mirrors/tranquil-pds
1
0
Fork 0
mirror of https://tangled.org/tranquil.farm/tranquil-pds synced 2026-02-08 13:20:41 +00:00
Code Issues Packages Projects Releases Wiki Activity
125 Commits 4 Branches 0 Tags
767f89ae760fa5d9bbdc03469ac2f141f6236129
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
lewis 767f89ae76 fix: Bad scope parsing
2026-01-06 23:41:20 +02:00
.cargo
Performance improvements
2026-01-03 00:58:28 +02:00
.config
Passkey-only accounts
2025-12-21 23:16:39 +02:00
.sqlx
Remove old user blocks
2026-01-06 19:49:42 +02:00
deploy
Misc fixes for blobs and invites
2025-12-30 18:46:31 +02:00
docs
Frontend on /app path for easy custom homepage
2026-01-02 21:54:27 +02:00
frontend
fix: Bad scope parsing
2026-01-06 23:41:20 +02:00
migrations
Remove old user blocks
2026-01-06 19:49:42 +02:00
observability
Rename to tranquil PDS, sounds better than bullshit PDS
2025-12-18 23:17:51 +02:00
scripts
Backups, adversarial migrations
2026-01-02 00:24:32 +02:00
src
fix: Bad scope parsing
2026-01-06 23:41:20 +02:00
tests
Remove old user blocks
2026-01-06 19:49:42 +02:00
.env.example
Frontend on /app path for easy custom homepage
2026-01-02 21:54:27 +02:00
.envrc
source .env in devshell if one is pressent
2025-12-28 13:09:01 +00:00
.gitignore
Reserved handles & misc fixes
2025-12-30 21:24:44 +02:00
Cargo.lock
More local methods to not proxy
2026-01-04 18:38:15 +02:00
Cargo.toml
Typechecks and linting
2026-01-05 00:48:18 +02:00
default.nix
add license information
2025-12-25 18:57:18 +00:00
docker-compose.prod.yml
Rename to tranquil PDS, sounds better than bullshit PDS
2025-12-18 23:17:51 +02:00
docker-compose.yaml
Rename to tranquil PDS, sounds better than bullshit PDS
2025-12-18 23:17:51 +02:00
Dockerfile
docker email fix from scan
2026-01-04 15:03:42 +02:00
flake.lock
add nix package, devshell and an .envrc
2025-12-23 21:38:19 +00:00
flake.nix
add nix package, devshell and an .envrc
2025-12-23 21:38:19 +00:00
justfile
Typechecks and linting
2026-01-05 00:48:18 +02:00
KNOWN_ISSUES.md
General linting, document react-native-streamplace-oauth-problem
2026-01-05 23:08:25 +02:00
LICENSE
add license information
2025-12-25 18:57:18 +00:00
LICENSE-AGPL-3.0-or-later
add license information
2025-12-25 18:57:18 +00:00
LICENSE-CC-BY-SA-4.0
add license information
2025-12-25 18:57:18 +00:00
nginx.prod.conf
Misc fixes for blobs and invites
2025-12-30 18:46:31 +02:00
README.md
Backups, adversarial migrations
2026-01-02 00:24:32 +02:00
ref_pds_downloader.sh
Creating & posting records works. Also messed up newlines but will fix later.
2025-12-14 23:55:04 +02:00
shell.nix
add mold to the devshell
2026-01-04 13:00:27 +00:00
TODO.md
Backups, adversarial migrations
2026-01-02 00:24:32 +02:00

README.md

Tranquil PDS

A Personal Data Server for the AT Protocol.

Bluesky runs on a federated protocol called AT Protocol. Your account lives on a PDS, a server that stores your posts, profile, follows, and cryptographic keys. Bluesky hosts one for you at bsky.social, but you can run your own. Self-hosting means you control your data; you're not dependent on any company's servers, and your account + data is actually yours.

This particular PDS thrives under harsh conditions. It is a dandelion growing through the cracks in the sidewalk concrete.

It has full compatibility with Bluesky's reference PDS: same endpoints, same behavior, same client compatibility. Everything works: repo operations, blob storage, firehose, OAuth, handle resolution, account migration, the lot.

Another excellent PDS is Cocoon, written in go.

What's different about Tranquil PDS

This software isn't an afterthought by a company with limited resources.

It is a superset of the reference PDS, including: passkeys and 2FA (WebAuthn/FIDO2, TOTP, backup codes, trusted devices), did:web support (PDS-hosted subdomains or bring-your-own), multi-channel communication (email, discord, telegram, signal) for verification and alerts, granular OAuth scopes with a consent UI showing human-readable descriptions, app passwords with granular permissions (read-only, post-only, or custom scopes), account delegation (letting others manage an account with configurable permission levels), automatic backups to s3-compatible object storage (configurable retention and frequency, one-click restore), and a built-in web UI for account management, OAuth consent, repo browsing, and admin.

The PDS itself is a single small binary with no node/npm runtime. It does require postgres, valkey, and s3-compatible storage, which makes setup heavier than the reference PDS's sqlite. The tradeoff is that these are battle-tested pieces of infra that we already know how to scale, back up, and monitor.

Quick Start

cp .env.example .env
podman compose up -d
just run

Configuration

See .env.example for all configuration options.

Development

Run just to see available commands.

just test
just lint

Production Deployment

Quick Deploy (Docker/Podman Compose)

Edit .env.prod with your values. Generate secrets with openssl rand -base64 48.

cp .env.prod.example .env.prod
podman-compose -f docker-compose.prod.yml up -d

Installation Guides

Guide Best For
Debian Debian 13+ with systemd
Alpine Alpine 3.23+ with OpenRC
OpenBSD OpenBSD 7.8+ with rc.d
Containers Podman with quadlets or OpenRC
Kubernetes You know what you're doing

Thanks

This project is very grateful to @nel.pet, @nonbinary.computer, @juli.ee, @mary.my.id, and @baileytownsend.dev for their help and their code to lean on.

License

AGPL-3.0-or-later. Documentation is CC BY-SA 4.0. See LICENSE for details.

Description
No description provided
Readme 6.4 MiB
Languages
Rust 73.8%
Svelte 14.3%
TypeScript 10%
CSS 0.7%
Shell 0.5%
Other 0.6%