+++ /dev/null
-https://github.com/heroku/heroku-buildpack-apt
-https://github.com/Scalingo/ffmpeg-buildpack
-https://github.com/Scalingo/ruby-buildpack
+++ /dev/null
-version: 2.1
-
-orbs:
- ruby: circleci/ruby@1.4.1
- node: circleci/node@5.0.1
-
-executors:
- default:
- parameters:
- ruby-version:
- type: string
- docker:
- - image: cimg/ruby:<< parameters.ruby-version >>
- environment:
- BUNDLE_JOBS: 3
- BUNDLE_RETRY: 3
- CONTINUOUS_INTEGRATION: true
- DB_HOST: localhost
- DB_USER: root
- DISABLE_SIMPLECOV: true
- RAILS_ENV: test
- - image: cimg/postgres:14.0
- environment:
- POSTGRES_USER: root
- POSTGRES_HOST_AUTH_METHOD: trust
- - image: cimg/redis:6.2
-
-commands:
- install-system-dependencies:
- steps:
- - run:
- name: Install system dependencies
- command: |
- sudo apt-get update
- sudo apt-get install -y libicu-dev libidn11-dev
- install-ruby-dependencies:
- parameters:
- ruby-version:
- type: string
- steps:
- - run:
- command: |
- bundle config clean 'true'
- bundle config frozen 'true'
- bundle config without 'development production'
- name: Set bundler settings
- - ruby/install-deps:
- bundler-version: '2.3.8'
- key: ruby<< parameters.ruby-version >>-gems-v1
- wait-db:
- steps:
- - run:
- command: dockerize -wait tcp://localhost:5432 -wait tcp://localhost:6379 -timeout 1m
- name: Wait for PostgreSQL and Redis
-
-jobs:
- build:
- docker:
- - image: cimg/ruby:3.0-node
- environment:
- RAILS_ENV: test
- steps:
- - checkout
- - install-system-dependencies
- - install-ruby-dependencies:
- ruby-version: '3.0'
- - node/install-packages:
- cache-version: v1
- pkg-manager: yarn
- - run:
- command: ./bin/rails assets:precompile
- name: Precompile assets
- - persist_to_workspace:
- paths:
- - public/assets
- - public/packs-test
- root: .
-
- test:
- parameters:
- ruby-version:
- type: string
- executor:
- name: default
- ruby-version: << parameters.ruby-version >>
- environment:
- ALLOW_NOPAM: true
- PAM_ENABLED: true
- PAM_DEFAULT_SERVICE: pam_test
- PAM_CONTROLLED_SERVICE: pam_test_controlled
- parallelism: 4
- steps:
- - checkout
- - install-system-dependencies
- - run:
- command: sudo apt-get install -y ffmpeg imagemagick libpam-dev
- name: Install additional system dependencies
- - run:
- command: bundle config with 'pam_authentication'
- name: Enable PAM authentication
- - install-ruby-dependencies:
- ruby-version: << parameters.ruby-version >>
- - attach_workspace:
- at: .
- - wait-db
- - run:
- command: ./bin/rails db:create db:schema:load db:seed
- name: Load database schema
- - ruby/rspec-test
-
- test-migrations:
- executor:
- name: default
- ruby-version: '3.0'
- steps:
- - checkout
- - install-system-dependencies
- - install-ruby-dependencies:
- ruby-version: '3.0'
- - wait-db
- - run:
- command: ./bin/rails db:create
- name: Create database
- - run:
- command: ./bin/rails db:migrate VERSION=20171010025614
- name: Run migrations up to v2.0.0
- - run:
- command: ./bin/rails tests:migrations:populate_v2
- name: Populate database with test data
- - run:
- command: ./bin/rails db:migrate VERSION=20180514140000
- name: Run migrations up to v2.4.0
- - run:
- command: ./bin/rails tests:migrations:populate_v2_4
- name: Populate database with test data
- - run:
- command: ./bin/rails db:migrate
- name: Run all remaining migrations
- - run:
- command: ./bin/rails tests:migrations:check_database
- name: Check migration result
-
- test-two-step-migrations:
- executor:
- name: default
- ruby-version: '3.0'
- steps:
- - checkout
- - install-system-dependencies
- - install-ruby-dependencies:
- ruby-version: '3.0'
- - wait-db
- - run:
- command: ./bin/rails db:create
- name: Create database
- - run:
- command: ./bin/rails db:migrate VERSION=20171010025614
- name: Run migrations up to v2.0.0
- - run:
- command: ./bin/rails tests:migrations:populate_v2
- name: Populate database with test data
- - run:
- command: ./bin/rails db:migrate VERSION=20180514140000
- name: Run pre-deployment migrations up to v2.4.0
- environment:
- SKIP_POST_DEPLOYMENT_MIGRATIONS: true
- - run:
- command: ./bin/rails tests:migrations:populate_v2_4
- name: Populate database with test data
- - run:
- command: ./bin/rails db:migrate
- name: Run all pre-deployment migrations
- environment:
- SKIP_POST_DEPLOYMENT_MIGRATIONS: true
- - run:
- command: ./bin/rails db:migrate
- name: Run all post-deployment remaining migrations
- - run:
- command: ./bin/rails tests:migrations:check_database
- name: Check migration result
-
-workflows:
- version: 2
- build-and-test:
- jobs:
- - build
- - test:
- matrix:
- parameters:
- ruby-version:
- - '2.7'
- - '3.0'
- name: test-ruby<< matrix.ruby-version >>
- requires:
- - build
- - test-migrations:
- requires:
- - build
- - test-two-step-migrations:
- requires:
- - build
- - node/run:
- cache-version: v1
- name: test-webui
- pkg-manager: yarn
- requires:
- - build
- version: lts
- yarn-run: test:jest
+++ /dev/null
-version: '2'
-checks:
- argument-count:
- enabled: false
- complex-logic:
- enabled: false
- file-lines:
- enabled: false
- method-complexity:
- enabled: false
- method-count:
- enabled: false
- method-lines:
- enabled: false
- nested-control-flow:
- enabled: false
- return-statements:
- enabled: false
- similar-code:
- enabled: false
- identical-code:
- enabled: false
-plugins:
- brakeman:
- enabled: true
- bundler-audit:
- enabled: true
- eslint:
- enabled: true
- channel: eslint-7
- rubocop:
- enabled: true
- channel: rubocop-1-9-1
- sass-lint:
- enabled: true
-exclude_patterns:
- - spec/
- - vendor/asset/
-
- - app/javascript/mastodon/locales/**/*.json
- - config/locales/**/*.yml
+++ /dev/null
-version = 1
-
-test_patterns = ["app/javascript/mastodon/**/__tests__/**"]
-
-exclude_patterns = [
- "db/migrate/**",
- "db/post_migrate/**"
-]
-
-[[analyzers]]
-name = "ruby"
-enabled = true
-
-[[analyzers]]
-name = "javascript"
-enabled = true
-
- [analyzers.meta]
- environment = [
- "browser",
- "jest",
- "nodejs"
- ]
+++ /dev/null
-# [Choice] Ruby version (use -bullseye variants on local arm64/Apple Silicon): 3, 3.1, 3.0, 2, 2.7, 2.6, 3-bullseye, 3.1-bullseye, 3.0-bullseye, 2-bullseye, 2.7-bullseye, 2.6-bullseye, 3-buster, 3.1-buster, 3.0-buster, 2-buster, 2.7-buster, 2.6-buster
-ARG VARIANT=3.1-bullseye
-FROM mcr.microsoft.com/vscode/devcontainers/ruby:${VARIANT}
-
-# Install Rails
-# RUN gem install rails webdrivers
-
-# Default value to allow debug server to serve content over GitHub Codespace's port forwarding service
-# The value is a comma-separated list of allowed domains
-ENV RAILS_DEVELOPMENT_HOSTS=".githubpreview.dev"
-
-# [Choice] Node.js version: lts/*, 16, 14, 12, 10
-ARG NODE_VERSION="lts/*"
-RUN su vscode -c "source /usr/local/share/nvm/nvm.sh && nvm install ${NODE_VERSION} 2>&1"
-
-# [Optional] Uncomment this section to install additional OS packages.
