alemi/upub
alemi/upub
1
0
Fork 2
Code Issues16 Pull requests Releases1 Packages2 Activity Actions
upub/core/src/config.rs

216 lines
6.8 KiB
Rust
Raw Normal View History

feat: server config file and default generator
2024-05-11 22:47:29 +02:00
#[serde_inline_default::serde_inline_default]
#[derive(Debug, Clone, serde::Deserialize, serde::Serialize, serde_default::DefaultFromSerde)]
pub struct Config {
#[serde(default)]
pub instance: InstanceConfig,
#[serde(default)]
pub datasource: DatasourceConfig,
feat: added registration cli and route and cfg defaults to disabled registrations ofc
2024-05-13 18:53:51 +02:00
#[serde(default)]
pub security: SecurityConfig,
fix: add compat option to fix lemmy images no clue why sometimes they come as bare links?? but it's images, they show as images on lemmy's frontend... this is not really a good check as we overrule remote decisions, but it's togglable so deployers can decide if they care more about UX or spec consistency
2024-08-11 12:48:46 +02:00
#[serde(default)]
pub compat: CompatibilityConfig,
feat: super basic file uploads for logged in users this is super crude and unauthorized!!! also vulnerable to AP injections so much more work has to be done
2024-11-09 14:41:19 +01:00
#[serde(default)]
pub files: FileStorageConfig,
feat: simple federation policies basically can now fediblock instances, yayy, but more interestingly just refuse to mirror media from problematic instances or refuse deliveries for places we want to read but who shouldn't read us
2024-12-29 03:25:10 +01:00
#[serde(default)]
pub reject: RejectConfig,
feat: server config file and default generator
2024-05-11 22:47:29 +02:00
// TODO should i move app keys here?
}
feat: added registration cli and route and cfg defaults to disabled registrations ofc
2024-05-13 18:53:51 +02:00
#[serde_inline_default::serde_inline_default]
#[derive(Debug, Clone, serde::Deserialize, serde::Serialize, serde_default::DefaultFromSerde)]
pub struct InstanceConfig {
#[serde_inline_default("μpub".into())]
docs: config options
2024-12-29 04:34:34 +01:00
/// instance name, shown in noedinfo and instance actor
feat: added registration cli and route and cfg defaults to disabled registrations ofc
2024-05-13 18:53:51 +02:00
pub name: String,
#[serde_inline_default("micro social network, federated".into())]
docs: config options
2024-12-29 04:34:34 +01:00
/// description, shown in nodeinfo and instance actor
feat: added registration cli and route and cfg defaults to disabled registrations ofc
2024-05-13 18:53:51 +02:00
pub description: String,
fix: default port 3000 not 300
2025-01-22 02:07:53 +01:00
#[serde_inline_default("http://127.0.0.1:3000".into())]
feat: config tweaks, better defaults should just work :tm: for local development
2025-01-22 01:16:22 +01:00
/// domain of current instance, must change this for prod
feat: added registration cli and route and cfg defaults to disabled registrations ofc
2024-05-13 18:53:51 +02:00
pub domain: String,
#[serde(default)]
docs: config options
2024-12-29 04:34:34 +01:00
/// contact information for an administrator, currently unused
feat: config tweaks, better defaults should just work :tm: for local development
2025-01-22 01:16:22 +01:00
pub contact: String,
feat: added registration cli and route and cfg defaults to disabled registrations ofc
2024-05-13 18:53:51 +02:00
#[serde(default)]
docs: config options
2024-12-29 04:34:34 +01:00
/// base url for frontend, will be used to compose pretty urls
feat: config tweaks, better defaults should just work :tm: for local development
2025-01-22 01:16:22 +01:00
pub frontend: String,
