mirror of https://github.com/fiatjaf/khatru.git synced 2026-04-08 22:46:48 +02:00

Go to file

Anthony Accioly 3c802caff5 feat(blossom)!: add file extension parameter to Blossom hooks

This enhancement allows hooks to make extension-aware decisions for storage,
loading, and access control operations. The extension is intelligently derived
from MIME type detection, file magic bytes, or URL parsing.

Additionally improves MIME type handling by providing fallback to
"application/octet-stream" when extension-based detection fails as per
BUD-01.

BREAKING CHANGE: All Blossom hook functions now require an additional `ext` parameter:
- StoreBlob hooks now accept (ctx, sha256, ext, body) instead of (ctx, sha256, body)
- LoadBlob hooks now accept (ctx, sha256, ext) instead of (ctx, sha256)
- DeleteBlob hooks now accept (ctx, sha256, ext) instead of (ctx, sha256)
- RejectGet hooks now accept (ctx, auth, sha256, ext) instead of (ctx, auth, sha256)
- RejectDelete hooks now accept (ctx, auth, sha256, ext) instead of (ctx, auth, sha256)

2025-09-08 16:06:24 -03:00

.github/workflows

meta things and get rid of old relayer tests that don\'t work here.

2023-11-07 22:43:30 -03:00

blossom

feat(blossom)!: add file extension parameter to Blossom hooks

2025-09-08 16:06:24 -03:00

docs

feat(blossom)!: add file extension parameter to Blossom hooks

2025-09-08 16:06:24 -03:00

examples

feat(blossom)!: add file extension parameter to Blossom hooks

2025-09-08 16:06:24 -03:00

policies

add ratelimit policy based on NIP-42 authentication

2025-08-23 16:07:21 -03:00

.gitignore

fix(blossom): respond with 401 on missing Auth

2025-01-26 17:23:29 -03:00

adding.go

Reject deleted events

2025-04-16 18:55:36 -03:00

broadcasting.go

make it so ephemeral events respond with ok:false if no one is listening.

2025-04-14 09:24:34 -03:00

deleting.go

remove event from expiration manager if it is deleted.

2025-04-03 23:11:47 -03:00

ephemeral.go

make it so ephemeral events respond with ok:false if no one is listening.

2025-04-14 09:24:34 -03:00

expiration.go

initialScan()

2025-04-04 17:55:16 -03:00

get-started.go

basic modular blossom support.

2024-10-27 17:20:10 -03:00

go.mod

refactor @aaccioly's blossom redirect thing.

2025-06-10 16:22:48 -03:00

go.sum

refactor @aaccioly's blossom redirect thing.

2025-06-10 16:22:48 -03:00

handlers.go

if there is an ephemeral hook the relay is never mute.

2025-06-06 21:44:59 -03:00

helpers.go

fix @staab's mess.

2024-12-31 22:15:15 -03:00

LICENSE

add some readmes.

2022-01-02 17:30:35 -03:00

listener_fuzz_test.go

add a fuzz test.

2024-08-14 09:30:02 -03:00

listener_test.go

add test for that.

2024-08-13 13:59:08 -03:00

listener.go

make it so ephemeral events respond with ok:false if no one is listening.

2025-04-14 09:24:34 -03:00

negentropy.go

fix negentropy by making special provisions for bypassing query limits.

2024-11-03 16:57:18 -03:00

nip11.go

resolve relative icon and banner urls in nip11 handler.

2025-02-23 18:21:23 -03:00

nip86.go

Fix panic on method name mismatch

2025-06-10 21:49:06 -03:00

README.md

include the ReplaceEvent setup on all examples.

2025-01-13 16:47:21 -03:00

relay_test.go

Store and serve delete events

2025-04-16 18:55:28 -03:00

relay.go

making it a little better, so compiler wont complain.

2025-01-28 15:26:38 -03:00

responding.go

support hyperloglog handlers on COUNT.

2024-12-07 00:26:22 -03:00

router.go

routing.

2024-07-30 12:53:27 -03:00

utils.go

add khatru.IsInternal() for dealing with internal calls specifically in QueryEvents()

2025-04-03 23:06:57 -03:00

websocket.go

simplify WriteMessage, remove the defer since it's not needed.