-RUN apt-get update && export DEBIAN_FRONTEND=noninteractive \
- && apt-get -y install --no-install-recommends libicu-dev libidn11-dev ffmpeg imagemagick libpam-dev
-
-# [Optional] Uncomment this line to install additional gems.
-RUN gem install foreman
-
-# [Optional] Uncomment this line to install global node packages.
-RUN su vscode -c "source /usr/local/share/nvm/nvm.sh && npm install -g yarn" 2>&1
+++ /dev/null
-{
- "name": "Mastodon",
- "dockerComposeFile": "docker-compose.yml",
- "service": "app",
- "workspaceFolder": "/workspaces/mastodon",
-
- // Set *default* container specific settings.json values on container create.
- "settings": {},
-
- // Add the IDs of extensions you want installed when the container is created.
- "extensions": [
- "EditorConfig.EditorConfig",
- "dbaeumer.vscode-eslint",
- "rebornix.Ruby"
- ],
-
- // Use 'forwardPorts' to make a list of ports inside the container available locally.
- // This can be used to network with other containers or the host.
- "forwardPorts": [3000, 4000],
-
- // Use 'postCreateCommand' to run commands after the container is created.
- "postCreateCommand": "bundle install --path vendor/bundle && yarn install && ./bin/rails db:setup",
-
- // Comment out to connect as root instead. More info: https://aka.ms/vscode-remote/containers/non-root.
- "remoteUser": "vscode"
-}
+++ /dev/null
-version: '3'
-
-services:
- app:
- build:
- context: .
- dockerfile: Dockerfile
- args:
- # Update 'VARIANT' to pick a version of Ruby: 3, 3.1, 3.0, 2, 2.7, 2.6
- # Append -bullseye or -buster to pin to an OS version.
- # Use -bullseye variants on local arm64/Apple Silicon.
- VARIANT: '3.0-bullseye'
- # Optional Node.js version to install
- NODE_VERSION: '14'
- volumes:
- - ..:/workspaces/mastodon:cached
- environment:
- RAILS_ENV: development
- NODE_ENV: development
-
- REDIS_HOST: redis
- REDIS_PORT: '6379'
- DB_HOST: db
- DB_USER: postgres
- DB_PASS: postgres
- DB_PORT: '5432'
- ES_ENABLED: 'true'
- ES_HOST: es
- ES_PORT: '9200'
- # Overrides default command so things don't shut down after the process ends.
- command: sleep infinity
- networks:
- - external_network
- - internal_network
- user: vscode
-
- db:
- image: postgres:14-alpine
- restart: unless-stopped
- volumes:
- - postgres-data:/var/lib/postgresql/data
- environment:
- POSTGRES_USER: postgres
- POSTGRES_DB: postgres
- POSTGRES_PASSWORD: postgres
- POSTGRES_HOST_AUTH_METHOD: trust
- networks:
- - internal_network
-
- redis:
- image: redis:6-alpine
- restart: unless-stopped
- volumes:
- - redis-data:/data
- networks:
- - internal_network
-
- es:
- image: docker.elastic.co/elasticsearch/elasticsearch-oss:7.10.2
- restart: unless-stopped
- environment:
- ES_JAVA_OPTS: -Xms512m -Xmx512m
- cluster.name: es-mastodon
- discovery.type: single-node
- bootstrap.memory_lock: 'true'
- volumes:
- - es-data:/usr/share/elasticsearch/data
- networks:
- - internal_network
- ulimits:
- memlock:
- soft: -1
- hard: -1
-
-volumes:
- postgres-data:
- redis-data:
- es-data:
-
-networks:
- external_network:
- internal_network:
- internal: true
+++ /dev/null
-# EditorConfig is awesome: http://EditorConfig.org
-
-# top-most EditorConfig file
-root = true
-
-# Unix-style newlines with a newline ending every file
-[*]
-end_of_line = lf
-insert_final_newline = true
-charset = utf-8
-indent_style = space
-indent_size = 2
+++ /dev/null
-# Service dependencies
-# You may set REDIS_URL instead for more advanced options
-REDIS_HOST=$DATA_REDIS_HOST
-REDIS_PORT=6379
-# REDIS_DB=0
-
-# You may set DATABASE_URL instead for more advanced options
-DB_HOST=$DATA_DB_HOST
-DB_USER=$DATA_DB_USER
-DB_NAME=gonano
-DB_PASS=$DATA_DB_PASS
-DB_PORT=5432
-
-# DATABASE_URL=postgresql://$DATA_DB_USER:$DATA_DB_PASS@$DATA_DB_HOST/gonano
-
-# Optional Elasticsearch configuration
-ES_ENABLED=true
-ES_HOST=$DATA_ELASTIC_HOST
-ES_PORT=9200
-
-BIND=0.0.0.0
-
-# Federation
-# Note: Changing LOCAL_DOMAIN at a later time will cause unwanted side effects, including breaking all existing federation.
-# LOCAL_DOMAIN should *NOT* contain the protocol part of the domain e.g https://example.com.
-LOCAL_DOMAIN=${APP_NAME}.nanoapp.io
-
-# Changing LOCAL_HTTPS in production is no longer supported. (Mastodon will always serve https:// links)
-
-# Use this only if you need to run mastodon on a different domain than the one used for federation.
-# You can read more about this option on https://github.com/tootsuite/documentation/blob/master/Running-Mastodon/Serving_a_different_domain.md
-# DO *NOT* USE THIS UNLESS YOU KNOW *EXACTLY* WHAT YOU ARE DOING.
-# WEB_DOMAIN=mastodon.example.com
-
-# Use this if you want to have several aliases handler@example1.com
-# handler@example2.com etc. for the same user. LOCAL_DOMAIN should not
-# be added. Comma separated values
-# ALTERNATE_DOMAINS=example1.com,example2.com
-
-# Application secrets
-# Generate each with the `rake secret` task (`nanobox run bundle exec rake secret`)
-SECRET_KEY_BASE=$SECRET_KEY_BASE
-OTP_SECRET=$OTP_SECRET
-
-# VAPID keys (used for push notifications)
-# You can generate the keys using the following command (first is the private key, second is the public one)
-# You should only generate this once per instance. If you later decide to change it, all push subscription will
-# be invalidated, requiring the users to access the website again to resubscribe.
-#
-# Generate with `rake mastodon:webpush:generate_vapid_key` task (`nanobox run bundle exec rake mastodon:webpush:generate_vapid_key`)
-#
-# For more information visit https://rossta.net/blog/using-the-web-push-api-with-vapid.html
-VAPID_PRIVATE_KEY=$VAPID_PRIVATE_KEY
-VAPID_PUBLIC_KEY=$VAPID_PUBLIC_KEY
-
-# Registrations
-# Single user mode will disable registrations and redirect frontpage to the first profile
-# SINGLE_USER_MODE=true
-# Prevent registrations with following e-mail domains
-# EMAIL_DOMAIN_BLACKLIST=example1.com|example2.de|etc
-# Only allow registrations with the following e-mail domains
-# EMAIL_DOMAIN_WHITELIST=example1.com|example2.de|etc
-
-# Optionally change default language
-# DEFAULT_LOCALE=de
-
-# E-mail configuration
-# Note: Mailgun and SparkPost (https://sparkpo.st/smtp) each have good free tiers
-# If you want to use an SMTP server without authentication (e.g local Postfix relay)
-# then set SMTP_AUTH_METHOD and SMTP_OPENSSL_VERIFY_MODE to 'none' and
-# *comment* SMTP_LOGIN and SMTP_PASSWORD (leaving them blank is not enough).