feat: added registration cli and route and cfg defaults to disabled registrations ofc
2024-05-13 18:53:51 +02:00
}
feat: server config file and default generator
2024-05-11 22:47:29 +02:00
#[serde_inline_default::serde_inline_default]
#[derive(Debug, Clone, serde::Deserialize, serde::Serialize, serde_default::DefaultFromSerde)]
pub struct DatasourceConfig {
feat: config tweaks, better defaults should just work :tm: for local development
2025-01-22 01:16:22 +01:00
#[serde_inline_default("sqlite://./upub.db?mode=rwc".into())]
feat: server config file and default generator
2024-05-11 22:47:29 +02:00
pub connection_string: String,
fix: better default configs
2024-06-08 17:32:22 +02:00
#[serde_inline_default(32)]
feat: server config file and default generator
2024-05-11 22:47:29 +02:00
pub max_connections: u32,
#[serde_inline_default(1)]
pub min_connections: u32,
fix: better default configs
2024-06-08 17:32:22 +02:00
#[serde_inline_default(90u64)]
feat: server config file and default generator
2024-05-11 22:47:29 +02:00
pub connect_timeout_seconds: u64,
fix: better default configs
2024-06-08 17:32:22 +02:00
#[serde_inline_default(30u64)]
feat: server config file and default generator
2024-05-11 22:47:29 +02:00
pub acquire_timeout_seconds: u64,
fix: better default configs
2024-06-08 17:32:22 +02:00
#[serde_inline_default(10u64)]
docs: config options
2024-12-29 04:34:34 +01:00
/// threshold for queries to be considered slow
feat: server config file and default generator
2024-05-11 22:47:29 +02:00
pub slow_query_warn_seconds: u64,
#[serde_inline_default(true)]
docs: config options
2024-12-29 04:34:34 +01:00
/// enable logging warn for slow queries
feat: server config file and default generator
2024-05-11 22:47:29 +02:00
pub slow_query_warn_enable: bool,
}
#[serde_inline_default::serde_inline_default]
#[derive(Debug, Clone, serde::Deserialize, serde::Serialize, serde_default::DefaultFromSerde)]
feat: added registration cli and route and cfg defaults to disabled registrations ofc
2024-05-13 18:53:51 +02:00
pub struct SecurityConfig {
feat: server config file and default generator
2024-05-11 22:47:29 +02:00
#[serde(default)]
docs: config options
2024-12-29 04:34:34 +01:00
/// allow new users to register autonomously
feat: added registration cli and route and cfg defaults to disabled registrations ofc
2024-05-13 18:53:51 +02:00
pub allow_registration: bool,
feat: option to allow public debug fetches
2024-05-20 01:42:30 +02:00
feat: add user approval after registration basically credentials are disabled until approved by admin
2024-06-28 05:13:02 +02:00
#[serde(default)] // TODO i don't like the name of this
docs: config options
2024-12-29 04:34:34 +01:00
/// newly registered users require manual activation
feat: add user approval after registration basically credentials are disabled until approved by admin
2024-06-28 05:13:02 +02:00
pub require_user_approval: bool,
feat: option to allow public debug fetches
2024-05-20 01:42:30 +02:00
#[serde(default)]
docs: config options
2024-12-29 04:34:34 +01:00
/// allow anonymous users access to fetch debugger (explore screen)
feat: option to allow public debug fetches
2024-05-20 01:42:30 +02:00
pub allow_public_debugger: bool,
feat: find also object replies ids, optional configurable by instance admin, should be cheap with index but still
2024-05-24 00:25:41 +02:00
feat: search endpoint it's a bit rushed and ugly but maybe works?
2024-08-11 14:46:15 +02:00
#[serde(default)]
docs: config options
2024-12-29 04:34:34 +01:00
/// allow anonymous users to perform full-text searches
feat: search endpoint it's a bit rushed and ugly but maybe works?
