Minimal config Actix-based image hosting service. Backend code mainly based on binserve with minor modification, and frontend driven by Bootstrap-Fileinput.
All credits to the open source community.
For backend:
- Speed. Actix has remained competent in certain benchmarks compared to other backend frameworks.
- Portability. After getting acquainted with Rust, simply edit the configuration file, and run this code with
cargo runwill serve the job. - Minimal configuration needed, and other features inherited from binserve, including:
- Configuration in a single file;
- Easiest Routing: change
routesentry in json file for a new route entry; - Handlebars template engine: renders every static file with
Handlebarson the first run improving performance; - Secure by design. Runs security validation checks (featuring symlink checking) on the first run and will only run the server once configuration is confirmed secure. Check other features about security from binserve/security;
- Custom Error Page Support: designing fancy error pages comes easy;
- All features above should be credited to mufeedvh and the other contributors for binserve.
- HTTPS automatic redirection from this Actix middleware
- SSL keys location configurable. Check out
serve_opt.jsonfor a glimpse. - Introducing Rustls for importing ssl keys, and given valid ssl keys, will switch to HTTP/2 automatically. Thanks to support from Actix HTTP/2 module.
- Rename filenames of images automatically using UUIDs (Universally Unique Identifiers) so that filename crash will never happen.
For frontend:
- Designed based on Bootstrap 4.5 and JQuery.
- File uploading from Bootstrap-Fileinput.
- Seeking better alternatives if given elegant and working code.
The configuration file may seem complicate at first glance. Below will give an essential explanation about the file and possible settings.
- "follow_symlinks": if symlink files are included as files to be served, and this option is
false, then warnings will be given to change symlinks into actual files. - "enable_logging": Enable Actix logging middleware to record history of the server.
- "routes": Basic routing for certain uri. Check Actix Routing Rules for more options.
- "static_directory": Directory containing static files, including html files, icons, css/js files.
- "directory_listing": If css/js files are included indeed, you may want to serve them to the users instead of using cdn. Given the circumstance, it is reasonable to allow users to list all these files (which are contained in seperated folders). Serving js/css files hasn't been made available as an option yet, if any configuration or modification should be made, please edit
src/main.rsdirectly. - "server": Configuration for the server.
- "host": set
0.0.0.0for accessing the files from another device by the server's ip address; set127.0.0.1orlocalhostfor self-testing. If you use nginx or other reserse proxy services, the address for self-testing should be your choice. - "httpport": port for accessing by http. Note that when https are enabled, http requests will be automatically redirected to https.
- "httpsport": enable https by setting value to a valid port. However, to make https really working, you will need to specify location for ssl keys in config.
- "host": set
- "ssl": Generating SSL keys will be discussed later thoroughly.
- "cert": Location to cert file, or named public key.
- "key": Location to key file, or named private key.
- "uploaded_files": Configuration for the url dispatching of the uploaded image files.
- "raw_directory": Where the uploaded files are saved, according to the upload api.
- "directed_to": The preceding path of the URI; the image files are served as
domain_name/{directed_to}/filename.
- "template_directory": Output directory for Handlebars rendering engine; also where the served static files, including html, css/js, icon files, are really stored. The
static_directorycontains the raw files, while files in this directory are rendered and served for public access. - "template_variables": variables for Handlebars engine. Compare files in
static_directoryandtemplate_directoryfor a glance of its effect.
Install Git following Guide from Git-Scm or Guide from Github, then install Rust compiler and cargo by installing rustup.
Check the configuration in ./serve_opt.json, then type the following commands to run the server.
$ git clone https://github.com/normanade/superserve.git
$ cd superserve/
$ cargo run
Note that when playing with the config file, you should know the meaning behind the setting; read the doc above or save a backup file is the suggestion.
HTTPS is a must for migrating to HTTP/2, while SSL keys, or certificates, are essential for HTTPS.
Self-signed certs are handy when you just want to test locally and check whether functions are running or not. Here comes several alternatives (never a exhaustive list) for generating self-signed certs.
SSL keys can be simply generated by OpenSSL req Command. A common usage is
openssl req -x509 -newkey rsa:4096 -keyout key.pem -out cert.pem -days 365
OpenSSL seems bundled in certain operating systems, but installing it should be easy if not in your system. After installation, Check the command usage for more information.
If you want a modern UI and nice usage guide, check mkcert, which is written in Golang.
If you prefer a pure Rust approach, rcgen would suit your requirements.
Self-signed certificates mostly won't introduce a lock sign in your browser, since browsers won't trust these certificates. That will be quite a pain for perfectionists.
Personally I chose certbot from ETF, not endorsing or advertisement, but just a choice. In certain way, Let's Encrypt cooperated with browser brands and made the lock sign available for site visitors. Apart from certbot, maybe there are also some service providers who does the similar things as certbot but I failed to find out.
For certbot users, after installing the new certs and setting the configuaration, you may find the file unreadable by the HTTP server process. Solutions are: run the process in root mode, or change the permissions of the certs so that they are readable.
If you feel satisfied or helped with the project, contribute by leaving a star and sharing it on social media; if you think further improvements can be made, pull requests or suggestions are always welcome; if you by any chance feel doubted or dissatisfied, raise an issue with detailed infomation.