Skip to content

evanp/onepage.pub

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

281 Commits

.github

.github

 
 

.dockerignore

.dockerignore

 
 

.gitignore

.gitignore

 
 

CODE_OF_CONDUCT.md

CODE_OF_CONDUCT.md

 
 

Dockerfile

Dockerfile

 
 

LICENSE.md

LICENSE.md

 
 

README.md

README.md

 
 

blocklist.csv

blocklist.csv

 
 

docker-compose.yml

docker-compose.yml

 
 

index.mjs

index.mjs

 
 

index.test.mjs

index.test.mjs

 
 

localhost.crt

localhost.crt

 
 

localhost.key

localhost.key

 
 

package-lock.json

package-lock.json

 
 

package.json

package.json

 
 

test.png

test.png

 
 

Repository files navigation

one-page-pub

standard-readme compliant

A compliant, robust ActivityPub server in one page

This project has multiple goals. First, it's a demonstration of how to build an ActivityPub server, with most of the important parts implemented. It should be useful for implementers who want to know how ActivityPub works in the real world. Second, it's a platform for testing and experimentation with new client apps and new server features.

Table of Contents

Background

ActivityPub ("AP") is a decentralized social networking protocol. It uses Activity Streams 2.0 ("AS2") as its social data format.

ActivityPub defines a client API for creating, reading, updating, and deleting social data, and a server-to-server for delivering that data to remote servers.

onepage.pub implements as much as possible of the ActivityPub API and protocol in a single JavaScript module. It doesn't use any Activity Streams- or ActivityPub-specific libraries. At 2800+ lines of code, it's not exactly a one-page program, but it's still pretty small.

It is a headless server. It includes only a rudimentary Web UI for registration, login, logout, and OAuth 2.0 authorization flow. Everything else is done through the API.

Install

For now, you have to clone it to a directory.

git clone git@github.com:evanp/onepage.pub.git

cd onepage.pub
npm install

Usage

You should be able to run it with Node.js.

node index.mjs

It takes a few environment variables as configuration options:

  • OPP_DATABASE: the path to the SQLite database file for persistent data(default: :memory:, no persistence!)
  • OPP_HOSTNAME: the hostname of the server (default: localhost). Once you start a server, you can't change this without messing up all your links and everyone's links to you.
  • OPP_PORT: the port to listen on (default: 3000). Same caveat as above.
  • OPP_KEY: path to your SSL private key file (default: localhost.key).
  • OPP_CERT: path to your SSL certificate file (default: localhost.cert).
  • OPP_LOG_LEVEL: the level of logging to do (default: info). Can be debug, info, warn, or error.
  • OPP_SESSION_SECRET: a random value to use for secrets in sessions. You should change this to something random.
  • OPP_INVITE_CODE: If this is non-blank, then only users who have this code can register.
  • OPP_BLOCK_LIST: a blocklist file for blocking domains. In Mastodon blockfile format. Null by default, which is bad.
  • OPP_ORIGIN: The origin part of URLs, like 'https://host.example:53443'. If this is set, the server will use it for all generated URLs, and listen on http instead of https. This is what you want if you're using Kubernetes or another proxy to terminate SSL.
  • OPP_NAME: a name to show for the server. Defaults to the hostname part of the origin.
  • OPP_UPLOAD_DIR: a directory to store uploaded files. Defaults to a temporary dir, which changes every time you run it. You should set this to a permanent directory.

API

The server supports the following standards:

The basic API usage is as follows:

  • Manually register a user with /register. This will create a user account and a WebFinger resource.
  • Use WebFinger to find the user's ActivityPub profile. It's listed as an alternative link with type="application/activity+json".
  • Get the user's profile with an HTTP GET to the profile URL. This will give the user's profile, which includes the inbox, outbox, following, followers, and liked URLs.
  • Use the outbox URL to POST new activities to the user's outbox. This will deliver the activity to the user's followers.
  • Use the inbox URL to read incoming activities for the user.

Note that the URLs for Activity Streams 2.0 objects, including user profiles and related collections, are pretty much random. You can't guess the URL of the user's inbox based on their username, for example.

The server implements the expected side effects for the ActivityPub protocol:

  • Follow
  • Create
  • Update
  • Delete
  • Like
  • Block
  • Add
  • Remove

Status

The server is still in development. It's not ready for production use. There is a public GitHub project for tracking a 1.0 release at:

https://github.com/users/evanp/projects/4/views/1

Maintainers

@evanp Evan Prodromou

Contributing

PRs accepted. Please use conventional commits for your commit messages.

Please add a unit test for your change to prevent regressions.

Small note: If editing the README, please conform to the standard-readme specification.

License

Apache-2.0 © 2023 Evan Prodromou

About

A one-page ActivityPub server

Resources

Readme

License

Apache-2.0 license

Code of conduct

Code of conduct
Activity

Stars

45 stars

Watchers

4 watching

Forks

3 forks
Report repository

Releases

28 tags

Packages 1

 

Contributors 3

  •  
  •  
  •  

Languages