2024-08-11 14:46:15 +02:00
pub allow_public_search: bool,
feat(routes): timeout middleware
2025-01-23 01:41:57 +01:00
#[serde_inline_default(30)]
/// max time, in seconds, before requests fail with timeout
pub request_timeout: u64,
feat: config tweaks, better defaults should just work :tm: for local development
2025-01-22 01:16:22 +01:00
#[serde_inline_default("definitely-change-this-in-prod".to_string())]
docs: config options
2024-12-29 04:34:34 +01:00
/// secret for media proxy, set this to something random
feat: added hmac validated proxy route
2024-06-23 03:55:03 +02:00
pub proxy_secret: String,
feat: config session duration, token refreshes allow refreshing sessions before they expire
2024-06-07 02:22:43 +02:00
#[serde_inline_default(true)]
docs: config options
2024-12-29 04:34:34 +01:00
/// allow expired tokens to be refreshed
feat: added refresh route (optional)
2024-05-27 07:26:31 +02:00
pub allow_login_refresh: bool,
fix: make sure we're fetching what id claims also configurable max thread depth
2024-05-30 23:22:58 +02:00
feat: config session duration, token refreshes allow refreshing sessions before they expire
2024-06-07 02:22:43 +02:00
#[serde_inline_default(7 * 24)]
docs: config options
2024-12-29 04:34:34 +01:00
/// how long do login sessions last
feat: config session duration, token refreshes allow refreshing sessions before they expire
2024-06-07 02:22:43 +02:00
pub session_duration_hours: i64,
fix: make sure we're fetching what id claims also configurable max thread depth
2024-05-30 23:22:58 +02:00
#[serde_inline_default(2)]
docs: config options
2024-12-29 04:34:34 +01:00
/// how many times we allow an object to redirect
feat: search endpoint it's a bit rushed and ugly but maybe works?
2024-08-11 14:46:15 +02:00
pub max_id_redirects: u32, // TODO not sure it fits here
fix: make sure we're fetching what id claims also configurable max thread depth
2024-05-30 23:22:58 +02:00
#[serde_inline_default(20)]
docs: config options
2024-12-29 04:34:34 +01:00
/// how deep should threads be crawled for fetching replies
feat: search endpoint it's a bit rushed and ugly but maybe works?
2024-08-11 14:46:15 +02:00
pub thread_crawl_depth: u32, // TODO doesn't really fit here
feat: configurable job expiration defaults to 30 days
2024-06-06 04:27:49 +02:00
#[serde_inline_default(30)]
docs: config options
2024-12-29 04:34:34 +01:00
/// how long before a job is considered stale and dropped
feat: search endpoint it's a bit rushed and ugly but maybe works?
2024-08-11 14:46:15 +02:00
pub job_expiration_days: u32, // TODO doesn't really fit here
fix: retry some times before dropping acquired job
2024-06-06 04:36:16 +02:00
#[serde_inline_default(100)]
docs: config options
2024-12-29 04:34:34 +01:00
/// how many times to attempt inserting back incomplete jobs
feat: search endpoint it's a bit rushed and ugly but maybe works?
2024-08-11 14:46:15 +02:00
pub reinsertion_attempt_limit: u32, // TODO doesn't really fit here
feat: server config file and default generator
2024-05-11 22:47:29 +02:00
}
fix: add compat option to fix lemmy images no clue why sometimes they come as bare links?? but it's images, they show as images on lemmy's frontend... this is not really a good check as we overrule remote decisions, but it's togglable so deployers can decide if they care more about UX or spec consistency
2024-08-11 12:48:46 +02:00
#[serde_inline_default::serde_inline_default]
#[derive(Debug, Clone, serde::Deserialize, serde::Serialize, serde_default::DefaultFromSerde)]
pub struct CompatibilityConfig {
feat: config tweaks, better defaults should just work :tm: for local development
2025-01-22 01:16:22 +01:00
#[serde_inline_default(true)]
docs: config options
2024-12-29 04:34:34 +01:00
/// compatibility with almost everything: set image attachments as images
fix: add compat option to fix lemmy images no clue why sometimes they come as bare links?? but it's images, they show as images on lemmy's frontend... this is not really a good check as we overrule remote decisions, but it's togglable so deployers can decide if they care more about UX or spec consistency
2024-08-11 12:48:46 +02:00
pub fix_attachment_images_media_type: bool,
feat: config tweaks, better defaults should just work :tm: for local development
2025-01-22 01:16:22 +01:00
#[serde_inline_default(true)]
/// compatibility with mastodon and misskey (and somewhat lemmy?): notify like receiver
fix: add compat options to add target to likes this is a nastier compat option: lemmy sends likes anonymously by design (you can't see who upvoted/downvoted you). however mastodon likes are intended to be seen (as mastodon shows every like as public on their frontend). issue is: they both come with completely empty addressing! thanks mastodon... so this compat option makes likes addressed to local objects always address the object author. this restores mastodon likes behavior but "leaks" lemmy votes. i don't know how to fix it: maybe do some weird magic checking what is in `@context`??? disgusting but at least i can stop leaking lemmy's likes...
