add scripts

Author: collapsinghierarchy

internal/auth/http.go

@@ -2,7 +2,6 @@ package auth
 
 import (
 	"net/http"
-	"strconv"
 	"strings"
 
 	"github.com/collapsinghierarchy/noisytransfer/internal/ids"
@@ -19,27 +18,3 @@ func RequireUUIDAppID(next http.Handler) http.Handler {
 		next.ServeHTTP(w, r)
 	})
 }
-
-// EnforceUploadPolicyMax blocks oversize uploads early (413).
-// If maxBytes <= 0, the limiter is disabled (no size cap).
-func EnforceUploadPolicyMax(maxBytes int64) func(http.Handler) http.Handler {
-	return func(next http.Handler) http.Handler {
-		// disabled?
-		if maxBytes <= 0 {
-			return next
-		}
-		return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-			switch r.Method {
-			case http.MethodPut, http.MethodPost, http.MethodPatch:
-				if cl := r.Header.Get("Content-Length"); cl != "" {
-					if n, err := strconv.ParseInt(cl, 10, 64); err == nil && n > maxBytes {
-						http.Error(w, "payload too large", http.StatusRequestEntityTooLarge)
-						return
-					}
-				}
-				r.Body = http.MaxBytesReader(w, r.Body, maxBytes)
-			}
-			next.ServeHTTP(w, r)
-		})
-	}
-}

internal/httpx/policy.go

@@ -0,0 +1,29 @@
+package httpx
+
+import (
+	"net/http"
+	"strconv"
+)
+
+// EnforceUploadPolicyMax blocks oversize uploads early (413).
+// If maxBytes <= 0, the limiter is disabled (no size cap).
+func EnforceUploadPolicyMax(maxBytes int64) func(http.Handler) http.Handler {
+	return func(next http.Handler) http.Handler {
+		if maxBytes <= 0 {
+			return next
+		}
+		return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+			switch r.Method {
+			case http.MethodPut, http.MethodPost, http.MethodPatch:
+				if cl := r.Header.Get("Content-Length"); cl != "" {
+					if n, err := strconv.ParseInt(cl, 10, 64); err == nil && n > maxBytes {
+						http.Error(w, "payload too large", http.StatusRequestEntityTooLarge)
+						return
+					}
+				}
+				r.Body = http.MaxBytesReader(w, r.Body, maxBytes)
+			}
+			next.ServeHTTP(w, r)
+		})
+	}
+}

internal/server/server.go

@@ -169,13 +169,16 @@ func Build(p BuildParams, opt ...any) (*App, error) {
 	// Mark rendezvous paired upon RTC established (same behavior spot as before).
 	h.OnEstablished = func(appID string) { rv.MarkPaired(context.Background(), appID) }
 
-	// Objects API
 	objMux := http.NewServeMux()
 	apiSrv.Register(objMux)
 	objHandler := http.Handler(objMux)
+
 	if !p.DevMode {
-		objHandler = auth.RequireUUIDAppID(auth.EnforceUploadPolicyMax(p.UploadMaxBytes)(objHandler))
+		objHandler = auth.RequireUUIDAppID(
+			httpx.EnforceUploadPolicyMax(p.UploadMaxBytes)(objHandler),
+		)
 	}
+
 	mux.Handle("/objects", objHandler)
 	mux.Handle("/objects/", objHandler)
 

scripts/dev-local.sh

@@ -0,0 +1,49 @@
+#!/usr/bin/env bash
+set -euo pipefail
+
+# Run the server locally in DEV mode (looser WS origin, open CORS allowlist).
+# Usage:
+#   ./scripts/dev-local.sh
+# Env overrides:
+#   ADDR          (default :1234)
+#   BASE          (default http://127.0.0.1:1234)
+#   CORS          (default http://127.0.0.1,http://localhost)
+#   DATA_DIR      (default ./data)
+#   UPLOAD_MAX_MB (default 64)  # per-request cap; set 0 to disable
+#   TURN=1        (enable embedded TURN server for dev/testing)
+#   NT_WORDLIST_FILE (optional path to custom wordlist)
+
+repo_root="$(cd "$(dirname "${BASH_SOURCE[0]}")/.." && pwd)"
+cd "$repo_root"
+
+BIN_DIR="${BIN_DIR:-./bin}"
+BIN="$BIN_DIR/noisytransferd"
+mkdir -p "$BIN_DIR"
+
+version="dev-local"
+commit="$(git rev-parse --short HEAD 2>/dev/null || echo unknown)"
+
+echo "==> building noisytransferd ($version @ $commit)"
+GOFLAGS="${GOFLAGS:-}"
+go build $GOFLAGS -ldflags "-s -w -X main.version=$version -X main.commit=$commit" -o "$BIN" ./noisytransferd
+
+export NT_DEV=1
+ADDR="${ADDR:-:1234}"
+BASE="${BASE:-http://127.0.0.1:1234}"
+CORS="${CORS:-http://127.0.0.1,http://localhost}"
+DATA_DIR="${DATA_DIR:-./data}"
+UPLOAD_MAX_MB="${UPLOAD_MAX_MB:-64}"
+
+args=(
+  -addr "$ADDR"
+  -base "$BASE"
+  -cors "$CORS"
+  -data "$DATA_DIR"
+  -upload_max_mb "$UPLOAD_MAX_MB"
+)
+if [[ "${TURN:-0}" != "0" ]]; then
+  args+=(-turn)
+fi
+
+echo "==> running noisytransferd ${args[*]}"
+exec "$BIN" "${args[@]}"

