• Stars
    star
    903
  • Rank 50,580 (Top 1.0 %)
  • Language
    Rust
  • License
    MIT License
  • Created about 4 years ago
  • Updated about 2 years ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

A fast production-ready static web server with TLS (HTTPS), routing, hot reloading, caching, templating, and security in a single-binary you can set up with zero code.

binserve logo

binserve πŸš€πŸ¦€

A fast static web server with TLS (HTTPS), Routing, Hot Reloading, Caching, Templating, and Security in a single-binary you can set up with zero code.

Built from the ground up for self-hosters with performance, ease of use, and portability in mind. ❀️

version gitHub license twitter share

Table of Contents

Example: Hosting a website produced by a Static Site Generators like Hugo, Zola, Jekyll, Hexo, etc.

Features

  • Fast: Binserve is designed to be performant, this is thanks to Actix-Web - one of the fastest web frameworks out there and DashMap for handling routes and the cache storage. (See Benchmarks)
  • Portability: Binserve is cross-platform and portable to any major operating system, like it can run on your Android phone!
  • Routing: Routing is simply matching a URI path to a file or a directory in a JSON file. (See Configuration)
  • Templating: You can write templates and partials using Handlebars. (See Templating)
  • Hot Reload: You can reload your configuration (routes) and static files with no downtime.
  • Caching: Binserve's performance is achieved due to minimization of Disk I/O operations at runtime (with fast_mem_cache enabled) and serving static files from memory. On the client-side, Cache-Control, Etag, and Last-Modified are utilized.
  • Security: Prevents common attack vectors like Directory Traversal and Symlink Attacks.

πŸ‘‹ Enterprise?

If you're deplyoing to production or expecting high traffic to your server, get binserve+ which has DDoS Protection, Rate Limiting, and Prometheus Metrics for monitoring along with all the above features built-in.

Checkout Binserve Plus!

Read FAQ for more details.

Hello World!

Download the executable for your OS from Releases, then just run it:

mkdir mywebsite/
binserve

On the first run, it will create the configuration file and a starter boilerplate for you to get started.

 _   _
| |_|_|___ ___ ___ ___ _ _ ___
| . | |   |_ -| -_|  _| | | -_|
|___|_|_|_|___|___|_|  \_/|___| 0.2.0

[INFO] Build finished in 295 μs ⚑
[SUCCESS] Your server is up and running at 127.0.0.1:1337 πŸš€

Go to http://127.0.0.0:1337/ and you will be greeted with the index page of Binserve.

Now all you need to do is to edit the binserve.json file. (See Configuration).

Installation

Download the executable from Releases OR Install with cargo:

cargo install --git https://github.com/mufeedvh/binserve.git

Install Rust/Cargo

Build From Source

Prerequisites:

  • Git
  • Rust
  • Cargo (Automatically installed when installing Rust)
  • A C linker (Only for Linux, generally comes pre-installed)
git clone https://github.com/mufeedvh/binserve.git
cd binserve/
RUSTFLAGS="-C target-cpu=native" cargo build --release

The first command clones this repository into your local machine and the last two commands enters the directory and builds the source in release mode.

Configuration

The configuration file is a JSON file called binserve.json that's generated automatically by the executable. Configuring binserve is pretty straight-forward because the configuration fields are self-explanatory:

And all of the values here have secure defaults so you don't have to specify the ones you don't need.

πŸ’‘ TIP: Most probably you wouldn't be needing all of the configuration fields, checkout the Static Site Generator example on how to serve a single directory.

