b67f7dc900
fix policy to require auth and ignore all reqs before valid auth is made
Go / build-and-release (push) Has been cancelled
2025-11-21 20:19:24 +00:00
fb65282702
develop registration ratelimit mechanism
2025-11-21 19:13:18 +00:00
ebe0012863
fix auth, read/white whitelisting and rule precedence, bump to v0.29.13
...
Go / build-and-release (push) Has been cancelled
Policy System Verification & Testing (Latest Updates) Authentication & Security:
Verified policy system enforces authentication for all REQ and EVENT messages when enabled
Confirmed AUTH challenges are sent immediately on connection and repeated until authentication succeeds
Validated unauthenticated requests are silently rejected regardless of other policy rules
Access Control Logic:
Confirmed privileged flag only restricts read access (REQ queries), not write operations (EVENT submissions)
Validated read_allow and privileged use OR logic: users get access if EITHER they're in the allow list OR they're a party to the event (author/p-tag)
This design allows both explicit whitelisting and privacy for involved parties
Kind Whitelisting:
Verified kind filtering properly rejects unlisted events in all scenarios:
Explicit kind.whitelist: Only listed kinds accepted, even if rules exist for other kinds
Implicit whitelist (rules only): Only kinds with defined rules accepted
Blacklist mode: Blacklisted kinds rejected, others require rules
Added comprehensive test suite (10 scenarios) covering edge cases and real-world configurations
2025-11-21 16:13:34 +00:00
917bcf0348
fix policy to ignore all req/events without auth
2025-11-21 15:28:07 +00:00
55add34ac1
add rely-sqlite to benchmark
Go / build-and-release (push) Has been cancelled
2025-11-20 20:55:37 +00:00
00a6a78a41
fix cache to disregard subscription ids
Go / build-and-release (push) Has been cancelled
2025-11-20 12:30:17 +00:00
1b279087a9
add vertexes between npubs and events, use for p tags
2025-11-20 09:16:54 +00:00
b7417ab5eb
create new index that records the links between pubkeys, events, kinds, and inbound/outbound/author
2025-11-20 05:13:56 +00:00
d4e2f48b7e
bump to v0.29.10
Go / build-and-release (push) Has been cancelled
2025-11-19 13:08:00 +00:00
a79beee179
fixed and unified privilege checks across ACLs
Go / build-and-release (push) Has been cancelled
2025-11-19 13:05:21 +00:00
f89f41b8c4
full benchmark run
2025-11-19 12:22:04 +00:00
be6cd8c740
fixed error comparing hex/binary in pubkey white/blacklist, complete neo4j and tests"
Go / build-and-release (push) Has been cancelled
2025-11-19 11:25:38 +00:00
8b3d03da2c
fix workflow setup
Go / build-and-release (push) Has been cancelled
2025-11-18 20:56:18 +00:00
5bcb8d7f52
upgrade to gitea workflows
Go / build (push) Has been cancelled
Go / release (push) Has been cancelled
2025-11-18 20:50:05 +00:00
b3b963ecf5
replace github workflows with gitea
2025-11-18 20:46:54 +00:00
d4fb6cbf49
fix handleevents not prompting auth for event publish with auth-required
Go / build (push) Has been cancelled
Go / release (push) Has been cancelled
2025-11-18 20:26:36 +00:00
d5c0e3abfc
bump to v0.29.3
Go / build (push) Has been cancelled
Go / release (push) Has been cancelled
2025-11-18 18:22:39 +00:00
1d4d877a10
fix auth-required not sending immediate challenge, benchmark leak
2025-11-18 18:21:11 +00:00
038d1959ed
add dgraph backend to benchmark suite with safe type assertions for multi-backend support
2025-11-17 16:52:38 +00:00
86481a42e8
initial draft of neo4j database driver
2025-11-17 08:19:44 +00:00
beed174e83
make query cache normalize filters so same query different order filters are cache hits
Go / build (push) Has been cancelled
Go / release (push) Has been cancelled
2025-11-17 00:04:21 +00:00
511b8cae5f
improve query cache with zstd level 9
Go / build (push) Has been cancelled
Go / release (push) Has been cancelled
2025-11-16 20:52:18 +00:00
dfe8b5f8b2
add a filter query cache 512mb that stores already decoded recent query results
...
