through its ability to translate high-level authorization policies into native database query filters. This capability allows applications to enforce sec
Modifies incoming authorization requests by fetching external data or redacting sensitive information before the policy engine evaluates the access decision.
Shiro is a Java security framework that provides an identity and access manager for implementing authentication, authorization, cryptography, and session management. It serves as a security layer to verify user identities and enforce role-based access control for protected system resources. The project features a pluggable realm architecture that decouples security logic from identity data and a standalone session management system that tracks user state independently of the underlying servlet container. It includes an integrator for external identity providers using federation protocols such
Uses sequenced filter chains to intercept web requests and enforce security constraints before they reach the application.
smoothState.js 是一个 AJAX 导航管理器和 jQuery 页面转换库,旨在通过异步加载远程内容来创建页面间的无缝转换。它作为一个浏览器历史状态管理器,将自定义可序列化数据附加到历史记录条目,并处理 URL 重定向,而无需完全刷新浏览器。 该库包含一个客户端页面缓存,将之前访问过的页面存储在内存中以便即时重新加载。它通过内容预取系统进一步减少了感知加载时间,该系统在用户悬停在链接上时启动网络请求。 该项目提供了用于管理加载生命周期以及在页面元素进入和退出期间编排动画的工具。它还允许在获取内容并注入文档之前拦截和修改导航请求及设置。
Enables changing requested URLs or settings before a page load begins to control destination behavior.
Authority 是一个用于 Ruby on Rails 应用程序的授权框架,用于管理用户权限和访问控制策略。它提供了一个将复杂安全逻辑封装到专用类中的系统,将这些关注点与核心业务模型分离开来。 该库通过在控制器级别拦截 Web 请求并根据定义的策略验证操作来强制执行安全规则。它利用基于约定的映射自动将模型与其相应的授权类关联,支持针对特定资源的全局检查和实例感知验证。 除了控制器级别的强制执行,该框架还允许开发者直接在视图模板中检查授权状态,从而促进条件界面渲染。它包括中心化的异常处理机制,当发生未经授权的访问尝试时,能够实现一致的日志记录和自定义错误响应。
Intercepts web requests at the controller level to validate user permissions before executing actions.
This project is a web-based documentation viewer and interactive console designed to render API specifications into browser-based interfaces. It provides a framework for exploring endpoints, managing authorization flows, and executing live test requests directly against defined services. By parsing specification files into structured data models, the tool generates dynamic interfaces that allow developers to interact with API definitions in real time. The console is built as a library of reusable web components, enabling developers to embed documentation viewers into existing web applications
Wraps fetch requests to inject authentication headers and security tokens into outgoing API calls.