We need something that goes one level beyond Tailscale. It should be built on a simple open OAuth2 protocol for establishing tunnels/VPNs so you can choose different providers. Then developers can implement tunneled networking directly into their apps.
Do you want to share publicly (via a URL for anyone) or privately (accessible only with an endpoint and identity)?
For the former, zrok frontdoor (by https://docs.zrok.io/docs/guides/frontdoor/) protected by OAuth could be the solution. Further, if you want to embed directly in your app, use the SDK - https://blog.openziti.io/the-zrok-sdk. Today we only have for Golang; Python and NodeJS/Javascript coming soon. More in the pipeline.
For the latter, use OpenZiti (which zrok is built on - https://github.com/openziti). We have SDKs in Go, C, Java, NodeJS, Python, and many more.
It's all FOSS under Apache 2.0. I work on the project.
I'm aware of zrok/openziti, but I'm looking for something with a protocol-first design. Does zrok have a well-specified protocol that can easily be implemented by others? If not, since you're running a company, you aren't incentivized to make zrok easy to self-host. You can also relicense at any point. Doesn't mean this will happen, but incentives aren't aligned.
We need something that goes one level beyond Tailscale. It should be built on a simple open OAuth2 protocol for establishing tunnels/VPNs so you can choose different providers. Then developers can implement tunneled networking directly into their apps.
Do you want to share publicly (via a URL for anyone) or privately (accessible only with an endpoint and identity)?
For the former, zrok frontdoor (by https://docs.zrok.io/docs/guides/frontdoor/) protected by OAuth could be the solution. Further, if you want to embed directly in your app, use the SDK - https://blog.openziti.io/the-zrok-sdk. Today we only have for Golang; Python and NodeJS/Javascript coming soon. More in the pipeline.
For the latter, use OpenZiti (which zrok is built on - https://github.com/openziti). We have SDKs in Go, C, Java, NodeJS, Python, and many more.
It's all FOSS under Apache 2.0. I work on the project.
I'm aware of zrok/openziti, but I'm looking for something with a protocol-first design. Does zrok have a well-specified protocol that can easily be implemented by others? If not, since you're running a company, you aren't incentivized to make zrok easy to self-host. You can also relicense at any point. Doesn't mean this will happen, but incentives aren't aligned.
2 replies →
Zrok might be the closest?