Publishing tools consist of multiple things a wiki and static websites server, ssh tunneling tools used for deployments mainly.
tfweb is a wiki server/static websites server mainly built to drive the websites infrastructure for threefold.io
tfweb config is toml based, to provide more expressive configurations languages and less confusing switches/command line options.
there are 2 env variables
#will make sure git gets updated when webserver starts
export GIT_UPDATE=1
#will show debug info
export DEBUG=1[server]
port = 3000
addr = "0.0.0.0"Sets the binding address to 0.0.0.0 and the port to 3000
tfweb allows serving multiple wikis, with unique names. by specifying the url "the most common case" or the path on the filesystem, and the wiki source directory srcdir
titletitle of the wiki (default:namevalue)urlcan be ssh url or https urlpathis the path of the top level root of the repository on the filesystemsrcdiris where the wiki dir starts in the repositorybranchyou can specify the branch to usebranchswitchforces switching tobranchif the one on the filesystem is different.environmentenviroment name, if defined repos will be cloned under~/tfweb/{environment}/.
[[wiki]]
#unique name for the wiki
name = "sdk"
title = "SDK Wiki"
#http or git url
url = "github.com/threefoldfoundation/info_tfgridsdk"
#if empty will be auto created
path = ""
#commit automatically when there is new info, only works when ssh used
autocommit = false
#branch name, of "" then will be the default or what is found on the FS
branch = "development"
#switch branch automatically if the name given above and its different on FS
branchswitch = false
#path in the repo where the info is, std "src"
srcdir = "src"
#environment name (for example: production, staging, testing)
environment = "production"#website
[[www]]
name = "freetft"
#http or git url
url = "git@github.com:threefoldfoundation/www_getfreetft.git"
#if empty will be auto created
path = ""
#commit automatically when there is new info, only works when ssh used
autocommit = false
#branch name, of "" then will be the default or what is found on the FS
branch = "development"
#switch branch automatically if the name given above and its different on FS
branchswitch = true
#path in the repo where the info is, std "src"
srcdir = ""
#environment name (for example: production, staging, testing)
environment = "production"the same as wiki, but in [[www]] array instead, used to serve static websites
[server]
port = 3000
addr = "0.0.0.0"
[[wiki]]
#unique name for the wiki
name = "sdk"
#http or git url
url = "github.com/threefoldfoundation/info_tfgridsdk"
#if empty will be auto created
path = ""
#commit automatically when there is new info, only works when ssh used
autocommit = false
#branch name, of "" then will be the default or what is found on the FS
branch = "development"
#switch branch automatically if the name given above and its different on FS
branchswitch = false
#path in the repo where the info is, std "src"
srcdir = "src"
#environment name (for example: production, staging, testing)
environment = "production"
[[wiki]]
#unique name for the wiki
name = "wiki"
#http or git url
url = "https://github.com/threefoldfoundation/info_threefold"
#if empty will be auto created
path = ""
#commit automatically when there is new info, only works when ssh used
autocommit = false
#branch name, of "" then will be the default or what is found on the FS
branch = "development"
#switch branch automatically if the name given above and its different on FS
branchswitch = false
#path in the repo where the info is, std "src"
srcdir = "src"
#environment name (for example: production, staging, testing)
environment = "production"
make sure you have the following apt-get install -y build-essential curl libevent-dev libssl-dev libxml2-dev libyaml-dev libgmp-dev git libssh2 libssh2-dev
building is as simple as shards build or shards build --error-trace to allow more error traces information
After building you will find the binary in bin directory and to run ./bin/tfweb -c CONFIG_PATH.toml
sshtool allows you to expose a service running on a machine over other networks using ssh tunneling to be exposed over other machines.
sshtool is toml driven, where each section is an element of array [[sshconnections]]
note: we are planning to have full compatibility with tcprouter too.
name = "host2_https"
ipaddr = "134.122.109.244"
# port for ssh connection
port = 22
# local port on our machine, where the server runs
localport = 443
# remote port
remoteport = 443
# user
user = "root"
tcprouter_secret = ""- name: connection name
- ipaddr: machine address
- port: ssh port
- localport: local port on the machine where the server runs.
