fork 0k-charms
 
 

72 lines
1.8 KiB

# -*- mode: shell-script -*-
PDS_LOCAL_DATADIR=/var/lib/bluesky
PDS_DATADIR="$SERVICE_DATASTORE$PDS_LOCAL_DATADIR"
PDS_ENV_FILE="$PDS_DATADIR/.env"
bluesky:init() {
local admin_password
init-config-add "
$SERVICE_NAME:
env_file:
- \"$PDS_ENV_FILE\"
"
[ -e "$PDS_ENV_FILE" ] && return
admin_password=$(password:get admin internal) || {
err "Failed to get admin password" >&2
return 1
}
mkdir -p "${PDS_ENV_FILE%/*}"
if ! plc_key=$(openssl ecparam --name secp256k1 --genkey --noout --outform DER 2>&1); then
err "Failed to generate PLC key" >&2
e "$plc_key" | prefix " $GRAY|$NORMAL " >&2
return 1
fi
if ! plc_key=$(set -o pipefail
echo "$plc_key" |
tail --bytes=+8 |
head --bytes=32 |
xxd --plain --cols 32 2>&1
); then
err "Failed to extract PLC key" >&2
e "$plc_key" | prefix " $GRAY|$NORMAL " >&2
return 1
fi
if ! jwt_secret=$(openssl rand -hex 16); then
err "Failed to generate JWT secret" >&2
e "$jwt_secret" | prefix " $GRAY|$NORMAL " >&2
return 1
fi
cat > "$PDS_ENV_FILE" <<EOF
PDS_JWT_SECRET=${jwt_secret}
PDS_ADMIN_PASSWORD=${admin_password}
PDS_PLC_ROTATION_KEY_K256_PRIVATE_KEY_HEX=${plc_key}
PDS_DATA_DIRECTORY=${PDS_LOCAL_DATADIR}
PDS_BLOBSTORE_DISK_LOCATION=${PDS_LOCAL_DATADIR}/blocks
PDS_BLOB_UPLOAD_LIMIT=52428800
PDS_DID_PLC_URL=https://plc.directory
PDS_BSKY_APP_VIEW_URL=https://api.bsky.app
PDS_BSKY_APP_VIEW_DID=did:web:api.bsky.app
PDS_REPORT_SERVICE_URL=https://mod.bsky.app
PDS_REPORT_SERVICE_DID=did:plc:ar7c4by46qjdydhdevvrndac
PDS_CRAWLERS=https://bsky.network
LOG_ENABLED=true
EOF
if email_from=$(options-get "email-from" 2>/dev/null) && [ -n "$email_from" ]; then
echo "PDS_EMAIL_FROM_ADDRESS=${email_from}" >> "$PDS_ENV_FILE"
fi
}