proxykit

Appearance

proxykitComposable Go proxy foundation

Build reverse, forward, CONNECT, WebSocket, and runtime-aware proxy workflows without dragging product-specific REST contracts into your core.

Get Started
Open Cookbook
Compare with Alternatives

Transport-first

Separate packages for reverse HTTP, forward HTTP, CONNECT tunneling, WebSocket proxying, cookie rewriting, and runtime listener lifecycle.

App-agnostic

No UI DTOs, no monitor room protocol, no REST route assumptions, and no storage model hidden inside the public surface.

Hook-driven

Mutation and observation hooks let you add persistence, metrics, capture, replay, or app-specific policy without forking the transport engine.

Small packages

Pull in only what you need. Use reverse plus cookies, forward plus connect, or wsproxy plus observe without importing a monolith.

Practical, not academic

The packages already power a real debugger/proxy product, but the public API stays narrower than the product backend.

Built for Go ergonomics

http.Handler composition, explicit options structs, concrete types, and standard-library-first integration.

Why proxykit exists

Most Go proxy projects fall into one of two buckets:

  • a powerful but monolithic programmable proxy
  • a full platform or gateway product that is hard to embed into your own application

proxykit aims for a third shape:

  • reusable transport engines
  • explicit observation contracts
  • your own app remains responsible for persistence, routes, policy, and UI-facing API design

That means the repo is intentionally smaller than a full proxy product backend. It contains the proxy foundation, not your entire application stack.

Why not goproxy, oxy, or Martian?

  • choose goproxy when you want a long-standing all-in-one programmable HTTP/HTTPS proxy
  • choose oxy when your center of gravity is reverse-proxy middleware composition
  • choose Martian when your main need is deep modifier-driven HTTP testing and mutation

Choose proxykit when your application needs one embeddable foundation for reverse HTTP, forward HTTP, CONNECT, and WebSocket, without pushing storage, routes, admin APIs, or UI DTOs into the transport layer.

What you get

  • reverse for mounted reverse proxy handlers
  • forward for absolute-URI HTTP forward proxying
  • connect for plain CONNECT tunneling
  • wsproxy for bidirectional WebSocket proxying
  • proxyruntime for forward and SOCKS listener lifecycle
  • observe for transport-neutral hooks and event structs
  • cookies, proxyhttp, socketio, and mitm as focused supporting packages

Capability map

NeedPackage
mounted reverse proxy routereverse
absolute-URI forward proxyforward
plain CONNECT tunnelingconnect
bidirectional WebSocket proxywsproxy
transport-neutral hooksobserve
listener lifecycleproxyruntime
cookie rewriting helperscookies
focused transport helpersproxyhttp, socketio, mitm

Real-world example

proxykit is not just a greenfield library extraction. It already powers a real application:

That app keeps its own REST routes, storage model, realtime delivery, and UI contracts outside the public proxykit surface.

mermaid
flowchart LR
    A["proxykit core"] --> B["application adapters"]
    B --> C["flutter_network_debugger"]

Start here by scenario

What stays outside

The following concerns are deliberately not part of proxykit:

  • product-specific REST routes such as /httpproxy or /_api/v1/proxy/config
  • admin auth and loopback security policy
  • session query language, pagination, or UI projections
  • storage, spool lifecycle, capture visibility, or replay workflows
  • monitor rooms, frontend protocols, and product-specific event names

If you need those, build them in your adapter layer on top of the transport packages.

Released under the Apache 2.0 License.

Copyright © 2025 777genius