AI模型网关 是 AI Skill Hub 本期精选AI工具之一。综合评分 8.0 分,整体质量较高。我们强烈推荐将其纳入你的 AI 工具库,帮助提升工作效率。
**为什么要使用开源工具而非商业 SaaS?**
对于个人开发者和有隐私需求的用户,本地部署的开源工具意味着数据不离本机,不受第三方服务商的数据政策约束。同时,开源工具通常没有使用次数限制和月度费用,一次安装即可长期使用,对于高频使用场景的总拥有成本(TCO)远低于订阅制商业工具。
**安装与环境准备**
AI模型网关 依赖 Rust 运行环境。建议通过 pyenv(Python)或 nvm(Node.js)管理 Rust 版本,避免全局环境污染。对于新手用户,推荐先创建虚拟环境(python -m venv venv && source venv/bin/activate),再安装依赖,这样即使出现问题也可以随时删除虚拟环境重新开始,不影响系统稳定性。
**社区与维护**
GitHub Issue 和 Discussion 是获取帮助的最快渠道。在提问前建议先检查 Closed Issues(已关闭的问题),大多数常见问题都已有解答。遇到 Bug 时,提供 pip list 的输出、完整错误堆栈和最小可复现示例,能显著提高开发者响应速度。AI Skill Hub 将持续追踪 AI模型网关 的版本更新,及时通知重要功能变化。
AI模型网关 是一款基于 Rust 开发的开源工具,专注于 AI、模型网关、Rust 等核心功能。作为 GitHub 开源项目,它拥有活跃的社区支持和持续的版本迭代,代码完全透明可审计,支持本地部署以保护数据隐私。无论是个人使用还是集成到企业工作流,都能提供稳定可靠的解决方案。
AI模型网关 是一款基于 Rust 开发的开源工具,专注于 AI、模型网关、Rust 等核心功能。作为 GitHub 开源项目,它拥有活跃的社区支持和持续的版本迭代,代码完全透明可审计,支持本地部署以保护数据隐私。无论是个人使用还是集成到企业工作流,都能提供稳定可靠的解决方案。
- 开源免费,支持本地部署,数据完全自主可控
- 活跃的 GitHub 开源社区,持续迭代更新
- 提供详细文档和使用示例,新手友好
- 支持自定义配置,灵活适配不同使用环境
- 可作为基础组件集成进现有技术栈或进行二次开发
- 本地部署运行,保护数据隐私,满足合规要求
- 自定义集成到现有系统,扩展技术栈能力
- 作为开源基础组件进行商业化二次开发
# 方式一:cargo install(推荐) cargo install control-layer # 方式二:从源码编译 git clone https://github.com/doublewordai/control-layer cd control-layer cargo build --release # 二进制在 ./target/release/control-layer
- 访问 GitHub 仓库页面
- 按照 README 文档完成依赖安装
- 根据系统环境完成初始化配置
- 参考官方示例或文档开始使用
- 遇到问题可在 GitHub Issues 中查找解答
# 查看帮助 control-layer --help # 基本运行 control-layer [options] <input> # 详细使用说明请查阅文档 # https://github.com/doublewordai/control-layer
# control-layer 配置说明 # 查看配置选项 control-layer --config-example > config.yml # 常见配置项 # output_dir: ./output # log_level: info # workers: 4 # 环境变量(覆盖配置文件) export CONTROL_LAYER_CONFIG="/path/to/config.yml"
The Doubleword Control Layer (dwctl)
Announcement | Benchmarking | Technical Blog | Documentation
The Doubleword Control Layer (dwctl) is the world’s fastest AI model gateway (450x less overhead than LiteLLM). It provides a single, high-performance interface for routing, managing, and securing inference across model providers, users and deployments - both open-source and proprietary.
- Seamlessly switch between models
- Turn any model (self-hosted or hosted) into a production-ready API with full auth and user controls
- Centrally govern, monitor, and audit all inference activity
To get a sense of how the control layer works, visit our interactive demo.
api_key: "sk-..." # Required for model sync
#
Getting started
The Doubleword Control Layer requries Docker to be installed. For information on how to get started with Docker see the docs here.
There are two ways to set up the Control Layer:
- Docker Compose - All-in-one setup with pre-configured Postgres and dwctl. This method automatically provisions a containerized Postgres database with default credentials and connects it to the Control Layer.
