1
0

README.rst 7.2 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192
  1. Installation
  2. ============
  3. Installing the system dependencies
  4. ----------------------------------
  5. To install Sydent's dependencies on a Debian-based system, run::
  6. sudo apt-get install build-essential python3-dev libffi-dev \
  7. sqlite3 libssl-dev python-virtualenv libxslt1-dev
  8. Creating the virtualenv
  9. -----------------------
  10. To create the virtual environment in which Sydent will run::
  11. virtualenv -p python3 ~/.sydent
  12. source ~/.sydent/bin/activate
  13. pip install --upgrade pip
  14. pip install --upgrade setuptools
  15. Installing the latest Sydent release from PyPI
  16. ----------------------------------------------
  17. Sydent and its dependencies can be installed using ``pip`` by running::
  18. pip install matrix-sydent
  19. Installing from source
  20. ----------------------
  21. Alternatively, Sydent can be installed using ``pip`` from a local git checkout::
  22. git clone https://github.com/matrix-org/sydent.git
  23. cd sydent
  24. pip install -e .
  25. Running Sydent
  26. ==============
  27. With the virtualenv activated, you can run Sydent using::
  28. python -m sydent.sydent
  29. If this is the first time Sydent is run, then it will generate a configuration file in
  30. ``sydent.conf`` with some defaults and then stop. You must run the generate-key script
  31. and update the config with this key before Sydent will start.
  32. You should not write anything in the ``[DEFAULT]`` section. If a
  33. setting is defined in both the ``[DEFAULT]`` section and another section in the configuration
  34. file, then the value in the other section is used.
  35. You'll most likely want to change the server name (``server.name``) and specify an email server
  36. (look for the settings starting with ``email.``).
  37. By default, Sydent will listen on ``0.0.0.0:8090``. This can be changed by changing the values for
  38. the configuration settings ``clientapi.http.bind_address`` and ``clientapi.http.port``.
  39. Sydent uses SQLite as its database backend. By default, it will create the database as ``sydent.db``
  40. in its working directory. The name can be overridden by modifying the ``db.file`` configuration option.
  41. Sydent is known to be working with SQLite version 3.16.2 and later.
  42. SMS originators
  43. ---------------
  44. Defaults for SMS originators will not be added to the generated config file, these should
  45. be added to the ``[sms]`` section of that config file in the form::
  46. originators.<country code> = <long|short|alpha>:<originator>
  47. Where country code is the numeric country code, or ``default`` to specify the originator
  48. used for countries not listed. For example, to use a selection of long codes for the
  49. US/Canada, a short code for the UK and an alphanumertic originator for everywhere else::
  50. originators.1 = long:12125552368,long:12125552369
  51. originators.44 = short:12345
  52. originators.default = alpha:Matrix
  53. Docker
  54. ======
  55. A Dockerfile is provided for sydent. To use it, run ``docker build -t sydent .`` in a sydent checkout.
  56. To run it, use ``docker run --env=SYDENT_SERVER_NAME=my-sydent-server -p 8090:8090 sydent``.
  57. Caution: All data will be lost when the container is terminated!
  58. Persistent data
  59. ---------------
  60. By default, all data is stored in ``/data``.
  61. The best method is to put the data in a Docker volume.
  62. .. code-block:: shell
  63. docker volume create sydent-data
  64. docker run ... --mount type=volume,source=sydent-data,destination=/data sydent
  65. But you can also bind a local directory to the container.
  66. However, you then have to pay attention to the file permissions.
  67. .. code-block:: shell
  68. mkdir /path/to/sydent-data
  69. chown 993:993 /path/to/sydent-data
  70. docker run ... --mount type=bind,source=/path/to/sydent-data,destination=/data sydent
  71. Environment variables
  72. ---------------------
  73. .. warning:: These variables are only taken into account at first start and are written to the configuration file.
  74. +--------------------+-----------------+-----------------------+
  75. | Variable Name | Sydent default | Dockerfile default |
  76. +====================+=================+=======================+
  77. | SYDENT_SERVER_NAME | *empty* | *empty* |
  78. +--------------------+-----------------+-----------------------+
  79. | SYDENT_CONF | ``sydent.conf`` | ``/data/sydent.conf`` |
  80. +--------------------+-----------------+-----------------------+
  81. | SYDENT_PID_FILE | ``sydent.pid`` | ``/data/sydent.pid`` |
  82. +--------------------+-----------------+-----------------------+
  83. | SYDENT_DB_PATH | ``sydent.db`` | ``/data/sydent.db`` |
  84. +--------------------+-----------------+-----------------------+
  85. Testing
  86. =======
  87. Sydent uses matrix-is-tester (https://github.com/matrix-org/matrix-is-tester/) to provide
  88. black-box testing of compliance with the `Matrix Identity Service API <https://matrix.org/docs/spec/identity_service/latest>`_.
  89. This can be run as follows::
  90. pip install git+https://github.com/matrix-org/matrix-is-tester.git
  91. trial matrix_is_tester
  92. The ``SYDENT_PYTHON`` enviroment variable can be set to launch Sydent with a specific python binary::
  93. SYDENT_PYTHON=/path/to/python trial matrix_is_tester
  94. The ``matrix_is_test`` directory contains Sydent's launcher for ``matrix_is_tester``: this means
  95. that Sydent's directory needs to be on the Python path (e.g. ``PYTHONPATH=$PYTHONPATH:/path/to/sydent``).
  96. Sydent also has some unit tests to ensure some of its features that aren't part of the Matrix
  97. specification (e.g. replication) keep on working. To run these tests, run the following with Sydent's
  98. virtualenv activated from the root of the Sydent repository::
  99. trial tests
  100. Internal bind and unbind API
  101. ============================
  102. It is possible to enable an internal API which allows for binding and unbinding
  103. between identifiers and matrix IDs without any validation.
  104. This is open to abuse, so is disabled by
  105. default, and when it is enabled, is available only on a separate socket which
  106. is bound to ``localhost`` by default.
  107. To enable it, configure the port in the config file. For example::
  108. [http]
  109. internalapi.http.port = 8091
  110. To change the address to which that API is bound, set the ``internalapi.http.bind_address`` configuration
  111. setting in the ``[http]`` section, for example::
  112. [http]
  113. internalapi.http.port = 8091
  114. internalapi.http.bind_address = 192.168.0.18
  115. As already mentioned above, this is open to abuse, so make sure this address is not publicly accessible.
  116. To use bind::
  117. curl -XPOST 'http://localhost:8091/_matrix/identity/internal/bind' -H "Content-Type: application/json" -d '{"address": "matthew@arasphere.net", "medium": "email", "mxid": "@matthew:matrix.org"}'
  118. The response has the same format as
  119. `/_matrix/identity/api/v1/3pid/bind <https://matrix.org/docs/spec/identity_service/r0.3.0#deprecated-post-matrix-identity-api-v1-3pid-bind>`_.
  120. To use unbind::
  121. curl -XPOST 'http://localhost:8091/_matrix/identity/internal/unbind' -H "Content-Type: application/json" -d '{"address": "matthew@arasphere.net", "medium": "email", "mxid": "@matthew:matrix.org"}'
  122. The response has the same format as
  123. `/_matrix/identity/api/v1/3pid/unbind <https://matrix.org/docs/spec/identity_service/r0.3.0#deprecated-post-matrix-identity-api-v1-3pid-unbind>`_.
  124. Replication
  125. ===========
  126. It is possible to configure a mesh of Sydent instances which replicate identity bindings
  127. between each other. See `<docs/replication.md>`_.