Skip to content

PurritoBin/docker

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

49 Commits
.github/workflows
.github/workflows
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
purritobin_wrapper
purritobin_wrapper
 
 

Repository files navigation

Purrito Bin (=♡ᆺ♡=)

pipeline GitHub release (latest SemVer including pre-releases) GitHub license GitHub issues contributions welcome

docker docker pulls image size

ultra fast, minimalistic, encrypted command line paste-bin

Features and Highlights

  • Very lightweight: 2-3 MB of RAM on average.
  • Listen on multiple address/port combinations, both IPv4 and IPv6.
  • Configurable paste size limit.
  • Auto-cleaning of pastes, with configurable paste lifetime at submission time:
    • domain.tld/{day,week,month}
    • domain.tld/<time-in-minutes> such as domain.tld/300
  • Paste storage in plain text, easy to integrate with all web servers (Apache, Nginx, etc.).
  • Encrypted pasting similar to PrivateBin.
  • Optional https support for secure communication.
  • Tiny code base, less than 1000 lines of code, for very easy auditing.
  • Well documented, man purrito.

Environment Variables

The container image allows passing the following variables to configure PurritoBin:

Variable Default Description
DOMAIN http://localhost:42069/ domain used as prefix of returned paste
MAXPASTESIZE 65536 maximum paste size allowed, in BYTES
SLUGSIZE 7 length of the randomly generated string id for the paste
TLS NO set to YES to enable listening via https
SERVERNAME localhost server name indication used for TLS handshakes, must be valid for the given certificates
PUBLICKEY /etc/purritobin/public.crt TLS public certificate
PRIVATEKEY /etc/purritobin/private.crt TLS private certificate
P_FLAGS "" Extra flags to provide extra settings

Exposed ports

Port Description
42069 Port used for pasting

UID/GID

By default, purritobin runs with the user:group set to 1000:1000. This can be changed to the desired value with the docker flag -u UID:GID, appropriately subsituting the desired values.

Mountable Volumes

The container image can use the following volumes, it is recommended to mount at least the first two volumes for persistent storage:

Volume Description
/var/www/purritobin default location for storing the pastes
/var/db/purritobin default location for storing the timestamp database
/etc/purritobin default location for loading certificates, only used if enabling TLS

Examples

For all examples below, remember to substitute the value of DOMAIN from localhost to the actual domain/IP of the machine.

docker cli

HTTP

A simple example:

  • Run the server while listening for pastes on host port 8080.
    • Map host port 8080 to container port 42069.
  • Create a persistent store of pastes in host folder /data/apps/purritobin/pastes.
    • Make a shared volume by mounting /data/apps/purritobin/pastes to /var/www/purritobin inside the container.
  • Create a persistent store of timestamps in host folder /data/apps/purritobin/database.
    • Make another shared volume by mounting /data/apps/purritobin/database to /var/db/purritobin.
  • Set the running user and group to 10000:10000.
docker run -d \
    --name=purritobin \
    -u 10000:10000 \
    -e DOMAIN="http://localhost:8080/" \
    -p 8080:42069 \
    -v /data/apps/purritobin/pastes:/var/www/purritobin \
    -v /data/apps/purritobin/database:/var/db/purritobin \
    --restart unless-stopped \
    purritobin/purritobin

To check that the server is running, visit the page in a web browser (or curl it) at http://localhost:8080/

To do a test paste to the above server

    $ echo "cool paste" | curl --silent --data-binary "@${1:-/dev/stdin}" "http://localhost:8080/"
    http://localhost:8080/purr1t0
    $ curl --silent http://localhost:8080/purr1t0
    cool paste

HTTPS

While PurritoBin supports native https, it is possible to run this behind any reverse proxy of choice, such as nginx, haproxy, etc.

To run with the inbuilt support for https, the public and private keys need to be provided to the container and mounted at /etc/purritobin.
By default, it is assumed that the public and private keys are stored at /etc/purritobin/public.crt and /etc/purritobin/private.crt, respectively.
For example, assuming that the certificates for the domain localhost are stored on the host machine at /data/apps/certificates/{public,private}.crt, Purrito Bin can be started in https mode with:

docker run -d \
    --name=purritobin \
    -u 10000:10000 \
    -e DOMAIN="https://localhost:8080/" \
    -e MAXPASTESIZE=65536 \
    -e SLUGSIZE="7" \
    -e TLS="YES" \
    -e PUBLICKEY="/etc/purritobin/public.crt" \
    -e PRIVATEKEY="/etc/purritobin/private.crt" \
    -e SERVERNAME="localhost" \
    -p 8080:42069 \
    -v /data/apps/purritobin/pastes:/var/www/purritobin \
    -v /data/apps/purritobin/database:/var/db/purritobin \
    -v /data/apps/certificates:/etc/purritobin \
    --restart unless-stopped \
    purritobin/purritobin

About

docker files for purritobin

Resources

Readme

License

ISC license
Activity
Custom properties

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

18 tags

Packages

No packages published

Languages