-SMTP_SERVER=$SMTP_SERVER
-SMTP_PORT=587
-SMTP_LOGIN=$SMTP_LOGIN
-SMTP_PASSWORD=$SMTP_PASSWORD
-SMTP_FROM_ADDRESS=notifications@${APP_NAME}.nanoapp.io
-#SMTP_REPLY_TO=
-#SMTP_DOMAIN= # defaults to LOCAL_DOMAIN
-#SMTP_DELIVERY_METHOD=smtp # delivery method can also be sendmail
-#SMTP_AUTH_METHOD=plain
-#SMTP_CA_FILE=/etc/ssl/certs/ca-certificates.crt
-#SMTP_OPENSSL_VERIFY_MODE=peer
-#SMTP_ENABLE_STARTTLS_AUTO=true
-#SMTP_TLS=true
-
-# Optional user upload path and URL (images, avatars). Default is :rails_root/public/system. If you set this variable, you are responsible for making your HTTP server (eg. nginx) serve these files.
-# PAPERCLIP_ROOT_PATH=/var/lib/mastodon/public-system
-# PAPERCLIP_ROOT_URL=/system
-
-# Optional asset host for multi-server setups
-# The asset host must allow cross origin request from WEB_DOMAIN or LOCAL_DOMAIN
-# if WEB_DOMAIN is not set. For example, the server may have the
-# following header field:
-# Access-Control-Allow-Origin: https://example.com/
-# CDN_HOST=https://assets.example.com
-
-# S3 (optional)
-# The attachment host must allow cross origin request from WEB_DOMAIN or
-# LOCAL_DOMAIN if WEB_DOMAIN is not set. For example, the server may have the
-# following header field:
-# Access-Control-Allow-Origin: https://192.168.1.123:9000/
-# S3_ENABLED=true
-# S3_BUCKET=
-# AWS_ACCESS_KEY_ID=
-# AWS_SECRET_ACCESS_KEY=
-# S3_REGION=
-# S3_PROTOCOL=http
-# S3_HOSTNAME=192.168.1.123:9000
-
-# S3 (Minio Config (optional) Please check Minio instance for details)
-# The attachment host must allow cross origin request - see the description
-# above.
-# S3_ENABLED=true
-# S3_BUCKET=
-# AWS_ACCESS_KEY_ID=
-# AWS_SECRET_ACCESS_KEY=
-# S3_REGION=
-# S3_PROTOCOL=https
-# S3_HOSTNAME=
-# S3_ENDPOINT=
-# S3_SIGNATURE_VERSION=
-
-# Google Cloud Storage (optional)
-# Use S3 compatible API. Since GCS does not support Multipart Upload,
-# increase the value of S3_MULTIPART_THRESHOLD to disable Multipart Upload.
-# The attachment host must allow cross origin request - see the description
-# above.
-# S3_ENABLED=true
-# AWS_ACCESS_KEY_ID=
-# AWS_SECRET_ACCESS_KEY=
-# S3_REGION=
-# S3_PROTOCOL=https
-# S3_HOSTNAME=storage.googleapis.com
-# S3_ENDPOINT=https://storage.googleapis.com
-# S3_MULTIPART_THRESHOLD=52428801 # 50.megabytes
-
-# Swift (optional)
-# The attachment host must allow cross origin request - see the description
-# above.
-# SWIFT_ENABLED=true
-# SWIFT_USERNAME=
-# For Keystone V3, the value for SWIFT_TENANT should be the project name
-# SWIFT_TENANT=
-# SWIFT_PASSWORD=
-# Some OpenStack V3 providers require PROJECT_ID (optional)
-# SWIFT_PROJECT_ID=
-# Keystone V2 and V3 URLs are supported. Use a V3 URL if possible to avoid
-# issues with token rate-limiting during high load.
-# SWIFT_AUTH_URL=
-# SWIFT_CONTAINER=
-# SWIFT_OBJECT_URL=
-# SWIFT_REGION=
-# Defaults to 'default'
-# SWIFT_DOMAIN_NAME=
-# Defaults to 60 seconds. Set to 0 to disable
-# SWIFT_CACHE_TTL=
-
-# Optional alias for S3 (e.g. to serve files on a custom domain, possibly using Cloudfront or Cloudflare)
-# S3_ALIAS_HOST=
-
-# Streaming API integration
-# STREAMING_API_BASE_URL=
-
-# Advanced settings
-# If you need to use pgBouncer, you need to disable prepared statements:
-# PREPARED_STATEMENTS=false
-
-# Cluster number setting for streaming API server.
-# If you comment out following line, cluster number will be `numOfCpuCores - 1`.
-# STREAMING_CLUSTER_NUM=1
-
-# Docker mastodon user
-# If you use Docker, you may want to assign UID/GID manually.
-# UID=1000
-# GID=1000
-
-# LDAP authentication (optional)
-# LDAP_ENABLED=true
-# LDAP_HOST=localhost
-# LDAP_PORT=389
-# LDAP_METHOD=simple_tls
-# LDAP_BASE=
-# LDAP_BIND_DN=
-# LDAP_PASSWORD=
-# LDAP_UID=cn
-# LDAP_MAIL=mail
-# LDAP_SEARCH_FILTER=(|(%{uid}=%{email})(%{mail}=%{email}))
-# LDAP_UID_CONVERSION_ENABLED=true
-# LDAP_UID_CONVERSION_SEARCH=., -
-# LDAP_UID_CONVERSION_REPLACE=_
-
-# PAM authentication (optional)
-# PAM authentication uses for the email generation the "email" pam variable
-# and optional as fallback PAM_DEFAULT_SUFFIX
-# The pam environment variable "email" is provided by:
-# https://github.com/devkral/pam_email_extractor
-# PAM_ENABLED=true
-# Fallback email domain for email address generation (LOCAL_DOMAIN by default)
-# PAM_EMAIL_DOMAIN=example.com
-# Name of the pam service (pam "auth" section is evaluated)
-# PAM_DEFAULT_SERVICE=rpam
-# Name of the pam service used for checking if an user can register (pam "account" section is evaluated) (nil (disabled) by default)
-# PAM_CONTROLLED_SERVICE=rpam
-
-# Optional CAS authentication (cf. omniauth-cas) :
-# CAS_ENABLED=true
-# CAS_URL=https://sso.myserver.com/
-# CAS_HOST=sso.myserver.com/
-# CAS_PORT=443
-# CAS_SSL=true
-# CAS_VALIDATE_URL=
-# CAS_CALLBACK_URL=
-# CAS_LOGOUT_URL=
-# CAS_LOGIN_URL=
-# CAS_UID_FIELD='user'
-# CAS_CA_PATH=
-# CAS_DISABLE_SSL_VERIFICATION=false
-# CAS_UID_KEY='user'
-# CAS_NAME_KEY='name'
-# CAS_EMAIL_KEY='email'
-# CAS_NICKNAME_KEY='nickname'
-# CAS_FIRST_NAME_KEY='firstname'
-# CAS_LAST_NAME_KEY='lastname'
-# CAS_LOCATION_KEY='location'
-# CAS_IMAGE_KEY='image'
-# CAS_PHONE_KEY='phone'
-# CAS_SECURITY_ASSUME_EMAIL_IS_VERIFIED=true
-
-# Optional SAML authentication (cf. omniauth-saml)
-# SAML_ENABLED=true
-# SAML_ACS_URL=http://localhost:3000/auth/auth/saml/callback
-# SAML_ISSUER=https://example.com
-# SAML_IDP_SSO_TARGET_URL=https://idp.testshib.org/idp/profile/SAML2/Redirect/SSO
-# SAML_IDP_CERT=
-# SAML_IDP_CERT_FINGERPRINT=
-# SAML_NAME_IDENTIFIER_FORMAT=
-# SAML_CERT=
-# SAML_PRIVATE_KEY=
-# SAML_SECURITY_WANT_ASSERTION_SIGNED=true
-# SAML_SECURITY_WANT_ASSERTION_ENCRYPTED=true
-# SAML_SECURITY_ASSUME_EMAIL_IS_VERIFIED=true
-# SAML_ATTRIBUTES_STATEMENTS_UID="urn:oid:0.9.2342.19200300.100.1.1"
-# SAML_ATTRIBUTES_STATEMENTS_EMAIL="urn:oid:1.3.6.1.4.1.5923.1.1.1.6"
-# SAML_ATTRIBUTES_STATEMENTS_FULL_NAME="urn:oid:2.16.840.1.113730.3.1.241"
-# SAML_ATTRIBUTES_STATEMENTS_FIRST_NAME="urn:oid:2.5.4.42"
-# SAML_ATTRIBUTES_STATEMENTS_LAST_NAME="urn:oid:2.5.4.4"
-# SAML_UID_ATTRIBUTE="urn:oid:0.9.2342.19200300.100.1.1"
-# SAML_ATTRIBUTES_STATEMENTS_VERIFIED=
-# SAML_ATTRIBUTES_STATEMENTS_VERIFIED_EMAIL=
-
-# Use HTTP proxy for outgoing request (optional)
-# http_proxy=http://gateway.local:8118
-# Access control for hidden service.
