Home Verkennen Help
Inloggen
RISCI_ATOM
/
synapse
spiegel van https://github.com/matrix-org/synapse.git
1
0
Vork 0
Bestanden Issues 3 Wiki
Boom: 4c780abf2d
Aftakkingen Labels
synapse
/
demo
/
start.sh

start.sh 4.2 KB
Geschiedenis Ruwe

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160 
  1. #!/usr/bin/env bash
    2. 

  2. 

  3. DIR="$( cd "$( dirname "$0" )" && pwd )"
    4. 

  4. 

  5. CWD=$(pwd)
    6. 

  6. 

  7. cd "$DIR/.." || exit
    8. 

  8. 

  9. PYTHONPATH=$(readlink -f "$(pwd)")
    10. 

  10. export PYTHONPATH
    11. 

  11. 

  12. 

  13. echo "$PYTHONPATH"
    14. 

  14. 

  15. for port in 8080 8081 8082; do
    16. 

  16.     echo "Starting server on port $port... "
    17. 

  17. 

  18.     https_port=$((port + 400))
    19. 

  19.     mkdir -p demo/$port
    20. 

  20.     pushd demo/$port || exit
    21. 

  21. 

  22.     # Generate the configuration for the homeserver at localhost:848x.
    23. 

  23.     python3 -m synapse.app.homeserver \
    24. 

  24.         --generate-config \
    25. 

  25.         --server-name "localhost:$port" \
    26. 

  26.         --config-path "$port.config" \
    27. 

  27.         --report-stats no
    28. 

  28. 

  29.     if ! grep -F "Customisation made by demo/start.sh" -q "$port.config"; then
    30. 

  30.         # Generate TLS keys.
    31. 

  31.         openssl req -x509 -newkey rsa:4096 \
    32. 

  32.           -keyout "localhost:$port.tls.key" \
    33. 

  33.           -out "localhost:$port.tls.crt" \
    34. 

  34.           -days 365 -nodes -subj "/O=matrix"
    35. 

  35. 

  36.         # Add customisations to the configuration.
    37. 

  37.         {
    38. 

  38.             printf '\n\n# Customisation made by demo/start.sh\n\n'
    39. 

  39.             echo "public_baseurl: http://localhost:$port/"
    40. 

  40.             echo 'enable_registration: true'
    41. 

  41.             echo 'enable_registration_without_verification: true'
    42. 

  42.             echo ''
    43. 

  43. 

  44. 			# Warning, this heredoc depends on the interaction of tabs and spaces.
    45. 

  45. 			# Please don't accidentaly bork me with your fancy settings.
    46. 

  46. 			listeners=$(cat <<-PORTLISTENERS
    47. 

  47. 			# Configure server to listen on both $https_port and $port
    48. 

  48. 			# This overides some of the default settings above
    49. 

  49. 			listeners:
    50. 

  50. 			  - port: $https_port
    51. 

  51. 			    type: http
    52. 

  52. 			    tls: true
    53. 

  53. 			    resources:
    54. 

  54. 			      - names: [client, federation]
    55. 

  55. 

  56. 			  - port: $port
    57. 

  57. 			    tls: false
    58. 

  58. 			    bind_addresses: ['::1', '127.0.0.1']
    59. 

  59. 			    type: http
    60. 

  60. 			    x_forwarded: true
    61. 

  61. 			    resources:
    62. 

  62. 			      - names: [client, federation]
    63. 

  63. 			        compress: false
    64. 

  64. 			PORTLISTENERS
    65. 

  65. 			)
    66. 

  66. 

  67.             echo "${listeners}"
    68. 

  68. 

  69.             # Disable TLS for the servers
    70. 

  70.             printf '\n\n# Disable TLS for the servers.'
    71. 

  71.             echo '# DO NOT USE IN PRODUCTION'
    72. 

  72.             echo 'use_insecure_ssl_client_just_for_testing_do_not_use: true'
    73. 

  73.             echo 'federation_verify_certificates: false'
    74. 

  74. 

  75.             # Set paths for the TLS certificates.
    76. 

