dotya.ml
/
community
2
1
Fork 0
Code Issues 20 Pull Requests Projects 2 Releases Activity
Labels Milestones
New Issue

Host core services as tor onion services #3

Open
opened 1 year ago by wanderer ยท 4 comments
wanderer commented 1 year ago
Owner

While both Gitea and Drone rely in part on js, it is still possible that some users would prefer to connect to us using tor (possibly with js whitelisted here).
I propose we make our core services available as onion services, too.

current progress

  • homepage
  • gitea
  • drone - set up but not properly working (see #5)
  • statuspage
  • prometheus (dotya.ml/homepage!23)
  • grafana

edit:
after this is concluded, we could apply to add the services to the WeSupportTor list https://trac.torproject.org/projects/tor/wiki/org/projects/WeSupportTor

While both Gitea and Drone rely in part on `js`, it is still possible that some users would prefer to connect to us using tor (possibly with `js` whitelisted here). I propose we make our core services available as onion services, too. current progress - [x] homepage - [x] gitea - [ ] drone - set up but not properly working (see #5) - [x] statuspage - [x] prometheus (dotya.ml/homepage!23) - [x] grafana edit: after this is concluded, we could apply to add the services to the WeSupportTor list https://trac.torproject.org/projects/tor/wiki/org/projects/WeSupportTor
wanderer commented 1 year ago
Poster
Owner

as also mentioned in 39a5ba03c8 and thanks to @kreyren ๐ŸŽ‰ we now have both the homepage and gitea available as onion services.

homepage: http://6426tqrh4y5uobmo5y2csaip3m3avmjegd2kpa24sadekpxglbm34aqd.onion
gitea: http://2crftbzxbcoqolvzreaaeyrod5qwycayef55gxgzgfcpqlaxrnh3kkqd.onion
prometheus: http://vognfwm7c6wq2gxqcmswi2flwckuxryefd7n3axxkvlpasdjhns5buqd.onion
grafana: http://6t3ydf7sl7iso2wbymbfjtaq6qqlrms37ffik2siulsljc3ubobklnid.onion
statuspage: http://o4irro4dspyuytbw2b2g2ac4ukkh2ex53oolhzw7hrfjmq6tiklrtwqd.onion/

more on this, including what's up with hidden drone:
https://dotya.ml/about/#onion-services
http://6426tqrh4y5uobmo5y2csaip3m3avmjegd2kpa24sadekpxglbm34aqd.onion/about/#onion-services

edit: note that ssh is also enabled for gitea via tor

as also mentioned in [39a5ba03c8](https://git.dotya.ml/dotya.ml/homepage/commit/39a5ba03c8) and thanks to @kreyren ๐ŸŽ‰ we now have both the homepage and gitea available as onion services. homepage: http://6426tqrh4y5uobmo5y2csaip3m3avmjegd2kpa24sadekpxglbm34aqd.onion gitea: http://2crftbzxbcoqolvzreaaeyrod5qwycayef55gxgzgfcpqlaxrnh3kkqd.onion prometheus: http://vognfwm7c6wq2gxqcmswi2flwckuxryefd7n3axxkvlpasdjhns5buqd.onion grafana: http://6t3ydf7sl7iso2wbymbfjtaq6qqlrms37ffik2siulsljc3ubobklnid.onion statuspage: http://o4irro4dspyuytbw2b2g2ac4ukkh2ex53oolhzw7hrfjmq6tiklrtwqd.onion/ more on this, including what's up with *hidden* drone: https://dotya.ml/about/#onion-services http://6426tqrh4y5uobmo5y2csaip3m3avmjegd2kpa24sadekpxglbm34aqd.onion/about/#onion-services edit: note that ssh is also enabled for gitea via tor
๐Ÿ‘ 1
wanderer added this to the Grow our .onionz milestone 1 year ago
wanderer self-assigned this 1 year ago
wanderer added this to the General project 1 year ago
kreyren commented 12 months ago

What is the status on this in terms of gitea handling? Seems that gitea needs adaptation to replace the domain with onions when accessed from onions -> Create tracking of what is needed in upstream willing to consider contribs

What is the status on this in terms of gitea handling? Seems that gitea needs adaptation to replace the domain with onions when accessed from onions -> Create tracking of what is needed in upstream willing to consider contribs
wanderer commented 12 months ago
Poster
Owner

@kreyren

What is the status on this in terms of gitea handling? Seems that gitea needs adaptation to replace the domain with onions when accessed from onions -> Create tracking of what is needed in upstream willing to consider contribs

As you say, the only thing that prevents you from functioning easily on Gitea via tor is Gitea using absolute link paths at certain places - using relative (as in /user/whateverrepo/commits/...) links would solve this. Also, a parameter DOMAIN is set in app.ini config, which would need to either be handled differently or something..this gets used in the displayed cloning URL etc. These I can think of off the top of my head atm, there are probably more (e.g. zeripath - one of the Gitea maintainers - mentioned email links)

@kreyren >What is the status on this in terms of gitea handling? Seems that gitea needs adaptation to replace the domain with onions when accessed from onions -> Create tracking of what is needed in upstream willing to consider contribs As you say, the only thing that prevents you from functioning easily on Gitea via tor is Gitea using absolute link paths at certain places - using relative (as in `/user/whateverrepo/commits/...`) links would solve this. Also, a parameter DOMAIN is set in app.ini config, which would need to either be handled differently or something..this gets used in the displayed cloning URL etc. These I can think of off the top of my head atm, there are probably more (e.g. zeripath - one of the Gitea maintainers - mentioned email links)
kreyren commented 12 months ago

@wanderer So what's preventing you from submitting upstream tracking?

@wanderer So what's preventing you from submitting upstream tracking?
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
master
Labels
Apply labels
Clear labels
WIP
Work in progess. bug
Something is not working docs done
Documented docs needed
Missing documentation duplicate
This issue or pull request already exists enhancement
Brings improvements feature
Adding a feature gemini
Pertaining gemini invalid
Something is wrong legal-ish
Concerning a legal issue needs help
Help is welcome onionz
Related to an onion service ๐Ÿง… proposal
Proposes a change question
More information is needed security
This issue impacts security spam
Spam upstream-related
This issue is related to an upstream project's issue wontfix
This won't be fixed
No Label WIP bug docs done docs needed duplicate enhancement feature gemini invalid legal-ish needs help onionz proposal question security spam upstream-related wontfix
Milestone
Set milestone
Clear milestone
No items
No Milestone
Grow our .onionz
Projects
Clear projects
No project
General
Assignees
Assign users
Clear assignees
No Assignees
wanderer
2 Participants
Notifications
Due Date

No due date set.

Depends on
#23 Status button in a footer is not onionized
dotya.ml/community
#22 Menu items in the issue menu are not onionized
dotya.ml/community
#5 DroneCI as onion service connected to onion gitea
dotya.ml/community
Write Preview
Loadingโ€ฆ
Cancel
Save
There is no content yet.
Delete Branch '%!s(MISSING)'

Deleting a branch is permanent. It CANNOT be undone. Continue?

No
Yes