-# ALLOW_ACCESS_TO_HIDDEN_SERVICE=true
+++ /dev/null
-VAGRANT=true
-LOCAL_DOMAIN=mastodon.local
-BIND=0.0.0.0
-DB_HOST=/var/run/postgresql/
+++ /dev/null
-Contributors to Kibicat Mastodon are, at mimimum, expected to conform to the [KIBI Standards of Participation](https://github.com/marrus-sh/.github/blob/current/.github/CODE_OF_CONDUCT.md) (read this linked file).
-
-Further community standards may be elaborated here at a later time.
+++ /dev/null
-# Contributing to Kibicat Mastodon
-
-Please post ideas regarding the software, questions, and miscellaneous comments to [GitHub Discussions](https://github.com/kibicat/mastodon/discussions).
-Only [make an Issue](https://github.com/kibicat/mastodon/issues) if you have something which is, well, an issue.
-
-At present, Kibicat Mastodon is a small, community‐oriented project.
-If you want to get involved writing code, you should contact [@Lady@cat.family](https://glitch.cat.family/@Lady) to get started.
+++ /dev/null
-# Security Policy
-
-Please report vulnerabilities to ShipsCat [at] cat.family.
-If you don’t get a response, ping [@Lady@cat.family](https://glitch.cat.family/@Lady) or [@aescling@cat.family](https://glitch.cat.family/@aescling) to ensure the message was delivered.
+++ /dev/null
-name: Build container image
-on:
- workflow_dispatch:
- push:
- branches:
- - 'main'
- tags:
- - '*'
- pull_request:
- paths:
- - .github/workflows/build-image.yml
- - Dockerfile
-jobs:
- build-image:
- runs-on: ubuntu-latest
- steps:
- - uses: actions/checkout@v2
- - uses: docker/setup-qemu-action@v1
- - uses: docker/setup-buildx-action@v1
- - uses: docker/login-action@v1
- with:
- registry: ghcr.io
- username: ${{ github.repository_owner }}
- password: ${{ secrets.GITHUB_TOKEN }}
- if: github.event_name != 'pull_request'
- - uses: docker/metadata-action@v3
- id: meta
- with:
- images: ghcr.io/${{ github.repository_owner }}/mastodon
- flavor: |
- latest=true
- tags: |
- type=edge,branch=main
- type=match,pattern=v(.*),group=0
- type=ref,event=pr
- - uses: docker/build-push-action@v2
- with:
- context: .
- platforms: linux/amd64,linux/arm64
- push: ${{ github.event_name != 'pull_request' }}
- tags: ${{ steps.meta.outputs.tags }}
- cache-from: type=registry,ref=ghcr.io/${{ github.repository_owner }}/mastodon:latest
- cache-to: type=inline
+++ /dev/null
-.DS_Store
-.git/
-.gitignore
-
-.bundle/
-.cache/
-config/deploy/*
-coverage
-docs/
-.env
-log/*.log
-neo4j/
-node_modules/
-public/assets/
-public/system/
-spec/
-tmp/
-.vagrant/
-vendor/bundle/
+++ /dev/null
-# See https://help.github.com/articles/ignoring-files for more about ignoring files.
-#
-# If you find yourself ignoring temporary files generated by your text editor
-# or operating system, you probably want to add a global ignore instead:
-# git config --global core.excludesfile '~/.gitignore_global'
-
-# Ignore bundler config and downloaded libraries.
-/.bundle
-/vendor/bundle
-
-# Ignore the default SQLite database.
-/db/*.sqlite3
-/db/*.sqlite3-journal
-
-# Ignore all logfiles and tempfiles.
-.eslintcache
-/log/*
-!/log/.keep
-/tmp
-/coverage
-/public/system
-/public/assets
-/public/packs
-/public/packs-test
-.env
-.env.production
-.env.development
-/node_modules/
-/build/
-
-# Ignore Vagrant files
-.vagrant/
-
-# Ignore Capistrano customizations
-/config/deploy/*
-
-# Ignore IDE files
-.vscode/
-.idea/
-
-# Ignore postgres + redis + elasticsearch volume optionally created by docker-compose
-/postgres
-/postgres14
-/redis
-/elasticsearch
-
-# ignore Helm dependency charts
-/chart/charts/*.tgz
-
-# Ignore Apple files
-.DS_Store
-
-# Ignore vim files
-*~
-*.swp
-
-# Ignore npm debug log
-npm-debug.log
-
-# Ignore yarn log files
-yarn-error.log
-yarn-debug.log
-
-# Ignore vagrant log files
-*-cloudimg-console.log
-
-# Ignore Docker option files
-docker-compose.override.yml
-
-# Ignore Helm files
-/chart
-
-# Ignore emoji map file
-/app/javascript/mastodon/features/emoji/emoji_map.json
-
-# Ignore locale files
-/app/javascript/mastodon/locales
-/config/locales
+++ /dev/null
-module.exports = {
- singleQuote: true
-}
+++ /dev/null
-LD_LIBRARY_PATH=$LD_LIBRARY_PATH:/app/.apt/lib/x86_64-linux-gnu:/app/.apt/usr/lib/x86_64-linux-gnu/mesa:/app/.apt/usr/lib/x86_64-linux-gnu/pulseaudio
+++ /dev/null
-node_modules/
-.cache/
-docs/
-spec/
+++ /dev/null
-ffmpeg
-libicu[0-9][0-9]
-libicu-dev
-libidn11
-libidn11-dev
-libpq-dev
-libxdamage1
-libxfixes3
-zlib1g-dev
-libcairo2
-libcroco3
-libdatrie1
-libgdk-pixbuf2.0-0
-libgraphite2-3
-libharfbuzz0b
-libpango-1.0-0
-libpangocairo-1.0-0
-libpangoft2-1.0-0
-libpixman-1-0
-librsvg2-2
-libthai-data
-libthai0
-libvpx[5-9]
-libxcb-render0
-libxcb-shm0
-libxrender1
+++ /dev/null
-## ActivityPub federation in Mastodon
-
-Mastodon largely follows the ActivityPub server-to-server specification but it makes uses of some non-standard extensions, some of which are required for interacting with Mastodon at all.