  76.             echo "tls_certificate_path: \"$DIR/$port/localhost:$port.tls.crt\""
    77. 

  77.             echo "tls_private_key_path: \"$DIR/$port/localhost:$port.tls.key\""
    78. 

  78. 

  79.             # Ignore keys from the trusted keys server
    80. 

  80.             echo '# Ignore keys from the trusted keys server'
    81. 

  81.             echo 'trusted_key_servers:'
    82. 

  82.             echo '  - server_name: "matrix.org"'
    83. 

  83.             echo '    accept_keys_insecurely: true'
    84. 

  84.             echo ''
    85. 

  85. 

  86. 			# Allow the servers to communicate over localhost.
    87. 

  87. 			allow_list=$(cat <<-ALLOW_LIST
    88. 

  88. 			# Allow the servers to communicate over localhost.
    89. 

  89. 			ip_range_whitelist:
    90. 

  90. 			  - '127.0.0.1/8'
    91. 

  91. 			  - '::1/128'
    92. 

  92. 			ALLOW_LIST
    93. 

  93. 			)
    94. 

  94. 

  95.             echo "${allow_list}"
    96. 

  96.         } >> "$port.config"
    97. 

  97.     fi
    98. 

  98. 

  99.     # Check script parameters
    100. 

  100.     if [ $# -eq 1 ]; then
    101. 

  101.         if [ "$1" = "--no-rate-limit" ]; then
    102. 

  102. 

  103.             # Disable any rate limiting
    104. 

  104.             ratelimiting=$(cat <<-RC
    105. 

  105. 			rc_message:
    106. 

  106. 			  per_second: 1000
    107. 

  107. 			  burst_count: 1000
    108. 

  108. 			rc_registration:
    109. 

  109. 			  per_second: 1000
    110. 

  110. 			  burst_count: 1000
    111. 

  111. 			rc_login:
    112. 

  112. 			  address:
    113. 

  113. 			    per_second: 1000
    114. 

  114. 			    burst_count: 1000
    115. 

  115. 			  account:
    116. 

  116. 			    per_second: 1000
    117. 

  117. 			    burst_count: 1000
    118. 

  118. 			  failed_attempts:
    119. 

  119. 			    per_second: 1000
    120. 

  120. 			    burst_count: 1000
    121. 

  121. 			rc_admin_redaction:
    122. 

  122. 			  per_second: 1000
    123. 

  123. 			  burst_count: 1000
    124. 

  124. 			rc_joins:
    125. 

  125. 			  local:
    126. 

  126. 			    per_second: 1000
    127. 

  127. 			    burst_count: 1000
    128. 

  128. 			  remote:
    129. 

  129. 			    per_second: 1000
    130. 

  130. 			    burst_count: 1000
    131. 

  131. 			rc_3pid_validation:
    132. 

  132. 			  per_second: 1000
    133. 

  133. 			  burst_count: 1000
    134. 

  134. 			rc_invites:
    135. 

  135. 			  per_room:
    136. 

  136. 			    per_second: 1000
    137. 

  137. 			    burst_count: 1000
    138. 

  138. 			  per_user:
    139. 

  139. 			    per_second: 1000
    140. 

  140. 			    burst_count: 1000
    141. 

  141. 			RC
    142. 

  142. 			)
    143. 

  143.             echo "${ratelimiting}" >> "$port.config"
    144. 

  144.         fi
    145. 

  145.     fi
    146. 

  146. 

  147.     # Always disable reporting of stats if the option is not there.
    148. 

  148.     if ! grep -F "report_stats" -q  "$port.config" ; then
    149. 

  149.         echo "report_stats: false" >> "$port.config"
    150. 

  150.     fi
    151. 

  151. 

  152.     # Run the homeserver in the background.
    153. 

  153.     python3 -m synapse.app.homeserver \
    154. 

  154.         --config-path "$port.config" \
    155. 

  155.         -D \
    156. 

  156. 

  157.     popd || exit
    158. 

  158. done
    159. 

  159. 

  160. cd "$CWD" || exit
    161.