- Docker Run - Bring-your-own-database setup. Use this method to connect the Control Layer to an existing Postgres instance of your choice.
Option 1. Docker Compose
With docker compose installed, the commands below will start the Control Layer.
wget https://raw.githubusercontent.com/doublewordai/control-layer/refs/heads/main/docker-compose.yml
docker compose -f docker-compose.yml up -dNavigate to http://localhost:3001 to get started. When you get to the login page you will be prompting to sign in with a username and password. Please refer to the configuration section below for how to set up an admin user. You can then refer to the documentation here to start playing around with Control Layer features.
To upgrade to new versions of the control layer as they come out, run the following from the same directory:
docker compose pull
docker compose up -dOption 2. Docker Run
The Doubleword Control Layer requires a PostgreSQL database to run. You can read the documentation here on how to get started with a local version of Postgres. After doing this, or if you have one already (for example, via a cloud provider), run:
docker run -p 3001:3001 \
-e DATABASE_URL=<your postgres connection string here> \
-e DWCTL_SECRET_KEY="mysupersecretkey" \
ghcr.io/doublewordai/control-layer:latestYour DATABASE_URL should match the following naming convention postgres://username:password@localhost:5432/database_name. Make sure to replace the secret key with a secure random value in production.
Navigate to http://localhost:3001 to get started. When you get to the login page you will be prompting to sign in with a username and password. Please refer to the configuration section below for how to set up an admin user. You can then refer to the documentation here to start playing around with Control Layer features.
give information to users that manage your Control Layer deployment.
metadata: region: "UK South" organization: "ACME Corp"
Example configurations:
request/responses, for example), toggle this flag.
enable_request_logging: true # Enable request/response logging to database
Configuration
Control Layer can be configured by a config.yaml file. To supply one, mount it into the container at /app/config.yaml, like follows:
docker run -p 3001:3001 \
-e DATABASE_URL=<your postgres connection string here> \
-e SECRET_KEY="mysupersecretkey" \
-v ./config.yaml:/app/config.yaml \
ghcr.io/doublewordai/control-layer:latestThe docker compose file will mount a config.yaml there if you put one alongside docker-compose.yml
The complete default config is below.
You can override any of these settings by either supplying your own config file, in which case your config file will be merged with this one, or by supplying environment variables prefixed with DWCTL_.
Nested sections of the configuration can be specified by joining the keys with a double underscore, for example, to disable native authentication, set DWCTL_AUTH__NATIVE__ENABLED=false.
```yaml
dwctl configuration
secret_key: null # Not set by default - must be provided via env var or config
Authentication configuration
auth: # Native username/password authentication. Stores users in the local # # database, and allows them to login with username and password at # http://<host>:<port>/login native: enabled: true # Enable native login system # Whether users can sign up themselves. Defaults to false for security. # If false, the admin can create new users via the interface or API. allow_registration: false # Constraints on user passwords created during registration password: min_length: 8 max_length: 64 # Parameters for login session cookies. session: timeout: "24h" cookie_name: "dwctl_session" cookie_secure: true cookie_same_site: "strict" # Email configuration for password resets and notifications email: # Email transport - either 'file' (for development) or 'smtp' (for production) type: file path: "./emails" # Directory for file-based email (when type=file) # For SMTP (production), use: # type: smtp # host: "smtp.example.com" # port: 587 # username: "noreply@example.com" # password: "your-smtp-password" # use_tls: true from_email: "noreply@example.com" from_name: "Control Layer" password_reset: token_expiry: "30m" # How long reset tokens are valid base_url: "http://localhost:3001" # Frontend URL for reset links