-
-Supported vocabulary: https://docs.joinmastodon.org/spec/activitypub/
-
-### Required extensions
-
-#### Webfinger
-
-In Mastodon, users are identified by a `username` and `domain` pair (e.g., `Gargron@mastodon.social`).
-This is used both for discovery and for unambiguously mentioning users across the fediverse. Furthermore, this is part of Mastodon's database design from its very beginnings.
-
-As a result, Mastodon requires that each ActivityPub actor uniquely maps back to an `acct:` URI that can be resolved via WebFinger.
-
-More information and examples are available at: https://docs.joinmastodon.org/spec/webfinger/
-
-#### HTTP Signatures
-
-In order to authenticate activities, Mastodon relies on HTTP Signatures, signing every `POST` and `GET` request to other ActivityPub implementations on behalf of the user authoring an activity (for `POST` requests) or an actor representing the Mastodon server itself (for most `GET` requests).
-
-Mastodon requires all `POST` requests to be signed, and MAY require `GET` requests to be signed, depending on the configuration of the Mastodon server.
-
-More information on HTTP Signatures, as well as examples, can be found here: https://docs.joinmastodon.org/spec/security/#http
-
-### Optional extensions
-
-- Linked-Data Signatures: https://docs.joinmastodon.org/spec/security/#ld
-- Bearcaps: https://docs.joinmastodon.org/spec/bearcaps/
-- Followers collection synchronization: https://git.activitypub.dev/ActivityPubDev/Fediverse-Enhancement-Proposals/src/branch/main/feps/fep-8fcf.md
+++ /dev/null
-web: bin/heroku-web
-worker: bundle exec sidekiq
-
-# For the streaming API, you need a separate app that shares Postgres and Redis:
-#
-# heroku create
-# heroku buildpacks:add heroku/nodejs
-# heroku config:set RUN_STREAMING=true
-# heroku addons:attach <main-app>::DATABASE
-# heroku addons:attach <main-app>::REDIS
-#
-# and let the main app use the separate app:
-#
-# heroku config:set STREAMING_API_BASE_URL=wss://<streaming-app>.herokuapp.com -a <main-app>
+++ /dev/null
-web: env PORT=3000 RAILS_ENV=development bundle exec puma -C config/puma.rb
-sidekiq: env PORT=3000 RAILS_ENV=development bundle exec sidekiq
-stream: env PORT=4000 yarn run start
-webpack: ./bin/webpack-dev-server --listen-host 0.0.0.0
+++ /dev/null
-# -*- mode: ruby -*-
-# vi: set ft=ruby :
-
-ENV["PORT"] ||= "3000"
-
-$provision = <<SCRIPT
-
-cd /vagrant # This is where the host folder/repo is mounted
-
-# Add the yarn repo + yarn repo keys
-curl -sS https://dl.yarnpkg.com/debian/pubkey.gpg | sudo apt-key add -
-sudo apt-add-repository 'deb https://dl.yarnpkg.com/debian/ stable main'
-
-# Add repo for NodeJS
-curl -sL https://deb.nodesource.com/setup_14.x | sudo bash -
-
-# Add firewall rule to redirect 80 to PORT and save
-sudo iptables -t nat -A PREROUTING -p tcp --dport 80 -j REDIRECT --to-port #{ENV["PORT"]}
-echo iptables-persistent iptables-persistent/autosave_v4 boolean true | sudo debconf-set-selections
-echo iptables-persistent iptables-persistent/autosave_v6 boolean true | sudo debconf-set-selections
-sudo apt-get install iptables-persistent -y
-
-# Add packages to build and run Mastodon
-sudo apt-get install \
- git-core \
- g++ \
- libpq-dev \
- libxml2-dev \
- libxslt1-dev \
- imagemagick \
- nodejs \
- redis-server \
- redis-tools \
- postgresql \
- postgresql-contrib \
- yarn \
- libicu-dev \
- libidn11-dev \
- libreadline-dev \
- libpam0g-dev \
- -y
-
-# Install rvm
-read RUBY_VERSION < .ruby-version
-
-curl -sSL https://rvm.io/mpapis.asc | gpg --import
-curl -sSL https://rvm.io/pkuczynski.asc | gpg --import
-
-curl -sSL https://raw.githubusercontent.com/rvm/rvm/stable/binscripts/rvm-installer | bash -s stable --ruby=$RUBY_VERSION
-source /home/vagrant/.rvm/scripts/rvm
-
-# Install Ruby
-rvm reinstall ruby-$RUBY_VERSION --disable-binary
-
-# Configure database
-sudo -u postgres createuser -U postgres vagrant -s
-sudo -u postgres createdb -U postgres mastodon_development
-
-# Install gems and node modules
-gem install bundler foreman
-bundle install
-yarn install
-
-# Build Mastodon
-export RAILS_ENV=development
-export $(cat ".env.vagrant" | xargs)
-bundle exec rails db:setup
-
-# Configure automatic loading of environment variable
-echo 'export RAILS_ENV=development' >> ~/.bash_profile
-echo 'export $(cat "/vagrant/.env.vagrant" | xargs)' >> ~/.bash_profile
-
-SCRIPT
-
-$start = <<SCRIPT
-
-echo 'To start server'
-echo ' $ vagrant ssh -c "cd /vagrant && foreman start"'
-
-SCRIPT
-
-VAGRANTFILE_API_VERSION = "2"
-
-Vagrant.configure(VAGRANTFILE_API_VERSION) do |config|
-
- config.vm.box = "ubuntu/bionic64"
-
- config.vm.provider :virtualbox do |vb|
- vb.name = "mastodon"
- vb.customize ["modifyvm", :id, "--memory", "4096"]
- # Increase the number of CPUs. Uncomment and adjust to
- # increase performance
- # vb.customize ["modifyvm", :id, "--cpus", "3"]
-
- # Disable VirtualBox DNS proxy to skip long-delay IPv6 resolutions.
- # https://github.com/mitchellh/vagrant/issues/1172
- vb.customize ["modifyvm", :id, "--natdnsproxy1", "off"]
- vb.customize ["modifyvm", :id, "--natdnshostresolver1", "off"]
-
- # Use "virtio" network interfaces for better performance.
- vb.customize ["modifyvm", :id, "--nictype1", "virtio"]
- vb.customize ["modifyvm", :id, "--nictype2", "virtio"]
-
- end
-
- # This uses the vagrant-hostsupdater plugin, and lets you
- # access the development site at http://mastodon.local.
- # If you change it, also change it in .env.vagrant before provisioning
- # the vagrant server to update the development build.