2024-08-11 12:50:50 +02:00
pub add_explicit_target_to_likes_if_local: bool,
feat: new compat options for lemmy...... lemmy whyyyyyyyyyy.....
2024-08-11 17:38:10 +02:00
feat: config tweaks, better defaults should just work :tm: for local development
2025-01-22 01:16:22 +01:00
#[serde_inline_default(true)]
docs: config options
2024-12-29 04:34:34 +01:00
/// compatibility with lemmy: avoid showing images twice
feat: new compat options for lemmy...... lemmy whyyyyyyyyyy.....
2024-08-11 17:38:10 +02:00
pub skip_single_attachment_if_image_is_set: bool,
feat: optionally fetch and verify relayed activity relays usually Announce(Create), so the Create is not from them but the announce is, and it gets processed properly. Lemmy does the correct thing: it sends Announce(...activity...), so the "topmost" activity effectively comes from the sending server and can be verified. however aode relay sends activities as-is, without wrapping. so if we receive activities from someone else, it won't match the http signature and we thus can't be sure this wasn't falsified. added an option to directly fetch such cases. it's probably not great, so defaults to OFF
2025-01-28 13:55:20 +01:00
#[serde_inline_default(false)]
/// compatibility with most relays: since they send us other server's activities, we must fetch
/// them to verify that they aren't falsified by the relay itself. this is quite expensive, as
/// relays send a lot of activities and we effectively end up fetching again all these, so this
/// defaults to false
pub verify_relayed_activities_by_fetching: bool,
fix: add compat option to fix lemmy images no clue why sometimes they come as bare links?? but it's images, they show as images on lemmy's frontend... this is not really a good check as we overrule remote decisions, but it's togglable so deployers can decide if they care more about UX or spec consistency
2024-08-11 12:48:46 +02:00
}
feat: server config file and default generator
2024-05-11 22:47:29 +02:00
feat: super basic file uploads for logged in users this is super crude and unauthorized!!! also vulnerable to AP injections so much more work has to be done
2024-11-09 14:41:19 +01:00
#[serde_inline_default::serde_inline_default]
#[derive(Debug, Clone, serde::Deserialize, serde::Serialize, serde_default::DefaultFromSerde)]
pub struct FileStorageConfig {
#[serde_inline_default("files/".to_string())]
docs: config options
2024-12-29 04:34:34 +01:00
/// path where media files should be stored
feat: super basic file uploads for logged in users this is super crude and unauthorized!!! also vulnerable to AP injections so much more work has to be done
2024-11-09 14:41:19 +01:00
pub path: String,
}
feat: simple federation policies basically can now fediblock instances, yayy, but more interestingly just refuse to mirror media from problematic instances or refuse deliveries for places we want to read but who shouldn't read us
2024-12-29 03:25:10 +01:00
#[serde_inline_default::serde_inline_default]
#[derive(Debug, Clone, serde::Deserialize, serde::Serialize, serde_default::DefaultFromSerde)]
pub struct RejectConfig {
#[serde(default)]
chore: renamed config field
2024-12-29 04:44:50 +01:00
/// discard incoming activities from these instances
pub incoming: Vec<String>,
feat: simple federation policies basically can now fediblock instances, yayy, but more interestingly just refuse to mirror media from problematic instances or refuse deliveries for places we want to read but who shouldn't read us
2024-12-29 03:25:10 +01:00
feat: add fetch rejection policy
2024-12-31 17:11:06 +01:00
#[serde(default)]
/// prevent fetching content from these instances
pub fetch: Vec<String>,
feat: add public addressing rejection basically prevent instances from appearing on public tl but still allow users to follow specific remote users. won't defend against harassment tho, need another rule
2024-12-31 16:29:34 +01:00
#[serde(default)]
