Password Compromise Monitoring Tool
leo
6ce05ea74d
All checks were successful
continuous-integration/drone/push Build is passing
have the app create the initial admin user: * if the db has not yet been set up * if there are not users * if the config value for Init.CreateAdmin is True * if the admin password is not empty default username, email values can be seen in modules/user/const.go |
||
|---|---|---|
| app | ||
| assets | ||
| config | ||
| ent | ||
| handlers | ||
| modules | ||
| slogging | ||
| templates | ||
| .air.toml | ||
| .dockerignore | ||
| .drone.yml | ||
| .editorconfig | ||
| .envrc | ||
| .gitattributes | ||
| .gitignore | ||
| .golangci.yml | ||
| .hadolint.yaml | ||
| .pre-commit-config.yaml | ||
| bs.js | ||
| Containerfile | ||
| devenv.lock | ||
| devenv.nix | ||
| devenv.yaml | ||
| Dockerfile | ||
| embed.go | ||
| error.go | ||
| exampleConfig.dhall | ||
| gen.go | ||
| go.mod | ||
| go.sum | ||
| justfile | ||
| LICENSE | ||
| main.go | ||
| package-lock.json | ||
| package.json | ||
| README.md | ||
| run_test.go | ||
| run.go | ||
| svgo.config.js | ||
| tailwind.config.js | ||
pcmt
Password Compromise Monitoring Tool
🚧 note: this project is being developed as a part of my thesis and is currently a work in progress. 🚧
How to try this out
with podman and just
installed, run the following:
# build the image locally using kaniko.
just kaniko
# start postgres.
just dbstart
# in another terminal, run the application.
# make sure to supply real CONNSTRING values for production environment.
podman run --rm -it -e PCMT_DBTYPE=postgres \
-e PCMT_CONNSTRING="host=127.0.0.1 port=5432 sslmode=disable dbname=postgres password=postgres"
-e PCMT_LIVE=False docker.io/immawanderer/pcmt:testbuild \
-config /etc/pcmt/config.dhall
while the above is fine, running in pods is more close to a production setting (assuming rootless setup):
# create a pod.
podman pod create --userns=keep-id -p3005:3000 --name pcmt
# run a db in the pod.
podman run --pod pcmt --replace -d --name "pcmt-pg" --rm \
-e POSTGRES_INITDB_ARGS="--auth-host=scram-sha-256 --auth-local=scram-sha-256" \
-e POSTGRES_PASSWORD=postgres -v $PWD/tmp/db:/var/lib/postgresql/data \
docker.io/library/postgres:15.2-alpine3.17
# run the application in the pod (assuming that you have built it as in the
# previous example). do note that we're connecting to the db using its
# container name, while localhost would also work. inside the pod, every
# container is reachable on localhost.
podman run --pod pcmt --replace --name pcmt-og -d --rm \
-e PCMT_LIVE=False \
-e PCMT_DBTYPE="postgres" \
-e PCMT_CONNSTRING="host=pcmt-pg port=5432 sslmode=disable user=postgres dbname=postgres password=postgres" \
-v $PWD/config.dhall:/config.dhall:ro \
docker.io/immawanderer/pcmt:testbuild -config /config.dhall
# also, if we try to connect to the db from the host we get an error (unless
there is another database running on localhost already, such as the one from
the previous example).
curl localhost:5432
--> curl: (7) Failed to connect to localhost port 5432 after 0 ms: Couldn't connect to server
# that is because the database port has not been exposed from the pod (recall
the pod creation command).
Custom config
Make sure to check out the Dhall configuration schema to see what's possible, or have a look at the example config.
If you're new to Dhall, its documentation page is a good resource to start at.
LICENSE
AGPL-3.0-only (see LICENSE for details).