Labels Milestones

New Issue

Host core services as tor onion services #3

Open

opened 2 years ago by wanderer · 4 comments

wanderer commented 2 years ago

Owner

While both Gitea and Drone rely in part on js, it is still possible that some users would prefer to connect to us using tor (possibly with js whitelisted here).
I propose we make our core services available as onion services, too.

current progress

• homepage
• gitea
• drone - set up but not properly working (see #5)
• statuspage
• prometheus (dotya.ml/homepage!23)
• grafana

edit:
after this is concluded, we could apply to add the services to the WeSupportTor list https://trac.torproject.org/projects/tor/wiki/org/projects/WeSupportTor

While both Gitea and Drone rely in part on `js`, it is still possible that some users would prefer to connect to us using tor (possibly with `js` whitelisted here). I propose we make our core services available as onion services, too. current progress - [x] homepage - [x] gitea - [ ] drone - set up but not properly working (see #5) - [x] statuspage - [x] prometheus (dotya.ml/homepage!23) - [x] grafana edit: after this is concluded, we could apply to add the services to the WeSupportTor list https://trac.torproject.org/projects/tor/wiki/org/projects/WeSupportTor

wanderer commented 2 years ago

Poster

Owner

as also mentioned in 39a5ba03c8 and thanks to @kreyren 🎉 we now have both the homepage and gitea available as onion services.

homepage: http://6426tqrh4y5uobmo5y2csaip3m3avmjegd2kpa24sadekpxglbm34aqd.onion
gitea: http://2crftbzxbcoqolvzreaaeyrod5qwycayef55gxgzgfcpqlaxrnh3kkqd.onion
prometheus: http://vognfwm7c6wq2gxqcmswi2flwckuxryefd7n3axxkvlpasdjhns5buqd.onion
grafana: http://6t3ydf7sl7iso2wbymbfjtaq6qqlrms37ffik2siulsljc3ubobklnid.onion
statuspage: http://o4irro4dspyuytbw2b2g2ac4ukkh2ex53oolhzw7hrfjmq6tiklrtwqd.onion/

more on this, including what's up with hidden drone:
https://dotya.ml/about/#onion-services
http://6426tqrh4y5uobmo5y2csaip3m3avmjegd2kpa24sadekpxglbm34aqd.onion/about/#onion-services

edit: note that ssh is also enabled for gitea via tor

as also mentioned in [39a5ba03c8](https://git.dotya.ml/dotya.ml/homepage/commit/39a5ba03c8) and thanks to @kreyren 🎉 we now have both the homepage and gitea available as onion services. homepage: http://6426tqrh4y5uobmo5y2csaip3m3avmjegd2kpa24sadekpxglbm34aqd.onion gitea: http://2crftbzxbcoqolvzreaaeyrod5qwycayef55gxgzgfcpqlaxrnh3kkqd.onion prometheus: http://vognfwm7c6wq2gxqcmswi2flwckuxryefd7n3axxkvlpasdjhns5buqd.onion grafana: http://6t3ydf7sl7iso2wbymbfjtaq6qqlrms37ffik2siulsljc3ubobklnid.onion statuspage: http://o4irro4dspyuytbw2b2g2ac4ukkh2ex53oolhzw7hrfjmq6tiklrtwqd.onion/ more on this, including what's up with *hidden* drone: https://dotya.ml/about/#onion-services http://6426tqrh4y5uobmo5y2csaip3m3avmjegd2kpa24sadekpxglbm34aqd.onion/about/#onion-services edit: note that ssh is also enabled for gitea via tor

👍 1

wanderer added this to the Grow our .onionz milestone 2 years ago

wanderer added a new dependency 2 years ago

#5 DroneCI as onion service connected to onion gitea

wanderer self-assigned this 2 years ago

wanderer added this to the General project 2 years ago

kreyren commented 2 years ago

What is the status on this in terms of gitea handling? Seems that gitea needs adaptation to replace the domain with onions when accessed from onions -> Create tracking of what is needed in upstream willing to consider contribs

What is the status on this in terms of gitea handling? Seems that gitea needs adaptation to replace the domain with onions when accessed from onions -> Create tracking of what is needed in upstream willing to consider contribs

wanderer commented 2 years ago

Poster

Owner

@kreyren

What is the status on this in terms of gitea handling? Seems that gitea needs adaptation to replace the domain with onions when accessed from onions -> Create tracking of what is needed in upstream willing to consider contribs

As you say, the only thing that prevents you from functioning easily on Gitea via tor is Gitea using absolute link paths at certain places - using relative (as in /user/whateverrepo/commits/...) links would solve this. Also, a parameter DOMAIN is set in app.ini config, which would need to either be handled differently or something..this gets used in the displayed cloning URL etc. These I can think of off the top of my head atm, there are probably more (e.g. zeripath - one of the Gitea maintainers - mentioned email links)

@kreyren >What is the status on this in terms of gitea handling? Seems that gitea needs adaptation to replace the domain with onions when accessed from onions -> Create tracking of what is needed in upstream willing to consider contribs As you say, the only thing that prevents you from functioning easily on Gitea via tor is Gitea using absolute link paths at certain places - using relative (as in `/user/whateverrepo/commits/...`) links would solve this. Also, a parameter DOMAIN is set in app.ini config, which would need to either be handled differently or something..this gets used in the displayed cloning URL etc. These I can think of off the top of my head atm, there are probably more (e.g. zeripath - one of the Gitea maintainers - mentioned email links)

kreyren commented 2 years ago

@wanderer So what's preventing you from submitting upstream tracking?

@wanderer So what's preventing you from submitting upstream tracking?

wanderer added a new dependency 2 years ago

#22 Menu items in the issue menu are not onionized

wanderer added a new dependency 2 years ago

#23 Status button in a footer is not onionized

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

master

Labels

Apply labels

Clear labels

FCKPTN
Fuck you, Putin!

WIP
Work in progess. bug
Something is not working docs done
Documented docs needed
Missing documentation duplicate
This issue or pull request already exists enhancement
Brings improvements feature
Adding a feature gemini
Pertaining gemini invalid
Something is wrong legal-ish
Concerning a legal issue needs help
Help is welcome onionz
Related to an onion service 🧅 proposal
Proposes a change question
More information is needed resolved
The issue has been resolved security
This issue impacts security spam
Spam todo
Waits to be done upstream-related
This issue is related to an upstream project's issue wontfix
This won't be fixed

No Label FCKPTN WIP bug docs done docs needed duplicate enhancement feature gemini invalid legal-ish needs help onionz proposal question resolved security spam todo upstream-related wontfix

Milestone

Set milestone

Clear milestone

No items

No Milestone

Grow our .onionz

Projects

Clear projects

No project

General

Assignees

Assign users

Clear assignees

No Assignees

wanderer

2 Participants

Notifications

Subscribe

Due Date

The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Depends on

#23 Status button in a footer is not onionized

dotya.ml/community

#22 Menu items in the issue menu are not onionized

dotya.ml/community

#5 DroneCI as onion service connected to onion gitea

dotya.ml/community

Reference: dotya.ml/community#3

Write Preview

Loading…

Cancel

Save

There is no content yet.