Self-hosted pastebin powered by Git, open-source alternative to Github Gist.
Find a file
2023-04-12 13:25:41 +02:00
.github/workflows Improve Dockerfile, docker build CI, Readme 2023-04-10 22:52:52 +02:00
internal v1.0.0 2023-04-10 22:53:17 +02:00
public Convert Javascript to Typescript 2023-04-03 23:37:54 +02:00
templates Updated base footer 2023-04-12 13:25:41 +02:00
.dockerignore Better build/watch 2023-04-06 13:55:04 +02:00
.gitattributes Update .gitattributes 2023-04-03 23:43:48 +02:00
.gitignore Better build/watch 2023-04-06 13:55:04 +02:00
config.yml Tweak config and git urls 2023-04-07 02:44:37 +02:00
Dockerfile Improve Dockerfile, docker build CI, Readme 2023-04-10 22:52:52 +02:00
fs_embed.go Better build/watch 2023-04-06 13:55:04 +02:00
fs_os.go Better build/watch 2023-04-06 13:55:04 +02:00
go.mod Add Dockerfile 2023-04-04 15:17:55 +02:00
go.sum Initial commit 2023-03-14 16:22:52 +01:00
LICENSE Initial commit 2023-03-14 16:22:52 +01:00
Makefile Change config behavior 2023-04-07 23:58:06 +02:00
opengist.go Change config behavior 2023-04-07 23:58:06 +02:00
package-lock.json Better build/watch 2023-04-06 13:55:04 +02:00
package.json Better build/watch 2023-04-06 13:55:04 +02:00
postcss.config.js Optimize assets 2023-03-23 16:00:48 +01:00
README.md Update README.md 2023-04-12 12:50:47 +02:00
tailwind.config.js Initial commit 2023-03-14 16:22:52 +01:00
tsconfig.json Convert Javascript to Typescript 2023-04-03 23:37:54 +02:00
vite.config.js Convert Javascript to Typescript 2023-04-03 23:37:54 +02:00
watch.sh Better build/watch 2023-04-06 13:55:04 +02:00

Opengist

GitHub release (latest SemVer) License

A self-hosted pastebin powered by Git. Try it here.

Features

  • Create public or unlisted snippets
  • Clone / Pull / Push snippets via Git over HTTP or SSH
  • Revisions history
  • Syntax highlighting ; markdown & CSV support
  • Like / Fork snippets
  • Search for all snippets or for certain users snippets
  • Editor with indentation mode & size ; drag and drop files
  • Download raw files or as a ZIP archive
  • Avatars
  • Responsive UI
  • Enable or disable signups
  • Admin panel : delete users/gists; clean database/filesystem by syncing gists
  • SQLite database
  • Logging
  • Docker support

Todo

  • Light mode
  • Tests
  • Search for snippets
  • Embed snippets
  • Filesystem/Redis support for user sessions
  • Have a cool logo

Install

With Docker

A Docker image, available for each release, can be pulled

docker pull ghcr.io/thomiceli/opengist:1

It can be used in a docker-compose.yml file :

  1. Create a docker-compose.yml file with the following content
  2. Run docker compose up -d
  3. Opengist is now running on port 6157, you can browse http://localhost:6157
version: "3"

services:
  opengist:
    image: ghcr.io/thomiceli/opengist:1
    container_name: opengist
    restart: unless-stopped
    ports:
      - "6157:6157" # HTTP port
      - "2222:2222" # SSH port, can be removed if you don't use SSH
    volumes:
      - "$HOME/.opengist:/root/.opengist"
    environment:
      CONFIG: |
        log-level: info        

From source

Requirements : Git (2.20+), Go (1.19+), Node.js (16+)

git clone https://github.com/thomiceli/opengist
cd opengist
make
./opengist

Opengist is now running on port 6157, you can browse http://localhost:6157

Configuration

Opengist can be configured using YAML. The full configuration file is config.yml, each default key/value pair can be overridden.

With docker

Add a CONFIG environment variable in the docker-compose.yml file to the opengist service :

environment:
  CONFIG: |
    log-level: info
    ssh.git-enabled: false
    disable-signup: true
    # ...

With binary

Create a config.yml file (you can reuse this one) and run Opengist binary with the --config flag :

./opengist --config /path/to/config.yml

Administration

Use Nginx as a reverse proxy

Configure Nginx to proxy requests to Opengist. Here is an example configuration file :

server {
    listen 80;
    server_name opengist.example.com;

    location / {
        proxy_pass http://127.0.0.1:6157;
        proxy_set_header Host $host;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_set_header X-Forwarded-Proto $scheme;
    }
}

Then run :

service nginx restart 

Use Fail2ban

Fail2ban can be used to ban IPs that try to bruteforce the login page. Log level must be set at least to warn.

Add this filter in etc/fail2ban/filter.d/opengist.conf :

[Definition]
failregex =  Invalid .* authentication attempt from <HOST>
ignoreregex =

Add this jail in etc/fail2ban/jail.d/opengist.conf :

[opengist]
enabled = true
filter = opengist
logpath = /home/*/.opengist/log/opengist.log
maxretry = 10
findtime = 3600
bantime = 600
banaction = iptables-allports
port = anyport

Then run

service fail2ban restart 

License

Opengist is licensed under the AGPL-3.0 license.