// glossary

Glossary

Short definitions for the networking + web terms you actually encounter when wiring integrations. Long-form versions of the bigger concepts live in the /learn collection.

• Changelog

  A changelog is a public list of versioned changes to a product or library, ordered by release date.

• CORS

  CORS is a browser policy that controls when a script on one origin can read responses from a different origin.

• CSRF

  CSRF is an attack where a malicious site tricks a logged-in user's browser into making unwanted authenticated requests to another site.

• Custom domain

  A custom domain is a tunnel routed via a hostname you own (app.acme.com), instead of a service-provided subdomain (sub.lrok.io).

• Edge server

  An edge server is a server geographically close to users, sitting between the public internet and an origin server.

• HMAC

  HMAC is a cryptographic technique that proves a message was signed by someone holding a shared secret.

• HTTP status code

  An HTTP status code is a 3-digit number on every HTTP response indicating success, redirection, client error, or server error.

• Idempotency

  An operation is idempotent if running it once or running it many times produces the same result.

• JSON-LD

  JSON-LD is a JSON-based format for embedding structured data (schema.org types) in HTML pages so crawlers can extract typed metadata.

• JWT (JSON Web Token)

  A JWT is a base64-encoded, signed JSON payload commonly used as a stateless session token.

• llms.txt

  llms.txt is an emerging convention for handing AI crawlers a curated map of a site's most important content.

• localhost

  localhost is a hostname that refers to the local computer itself, resolving to the loopback IP 127.0.0.1.

• mTLS (Mutual TLS)

  mTLS is TLS where both the client AND the server present certificates, so each authenticates the other.

• NAT (Network Address Translation)

  NAT lets multiple devices share one public IP by rewriting addresses in network packets as they pass through a router.

• OAuth callback URL

  After a user authenticates with an OAuth provider, the provider redirects them back to your application at this preregistered URL with an authorization code.

• Public IP address

  A public IP address is an IP address that's globally unique on the internet, vs. a private IP that only routes inside a local network.

• Rate limit

  A rate limit caps how many requests a client can make in a time window. Crossing it produces 429 Too Many Requests.

• Request inspector

  A request inspector captures incoming HTTP requests in a UI so you can see body, headers, status, and latency in real time.

• Reserved subdomain

  A reserved subdomain is a custom name claimed in advance so the same URL is yours across restarts, sessions, or machines.

• Reverse tunnel

  A reverse tunnel makes a private server reachable from the public internet by having it dial outbound to a relay.

• RSS

  RSS is an XML format for publishing a list of recent items so feed readers and aggregators can auto-poll for updates.

• Server-Sent Events

  SSE is a way for a server to stream a sequence of messages to a connected browser over a single long-lived HTTP response.

• Sitemap

  A sitemap is an XML file listing every URL on a site, used by search engines to discover content.

• SSO (Single Sign-On)

  SSO lets users authenticate once with a central identity provider and access multiple applications without re-entering credentials.

• Subdomain

  A subdomain is a label prefixed to a parent domain that lets one DNS zone host multiple distinct names.

• TCP tunnel

  A TCP tunnel forwards raw TCP between a public address and a localhost port — useful for protocols that aren't HTTP (Postgres, Redis, SSH).

• TLS (Transport Layer Security)

  TLS is the protocol that encrypts the connection between a browser and a server, turning HTTP into HTTPS.

• Tunneling

  Tunneling encapsulates one network protocol inside another, typically to traverse a firewall or NAT, or to add encryption.

• Webhook

  A webhook is a one-way HTTP POST that an external service sends to your URL when an event happens on their side.

• Webhook replay

  A webhook replay is when a provider re-delivers the same webhook event, either automatically (after your server returned 5xx) or manually (you triggered it from a dashboard).

• WebSocket

  A WebSocket is a bidirectional persistent connection between browser and server, established by upgrading an HTTP request.