/// prevent content from these instances from being displayed publicly
/// this effectively removes the public (aka NULL) addressing: only other addressees (followers,
/// mentions) will be able to see content from these instances on timelines and directly
pub public: Vec<String>,
feat: simple federation policies basically can now fediblock instances, yayy, but more interestingly just refuse to mirror media from problematic instances or refuse deliveries for places we want to read but who shouldn't read us
2024-12-29 03:25:10 +01:00
#[serde(default)]
docs: config options
2024-12-29 04:34:34 +01:00
/// prevent proxying media coming from these instances
feat: simple federation policies basically can now fediblock instances, yayy, but more interestingly just refuse to mirror media from problematic instances or refuse deliveries for places we want to read but who shouldn't read us
2024-12-29 03:25:10 +01:00
pub media: Vec<String>,
#[serde(default)]
docs: config options
2024-12-29 04:34:34 +01:00
/// skip delivering to these instances
feat: simple federation policies basically can now fediblock instances, yayy, but more interestingly just refuse to mirror media from problematic instances or refuse deliveries for places we want to read but who shouldn't read us
2024-12-29 03:25:10 +01:00
pub delivery: Vec<String>,
feat: more federation policies also allow to prevent access via http signatures or straight out reject all fetches. note that this last option is rather ineffective as remotes can just fetch public objects anonimously
2024-12-29 03:31:59 +01:00
#[serde(default)]
docs: config options
2024-12-29 04:34:34 +01:00
/// prevent fetching private content from these instances
feat: more federation policies also allow to prevent access via http signatures or straight out reject all fetches. note that this last option is rather ineffective as remotes can just fetch public objects anonimously
2024-12-29 03:31:59 +01:00
pub access: Vec<String>,
chore: rename "prevent.fetch" to "prevent.requests"
2024-12-31 16:30:45 +01:00
#[serde(default)]
/// reject any request from these instances (ineffective as they can still fetch anonymously)
pub requests: Vec<String>,
feat: simple federation policies basically can now fediblock instances, yayy, but more interestingly just refuse to mirror media from problematic instances or refuse deliveries for places we want to read but who shouldn't read us
2024-12-29 03:25:10 +01:00
}
feat: server config file and default generator
2024-05-11 22:47:29 +02:00
impl Config {
feat: allow specifying worker threads
2024-06-14 15:51:55 +02:00
pub fn load(path: Option<&std::path::PathBuf>) -> Self {
feat: server config file and default generator
2024-05-11 22:47:29 +02:00
let Some(cfg_path) = path else { return Config::default() };
match std::fs::read_to_string(cfg_path) {
Ok(x) => match toml::from_str(&x) {
Ok(cfg) => return cfg,
Err(e) => tracing::error!("failed parsing config file: {e}"),
},
Err(e) => tracing::error!("failed reading config file: {e}"),
}
Config::default()
}
chore: traits are back in core worker is just a worker, everything else is upub
2024-06-06 02:14:35 +02:00
feat: config tweaks, better defaults should just work :tm: for local development
2025-01-22 01:16:22 +01:00
// TODO this is very magic... can we do better? maybe formalize frontend url as an attribute of
// our application?
chore: traits are back in core worker is just a worker, everything else is upub
2024-06-06 02:14:35 +02:00
pub fn frontend_url(&self, url: &str) -> Option<String> {
feat: config tweaks, better defaults should just work :tm: for local development
2025-01-22 01:16:22 +01:00
if !self.instance.frontend.is_empty() {
Some(format!("{}{url}", self.instance.frontend))
} else {
None
}
chore: traits are back in core worker is just a worker, everything else is upub
2024-06-06 02:14:35 +02:00
}
feat: server config file and default generator
2024-05-11 22:47:29 +02:00
}
Reference in a new issue Copy permalink