this should improve performance noticeably for typical kind 1 client queries
2025-11-16 18:29:53 +00:00
95bcf85ad7
optimizing badger cache, won a 10-15% improvement in most benchmarks
2025-11-16 15:07:36 +00:00
9bb3a7e057
totally off topic little document about ion drives
2025-11-16 00:00:04 +00:00
a608c06138
draft spec for integrating dgraph
2025-11-14 22:46:43 +00:00
bf8d912063
enhance spider with rate limit handling, follow list updates, and improved reconnect logic; bump version to v0.29.0
...
Go / build (push) Has been cancelled
Go / release (push) Has been cancelled
also reduces CPU load for spider, and minor CORS fixes
2025-11-14 21:15:24 +00:00
24eef5b5a8
fix CORS headers and a wasm experiment
Go / build (push) Has been cancelled
Go / release (push) Has been cancelled
2025-11-14 19:15:50 +00:00
9fb976703d
hello world in wat
2025-11-14 14:37:36 +00:00
1d9a6903b8
bump version
Go / build (push) Has been cancelled
Go / release (push) Has been cancelled
2025-11-14 12:18:01 +00:00
29e175efb0
implement event table subtyping for small events in value log
Go / build (push) Has been cancelled
Go / release (push) Has been cancelled
2025-11-14 12:15:52 +00:00
7169a2158f
when in "none" ACL mode, privileged checks are not enforced
Go / build (push) Has been cancelled
Go / release (push) Has been cancelled
2025-11-13 08:31:02 +00:00
baede6d37f
extend script test to two read two write to ensure script continues running
Go / build (push) Has been cancelled
Go / release (push) Has been cancelled
2025-11-11 15:24:58 +00:00
3e7cc01d27
make script stderr print into relay logs
Go / build (push) Has been cancelled
Go / release (push) Has been cancelled
2025-11-11 14:41:54 +00:00
cc99fcfab5
bump to v0.27.5
Go / build (push) Has been cancelled
Go / release (push) Has been cancelled
2025-11-11 14:38:05 +00:00
b2056b6636
bump to v0.27.5
Go / build (push) Has been cancelled
Go / release (push) Has been cancelled
2025-11-11 13:48:23 +00:00
108cbdce93
fix docker image cleanups in test
2025-11-11 13:47:57 +00:00
e9fb314496
fully test and verify policy script functionality
Go / build (push) Has been cancelled
Go / release (push) Has been cancelled
2025-11-11 09:37:42 +00:00
597711350a
fix script startup and validate with tests
Go / build (push) Has been cancelled
Go / release (push) Has been cancelled
2025-11-10 12:36:55 +00:00
7113848de8
fix error handling of default policy script
Go / build (push) Has been cancelled
Go / release (push) Has been cancelled
2025-11-10 11:55:42 +00:00
54606c6318
curl|bash deploy script
2025-11-10 11:42:59 +00:00
09bcbac20d
create concurrent script runner per rule script
...
Go / build (push) Has been cancelled
Go / release (push) Has been cancelled
bump to v0.27.1
2025-11-10 10:56:02 +00:00
84b7c0e11c
bump to v0.27.0
Go / build (push) Has been cancelled
Go / release (push) Has been cancelled
2025-11-09 10:42:50 +00:00
d0dbd2e2dc
implemented and tested NIP-43 invite based ACL
2025-11-09 10:41:58 +00:00
f0beb83ceb
fix utf8 handling bug, bump to v0.26.4
Go / build (push) Has been cancelled
Go / release (push) Has been cancelled
2025-11-08 10:29:24 +00:00
5d04193bb7
implement messages and operations for FIND
2025-11-08 09:02:32 +00:00
b4760c49b6
implement messages and operations for FIND
2025-11-08 08:54:58 +00:00
587116afa8
add noise protocol security and site certificate third party signing
2025-11-08 00:13:23 +00:00
960bfe7dda
add noise protocol security and site certificate third party signing
2025-11-08 00:01:06 +00:00
f5cfcff6c9
draft name registry proposal
2025-11-07 22:52:22 +00:00
