The Outline Server, internal name "Shadowbox," is designed to streamline the setup and sharing of Shadowsocks servers. It includes a user management API and creates Shadowsocks instances when needed. It's managed by the Outline Manager and used as proxy by the Outline Client apps. Shadowbox is also compatible with standard Shadowsocks clients.
-
Run the Installation Script
sudo bash -c "$(wget -qO- https://raw.githubusercontent.com/Jigsaw-Code/outline-apps/master/server_manager/install_scripts/install_server.sh)" -
Customize (Optional)
Add flags for hostname, port, etc. Example:
sudo bash -c "$(wget -qO- https://raw.githubusercontent.com/Jigsaw-Code/outline-apps/master/server_manager/install_scripts/install_server.sh)" install_server.sh \ --hostname=myserver.com \ --keys-port=443- Use
sudo --preserve-envfor environment variables. - Use
bash -xfor debugging.
- Use
Prerequisites
Tip
If you use nvm, switch to the correct Node version with nvm use.
-
Build and Run:
Shadowbox supports running on linux and macOS hosts.
-
Node.js App
npm run action shadowbox/server/start
-
Docker Container
npm run action shadowbox/docker/start
[!TIP] Some useful commands when working with Docker images and containers:
-
Debug Image:
docker run --rm -it --entrypoint=sh localhost/outline/shadowbox
-
Debug Running Container:
docker exec -it shadowbox sh -
Cleanup Dangling Images:
docker rmi $(docker images -f dangling=true -q)
-
-
-
Send a Test Request
curl --insecure https://[::]:8081/TestApiPrefix/server
The Outline Server provides a REST API for access key management. If you know the apiUrl of your Outline Server (e.g. https://1.2.3.4:1234/3pQ4jf6qSr5WVeMO0XOo4z), you can directly manage the server's access keys using HTTP requests:
-
Find the Server's
apiUrl:-
Deployed with the Installation Script: Run
grep "apiUrl" /opt/outline/access.txt | cut -d: -f 2- -
Deployed with the Outline Manager: Check the "Settings" tab.
-
Local Deployments from Source:
https://[::]:8081/TestApiPrefix
-
-
API Examples:
Replace
$API_URLwith your actualapiUrl.-
List access keys:
curl --insecure $API_URL/access-keys/ -
Create an access key:
curl --insecure -X POST $API_URL/access-keys -
Get an access key (e.g. ID 1):
curl --insecure $API_URL/access-keys/1 -
Rename an access key:
curl --insecure -X PUT -F 'name=albion' $API_URL/access-keys/2/name -
Remove an access key:
curl --insecure -X DELETE $API_URL/access-keys/1 -
Set a data limit for all access keys: (e.g. limit outbound data transfer access keys to 1MB over 30 days)
curl --insecure -X PUT -H "Content-Type: application/json" -d '{"limit": {"bytes": 1000}}' $API_URL/server/access-key-data-limit -
Remove the access key data limit:
curl --insecure -X DELETE $API_URL/server/access-key-data-limit -
And more...
-
-
Further Options:
Consult the OpenAPI spec and documentation for more options.
-
Prerequisites
- A locally built Docker image containing your modifications.
- Your Docker image uploaded to a registry (e.g., Docker Hub, Quay.io).
-
Setup
-
Environment Variable: Set
SB_IMAGEto the uploaded image location. Example:export SB_IMAGE=yourdockerhubusername/shadowbox -
Start the Server:
npm run action shadowbox/docker/start
-
-
Build and Run:
npm run action shadowbox/integration_test/run
This does the following:
- Sets up three containers (
client,shadowbox,target) and two networks. - Creates a user on
shadowbox. - Connects to
targetthroughshadowboxusing a Shadowsocksclient:client <-> shadowbox <-> target
- Sets up three containers (
-
Testing Changes to the Server Config:
If your change includes new fields in the server config which are needed at server start-up time, then you mey need to remove the pre-existing test config:
-
Delete Existing Config:
rm /tmp/outline/persisted-state/shadowbox_server_config.json -
Manually Edit: You'll need to edit the JSON string within
src/shadowbox/docker/start.action.sh.