Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/derhuerst/gemini

Gemini protocol server & client for Node.js.
https://github.com/derhuerst/gemini

gemini protocol server

Last synced: 4 days ago
JSON representation

Gemini protocol server & client for Node.js.

Awesome Lists containing this project

README 

        
# gemini



**[Gemini protocol](https://gemini.circumlunar.space) server & client.**



[![npm version](https://img.shields.io/npm/v/@derhuerst/gemini.svg)](https://www.npmjs.com/package/@derhuerst/gemini)

![ISC-licensed](https://img.shields.io/github/license/derhuerst/gemini.svg)

![minimum Node.js version](https://img.shields.io/node/v/@derhuerst/gemini.svg)

[![support me via GitHub Sponsors](https://img.shields.io/badge/support%20me-donate-fa7664.svg)](https://github.com/sponsors/derhuerst)

[![chat with me on Twitter](https://img.shields.io/badge/chat%20with%20me-on%20Twitter-1da1f2.svg)](https://twitter.com/derhuerst)



## Installation



```shell

npm install @derhuerst/gemini

```



## Usage



### Server



The following code assumes that you have a valid SSL certificate & key.



```js

import {createServer, DEFAULT_PORT} from '@derhuerst/gemini'



const handleRequest = (req, res) => {

	if (req.path === '/foo') {

		if (!req.clientFingerprint) {

			return res.requestTransientClientCert('/foo is secret!')

		}

		res.write('foo')

		res.end('!')

	} else if (req.path === '/bar') {

		res.redirect('/foo')

	} else {

		res.gone()

	}

}



const server = createServer({

	cert: …, // certificate (+ chain)

	key: …, // private key

	passphrase: …, // passphrase, if the key is encrypted

}, handleRequest)



server.listen(DEFAULT_PORT)

server.on('error', console.error)

```



### Client



```js

import {sendGeminiRequest as request} from '@derhuerst/gemini/client.js'



request('/bar', (err, res) => {

	if (err) {

		console.error(err)

		process.exit(1)

	}



	console.log(res.statusCode, res.statusMessage)

	if (res.meta) console.log(res.meta)

	res.pipe(process.stdout)

})

```



#### [TOFU](https://en.wikipedia.org/wiki/Trust_on_first_use)-style client certificates



> Interactive clients for human users MUST inform users that such a session has been requested and require the user to approve generation of such a certificate. Transient certificates MUST NOT be generated automatically.

– [Gemini spec](https://gemini.circumlunar.space/docs/spec-spec.txt), section 1.4.3



This library leaves it up to *you* how to ask the user for approval. As an example, we're going to build a simple CLI prompt:



```js

import {createInterface} from 'node:readline'



const letUserConfirmClientCertUsage = ({host, reason}, cb) => {

	const prompt = createInterface({

		input: process.stdin,

		output: process.stdout,

	})

	prompt.question(`Send client cert to ${host}? Server says: "${reason}". y/n > `, (confirmed) => {

		prompt.close()

		cb(confirmed === 'y' || confirmed === 'Y')

	})

}



request('/foo', {

	// opt into client certificates

	useClientCerts: true,

	letUserConfirmClientCertUsage,

}, cb)

```



## API



### `createServer`



```js

import {createGeminiServer as createServer} from '@derhuerst/gemini/server.js'

createServer(opt = {}, onRequest)

```



`opt` extends the following defaults:



```js

{

	// SSL certificate & key

	cert: null, key: null, passphrase: null,

	// additional options to be passed into `tls.createServer`

	tlsOpt: {},

	// verify the ALPN ID requested by the client

	// see https://de.wikipedia.org/wiki/Application-Layer_Protocol_Negotiation

	verifyAlpnId: alpnId => alpnId ? alpnId === ALPN_ID : true,

}

```



### `request`



```js

import {sendGeminiRequest as request} from '@derhuerst/gemini/client.js'

request(pathOrUrl, opt = {}, cb)

```



`opt` extends the following defaults:



```js

{

	// follow redirects automatically

	// Can also be a function `(nrOfRedirects, response) => boolean`.

	followRedirects: false,

	// client certificates

	useClientCerts: false,

	letUserConfirmClientCertUsage: null,

	clientCertStore: defaultClientCertStore,

	// time to wait for socket connection & TLS handshake

	connectTimeout: 60 * 1000, // 60s

	// time to wait for response headers *after* the socket is connected

	headersTimeout: 30 * 1000, // 30s

	// time to wait for the first byte of the response body *after* the socket is connected

	timeout: 40 * 1000, // 40s

	// additional options to be passed into `tls.connect`

	tlsOpt: {},

	// verify the ALPN ID chosen by the server

	// see https://de.wikipedia.org/wiki/Application-Layer_Protocol_Negotiation

	verifyAlpnId: alpnId => alpnId ? (alpnId === ALPN_ID) : true,

}

```



### `connect`



```js

import {connectToGeminiServer as connect} from '@derhuerst/gemini/connect.js'

connect(opt = {}, cb)

```



`opt` extends the following defaults:



```js

{

	hostname: '127.0.0.1',

	port: 1965,

	// client certificate

	cert: null, key: null, passphrase: null,

	// time to wait for socket connection & TLS handshake

	connectTimeout: 60 * 1000, // 60s

	// additional options to be passed into `tls.connect`

	tlsOpt: {},

}

```



## Related



- [`gemini-fetch`](https://github.com/RangerMauve/gemini-fetch) – Load data from the Gemini protocol the way you would fetch from HTTP in JavaScript

- [`dioscuri`](https://github.com/wooorm/dioscuri) – A gemtext (`text/gemini`) parser with support for streaming, ASTs, and CSTs



## Contributing



If you have a question or need support using `gemini`, please double-check your code and setup first. If you think you have found a bug or want to propose a feature, use [the issues page](https://github.com/derhuerst/gemini/issues).