# Proxy header authentication # Accepts user identity from HTTP headers set by an upstream authentication proxy # (e.g., oauth2-proxy, Vouch, Authentik, Auth0) # # Two modes: # Single header: Send only header_name with user's email (must be unique) # Dual header: Send both header_name (IdP identifier) and email_header_name (email) # Allows multiple accounts per email from different identity providers proxy_header: enabled: false # header_name: User identifier or email # Single header mode: User's email (e.g., "user@example.com") # Dual header mode: Unique identifier from IdP (e.g., "github|user123", "google-oauth2|456") header_name: "x-doubleword-user" # email_header_name: User's email address (optional, enables dual header mode) # If provided: Enables federated identity with (email, external_user_id) uniqueness # If omitted: Uses header_name value as email (single header mode, email must be unique) email_header_name: "x-doubleword-email" # Groups and SSO provider headers (optional) groups_field_name: "x-doubleword-user-groups" provider_field_name: "x-doubleword-sso-provider" import_idp_groups: false # Import IdP groups blacklisted_sso_groups: [] # SSO groups to ignore # auto_create_users: Automatically create users on first login auto_create_users: true
# Security settings security: # How long session cookies are valid for. After this much time, users will # have to log in again. Note: this is related to the # auth.native.session.timeout # value. That one configures how long the browser # will set the cookie for, this one how long the server will accept it for. jwt_expiry: "24h" # CORS Settings. In production, make sure your frontend URL is listed here. cors: allowed_origins: - "http://localhost:3001" # Default - Control Layer server itself allow_credentials: true max_age: 3600 # Cache preflight requests for 1 hour
Server configuration
Database configuration
database: # By default, we connect to an external postgres database type: external # Override this with your own database url. Can also be configured via the # DATABASE_URL environment variable. url: "postgres://localhost:5432/control_layer"
# Optional: Read replica URL for read-heavy operations # replica_url: "postgres://replica:5432/control_layer"
# Main database connection pool settings # pool: # max_connections: 10 # min_connections: 0 # acquire_timeout_secs: 30 # idle_timeout_secs: 600 # max_lifetime_secs: 1800
# Component databases: fusillade (batch processing) and outlet (request logging) # By default, these use separate schemas within the main database. # You can optionally configure them to use dedicated databases.
# Fusillade - batch processing database # Default: uses "fusillade" schema in main database # fusillade: # mode: schema # name: fusillade # pool: # max_connections: 20 # # Alternative: use a dedicated database # fusillade: # mode: dedicated # url: postgres://localhost:5432/fusillade # replica_url: postgres://replica:5432/fusillade # pool: # max_connections: 20
# Outlet - request logging database # Default: uses "outlet" schema in main database # outlet: # mode: schema # name: outlet # pool: # max_connections: 5
# Alternatively, you can use embedded postgres (requires compiling with the # embedded-db feature, which is not present in the default docker image) # type: embedded # data_dir: null # Optional: directory for database storage # persistent: false # Set to true to persist data between restarts
Batches API configuration
Batches can be sent containing requests to any model configured in the
Model sources - the default inference endpoints that are shown in the UI.
# OpenAI API
url: "https://api.openai.com"
To advertise publically, set to "0.0.0.0", or the specific network interface
The batches API provides OpenAI-compatible batch processing endpoints
高性能AI模型网关,值得关注
- 开源免费,支持本地部署,数据完全自主可控
- 活跃的 GitHub 开源社区,持续迭代更新
- 提供详细文档和使用示例,新手友好
- 支持自定义配置,灵活适配不同使用环境
- 可作为基础组件集成进现有技术栈或进行二次开发
- 本地部署运行,保护数据隐私,满足合规要求
- 自定义集成到现有系统,扩展技术栈能力
- 作为开源基础组件进行商业化二次开发
- +Apache-2.0 协议,可免费商用
- +完全开源免费,无授权费用
- +本地部署,数据完全自主可控
- +开发者社区支持,遇问题可查可问
- −安装和初始配置可能需要一定技术基础
- −功能完整性通常不如成熟商业产品
- −技术支持主要依赖开源社区,响应速度不稳定
AI Skill Hub 为第三方内容聚合平台,本页面信息基于公开数据整理,不对工具功能和质量作任何法律背书。
建议在沙箱或测试环境中充分验证后,再部署至生产环境,并做好必要的安全评估。
✅ Apache 2.0 — 宽松开源协议,可商用,需保留版权声明和 NOTICE 文件,含专利授权条款。
经综合评估,AI模型网关 在AI工具赛道中表现稳健,质量优秀。如果你已有明确的使用需求,可以直接上手体验;如果还在评估阶段,建议对比同类工具后再做决策。
| 原始名称 | control-layer |
| 原始描述 | 开源AI工具:The world’s fastest AI model gateway (450x less overhead than LiteLLM). Unified 。⭐72 · Rust |
| Topics | AI模型网关Rust |
| GitHub | https://github.com/doublewordai/control-layer |
| License | Apache-2.0 |
| 语言 | Rust |
收录时间:2026-05-27 · 更新时间:2026-05-27 · License:Apache-2.0 · AI Skill Hub 不对第三方内容的准确性作法律背书。