Dracan is a lightweight middleware for Kubernetes designed to enhance your app's security and performance. With capabilities like HTTP method filtering, JSON validation, and request limiting, Dracan ensures only valid requests reach your applications. Join us in refining this tool by providing feedback and contributing to its ongoing development.
Dracan is a powerful and lightweight middleware solution designed to enhance filtering and validation capabilities within Kubernetes (k8s) environments. Acting as a gatekeeper for your applications, Dracan ensures that only valid requests successfully reach your services, offering a suite of essential features:
Key Features
- HTTP Method Filtering: Control which HTTP methods can access your applications, thereby increasing security by allowing only permitted request types.
- JSON Validation: Ensure incoming JSON data adheres to specified formats and standards, minimizing the risk of receiving malformed data that could disrupt your applications.
- Request Limiting: Mitigate performance issues by limiting the number of requests your applications handle, protecting them from overload.
- Payload Limitation: Define size limits for incoming request bodies, preventing excessively large requests that may compromise application performance and stability.
- URI Filtering: Specify which URIs are valid for processing, either by exact match or through regex patterns, enforcing further security measures.
- Header Validation: Validate incoming request headers to ensure compliance with expected formats, including:
- Required Headers: Specify which headers must be present.
- Prohibited Headers: Identify headers that are not permitted in requests.
- Header Matching: Use regular expressions for advanced validation of header values.
Dracan is geared towards small to medium-sized development teams and independent projects, allowing easy configuration through a developer-friendly JSON file (rules_config.json). Unlike complex infrastructure solutions like Web Application Firewalls (WAFs), Dracan simplifies the setup process, enabling teams to focus on building robust filters without requiring extensive DevOps expertise.
For a more visual understanding of how Dracan works, refer to our illustrative diagram.
Why Choose Dracan?
- Enhanced Security: Protect your applications from erroneous or malicious requests, which contributes to ongoing operational continuity and stability.
- Easy Configuration: Simplified setup means teams can deploy Dracan quickly without deep knowledge of security protocols. Maintain control over which requests should be allowed without the overhead of complex tools.
- Kubernetes Integration: Ideal for applications hosted on Kubernetes or Google Kubernetes Engine (GKE), ensuring seamless integration while providing essential security features.
Contributions Welcome!
We invite developers of all levels to contribute to Dracan! Whether you have ideas for new features, bug fixes, or documentation improvements, your input is invaluable. Let’s enhance Dracan together!