Compare commits

..

2 commits

Author SHA1 Message Date
2e01e44c85 hard-coded variables for simplicity 2024-12-10 22:57:22 +00:00
7017f4ba25 removed cloudflare proxy note 2024-12-10 22:56:45 +00:00
3 changed files with 11 additions and 9 deletions

View file

@ -1,7 +1,4 @@
REGISTRY = forgejo.gravityfargo.dev
OWNER = gravityfargo
IMAGE = bluesky-pds
TAG ?= 0.4.74
TAG ?= latest
DOMAIN = sheltersky.social
export DOCKER_BUILDKIT=1
@ -14,7 +11,7 @@ build-base:
.PHONY: build-tag
build-tag:
sudo rm -rf config
docker build --no-cache --tag $(REGISTRY)/$(OWNER)/$(IMAGE):$(TAG) .
docker build --tag forgejo.gravityfargo.dev/gravityfargo/bluesky-pds:$(TAG) .
.PHONY: generate-env
generate-env:
@ -37,4 +34,4 @@ run:
.PHONY: push
push:
docker push $(REGISTRY)/$(OWNER)/$(IMAGE):$(TAG)
docker push forgejo.gravityfargo.dev/gravityfargo/bluesky-pds:latest

View file

@ -4,7 +4,7 @@ A self-contained Docker image for the [Bluesky PDS (Personal Data Server) ](http
It is required to run the instance behind a proxy (like traefik) to generate SSL certificates. This will not work otherwise. The standard pds install includes caddy to handle this. A wildcard DNS assignment along with a wildcard SSL certificate is required. I use Cloudflare for this, see the screenshot below.
I can confirm it works behind Cloudflare's DNS Proxy with Full (strict).
Cloudflare's DNS Proxy Service will not work for this setup because of the email verification requirement. You must use the DNS only service.
This is not intended for production, and I am not responsible for any data loss or security issues. This is a personal project, and I am not affiliated with Bluesky.
@ -66,8 +66,8 @@ services:
PDS_ADMIN_PASSWORD: ...
PDS_PLC_ROTATION_KEY_K256_PRIVATE_KEY_HEX: ...
PDS_HOSTNAME: example.com
PDS_EMAIL_SMTP_URL: ""
PDS_EMAIL_FROM_ADDRESS: ""
PDS_EMAIL_SMTP_URL: smtps://resend:<your api key here>@smtp.resend.com:465/
PDS_EMAIL_FROM_ADDRESS: admin@your.domain
PUID: 1005
PGID: 1005
volumes:
@ -148,6 +148,11 @@ docker network create --subnet=192.168.1.0/24 --ipv6 --attachable proxy
![alt text](assets/image.png)
#### Protonmail SMTP
`PDS_EMAIL_SMTP_URL: smtp://user@example.com:TOKEN@smtp.protonmail.ch:587/`
`PDS_EMAIL_FROM_ADDRESS: user@example.com`
## Development
The development enviornment must be behind a proxy to generate SSL certificates. This will not work otherwise. In my case, I use Traefik installed on a VPS that's dedicated to development.

Binary file not shown.

Before

Width:  |  Height:  |  Size: 46 KiB

After

Width:  |  Height:  |  Size: 46 KiB