A local development reverse proxy with automatic HTTPS using Cloudflare Pingora.

• 🔀 Route custom domains to local development servers
• 🔒 Automatic HTTPS with self-signed certificates
• ⚡ Built on Cloudflare's high-performance Pingora framework
• 📝 Simple YAML configuration

Via npm (macOS and Linux):

npm install -g @devrelay/cli
# or run without installing
npx @devrelay/cli

From source (requires Rust 1.70+):

cargo build --release
./target/release/devrelay start

Create a config.yaml file (or copy from config.example.yaml):

# Proxy routes - each route maps a custom domain to a backend
routes:
  - host: "myapp.dev"
    port: 443 # Port where proxy listens
    listen_tls: true # Required for .dev domains in Chrome
    backend: "localhost"
    backend_port: 3000 # Port where your dev server runs
    backend_tls: false # true for https://localhost (default = false)

# TLS/SSL Configuration
tls:
  enabled: true
  cert_dir: "./certs" # Directory to store generated certificates
  ca_name: "DevRelay CA" # Name for the Certificate Authority

If you installed via npm, run:

devrelay start

If you built from source, run ./target/release/devrelay start.

That's it! 🎉

On first run, DevRelay will automatically:

• ✅ Generate CA and server certificates
• ✅ Install the CA certificate to your system trust store (macOS Keychain or Linux ca-certificates; prompts for password)
• ✅ Add your custom domains to /etc/hosts (prompts for password)

Then just restart your browser and access https://myapp.dev!

devrelay start --config config.example.yaml

If you want to install manually:

devrelay start --skip-install

To force reinstall the CA cert and hosts entries:

devrelay start --force-install

Suppress per-request proxying log lines:

devrelay start --quiet

To remove the CA certificate from your system trust store and clean up /etc/hosts entries:

devrelay start --uninstall

1. Routing: Reads the Host header from incoming requests and matches it against configured routes
2. Port Mapping: Each route specifies both the listening port and backend port independently
3. TLS: Generates a local CA certificate and signs server certificates for each configured domain
4. Proxy: Uses Pingora's high-performance reverse proxy to forward requests to your local dev servers

• Rust 1.70+
• macOS or Linux (for automatic CA cert and /etc/hosts setup). On Linux, Debian/Ubuntu (ca-certificates) or RHEL/Fedora (ca-certificates) must be installed.

MIT