Back to Home
higress-group icon

himarket

by higress-group

View Source

Overview

Himarket is an AI open platform solution designed to build enterprise-grade AI capability markets and developer ecosystem centers, integrating AI models and gateways.

Installation

Run Command
java -Ddb.host={YOUR_DB_HOST} -Ddb.port={YOUR_DB_PORT} -Ddb.name={YOUR_DB_NAME} -Ddb.username={YOUR_DB_USERNAME} -Ddb.password={YOUR_DB_PASSWORD} -Djwt.secret={YOUR_JWT_SECRET} -Dencryption.root-key={YOUR_ENCRYPTION_ROOT_KEY} -Dspring.ai.openai.api-key={YOUR_OPENAI_API_KEY} -jar portal-bootstrap/target/portal-bootstrap-1.0-SNAPSHOT.jar

Environment Variables

  • DB_HOST
  • DB_PORT
  • DB_NAME
  • DB_USERNAME
  • DB_PASSWORD
  • encryption.root-key
  • jwt.secret
  • spring.ai.openai.api-key
  • SLS_ENDPOINT
  • SLS_AUTH_TYPE
  • SLS_ACCESS_KEY_ID
  • SLS_ACCESS_KEY_SECRET
  • SLS_DEFAULT_PROJECT
  • SLS_DEFAULT_LOGSTORE
  • SLS_ALIYUN_LOG_CONFIG_NAMESPACE
  • SLS_ALIYUN_LOG_CONFIG_CR_NAME
  • VITE_API_BASE_URL
  • VITE_TEMP_API_URL

Security Notes

Critical security risks include hardcoded default secrets for `encryption.root-key` ('portalmanagement') and `jwt.secret` ('YourJWTSecret') in `application.yml`. These must be overridden in production environments. The CORS configuration is overly permissive (`setAllowedOriginPatterns("*")`), which should be restricted for production. Additionally, the `ApsaraStackGatewayClient` explicitly ignores SSL, which is unsafe for production communication.

Similar Servers

klavis

5495

Creates an AI agent that uses Klavis Strata to interact with Gmail and YouTube through MCP, demonstrating how to summarize a YouTube video and email the summary.

Coding Agents
8
$High

bifrost

1250

A high-performance AI gateway with a unified interface for multiple providers, offering real-time monitoring, configuration management, and comprehensive observability for AI infrastructure.

AI & ML
4
$Medium

lunar

335

A Model Context Protocol (MCP) server that acts as a control plane for AI agents and tools, providing management, access control, and observability for AI API calls.

Web & APIs
7
$Low

mcp-gateway-registry

327

This MCP server provides programmatic interaction with the MCP Gateway Registry API, enabling management of registered services and AI agents, including registration, toggling, health monitoring, group-based access control, and intelligent (semantic) discovery of tools and agents.

AI & ML
9
$Low

Stats

Interest Score96
Security Score4
Cost ClassHigh
Avg Tokens500
Stars339
Forks56
Last Update2025-12-05

Tags

AI PlatformAPI GatewayDeveloper PortalSpring BootReactDevOps