Go to file
2020-05-14 18:17:44 -04:00
src Handle client certs and authorized certs, fix CGI a bit 2020-05-14 18:15:44 -04:00
.gitignore Makefile, readme in markdown 2020-02-21 16:10:08 -05:00
config.yaml.sample update docs 2020-05-14 18:17:44 -04:00
go.mod cleanup 2020-02-20 17:00:20 -05:00
go.sum Makefile, readme in markdown 2020-02-21 16:10:08 -05:00
Makefile Handle client certs and authorized certs, fix CGI a bit 2020-05-14 18:15:44 -04:00
README.md update docs 2020-05-14 18:17:44 -04:00
secretshop.service add sample config 2020-02-12 20:34:52 -05:00

SecretShop: a small Gemini server.

Features

  • Multi-site hosting
  • Also supports simple Gopher hosting
  • Fully compliant with Jetforce diagnostics
  • Probably won't kill your computer

Configuration

SecretShop looks in it's current running directory and /etc/secretshop for it's config file. Configuration is in config/yaml in one of the above directories. See the sample config for more details but a standard file looks like such:

---
port: 1965
active_capsules:
        - localhost
localhost:
        Hostname: "localhost"
        Port: "1965"
        RootDir: "/var/gemini"
        CGIDir: "/var/gemini/cgi"
        KeyFile: "localhost.key"
        CertFile: "localhost.crt"

Where each "active_capsule" is a virtual Gemini capsule. SecretShop supports virtual Gemini capsules all listening on port 1965 as well as multiple Gopher servers runnning (though not virtual Gopher hosts due to protocol limitations)

Building

Build Dependencies: go1.14

Running "make" should work for any given x86 machine.

If you're planning on running this on a Raspberry Pi or other ARM machine try env GOOS=linux GOARCH=arm GOARM=5 make

Installation

Running "make install" will install to /usr/local/bin by default.

Running "make service" will install to /usr/local/bin and also install the systemd service file

Uninstall

Simply run "make uninstall".

Running

Either run the executable directly or use the SystemD unit file

Caveats

Currently does not support transient certificates Only handles whitelisting for certificate authorization