scripts/docker-prof.sh

@@ -0,0 +1,41 @@
+#!/usr/bin/env bash
+set -euo pipefail
+
+# Build and run the container locally.
+# Optional env:
+#   TAG   (default: local)
+#   PORT  (default: 1234)
+#   DEV   (default: 1)
+#   BASE  (default: http://127.0.0.1:1234)
+#   CORS  (default: http://127.0.0.1,http://localhost)
+
+repo_root="$(cd "$(dirname "${BASH_SOURCE[0]}")/.." && pwd)"
+cd "$repo_root"
+
+TAG="${TAG:-local}"
+PORT="${PORT:-1234}"
+DEV="${DEV:-1}"
+BASE="${BASE:-http://127.0.0.1:1234}"
+CORS="${CORS:-http://127.0.0.1,http://localhost}"
+
+version="${VERSION:-dev-docker}"
+commit="${COMMIT:-$(git rev-parse --short HEAD 2>/dev/null || echo unknown)}"
+
+echo "==> building image noisytransferd:$TAG"
+docker build \
+  --build-arg VERSION="$version" \
+  --build-arg COMMIT="$commit" \
+  -t noisytransferd:"$TAG" .
+
+mkdir -p ./data
+
+echo "==> running container on :$PORT"
+docker run --rm -it \
+  -p "$PORT:1234" \
+  -e NT_DEV="$DEV" \
+  -e NT_BASE_URL="$BASE" \
+  -e NT_CORS="$CORS" \
+  -e NT_DATA_DIR="/data" \
+  -v "$(pwd)/data:/data" \
+  --name noisytransferd \
+  noisytransferd:"$TAG"

scripts/prod-basic.sh

@@ -0,0 +1,52 @@
+#!/usr/bin/env bash
+set -euo pipefail
+
+# Run the server in a production-like way (foreground).
+# Reads variables from ./scripts/prod.env if present, then from environment.
+# Required:
+#   BASE    (e.g., https://relay.example)
+#   CORS    (e.g., https://app.example)
+# Optional:
+#   ADDR (default :1234)
+#   DATA_DIR (default ./data)
+#   UPLOAD_MAX_MB (default 128)
+#   TURN=1 to enable embedded TURN (dev/test only)
+
+repo_root="$(cd "$(dirname "${BASH_SOURCE[0]}")/.." && pwd)"
+cd "$repo_root"
+
+if [[ -f "./scripts/prod.env" ]]; then
+  set -a; source "./scripts/prod.env"; set +a
+fi
+
+: "${BASE:?set BASE, e.g. https://relay.example}"
+: "${CORS:?set CORS, e.g. https://app.example}"
+
+BIN_DIR="${BIN_DIR:-./bin}"
+BIN="$BIN_DIR/noisytransferd"
+mkdir -p "$BIN_DIR"
+
+version="${VERSION:-$(git describe --tags --always 2>/dev/null || echo prod-build)}"
+commit="${COMMIT:-$(git rev-parse --short HEAD 2>/dev/null || echo unknown)}"
+
+echo "==> building noisytransferd ($version @ $commit)"
+go build -ldflags "-s -w -X main.version=$version -X main.commit=$commit" -o "$BIN" ./noisytransferd
+
+ADDR="${ADDR:-:1234}"
+DATA_DIR="${DATA_DIR:-./data}"
+UPLOAD_MAX_MB="${UPLOAD_MAX_MB:-128}"
+export NT_DEV="${NT_DEV:-0}"
+
+args=(
+  -addr "$ADDR"
+  -base "$BASE"
+  -cors "$CORS"
+  -data "$DATA_DIR"
+  -upload_max_mb "$UPLOAD_MAX_MB"
+)
+if [[ "${TURN:-0}" != "0" ]]; then
+  args+=(-turn)
+fi
+
+echo "==> running noisytransferd ${args[*]}"
+exec "$BIN" "${args[@]}"

scripts/prod.env.example

@@ -0,0 +1,12 @@
+# Example environment file for scripts/prod-basic.sh and systemd unit.
+# Rename to scripts/prod.env and edit.
+BASE=https://relay.example
+CORS=https://app.example
+ADDR=:1234
+DATA_DIR=/var/lib/noisytransfer
+UPLOAD_MAX_MB=128
+NT_DEV=0
+# Optional embedded TURN for dev/test:
+# TURN=1
+# Optional alternative rendezvous wordlist:
+# NT_WORDLIST_FILE=/etc/noisytransfer/wordlist.txt