- #
- # To install:
- # $ vagrant plugin install vagrant-hostsupdater
- config.vm.hostname = "mastodon.local"
-
- if defined?(VagrantPlugins::HostsUpdater)
- config.vm.network :private_network, ip: "192.168.42.42", nictype: "virtio"
- config.hostsupdater.remove_on_suspend = false
- end
-
- if config.vm.networks.any? { |type, options| type == :private_network }
- config.vm.synced_folder ".", "/vagrant", type: "nfs", mount_options: ['rw', 'vers=3', 'tcp', 'actimeo=1']
- else
- config.vm.synced_folder ".", "/vagrant"
- end
-
- # Otherwise, you can access the site at http://localhost:3000 and http://localhost:4000 , http://localhost:8080
- config.vm.network :forwarded_port, guest: 3000, host: 3000
- config.vm.network :forwarded_port, guest: 4000, host: 4000
- config.vm.network :forwarded_port, guest: 8080, host: 8080
-
- # Full provisioning script, only runs on first 'vagrant up' or with 'vagrant provision'
- config.vm.provision :shell, inline: $provision, privileged: false
-
- # Start up script, runs on every 'vagrant up'
- config.vm.provision :shell, inline: $start, run: 'always', privileged: false
-
-end
+++ /dev/null
-{
- "name": "Mastodon",
- "description": "A GNU Social-compatible microblogging server",
- "repository": "https://github.com/mastodon/mastodon",
- "logo": "https://github.com/mastodon.png",
- "env": {
- "HEROKU": {
- "description": "Leave this as true",
- "value": "true",
- "required": true
- },
- "LOCAL_DOMAIN": {
- "description": "The domain that your Mastodon instance will run on (this can be appname.herokuapp.com or a custom domain)",
- "required": true
- },
- "SECRET_KEY_BASE": {
- "description": "The secret key base",
- "generator": "secret"
- },
- "OTP_SECRET": {
- "description": "One-time password secret",
- "generator": "secret"
- },
- "SINGLE_USER_MODE": {
- "description": "Should the instance run in single user mode? (Disable registrations, redirect to front page)",
- "value": "false",
- "required": true
- },
- "S3_ENABLED": {
- "description": "Should Mastodon use Amazon S3 for storage? This is highly recommended, as Heroku does not have persistent file storage (files will be lost).",
- "value": "true",
- "required": false
- },
- "S3_BUCKET": {
- "description": "Amazon S3 Bucket",
- "required": false
- },
- "S3_REGION": {
- "description": "Amazon S3 region that the bucket is located in",
- "required": false
- },
- "AWS_ACCESS_KEY_ID": {
- "description": "Amazon S3 Access Key",
- "required": false
- },
- "AWS_SECRET_ACCESS_KEY": {
- "description": "Amazon S3 Secret Key",
- "required": false
- },
- "SMTP_SERVER": {
- "description": "Hostname for SMTP server, if you want to enable email",
- "required": false
- },
- "SMTP_PORT": {
- "description": "Port for SMTP server",
- "required": false
- },
- "SMTP_LOGIN": {
- "description": "Username for SMTP server",
- "required": false
- },
- "SMTP_PASSWORD": {
- "description": "Password for SMTP server",
- "required": false
- },
- "SMTP_DOMAIN": {
- "description": "Domain for SMTP server. Will default to instance domain if blank.",
- "required": false
- },
- "SMTP_FROM_ADDRESS": {
- "description": "Address to send emails from",
- "required": false
- },
- "SMTP_AUTH_METHOD": {
- "description": "Authentication method to use with SMTP server. Default is 'plain'.",
- "required": false
- },
- "SMTP_OPENSSL_VERIFY_MODE": {
- "description": "SMTP server certificate verification mode. Defaults is 'peer'.",
- "required": false
- },
- "SMTP_ENABLE_STARTTLS_AUTO": {
- "description": "Enable STARTTLS if SMTP server supports it? Default is true.",
- "required": false
- }
- },
- "buildpacks": [
- {
- "url": "https://github.com/heroku/heroku-buildpack-apt"
- },
- {
- "url": "heroku/ruby"
- }
- ],
- "scripts": {
- "postdeploy": "bundle exec rails db:migrate && bundle exec rails db:seed"
- },
- "addons": ["heroku-postgresql", "heroku-redis"]
-}
+++ /dev/null
-run.config:
- engine: ruby
- engine.config:
- runtime: ruby-2.5
-
- extra_packages:
- # basic servers:
- - nginx
- - nodejs
-
- # for images:
- - ImageMagick
- - jemalloc
-
- # for videos:
- - ffmpeg3
-
- # to prep the .env file:
- - gettext-tools
-
- # for node-gyp, used in the asset compilation process:
- - python-2
-
- # i18n:
- - libidn
-
- cache_dirs:
- - node_modules
-
- extra_path_dirs:
- - node_modules/.bin
-
- build_triggers:
- - .ruby-version
- - Gemfile
- - Gemfile.lock
- - package.json
- - yarn.lock
-
- extra_steps:
- - cp .env.nanobox .env
- - yarn
-
- fs_watch: true
-
-deploy.config:
- extra_steps:
- - NODE_ENV=production bundle exec rake assets:precompile
- transform:
- - 'envsubst < /app/.env.nanobox > /app/.env.production'
- - |-
- if [ -z "$LOCAL_DOMAIN" ]
- then
- . /app/.env.production
- export LOCAL_DOMAIN
- fi
- erb /app/nanobox/nginx-web.conf.erb > /app/nanobox/nginx-web.conf
- erb /app/nanobox/nginx-stream.conf.erb > /app/nanobox/nginx-stream.conf
- - touch /app/log/production.log
- before_live:
- web.web:
- - bin/tootctl cache clear
- - bundle exec rake db:migrate:setup
- after_live:
- worker.sidekiq:
- - |-
- if [[ "${ES_ENABLED}" != "false" ]]
- then
- bin/tootctl search deploy
- fi
-
-web.web:
- start:
- nginx: nginx -c /app/nanobox/nginx-web.conf
- rails: bundle exec puma -C /app/config/puma.rb
-
- routes:
- - '/'
-
- writable_dirs:
- - tmp
-
- log_watch:
- rails: 'log/production.log'
-
- network_dirs:
- data.storage:
- - public/system
-
-web.stream:
- start:
- nginx: nginx -c /app/nanobox/nginx-stream.conf
- node: yarn run start
-
- routes:
- - '/api/v1/streaming*'
- # Somehow we're getting requests for scheme://domain//api/v1/streaming* - match those, too
- - '//api/v1/streaming*'
-
- writable_dirs:
- - tmp
-
-worker.sidekiq:
- start:
- default: bundle exec sidekiq -c 5 -q default -L /app/log/sidekiq.log
- mailers: bundle exec sidekiq -c 5 -q mailers -L /app/log/sidekiq.log
- pull: bundle exec sidekiq -c 5 -q pull -L /app/log/sidekiq.log
- push: bundle exec sidekiq -c 5 -q push -L /app/log/sidekiq.log
- scheduler: bundle exec sidekiq -c 5 -q scheduler -L /app/log/sidekiq.log
-
- writable_dirs:
- - tmp
-
- log_watch:
- rails: 'log/production.log'
- sidekiq: 'log/sidekiq.log'
-
- network_dirs:
- data.storage:
- - public/system
-
-data.db:
- image: nanobox/postgresql:9.6
-
- cron:
- - id: backup
- schedule: '0 3 * * *'
- command: |
- PGPASSWORD=${DATA_DB_PASS} pg_dump -U ${DATA_DB_USER} -w -Fc -O gonano |
- gzip |
