Home/About

About Backport

Backport is an open-source API gateway built with FastAPI and Next.js. It adds WAF security, rate limiting, smart caching, and idempotency to any backend — with zero code changes required.

The project started from a simple frustration: adding API gateway features shouldn't mean deploying heavy enterprise solutions like Kong or writing complex middleware. Backport was built to solve this — a lightweight reverse proxy that you can set up in under a minute.

Every request passes through a security pipeline — WAF inspection, rate limiting, cache checks, and idempotency guards — before reaching your origin server. Your backend stays untouched while gaining production-grade protection.

Currently in beta. We're actively building and improving. Check the changelogfor what's new.

Tech Stack

Backend

Python, FastAPI, SQLAlchemy, httpx

Frontend

Next.js, React, TypeScript, Tailwind CSS

Database

SQLite (dev) / PostgreSQL (production on Render)

Payments

Razorpay

Resend

License

MIT — free and open source

What's Included

17 regex-based WAF patterns covering SQL injection, XSS, path traversal, command injection, LDAP injection, and XXE
Sliding-window rate limiting (60/300/1000 requests per minute by plan)
In-memory LRU cache for GET requests (5-minute TTL, up to 1000 entries)
Idempotency key support for POST/PUT/PATCH deduplication (up to 5000 stored keys)
Dashboard with analytics, request logs, traffic charts, and security alerts
JSON + CSV log export
Razorpay payment integration

Source Code

Backport is fully open source under the MIT license. You can view the source code, report issues, or contribute on GitHub.