alemi/upub

micro social network, federated https://join.upub.social/

activitypub backend federated frontend rust social

Find a file

alemi 232069d56a chore: update lockfile		2024-09-19 17:20:44 +02:00
apb	fix: add security context to LD context	2024-09-18 22:46:06 +02:00
upub	fix: also dispatch right away	2024-09-19 17:20:31 +02:00
utils	fix(mdhtml): pass <s> too	2024-08-11 13:48:53 +02:00
web	fix(web): ugh the feature name	2024-09-19 17:06:59 +02:00
.editorconfig	chore: initial commit with environment	2023-12-30 05:07:49 +01:00
.gitignore	chore: gitignored trunk dist	2024-04-14 17:23:48 +02:00
.rustfmt.toml	chore: initial commit with environment	2023-12-30 05:07:49 +01:00
.tci	ci: more build threads, ftbsc is beefy	2024-06-21 05:20:15 +02:00
Cargo.lock	chore: update lockfile	2024-09-19 17:20:44 +02:00
Cargo.toml	chore: bump deps, drop async_trait where possible	2024-09-19 15:56:22 +02:00
main.rs	fix: use mpsc for wake token	2024-09-19 17:13:53 +02:00
README.md	fix: oops nginx was caching for only one hour	2024-07-21 17:15:43 +02:00

README.md

μpub

micro social network, federated

μpub aims to be a private, lightweight, modular and secure ActivityPub server

follow development in the dedicated matrix room

μpub is usable as a very simple ActivityPub project: it has a home and server timeline, it allows to browse threads, star notes and leave replies, it renders remote media of any kind and can be used to browse and follow remote users

all interactions happen with ActivityPub's client-server methods (basically POST your activities to your outbox), with appropriate extensions: μpub doesn't want to invent another API!

development is still active, so expect more stuff to come! since most fediverse software uses Mastodon's API, μpub plans to implement it as an optional feature, becoming eventually compatible with most existing frontends and mobile applications, but focus right now is on producing something specific to μpub needs

a test instance is available at dev.upub.social

about the database schema

im going to be very real i tried to do migrations but its getting super messy so until further notice assume db to be volatile. next change may be a migration (easy!) or a whole db rebuild (aaaaaaaaaa...), so if you're not comfortable with either manually exporting/importing or dropping and starting from scratch, you really shouldn't put upub in prod yet!

about security

most activitypub implementations don't really validate fetches: knowing an activity/object id will allow anyone to resolve it on most fedi software. this is of course unacceptable: "security through obscurity" just doesn't work

μpub correctly and rigorously implements and enforces access control on each object based on its addressing

most instances will have "authorized fetch" which kind of makes the issue less bad, but anyone can host an actor, have any server download their pubkey and then start fetching

μpub may be considered to have "authorized fetch" permanently on, except it depends on each post:

all posts marked public (meaning, addressed to "https://www.w3.org/ns/activitystreams#Public"), will be fetchable without any authorization
all posts not public will require explicit addressing and authentication: for example if post A is addressed to example.net/actor
- anonymous fetchers will receive 404 on GET /posts/A
- local users must authenticate and will be given said post only if it's addressed to them
- remote servers will be given access to all posts from any of their users once they have authenticated themselves (with http signing)

note that followers get expanded: addressing to example.net/actor/followers will address to anyone following actor that the server knows of, at that time

media caching

μpub doesn't download remote media to both minimize local resources requirement and avoid storing media that remotes want gone. to prevent leaking local user ip addresses, all media links are cloaked and proxied.

while this just works for small instances, larger servers should set up aggressive caching on /proxy/... path

for example, on nginx:

proxy_cache_path /tmp/upub/cache levels=1:2 keys_zone=upub_cache:100m max_size=50g inactive=168h use_temp_path=off;

server {
	location /proxy/ {
		# use our configured cache
		slice              1m;
		proxy_set_header   Range $slice_range;
		chunked_transfer_encoding on;
		proxy_ignore_client_abort on;
		proxy_buffering    on;
		proxy_cache        upub_cache;
		proxy_cache_key    $host$uri$is_args$args$slice_range;
		proxy_cache_valid  200 206 301 304 168h;
		proxy_cache_lock   on;
		proxy_pass         http://127.0.0.1/;
	}
}

contributing

all help is extremely welcome! development mostly happens on moonlit.technology, but there's a github mirror available too

if you prefer a forge-less development you can browse the repo on my cgit, and send me patches on any contact listed on my site

don't hesitate to get in touch, i'd be thrilled to showcase the project to you!

progress

barebone actors
barebone activities and objects
activitystreams/activitypub compliance (well mostly)
process barebones feeds
process barebones inbox
process barebones outbox
http signatures
privacy, targets, scopes
simple web client
announce (boosts)
threads
remote media
editing via api
advanced composer
api for fetching
like, share, reply via frontend
backend config
frontend config
optimize addressing database schema
mentions, notifications
hashtags
remote media proxy
user fields
better editing via web frontend
upload media
public vs unlisted for discovery
mastodon-like search bar
polls
lists
full mastodon api
get rid of internal ids from code