- curl -k -H "X-AUTH-TOKEN: ${WAREHOUSE_DATA_HOARDER_TOKEN}" https://${WAREHOUSE_DATA_HOARDER_HOST}:7410/blobs/backup-${HOSTNAME}-$(date -u +%Y-%m-%d.%H-%M-%S).sql.gz -X POST -T - >&2
- curl -k -s -H "X-AUTH-TOKEN: ${WAREHOUSE_DATA_HOARDER_TOKEN}" https://${WAREHOUSE_DATA_HOARDER_HOST}:7410/blobs/ |
- sed 's/,/\n/g' |
- grep ${HOSTNAME} |
- sort |
- head -n-${BACKUP_COUNT:-1} |
- sed 's/.*: \?"\(.*\)".*/\1/' |
- while read file
- do
- curl -k -H "X-AUTH-TOKEN: ${WAREHOUSE_DATA_HOARDER_TOKEN}" https://${WAREHOUSE_DATA_HOARDER_HOST}:7410/blobs/${file} -X DELETE
- done
-
-data.elastic:
- image: nanobox/elasticsearch:5
-
- cron:
- - id: backup
- schedule: '0 3 * * *'
- command: |
- id=$(cat /proc/sys/kernel/random/uuid)
- curl -X PUT -H "Content-Type: application/json" "127.0.0.1:9200/_snapshot/${id}" -d "{\"type\": \"fs\",\"settings\": {\"location\": \"/var/tmp/${id}\",\"compress\": true}}"
- curl -X PUT -H "Content-Type: application/json" "127.0.0.1:9200/_snapshot/${id}/backup?wait_for_completion=true&pretty"
- tar -cz -C "/var/tmp/${id}" . |
- curl -k -H "X-AUTH-TOKEN: ${WAREHOUSE_DATA_HOARDER_TOKEN}" https://${WAREHOUSE_DATA_HOARDER_HOST}:7410/blobs/backup-${HOSTNAME}-$(date -u +%Y-%m-%d.%H-%M-%S).tgz -X POST -T - >&2
- curl -X DELETE -H "Content-Type: application/json" "127.0.0.1:9200/_snapshot/${id}"
- rm -rf "/var/tmp/${id}"
- curl -k -s -H "X-AUTH-TOKEN: ${WAREHOUSE_DATA_HOARDER_TOKEN}" https://${WAREHOUSE_DATA_HOARDER_HOST}:7410/blobs/ |
- sed 's/,/\n/g' |
- grep ${HOSTNAME} |
- sort |
- head -n-${BACKUP_COUNT:-1} |
- sed 's/.*: \?"\(.*\)".*/\1/' |
- while read file
- do
- curl -k -H "X-AUTH-TOKEN: ${WAREHOUSE_DATA_HOARDER_TOKEN}" https://${WAREHOUSE_DATA_HOARDER_HOST}:7410/blobs/${file} -X DELETE
- done
-
-data.redis:
- image: nanobox/redis:4.0
-
- cron:
- - id: backup
- schedule: '0 3 * * *'
- command: |
- curl -k -H "X-AUTH-TOKEN: ${WAREHOUSE_DATA_HOARDER_TOKEN}" https://${WAREHOUSE_DATA_HOARDER_HOST}:7410/blobs/backup-${HOSTNAME}-$(date -u +%Y-%m-%d.%H-%M-%S).rdb -X POST -T /data/var/db/redis/dump.rdb >&2
- curl -k -s -H "X-AUTH-TOKEN: ${WAREHOUSE_DATA_HOARDER_TOKEN}" https://${WAREHOUSE_DATA_HOARDER_HOST}:7410/blobs/ |
- sed 's/,/\n/g' |
- grep ${HOSTNAME} |
- sort |
- head -n-${BACKUP_COUNT:-1} |
- sed 's/.*: \?"\(.*\)".*/\1/' |
- while read file
- do
- curl -k -H "X-AUTH-TOKEN: ${WAREHOUSE_DATA_HOARDER_TOKEN}" https://${WAREHOUSE_DATA_HOARDER_HOST}:7410/blobs/${file} -X DELETE
- done
-
-data.storage:
- image: nanobox/unfs:0.9
-
- cron:
- - id: backup
- schedule: '0 3 * * *'
- command: |
- tar cz -C /data/var/db/unfs/ . |
- curl -k -H "X-AUTH-TOKEN: ${WAREHOUSE_DATA_HOARDER_TOKEN}" https://${WAREHOUSE_DATA_HOARDER_HOST}:7410/blobs/backup-${HOSTNAME}-$(date -u +%Y-%m-%d.%H-%M-%S).tgz -X POST -T - >&2
- curl -k -s -H "X-AUTH-TOKEN: ${WAREHOUSE_DATA_HOARDER_TOKEN}" https://${WAREHOUSE_DATA_HOARDER_HOST}:7410/blobs/ |
- sed 's/,/\n/g' |
- grep ${HOSTNAME} |
- sort |
- head -n-${BACKUP_COUNT:-1} |
- sed 's/.*: \?"\(.*\)".*/\1/' |
- while read file
- do
- curl -k -H "X-AUTH-TOKEN: ${WAREHOUSE_DATA_HOARDER_TOKEN}" https://${WAREHOUSE_DATA_HOARDER_HOST}:7410/blobs/${file} -X DELETE
- done
+++ /dev/null
-commit_message: '[ci skip]'
-files:
- - source: /app/javascript/mastodon/locales/en.json
- translation: /app/javascript/mastodon/locales/%two_letters_code%.json
- - source: /config/locales/en.yml
- translation: /config/locales/%two_letters_code%.yml
- - source: /config/locales/simple_form.en.yml
- translation: /config/locales/simple_form.%two_letters_code%.yml
- - source: /config/locales/activerecord.en.yml
- translation: /config/locales/activerecord.%two_letters_code%.yml
- - source: /config/locales/devise.en.yml
- translation: /config/locales/devise.%two_letters_code%.yml
- - source: /config/locales/doorkeeper.en.yml
- translation: /config/locales/doorkeeper.%two_letters_code%.yml
+++ /dev/null
-/* global path */
-/*
-Preferences | Languages & Frameworks | JavaScript | Webpack | webpack configuration file
-jetbrains://WebStorm/settings?name=Languages+%26+Frameworks--JavaScript--Webpack
-*/
-module.exports = {
- resolve: {
- alias: {
- 'mastodon': path.resolve(__dirname, 'app/javascript/mastodon'),
- },
- },
-};
+++ /dev/null
-worker_processes 1;
-daemon off;
-
-events {
- worker_connections 1024;
-}
-
-http {
- include /data/etc/nginx/mime.types;
- sendfile on;
-
- gzip on;
- gzip_disable "MSIE [1-6]\.";
- gzip_vary on;
- gzip_proxied any;
- gzip_comp_level 6;
- gzip_buffers 16 8k;
- gzip_min_length 500;
- gzip_http_version 1.1;
- gzip_types text/plain text/xml text/javascript text/css text/comma-separated-values application/xml+rss application/xml application/x-javascript application/json application/javascript application/atom+xml;
-
- # Proxy upstream to the puma process
- upstream rails {
- server 127.0.0.1:3000;
- }
-
- # Proxy upstream to the node process
- upstream node {
- server 127.0.0.1:4000;
- }
-
- map $http_upgrade $connection_upgrade {
- default upgrade;
- '' close;
- }
-
- # Configuration for Nginx
- server {
- # Listen on port 8080
- listen 8080;
-
- keepalive_timeout 70;
- client_max_body_size 80M;
-
- root /app/public;
-
- add_header Strict-Transport-Security "max-age=31536000";
-
- location / {
- try_files $uri @rails;
- }
-
- # Proxy connections to rails
- location @rails {
- proxy_set_header Host $host;
- proxy_set_header X-Real-IP $remote_addr;
- proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
- proxy_set_header X-Forwarded-Proto https;
- proxy_set_header Proxy "";
- proxy_pass_header Server;
-
- proxy_pass http://rails;
- proxy_buffering off;
- proxy_redirect off;
- proxy_http_version 1.1;
- proxy_set_header Upgrade $http_upgrade;
- proxy_set_header Connection $connection_upgrade;
-
- tcp_nodelay on;
- }
-
- # Proxy connections to node
- location /api/v1/streaming {
- proxy_set_header Host $host;
- proxy_set_header X-Real-IP $remote_addr;
- proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
- proxy_set_header X-Forwarded-Proto https;
- proxy_set_header Proxy "";
-
- proxy_pass http://node;
- proxy_buffering off;
- proxy_redirect off;
- proxy_http_version 1.1;
- proxy_set_header Upgrade $http_upgrade;
- proxy_set_header Connection $connection_upgrade;
-
- tcp_nodelay on;
- }
- }
-
- error_page 500 501 502 503 504 /500.html;
-}
+++ /dev/null
-worker_processes 1;
-daemon off;
-
-events {
- worker_connections 1024;
-}
-
-http {
- include /data/etc/nginx/mime.types;
- sendfile on;
-
- gzip on;