{
    "server": {
        "host": "127.0.0.1:1337",
        "tls": {
            "host": "127.0.0.1:443",
            "enable": false,
            "key": "key.pem",
            "cert": "cert.pem"
        }
    },

    "routes": {
        "/": "public/index.html",
        "/usage": "public/usage.hbs",
        "/blog": "public/blog/"
    },

    "static": {
        "directory": "public/assets",
        "served_from": "/assets",
        "error_pages": {
            "404": "public/404.html"
        }
    },

    "template": {
        "partials": {
            "header": "public/header.hbs"
        },
        "variables": {
            "app_name": "Binserve"
        }
    },

    "config": {
        "enable_hot_reload": true,
        "fast_mem_cache": true,
        "enable_cache_control": true,
        "enable_directory_listing": true,
        "minify_html": false,
        "follow_symlinks": false,
        "enable_logging": false
    },

    "insert_headers": {
        "x-greetings": "hellooo!"
    }
}

You can override the configuration with command-line arguments as well:

  • -c/--cert - The path to the TLS certificate for your domain.

  • -k/--key - The path to the TLS key for your domain.

  • -h/--host - The host/domain with the specified port for your webserver to run on.

    • Example: --host 127.0.0.1:1337 OR --host zombo.com

TLS

There is built-in support for TLS:

{
    "server": {
        "host": "127.0.0.1:1337",
        "tls": {
            "host": "127.0.0.1:443",
            "enable": true,
            "key": "key.pem",
            "cert": "cert.pem"
        }
    }
}

The key and certificate can be generated with openssl:

# generate pkcs#10 key+cert (PEM):
$ openssl req -x509 -newkey rsa:4096 -keyout key_pkcs10.pem -out cert.pem -sha256 -days 36

# convert the private key to PKCS#8 (PEM):
$ openssl pkcs8 -topk8 -inform PEM -outform PEM -nocrypt -in key_pkcs10.pem -out key.pem

Templating

Binserve uses Handlebars for templating as it's simple and the most commonly known templating engine.

You can register partial templates and template variables like this in the configuration file:

"template": {
    "partials": {
        "header": "public/header.hbs"
    },
    "variables": {
        "app_name": "Binserve"
    }
}

public/header.hbs:

<head>
    <meta charset="UTF-8">
    <meta http-equiv="X-UA-Compatible" content="IE=edge">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>{{ app_name }} v0.2.0 Usage</title>
    <link rel="stylesheet" href="assets/css/styles.css">
</head>

And use it like this:

<html>
    {{> header}}
    <body>Hello World!</body>
</html>

Which would render down to:

<html>
    <head>
        <meta charset="UTF-8">
        <meta http-equiv="X-UA-Compatible" content="IE=edge">
        <meta name="viewport" content="width=device-width, initial-scale=1.0">
        <title>Binserve v0.2.0 Usage</title>
        <link rel="stylesheet" href="assets/css/styles.css">
    </head>
    <body>Hello World!</body>
</html>

Static Site Generators

Every static generator builds your Markdown/Template files into a directory, usually named public/, all you have to do is point that directory as the index route:

{
    "server": {
        "host": "127.0.0.1:1337",
        "tls": {
            "host": "127.0.0.1:443",
            "enable": false,
            "key": "key.pem",
            "cert": "cert.pem"
        }
    },
    "routes": {
        "/": "public/"
    }
}

That's it!

As mentioned previously, you don't have to specify all the fields, secure defaults will be applied! πŸ™Œ

Pointing directories as routes is an intentional design so that you can host multiple Static Site Generator outputs easily. Let's say you have a portfolio as the homepage and your blog is made with a different template. You can just do:

"routes": {
    "/": "my_zola_portfolio/public/",
    "/blog": "my_hugo_blog/public/"
}

Portability

Binserve is cross-platform which means you can run it on any major operating system / devices. It is low on CPU usage and memory footprint so you can run it on your Raspberry Pi or even your Android Phone:

Caching

With fast_mem_cache enabled, all files are stored in-memory mapped to it's route index and response on initialization and will not perform any disk reads at runtime. It is recommended to keep it enabled even if you have hundreds of files, Binserve automatically sorts large files to be read from disk. Only when you are serving lots of large media content you should disable this mode.

Under the hood, binserve maps the routes and prepares the response with the file's content, mime type, metadata, and the required fields to derive the Etag and Last-Modified tags beforehand and will not perform any of these operations at runtime. Upon changes to any of these files, hot reload is executed in a background thread which updates the program state by making changes to the concurrent hashmap which manages the cache, changes are instant and wouldn't cause any downtime either.