- remote port: remote port
typical use cases is 443 -> 443 for the case of https and 80 -> 80 for http
sshtool -c sshconnections.toml
[[sshconnections]]
name = "host2_https"
ipaddr = "134.122.109.244"
# port for ssh connection
port = 22
# local port on our machine, where the server runs
localport = 443
# remote port
remoteport = 443
# user
user = "root"
tcprouter_secret = ""
[[sshconnections]]
name = "host3_https"
ipaddr = "104.248.250.78"
# port for ssh connection
port = 22
# local port on our machine, where the server runs
localport = 443
# remote port
remoteport = 443
# user
user = "root"
tcprouter_secret = ""
[[sshconnections]]
name = "host2_http"
ipaddr = "134.122.109.244"
# port for ssh connection
port = 22
# local port on our machine, where the server runs
localport = 80
# remote port
remoteport = 80
# user
user = "root"
tcprouter_secret = ""
[[sshconnections]]
name = "host3_http"
ipaddr = "104.248.250.78"
# port for ssh connection
port = 22
# local port on our machine, where the server runs
localport = 80
# remote port
remoteport = 80
# user
user = "root"
tcprouter_secret = ""
make sure to GatewayPorts yes in /etc/ssh/sshd_config.
Create a config Caddyfile and fill in your websites.
http://advisors.threefold.me {
redir {
if {scheme} is http
/ https://{host}{uri}
}
}
https://advisors.threefold.me {
basicauth / user password
tls info@threefold.io
proxy / localhost:3000/advisors
}
http://board.threefold.me {
redir {
if {scheme} is http
/ https://{host}{uri}
}
}
https://board.threefold.me {
basicauth / user password
tls info@threefold.io
proxy / localhost:3000/board
}
http://ambassadors.threefold.me {
redir {
if {scheme} is http
/ https://{host}{uri}
}
}
https://ambassadors.threefold.me {
basicauth / user password
tls info@threefold.io
proxy / localhost:3000/ambassadors
}
http://sdk.threefold.io, https://sdk.threefold.io {
redir {
if {scheme} is http
/ https://{host}{uri}
}
tls info@threefold.io
proxy / localhost:3000/sdk
}
http://sdk2.threefold.io, https://sdk2.threefold.io {
redir {
if {scheme} is http
/ https://{host}{uri}
}
tls info@threefold.io
proxy / localhost:3000/sdk2
}
http://wiki.threefold.io, https://wiki.threefold.io {
redir {
if {scheme} is http
/ https://{host}{uri}
}
tls info@threefold.io
proxy /api localhost:3000/
proxy / localhost:3000/wiki
}
http://wiki2.threefold.io, https://wiki2.threefold.io {
redir {
if {scheme} is http
/ https://{host}{uri}
}
tls info@threefold.io
proxy /api localhost:3000/
proxy / localhost:3000/wiki2
}
http://simulators.threefold.io, https://simulators.threefold.io {
redir {
if {scheme} is http
/ https://{host}{uri}
}
tls info@threefold.io
proxy / localhost:3000/
}
to run execute caddy in the same directory of the Caddyfile
NOTE: Make sure that you have 80, 443 connections configured on the sshtool config file to be able to do http, https.
in your hosts file
127.0.0.1 sdk.threefold.io
127.0.0.1 sdk3.threefold.io
127.0.0.1 wiki.threefold.io
127.0.0.1 wiki3.threefold.io
127.0.0.1 boardthreefold.me
127.0.0.1 advisors.threefold.me
127.0.0.1 ambassadors.threefold.me
and you can use Caddyfiledev by caddy -conf Caddyfiledev
to protect wiki/websites with 3botconnect, you can define groups and attach these groups to a specific wiki or a website like the following
[[group]]
name = "admin"
users = ["ahmedthabet"]
[[wiki]]
name = "sdk"
title = "Grid Manual"
url = "github.com/threefoldfoundation/info_tfgridsdk"
path = ""
autocommit = false
branch = "development"
branchswitch = false
srcdir = "src"
environment = "production"
groups = ["admin"]
auth = true
[[wiki]]
name = "sdk2"
title = "Grid Manual Staging"
url = "github.com/threefoldfoundation/info_tfgridsdk"
path = ""
autocommit = false
branch = "development"
branchswitch = false
srcdir = "src"
environment = "testing"
- Here we define a group named
adminand of usersahmedthabet - We want to limit access to sdk to that admin group, so we need to define
groups = ["admin"]and setauth = true - in case of failed login attempts you will find the user who tried in
~/ftweb.access
/:name/force_updateforce updates a wiki to the latest upstream/:name/merge_updatetries to merge upstream to local
You can build static binaries within alpine crystal container, add required packages and then run the static binary builder script
sudo docker run -it --name crystalalpine -h crystalalpine --privileged -v /opt/crystalalpine:/opt crystallang/crystal:0.35.1-alpine sh
/opt/crystalalpine is the host directory that has the publishingtools code that you want to share in the container
to be executed from the alpine container
#!/bin/sh
## probably should add --release flag too
shards build --static --link-flags "$(pkg-config libxml-2.0 --libs --static)" --link-flags "$(pkg-config libssh2 --libs --static)"
- you might need to install libssh2-static package
apk add libssh2-static libssh2 libssh2-dev