Compare commits

..

No commits in common. "ea21cf28926de4c28d8b5819954ab22f20ca753f" and "b336907cb3d317cb2c09dd93f34e6e7714fce33c" have entirely different histories.

2 changed files with 12 additions and 20 deletions

View file

@ -13,7 +13,7 @@ build-tag:
.PHONY: build .PHONY: build
build: build:
docker build --tag $(REGISTRY)/$(OWNER)/$(IMAGE) . docker build --no-cache --tag $(REGISTRY)/$(OWNER)/$(IMAGE) .
.PHONY: wsdump .PHONY: wsdump
wsdump: wsdump:

View file

@ -2,7 +2,7 @@
It is required to run the instance behind a proxy (like traefik) to generate SSL certificates. This will not work otherwise. The standard pds install includes caddy to handle this. It is required to run the instance behind a proxy (like traefik) to generate SSL certificates. This will not work otherwise. The standard pds install includes caddy to handle this.
I can confirm it works behind Cloudflare's DNS Proxy with Full (strict) I can confirm it works behind Cloudflare's DNS proxy with Full (strict)
## Deployment ## Deployment
@ -20,21 +20,18 @@ docker-compose up -d
docker exec -it bluesky-pds bash docker exec -it bluesky-pds bash
pdsadmin account create pdsadmin account create
pdsadmin account list pdsadmin account list
pdsadmin request-crawl bsky.network # useful if you re-deploy the same instance multiple times # pdsadmin request-crawl bsky.network
``` ```
In your browser: In your browser:
- Go to https://bsky-debug.app/handle and enter your new user, "HTTP Verification Method" needs to pass. - Go to https://bsky-debug.app/handle and enter your new user, "HTTP Verification Method" needs to pass.
- [websocket-tester](https://piehost.com/websocket-tester) "wss://example.com/xrpc/com.atproto.sync.subscribeRepos?cursor=0" needs to display "Connection Established" - [websocket-tester](https://piehost.com/websocket-tester) "wss://sheltersky.social/xrpc/com.atproto.sync.subscribeRepos?cursor=0" needs to display "Connection Established"
- https://boat.kelinci.net/ has a helpful tool to export your data. - https://boat.kelinci.net/ has a helpful tool to export your data.
- Log in with your new user and go to https://bsky.app/ - Log in with your new user and go to https://bsky.network/ to see your data.
### Example Docker Compose ### Example Docker Compose
Full list of additional Environment Variables can be found in the [packages/pds/src/config/env.ts](https://github.com/bluesky-social/atproto/blob/main/packages/pds/src/config/env.ts) Full list of additional Environment Variables can be found in the [packages/pds/src/config/env.ts](https://github.com/bluesky-social/atproto/blob/main/packages/pds/src/config/env.ts)
```yaml ```yaml
services: services:
bluesky-pds: bluesky-pds:
@ -45,10 +42,8 @@ services:
PDS_ADMIN_PASSWORD: ... PDS_ADMIN_PASSWORD: ...
PDS_PLC_ROTATION_KEY_K256_PRIVATE_KEY_HEX: ... PDS_PLC_ROTATION_KEY_K256_PRIVATE_KEY_HEX: ...
PDS_HOSTNAME: ... PDS_HOSTNAME: ...
PDS_EMAIL_SMTP_URL: ""
PDS_EMAIL_FROM_ADDRESS: ""
volumes: volumes:
- ./bluesky-pds:/pds - ./config:/pds
``` ```
### Example Docker Compose with Traefik ### Example Docker Compose with Traefik
@ -65,13 +60,14 @@ services:
PDS_JWT_SECRET: "" PDS_JWT_SECRET: ""
PDS_PLC_ROTATION_KEY_K256_PRIVATE_KEY_HEX: "" PDS_PLC_ROTATION_KEY_K256_PRIVATE_KEY_HEX: ""
PDS_HOSTNAME: example.com PDS_HOSTNAME: example.com
PDS_EMAIL_SMTP_URL: "" PDS_EMAIL_SMTP_URL: smtps://smtp-relay.gmail.com:465/
PDS_EMAIL_FROM_ADDRESS: "" PDS_EMAIL_FROM_ADDRESS: gravityfargo@gmail.com
volumes: volumes:
- ./bluesky-pds:/pds - /bluesky-pds:/pds
labels: labels:
traefik.enable: "true" traefik.enable: "true"
traefik.http.routers.bluesky-pds-insecure.entrypoints: http traefik.http.**routers**.bluesky-pds-insecure.entrypoints: http
traefik.http.routers.bluesky-pds-insecure.rule: HostRegexp(`^.+\.example\.com$`) || Host(`example.social`) traefik.http.routers.bluesky-pds-insecure.rule: HostRegexp(`^.+\.example\.com$`) || Host(`example.social`)
traefik.http.routers.bluesky-pds-secure.entrypoints: https traefik.http.routers.bluesky-pds-secure.entrypoints: https
traefik.http.routers.bluesky-pds-secure.rule: HostRegexp(`^.+\.example\.com$`) || Host(`example.social`) traefik.http.routers.bluesky-pds-secure.rule: HostRegexp(`^.+\.example\.com$`) || Host(`example.social`)
@ -81,11 +77,8 @@ services:
traefik.http.routers.bluesky-pds-secure.middlewares: BlueskyHeaders@file traefik.http.routers.bluesky-pds-secure.middlewares: BlueskyHeaders@file
traefik.http.routers.bluesky-pds-insecure.middlewares: BlueskyHeaders@file traefik.http.routers.bluesky-pds-insecure.middlewares: BlueskyHeaders@file
``` ```
#### Middleware #### Middleware
I think file configs are cleaner than having a billion labels. I think file configs are cleaner than having a billion labels.
```yaml ```yaml
http: http:
middlewares: middlewares:
@ -102,9 +95,8 @@ http:
addVaryHeader: true addVaryHeader: true
stsSeconds: 63072000 stsSeconds: 63072000
``` ```
## Development Notes ## Development Notes
```bash ```bash
pamac install jq pamac install jq
``` ```