Benchmarks

See BENCHMARKS.md

FAQ

Q: What is binserve+?

Binserve+ is made for websites meant to run in production and handle high amounts of traffic. It comes with DDoS Protection, Rate Limiting, and Prometheus Metrics out-of-the-box.

You get lifetime license + lifetime bug fixes for $24/once.

This exists as a way to support the project, it does not have any license keys or verification system, you get pre-compiled executables for major operating systems and architectures in a ZIP archive. (MIT License)

Get binserve+.

Contribution

Ways to contribute:

  • Suggest a feature
  • Report a bug
  • Fix something and open a pull request
  • Help me document the code
  • Spread the word

License

Licensed under the MIT License, see LICENSE for more information.

Credits

Binserve wouldn't exist without these amazing projects:

  • actix-web - Binserve runs on top of actix-web, the performance wouldn't be achievable without it.
  • dashmap - The in-memory file cache is stored using dashmap for high concurrency reads.
  • ahash - aHash is the hashing algorithm used for the dashmap.
  • compact_str - A memory efficient string type that can store up to 24* bytes on the stack. Route index keys are stored as CompactStrings.
  • handlebars-rust - This library is used for the Handlebars templating and rendering.
  • jwalk - This library helps binserve to index/walk directories quickly in parallel.
  • minify-html-one-pass - Fast HTML minification library, helps to drastically reduce rendering times for reloading/saving hundreds of files.
  • notify - Hot reloading depends on this library to watch for filesystem events and update the program state in realtime.
  • once_cell - A lazy static assignment library, this helps in managing the global program state under an "RwLock" implementation of dashmap.
  • parking_lot - Binserve uses parking_lot's Mutex implementation for the global configuration state.
  • rustls - The TLS implementation used by Binserve is written in pure Rust and this eliminates the need for OpenSSL.
  • serde - The serialization framework used by Binserve for managing the configuration settings, feels like magic and extremely good documentation.

Thank you! ❀️


More Repositories

1

moonwalk

Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.
Rust
1,252
star
2

basecrack

Decode All Bases - Base Scheme Decoder
Python
472
star
3

pdfrip

A multi-threaded PDF password cracking utility equipped with commonly encountered password format builders and dictionary attacks.
Rust
356
star
4

CVE-2019-8449

CVE-2019-8449 Exploit for Jira v2.1 - v8.3.4
Python
66
star
5

paydept

πŸ™Œ Shows every open-source dependency you use in your system that accept donations. πŸ’
Rust
44
star
6

seclip

A CLI utility to secretly copy secrets to clipboard. πŸ”’πŸ“
Rust
36
star
7

gisture

A minimal and flexible blog generator based on GitHub Gist.
Rust
30
star
8

log4jail

A firewall reverse proxy for preventing Log4J (Log4Shell aka CVE-2021-44228) attacks.
Rust
24
star
9

l33tmario

Mario the game but you rescue the princess by hacking.
PHP
21
star
10

regretti

A programming language where comments are the first-class citizen and ASCII art flowcharts are the controls!
Rust
18
star
11

okjson

A fast, simple, and pythonic JSON Schema Validator.
Python
5
star
12

ajnatham

An encrypted data storage for notes, passwords, private keys and the like in a single binary with GUI, API and Markdown support.
Rust
5
star
13

website

mufeedvh.com :)
HTML
4
star
14

tupperplot

Tupper's self-referential formula plotting itself on a framebuffer with Rust.
Rust
3
star
15

wordlentropy

Naive and quick Wordle optimal starting word Analysis.
Rust
2
star
16

cheatsheets

my personal cheatsheets.
2
star
17

project-euler

practicing project euler in random languages to build a habit and for fun.
Julia
1
star
18

configuration

my random configs.
Shell
1
star
19

notes

random notes when i feel like it.
JavaScript
1
star