- gzip_disable "MSIE [1-6]\.";
- gzip_vary on;
- gzip_proxied any;
- gzip_comp_level 6;
- gzip_buffers 16 8k;
- gzip_min_length 500;
- gzip_http_version 1.1;
- gzip_types text/plain text/xml text/javascript text/css text/comma-separated-values application/xml+rss application/xml application/x-javascript application/json application/javascript application/atom+xml;
-
- # Proxy upstream to the node process
- upstream node {
- server 127.0.0.1:4000;
- }
-
- map $http_upgrade $connection_upgrade {
- default upgrade;
- '' close;
- }
-
- # Configuration for Nginx
- server {
- # Listen on port 8080
- listen 8080;
-
- keepalive_timeout 70;
- client_max_body_size 80M;
-
- root /app/public;
-
- add_header Strict-Transport-Security "max-age=31536000";
-
- location / {
- try_files $uri @node;
- }
-
- # Proxy connections to node
- location @node {
- proxy_set_header Host $host;
- proxy_set_header X-Real-IP $remote_addr;
- proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
- proxy_set_header X-Forwarded-Proto https;
- proxy_set_header Proxy "";
-
- proxy_pass http://node;
- proxy_buffering off;
- proxy_redirect off;
- proxy_http_version 1.1;
- proxy_set_header Upgrade $http_upgrade;
- proxy_set_header Connection $connection_upgrade;
-
- tcp_nodelay on;
- }
- }
-}
+++ /dev/null
-worker_processes 1;
-daemon off;
-
-events {
- worker_connections 1024;
-}
-
-http {
- include /data/etc/nginx/mime.types;
- sendfile on;
-
- gzip on;
- gzip_disable "MSIE [1-6]\.";
- gzip_vary on;
- gzip_proxied any;
- gzip_comp_level 6;
- gzip_buffers 16 8k;
- gzip_min_length 500;
- gzip_http_version 1.1;
- gzip_types text/plain text/xml text/javascript text/css text/comma-separated-values application/xml+rss application/xml application/x-javascript application/json application/javascript application/atom+xml;
-
- # Proxy upstream to the puma process
- upstream rails {
- server 127.0.0.1:3000;
- }
-
- map $http_upgrade $connection_upgrade {
- default upgrade;
- '' close;
- }
-
- # Configuration for Nginx
- server {
- # Listen on port 8080
- listen 8080;
-
- keepalive_timeout 70;
- client_max_body_size 80M;
-
- root /app/public;
-
- add_header Strict-Transport-Security "max-age=31536000";
-
- location / {
- try_files $uri @rails;
- }
-
- location /sw.js {
- add_header Cache-Control "public, max-age=0";
- add_header Strict-Transport-Security "max-age=31536000";
- try_files $uri @rails;
- }
-
- location ~ ^/(emoji|packs|system/media_attachments/files|system/accounts/avatars) {
- add_header Cache-Control "public, max-age=31536000, immutable";
- add_header Strict-Transport-Security "max-age=31536000";
- try_files $uri @rails;
- }
-
- # Proxy connections to rails
- location @rails {
- proxy_set_header Host $host;
- proxy_set_header X-Real-IP $remote_addr;
- proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
- proxy_set_header X-Forwarded-Proto https;
- proxy_set_header Proxy "";
- proxy_pass_header Server;
-
- proxy_pass http://rails;
- proxy_buffering on;
- proxy_redirect off;
- proxy_http_version 1.1;
- proxy_set_header Upgrade $http_upgrade;
- proxy_set_header Connection $connection_upgrade;
-
- proxy_cache CACHE;
- proxy_cache_valid 200 7d;
- proxy_cache_valid 410 24h;
- proxy_cache_use_stale error timeout updating http_500 http_502 http_503 http_504;
- add_header Strict-Transport-Security "max-age=31536000";
- add_header X-Cached $upstream_cache_status;
-
- tcp_nodelay on;
- }
- }
-
- proxy_cache_path /data/var/cache/nginx levels=1:2 keys_zone=CACHE:10m inactive=7d max_size=1g;
-
- error_page 500 501 502 503 504 /500.html;
-}
+++ /dev/null
-{
- "name": "Mastodon",
- "description": "A GNU Social-compatible microblogging server",
- "repository": "https://github.com/mastodon/mastodon",
- "logo": "https://github.com/mastodon.png",
- "env": {
- "LOCAL_DOMAIN": {
- "description": "The domain that your Mastodon instance will run on (this can be appname.scalingo.io or a custom domain)",
- "required": true
- },
- "SECRET_KEY_BASE": {
- "description": "The secret key base",
- "generator": "secret"
- },
- "OTP_SECRET": {
- "description": "One-time password secret",
- "generator": "secret"
- },
- "SINGLE_USER_MODE": {
- "description": "Should the instance run in single user mode? (Disable registrations, redirect to front page)",
- "value": "false",
- "required": true
- },
- "S3_ENABLED": {
- "description": "Should Mastodon use Amazon S3 for storage? This is highly recommended, as Scalingo does not have persistent file storage (files will be lost).",
- "value": "true",
- "required": false
- },
- "S3_BUCKET": {
- "description": "Amazon S3 Bucket",
- "required": false
- },
- "S3_REGION": {
- "description": "Amazon S3 region that the bucket is located in",
- "required": false
- },
- "AWS_ACCESS_KEY_ID": {
- "description": "Amazon S3 Access Key",
- "required": false
- },
- "AWS_SECRET_ACCESS_KEY": {
- "description": "Amazon S3 Secret Key",
- "required": false
- },
- "SMTP_SERVER": {
- "description": "Hostname for SMTP server, if you want to enable email",
- "required": false
- },
- "SMTP_PORT": {
- "description": "Port for SMTP server",
- "required": false
- },
- "SMTP_LOGIN": {
- "description": "Username for SMTP server",
- "required": false
- },
- "SMTP_PASSWORD": {
- "description": "Password for SMTP server",
- "required": false
- },
- "SMTP_DOMAIN": {
- "description": "Domain for SMTP server. Will default to instance domain if blank.",
- "required": false
- },
- "SMTP_FROM_ADDRESS": {
- "description": "Address to send emails from",
- "required": false
- },
- "SMTP_AUTH_METHOD": {
- "description": "Authentication method to use with SMTP server. Default is 'plain'.",
- "required": false
- },
- "SMTP_OPENSSL_VERIFY_MODE": {
- "description": "SMTP server certificate verification mode. Defaults is 'peer'.",
- "required": false
- },
- "SMTP_ENABLE_STARTTLS_AUTO": {
- "description": "Enable STARTTLS if SMTP server supports it? Default is true.",
- "required": false
- },
- "BUILDPACK_URL": {
- "description": "Internal scalingo configuration",
- "required": true,
- "value": "https://github.com/Scalingo/multi-buildpack.git"
- },
- "WITH_FFPROBE": {
- "description": "Internal scalingo configuration to install ffprobe",
- "required": true,
- "value": "true"
- }
- },
- "scripts": {
- "postdeploy": "bundle exec rails db:migrate && bundle exec rails db:seed"
- },
- "addons": ["postgresql", "redis"]
-}
cat aescling's git repositories / mastodon.git / commitdiff