2025-04-03 23:10:39 -03:00

README.md

khatru, a relay framework

Khatru makes it easy to write very very custom relays:

custom event or filter acceptance policies
custom AUTH handlers
custom storage and pluggable databases
custom webpages and other HTTP handlers

Here's a sample:

package main

import (
	"context"
	"fmt"
	"log"
	"net/http"

	"github.com/fiatjaf/khatru"
	"github.com/nbd-wtf/go-nostr"
)

func main() {
	// create the relay instance
	relay := khatru.NewRelay()

	// set up some basic properties (will be returned on the NIP-11 endpoint)
	relay.Info.Name = "my relay"
	relay.Info.PubKey = "79be667ef9dcbbac55a06295ce870b07029bfcdb2dce28d959f2815b16f81798"
	relay.Info.Description = "this is my custom relay"
	relay.Info.Icon = "https://external-content.duckduckgo.com/iu/?u=https%3A%2F%2Fliquipedia.net%2Fcommons%2Fimages%2F3%2F35%2FSCProbe.jpg&f=1&nofb=1&ipt=0cbbfef25bce41da63d910e86c3c343e6c3b9d63194ca9755351bb7c2efa3359&ipo=images"

	// you must bring your own storage scheme -- if you want to have any
	store := make(map[string]*nostr.Event, 120)

	// set up the basic relay functions
	relay.StoreEvent = append(relay.StoreEvent,
		func(ctx context.Context, event *nostr.Event) error {
			store[event.ID] = event
			return nil
		},
	)
	relay.QueryEvents = append(relay.QueryEvents,
		func(ctx context.Context, filter nostr.Filter) (chan *nostr.Event, error) {
			ch := make(chan *nostr.Event)
			go func() {
				for _, evt := range store {
					if filter.Matches(evt) {
						ch <- evt
					}
				}
				close(ch)
			}()
			return ch, nil
		},
	)
	relay.DeleteEvent = append(relay.DeleteEvent,
		func(ctx context.Context, event *nostr.Event) error {
			delete(store, event.ID)
			return nil
		},
	)

	// there are many other configurable things you can set
	relay.RejectEvent = append(relay.RejectEvent,
		// built-in policies
		policies.ValidateKind,

		// define your own policies
		policies.PreventLargeTags(100),
		func(ctx context.Context, event *nostr.Event) (reject bool, msg string) {
			if event.PubKey == "fa984bd7dbb282f07e16e7ae87b26a2a7b9b90b7246a44771f0cf5ae58018f52" {
				return true, "we don't allow this person to write here"
			}
			return false, "" // anyone else can
		},
	)

	// you can request auth by rejecting an event or a request with the prefix "auth-required: "
	relay.RejectFilter = append(relay.RejectFilter,
		// built-in policies
		policies.NoComplexFilters,

		// define your own policies
		func(ctx context.Context, filter nostr.Filter) (reject bool, msg string) {
			if pubkey := khatru.GetAuthed(ctx); pubkey != "" {
				log.Printf("request from %s\n", pubkey)
				return false, ""
			}
			return true, "auth-required: only authenticated users can read from this relay"
			// (this will cause an AUTH message to be sent and then a CLOSED message such that clients can
			//  authenticate and then request again)
		},
	)
	// check the docs for more goodies!

	mux := relay.Router()
	// set up other http handlers
	mux.HandleFunc("/", func(w http.ResponseWriter, r *http.Request) {
		w.Header().Set("content-type", "text/html")
		fmt.Fprintf(w, `<b>welcome</b> to my relay!`)
	})

	// start the server
	fmt.Println("running on :3334")
	http.ListenAndServe(":3334", relay)
}

But I don't want to write my own database!

Fear no more. Using the https://github.com/fiatjaf/eventstore module you get a bunch of compatible databases out of the box and you can just plug them into your relay. For example, sqlite:

	db := sqlite3.SQLite3Backend{DatabaseURL: "/tmp/khatru-sqlite-tmp"}
	if err := db.Init(); err != nil {
		panic(err)
	}

	relay.StoreEvent = append(relay.StoreEvent, db.SaveEvent)
	relay.QueryEvents = append(relay.QueryEvents, db.QueryEvents)
	relay.CountEvents = append(relay.CountEvents, db.CountEvents)
	relay.DeleteEvent = append(relay.DeleteEvent, db.DeleteEvent)
	relay.ReplaceEvent = append(relay.ReplaceEvent, db.ReplaceEvent)

But I don't want to write a bunch of custom policies!

Fear no more. We have a bunch of common policies written in the github.com/fiatjaf/khatru/policies package and also a handpicked selection of base sane defaults, which you can apply with:

	policies.ApplySaneDefaults(relay)

Contributions to this are very much welcomed.