Onion Service

To run, set the following (here are some example values, fill in the <...>):

TOR_ONION_NAME=myservice
TOR_ONION_HOSTNAME=<base32...>.onion
TOR_ONION_V3_PUBLIC_KEY=<base64...>
TOR_ONION_V3_SECRET_KEY=<base64...>
TOR_ONION_REMOTE_PORT=80
WEB_FRONTEND_HOST=nginx.internal
WEB_FRONTEND_PORT=8000

Client authentication

To enable client authentication (which will prevent all clients without a key from accessing the service), mount some *.auth files into /authorized_clients when running the container.

Generating a key and hidden service name

To create new service names and their associated keys, run:

docker build -t onion-service.local .
docker run --rm --entrypoint gen-service-keypair onion-service.local

Generating a client auth key

To generate a new client keypair (you can pass any number of service names):

./gen-client-keypair <base32...>.onion

Name		Name	Last commit message	Last commit date
Latest commit History 28 Commits
Dockerfile		Dockerfile
README.md		README.md
gen-client-keypair		gen-client-keypair
gen-service-keypair		gen-service-keypair
tor-entrypoint		tor-entrypoint
version.txt		version.txt

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Dockerfile

Dockerfile

README.md

README.md

gen-client-keypair

gen-client-keypair

gen-service-keypair

gen-service-keypair

tor-entrypoint

tor-entrypoint

version.txt

version.txt

Repository files navigation

Onion Service

Client authentication

Generating a key and hidden service name

Generating a client auth key

About

Releases

Packages

Contributors 3

Languages

freedomofpress/container-onion-service

Folders and files

Latest commit

History

Repository files navigation

Onion Service

Client authentication

Generating a key and hidden service name

Generating a client auth key

About

Topics

Resources

Code of conduct

Stars

Watchers

Forks

Languages