mirrors/go-hauk

Fork 0

mirror of https://github.com/parkan/go-hauk.git synced 2026-06-22 19:27:46 +02:00

Go to file

Arkadiy Kukarkin 7229cd12fc add Apache 2.0 license

2026-05-28 14:15:59 +02:00

.github

Bump docker/setup-buildx-action from 3 to 4

2026-05-26 20:19:44 +00:00

api

fix adopt auth bypass, add rate limiting

2025-12-25 19:19:28 +01:00

auth

add unit tests

2025-12-23 12:24:59 +01:00

config

fix adopt auth bypass, add rate limiting

2025-12-25 19:19:28 +01:00

frontend

replace logo with gopher version

2025-12-25 16:27:11 +01:00

linkgen

add unit tests

2025-12-23 12:24:59 +01:00

model

fix code review findings

2025-12-23 13:25:56 +01:00

ratelimit

fix adopt auth bypass, add rate limiting

2025-12-25 19:19:28 +01:00

store

support redis:// URLs for Railway compatibility

2025-12-24 15:52:15 +01:00

.env.example

add docker compose with persistent redis

2026-05-28 13:00:02 +02:00

.gitignore

add docker compose with persistent redis

2026-05-28 13:00:02 +02:00

docker-compose.yml

add docker compose with persistent redis

2026-05-28 13:00:02 +02:00

Dockerfile

Bump alpine from 3.19 to 3.23

2026-05-26 19:57:08 +00:00

go.mod

chore: update dependencies

2026-05-26 21:47:43 +02:00

go.sum

chore: update dependencies

2026-05-26 21:47:43 +02:00

hauk_with_gopher_legible.svg

replace logo with gopher version

2025-12-25 16:27:11 +01:00

LICENSE

add Apache 2.0 license

2026-05-28 14:15:59 +02:00

main.go

add go backend scaffold

2025-12-23 12:23:12 +01:00

railway.toml

support redis:// URLs for Railway compatibility

2025-12-24 15:52:15 +01:00

README.md

add docker compose with persistent redis

2026-05-28 13:00:02 +02:00

README.md

go-hauk

Go port of the Hauk location sharing backend.

why

The original PHP implementation works fine but has some overhead. This port provides:

345x higher throughput (45k vs 133 req/s)
36x smaller image (16MB vs 578MB)
3x lower memory footprint (8MB vs 25MB idle)
single static binary, no runtime dependencies
redis only (no memcached)

usage

run go-hauk and redis together with docker compose:

# generate a password hash
export HAUK_PASSWORD_HASH=$(htpasswd -nbBC 10 "" 'your-password' | tr -d ':\n')

docker compose up -d

or copy .env.example to .env, fill it in, and docker compose up -d.

persistence

share data (sessions, links, locations) lives in redis with a per-share TTL (HAUK_MAX_DURATION, default 24h). the bundled redis persists to a named volume by default, so restarts and redeploys keep active shares alive. set REDIS_PERSIST=off for in-memory only -- faster, but every share is lost on restart.

deploy on railway

use the Deploy on Railway button above.

config

all config via environment variables:

var	default	description
HAUK_LISTEN_ADDR	:8080	listen address
HAUK_PUBLIC_URL	http://localhost:8080/	public url for share links
HAUK_REDIS_ADDR	localhost:6379	redis address (host:port or redis:// url)
HAUK_AUTH_METHOD	password	auth method (password, htpasswd, ldap)
HAUK_PASSWORD_HASH		bcrypt hash for password auth
HAUK_MAX_DURATION	86400	max share lifetime in seconds (redis key TTL)
HAUK_RATE_LIMIT_AUTH	10	max auth requests per minute per ip
HAUK_RATE_LIMIT_ADOPT	10	max adopt requests per minute per ip
HAUK_TRUST_PROXY	true	trust X-Forwarded-For (set false if not behind proxy)

see config/config.go for full list.

security improvements over upstream

adopt authorization: only share owner can adopt into groups (fixes CVE-like auth bypass in upstream)
built-in rate limiting on auth and adopt endpoints (configurable, default 10 req/min/ip)

compatibility

drop-in replacement for the php backend. works with the existing android app and web frontend.

license

same as upstream (apache 2.0).

Languages

Go 54%

JavaScript 26.8%

CSS 14.6%

HTML 4.4%

Dockerfile 0.2%