2023-01-30 20:19:53 +01:00
# [`pcmt`](https://git.dotya.ml/mirre-mt/pcmt/)
> Password Compromise Monitoring Tool
2023-04-12 23:50:01 +02:00
[](https://github.com/pre-commit/pre-commit)
2023-04-12 22:49:10 +02:00
[](https://drone.dotya.ml/mirre-mt/pcmt)
2023-04-19 23:08:45 +02:00
[](https://goreportcard.com/report/git.dotya.ml/mirre-mt/pcmt)
[](https://godocs.io/git.dotya.ml/mirre-mt/pcmt)
2023-04-12 22:49:10 +02:00
2023-01-30 20:19:53 +01:00
> :construction: **note:** this project is being developed as a part of my
> [thesis](https://git.dotya.ml/mirre-mt/masters-thesis/) and is currently
> a work in progress. :construction:
2023-04-12 23:23:46 +02:00
< p align = "center" >
< figure align = "center" >
< img
2023-05-13 14:15:55 +02:00
src="https://git.dotya.ml/mirre-mt/pcmt/raw/branch/development/assets/public/img/logo-pcmt.svg"
2023-04-12 23:23:46 +02:00
alt="pcmt Gopher logo"
/>
< figcaption > pcmt Gopher logo based on the Egon Elbre's < a href = "https://github.com/egonelbre/gophers" target = "_blank" > awesome Gopher designs< / a > .< / figcaption >
< / figure >
< / p >
2023-01-30 20:19:53 +01:00
2023-05-20 18:27:32 +02:00
### How to try this out
with [`podman` ](https://podman.io/ ) and [`just` ](https://github.com/casey/just )
installed, run the following:
```sh
# build the image locally using kaniko.
just kaniko
# start postgres.
just dbstart
2023-05-20 18:58:09 +02:00
# in another terminal, run the application.
2023-05-23 14:03:02 +02:00
# LiveMode=False disables loading assets and templates from the filesystem and
# instead uses the embedded resources.
2023-05-20 18:27:32 +02:00
podman run --rm -it -e PCMT_DBTYPE=postgres \
-e PCMT_CONNSTRING="host=127.0.0.1 port=5432 sslmode=disable dbname=postgres password=postgres"
-e PCMT_LIVE=False docker.io/immawanderer/pcmt:testbuild \
-config /etc/pcmt/config.dhall
```
2023-05-23 14:03:02 +02:00
while the above runs *fine* , running in **pods** is *better* and more close to
a production setting (assuming
[rootless ](https://www.redhat.com/sysadmin/rootless-podman-user-namespace-modes )
[Podman ](https://www.redhat.com/sysadmin/rootless-containers-podman ) setup):
2023-05-20 18:58:09 +02:00
```sh
2023-05-23 14:03:02 +02:00
# create a pod ðŸ¦.
2023-05-20 18:58:09 +02:00
podman pod create --userns=keep-id -p3005:3000 --name pcmt
2023-05-23 14:03:02 +02:00
# if you have the db from the previous example still running, terminate it by
# pressing ^C or running the following:
just dbstop
2023-05-20 18:58:09 +02:00
# run a db in the pod.
podman run --pod pcmt --replace -d --name "pcmt-pg" --rm \
-e POSTGRES_INITDB_ARGS="--auth-host=scram-sha-256 --auth-local=scram-sha-256" \
-e POSTGRES_PASSWORD=postgres -v $PWD/tmp/db:/var/lib/postgresql/data \
docker.io/library/postgres:15.2-alpine3.17
# run the application in the pod (assuming that you have built it as in the
# previous example). do note that we're connecting to the db using its
# container name, while localhost would also work. inside the pod, every
# container is reachable on localhost.
podman run --pod pcmt --replace --name pcmt-og -d --rm \
-e PCMT_LIVE=False \
-e PCMT_DBTYPE="postgres" \
-e PCMT_CONNSTRING="host=pcmt-pg port=5432 sslmode=disable user=postgres dbname=postgres password=postgres" \
-v $PWD/config.dhall:/config.dhall:ro \
docker.io/immawanderer/pcmt:testbuild -config /config.dhall
# also, if we try to connect to the db from the host we get an error (unless
2023-05-23 14:03:02 +02:00
# there is another database running on localhost already, such as the one from
# the previous example).
2023-05-20 18:58:09 +02:00
curl localhost:5432
--> curl: (7) Failed to connect to localhost port 5432 after 0 ms: Couldn't connect to server
# that is because the database port has not been exposed from the pod (recall
2023-05-23 14:03:02 +02:00
# the pod creation command).
2023-05-20 18:58:09 +02:00
```
2023-05-20 18:27:32 +02:00
2023-05-20 18:31:59 +02:00
#### Custom config
Make sure to check out the Dhall configuration
[schema ](https://git.dotya.ml/mirre-mt/pcmt-config-schema/src/branch/development/schema.dhall )
to see what's possible, or have a look at the [example
config](exampleConfig.dhall).
If you're new to Dhall, its [documentation ](https://docs.dhall-lang.org/ ) page
is a good resource to start at.
2023-05-30 20:43:19 +02:00
### 🔨 Building from sources
pre-requisites:
* [`just` ](https://github.com/casey/just )
* [`npm` ](https://docs.npmjs.com/cli/v9/ )
* [`go1.20` ](https://go.dev/ )
* `git`
the application consists of *frontend* and *backend* . the *frontend* is
basically a **generated** TailwindCSS stylesheet and it is not shipped as part
of the development process. as such, it needs to be built from sources, same as
the backend.
**step 0:** clone this repository with `git`
then build the *frontend* using `just tw` or `just frontend`
next, build the Go application using:
```sh
# debugging version.
just build
# or with debugging information stripped.
just buildrelease
```
alternatively, build both *frontend* and *backend* in release modes using:
`just prod` . the order of the steps is important as the application embeds the
generated stylesheet.
if you plan to run the application in `LiveMode` , the stylesheet can be
supplied when running the application; however, the binary will lack the way to
fall back to the embedded asset so bear that in mind.
if you're curious, you can open the [`justfile` ](justfile ) to see the details
of the build targets like `tw` and `buildrelease` used above.
2023-05-20 18:31:59 +02:00
2023-01-30 20:19:53 +01:00
### LICENSE
AGPL-3.0-only (see [LICENSE ](LICENSE ) for details).
