{"id":23358057,"url":"https://github.com/inteliense/zeta","last_synced_at":"2026-04-30T14:37:21.395Z","repository":{"id":57871420,"uuid":"504855937","full_name":"inteliense/zeta","owner":"inteliense","description":"the Zero Trust API Server in Java. Synchronous and Asynchronous Zero Trust \u0026 REST API library.","archived":false,"fork":false,"pushed_at":"2023-03-23T02:12:32.000Z","size":2131,"stargazers_count":1,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"master","last_synced_at":"2025-04-07T20:21:24.307Z","etag":null,"topics":["api","api-library","java","java-library","javascript","rest","rest-api","restful","restful-api","web","zero-trust"],"latest_commit_sha":null,"homepage":"","language":"Java","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/inteliense.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2022-06-18T13:48:05.000Z","updated_at":"2024-01-14T17:52:07.000Z","dependencies_parsed_at":"2024-12-06T05:29:19.598Z","dependency_job_id":"371f9b22-cd18-4256-8714-1fa42d509b96","html_url":"https://github.com/inteliense/zeta","commit_stats":null,"previous_names":["inteliense/zeta"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/inteliense/zeta","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/inteliense%2Fzeta","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/inteliense%2Fzeta/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/inteliense%2Fzeta/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/inteliense%2Fzeta/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/inteliense","download_url":"https://codeload.github.com/inteliense/zeta/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/inteliense%2Fzeta/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":32468009,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-30T13:12:12.517Z","status":"ssl_error","status_checked_at":"2026-04-30T13:12:06.837Z","response_time":57,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["api","api-library","java","java-library","javascript","rest","rest-api","restful","restful-api","web","zero-trust"],"created_at":"2024-12-21T10:36:43.862Z","updated_at":"2026-04-30T14:37:21.379Z","avatar_url":"https://github.com/inteliense.png","language":"Java","funding_links":[],"categories":[],"sub_categories":[],"readme":"# ZETA - the Zero Trust API\n\nREST Synchronous \u0026 Asynchronous + Zero Trust Synchronous \u0026 Asynchronous API Server.\u003cbr\u003e\u003cbr\u003e\n\nSession hijacking prevention is now completed with an optional configuration change. This was for the very, very unlikely chance an attacker gets the dynamic session id and locks you out of that session.. Forcing you to create a new session while the other remains active. Most of the Zero Trust part of the API Server is that \u003ci\u003ein theory\u003c/i\u003e the attacks that are prevented \u003ci\u003ecould\u003c/i\u003e be done without the prevention strategies. This specific new feature adds a lot of more advanced overhead code for the client and that is why it is optional.\n\n# security features\n  - usual validation of input with more advanced checks and flags for minor differences\n  - identification through the use of an API key (the root user account), client (the device / browser), user ID (the logged in user, if used), and the unique session that all three create.\n  - dynamic session authorization which gets hashed between each trip of the connection to verify that the session identification is not being used on another system.\n  - dynamic API secret key to prevent session hijacking where you get locked out, create a new session, and the old one remains on another (attacker's) system.\n  - asynchronous response with separate response server and removable API resources (paths)\n  - dynamic request authorization for asynchronous responses\n  - two way public key cryptography with two public keys and two private keys spread across the two devices (server \u0026 client). To get the full key pair both the server and client must be compromised.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Finteliense%2Fzeta","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Finteliense%2Fzeta","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Finteliense%2Fzeta/lists"}