Rustypaste is a minimal file upload/pastebin service.
$ echo "some text" > awesome.txt
$ curl -F "[email protected]" https://paste.site.com
https://paste.site.com/safe-toad.txt
$ curl https://paste.site.com/safe-toad.txt
some textThe public instance is available at https://rustypaste.shuttleapp.rs ๐
Here you can read the blog post about how it is deployed on Shuttle: https://blog.orhun.dev/blazingly-fast-file-sharing
Table of Contents
Features
- File upload & URL shortening & upload from URL
- supports basic HTTP authentication
- random file names (optional)
- pet name (e.g.
capital-mosquito.txt) - alphanumeric string (e.g.
yB84D2Dv.txt) - random suffix (e.g.
file.MRV5as.tar.gz)
- pet name (e.g.
- supports expiring links
- auto-expiration of files (optional)
- auto-deletion of expired files (optional)
- supports one shot links/URLs (can only be viewed once)
- guesses MIME types
- supports overriding and blacklisting
- supports forcing to download via
?download=true
- no duplicate uploads (optional)
- listing/deleting files
- custom landing page
- Single binary
- Simple configuration
- supports hot reloading
- Easy to deploy
- No database
- filesystem is used
- Self-hosted
- centralization is bad!
- Written in Rust
- blazingly fast!
Installation
From crates.io
cargo install rustypasteArch Linux
pacman -S rustypasteAlpine Linux
rustypaste is available for Alpine Edge. It can be installed via apk after enabling the community repository.
apk add rustypasteBinary releases
See the available binaries on the releases page.
Build from source
git clone https://github.com/orhun/rustypaste.git
cd rustypaste/
cargo build --releaseFeature flags
shuttle: enable an entry point for deploying on Shuttleopenssl: use distro OpenSSL (binary size is reduced ~20% in release mode)rustls: use rustls (enabled as default)
To enable a feature for build, pass --features flag to cargo build command.
For example, to reuse the OpenSSL present on a distro already:
cargo build --release --no-default-features --features opensslTesting
Unit tests
cargo test -- --test-threads 1Test Fixtures
./fixtures/test-fixtures.shUsage
The standalone command line tool (rpaste) is available here.
CLI
function rpaste() {
curl -F "file=@$1" -H "Authorization: <auth_token>" "<server_address>"
}* consider reading authorization headers from a file. (e.g. -H @rpaste_auth)
# upload a file
$ rpaste x.txt
# paste from stdin
$ rpaste -Expiration
$ curl -F "[email protected]" -H "expire:10min" "<server_address>"supported units:
nsec,nsusec,usmsec,msseconds,second,sec,sminutes,minute,min,mhours,hour,hr,hdays,day,dweeks,week,wmonths,month,Myears,year,y
One shot files
$ curl -F "[email protected]" "<server_address>"One shot URLs
$ curl -F "oneshot_url=https://example.com" "<server_address>"URL shortening
$ curl -F "url=https://example.com/some/long/url" "<server_address>"Paste file from remote URL
$ curl -F "remote=https://example.com/file.png" "<server_address>"Cleaning up expired files
Configure [paste].delete_expired_files to set an interval for deleting the expired files automatically.
On the other hand, following script can be used as cron for cleaning up the expired files manually:
#!/bin/env sh
now=$(date +%s)
find upload/ -maxdepth 2 -type f -iname "*.[0-9]*" |
while read -r filename; do
[ "$(( ${filename##*.} / 1000 - "${now}" ))" -lt 0 ] && rm -v "${filename}"
doneDelete file from server
Set delete_tokens array in config.toml to activate the DELETE endpoint and secure it with one (or more) auth token(s).
$ curl -H "Authorization: <auth_token>" -X DELETE "<server_address>/file.txt"Server
To start the server:
$ rustypasteIf the configuration file is not found in the current directory, specify it via CONFIG environment variable:
$ CONFIG="$HOME/.rustypaste.toml" rustypasteTo enable basic HTTP auth, set the AUTH_TOKEN environment variable (via .env):
$ echo "AUTH_TOKEN=$(openssl rand -base64 16)" > .env
$ rustypasteYou can also set multiple auth tokens via the array field [server].auth_tokens in your config.toml.
See config.toml for configuration options.
List endpoint
Set expose_list to true in config.toml to be able to retrieve a JSON formatted list of files in your uploads directory. This will not include oneshot files, oneshot URLs, or URLs.
$ curl "http://<server_address>/list"
[{"file_name":"accepted-cicada.txt","file_size":241,"expires_at_utc":null}]This route will require an AUTH_TOKEN if one is set.
HTML Form
It is possible to use an HTML form for uploading files. To do so, you need to update two fields in your config.toml:
- Set the
[landing_page].content_typetotext/html; charset=utf-8. - Update the
[landing_page].textfield with your HTML form or point[landing_page].fileto your html file.
For an example, see examples/html_form.toml
Docker
Following command can be used to run a container which is built from the Dockerfile in this repository:
$ docker run --rm -d \
-v "$(pwd)/upload/":/app/upload \
-v "$(pwd)/config.toml":/app/config.toml \
--env-file "$(pwd)/.env" \
-e "RUST_LOG=debug" \
-p 8000:8000 \
--name rustypaste \
orhunp/rustypaste- uploaded files go into
./upload(on the host machine) - set the
AUTH_TOKENvia-eor--env-fileto enable auth
You can build this image using docker build -t rustypaste . command.
If you want to run the image using docker compose, simply run docker-compose up -d. (see docker-compose.yml)
Nginx
Example server configuration with reverse proxy:
server {
listen 80;
location / {
proxy_pass http://localhost:8000/;
proxy_set_header Host $host;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header X-Forwarded-Proto $scheme;
add_header X-XSS-Protection "1; mode=block";
add_header X-Frame-Options "sameorigin";
add_header X-Content-Type-Options "nosniff";
}
}If you get a 413 Request Entity Too Large error during upload, set the max body size in nginx.conf:
http {
# ...
client_max_body_size 100M;
}Contributing
Pull requests are welcome!
Consider submitting your ideas via issues first and check out the existing issues.