Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/haskell/hackage-server
Hackage-Server: A Haskell Package Repository
https://github.com/haskell/hackage-server
cabal hackage haskell
Last synced: about 21 hours ago
JSON representation
Hackage-Server: A Haskell Package Repository
- Host: GitHub
- URL: https://github.com/haskell/hackage-server
- Owner: haskell
- License: other
- Created: 2013-08-20T11:08:21.000Z (over 11 years ago)
- Default Branch: master
- Last Pushed: 2025-01-01T00:34:08.000Z (10 days ago)
- Last Synced: 2025-01-03T14:09:46.976Z (8 days ago)
- Topics: cabal, hackage, haskell
- Language: Haskell
- Homepage: http://hackage.haskell.org
- Size: 11.7 MB
- Stars: 420
- Watchers: 35
- Forks: 197
- Open Issues: 237
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
- my-awesome - haskell/hackage-server - 01 star:0.4k fork:0.2k Hackage-Server: A Haskell Package Repository (Haskell)
README
# hackage-server
[](https://github.com/haskell/hackage-server/actions/workflows/haskell-ci.yml)
[](https://github.com/haskell/hackage-server/actions/workflows/nix-flake.yml)
This is the `hackage-server` code. This is what powers , and many other private hackage instances. The `master` branch is suitable for general usage. Specific policy and documentation for the central hackage instance exists in the `central-server` branch.
## Installing dependencies
`hackage-server` depends on `libgd`, `zlib`, and other system libraries. You'll also need `libbrotli-dev` for enabling tests.
You can use the Nix package manager to provide these dependencies, or install them manually.
### Using the [Nix package manager](https://nixos.org/) and provided [Nix Flake](https://nixos.org/manual/nix/stable/command-ref/new-cli/nix3-flake.html)
If you have the Nix package manager installed, you can build and run `hackage-server` without manually installing any dependencies:
$ nix run
'state' state-dir already exists
hackage-server: Ready! Point your browser at http://127.0.0.1:8080
If the required `state` directory does not already exist, `nix run` will create and initialize it.
The `flake.nix` is implemented with [`srid/haskell-flake`](https://github.com/srid/haskell-flake).
Alternatively, open the [`nix develop`](https://nixos.org/manual/nix/stable/command-ref/new-cli/nix3-develop.html) shell:
$ nix develop
(in develop shell)
# if state directory does not already exist
$ cabal v2-run -- hackage-server init --static-dir=datafiles --state-dir=state
$ cabal v2-run -- hackage-server run --static-dir=datafiles --state-dir=state --base-uri=http://127.0.0.1:8080
hackage-server: Ready! Point your browser at http://127.0.0.1:8080
#### Populate the local package index
This copies packages from real Hackage Server to local Hackage Server.
Add the default `admin` user to the `mirrorers` group here:
http://localhost:8080/packages/mirrorers/
Then
$ nix run .#mirror-hackage-server
#### Not working
Please note this App *cannot* be run [directly from GitHub](https://determinate.systems/posts/nix-run) like this:
nix run github:haskell/hackage-server -- init --static-dir=datafiles
nix run github:haskell/hackage-server -- run --static-dir=datafiles --base-uri=http://127.0.0.1:8080
because `hackage-server` expects the directories `state` and `datafiles` to exist in the working directory.
### Manually
You can also install dependencies manually via your operating system's package
manager.
#### Libgd
You'll need to do the following to get `hackage-server`'s dependency `hs-captcha` (and transitively `gd`) to build:
- Mac OS X
brew install libgd
- Ubuntu/Debian
sudo apt-get update
sudo apt-get install unzip libgd-dev
- Fedora/CentOS
sudo dnf install unzip libgd-devel
- Nix/NixOS
nix-shell --packages gd
#### libbrotli
- Ubuntu/Debian
sudo apt update
sudo apt install libbrotli-dev
- Fedora/CentOS
sudo dnf install brotli-devel
#### openssl
- Fedora/CentOS
sudo dnf install openssl-devel
#### zlib
- Mac OS X
brew install zlib
- Ubuntu/Debian
sudo apt-get update
sudo apt-get install zlib
- Fedora/CentOS
sudo dnf install zlib
- Nix/NixOS
nix-shell --packages zlib
#### Mac OS X
In addition to the above commands, you'll need to run
```bash
brew install pkg-config
```
After running the above `brew install` commands, you also need to update `cabal.project.local` with the following:
```bash
cat >> cabal.project.local <.private datafiles/TUF/timestamp.private
cp /path/to/keys/snapshot/.private datafiles/TUF/snapshot.private
Create root information:
hackage-repo-tool create-root --keys /path/to/keys -o datafiles/TUF/root.json
And finally create a list of mirrors (this is necessary even if you don't have
any mirrors):
hackage-repo-tool create-mirrors --keys /path/to/keys -o datafiles/TUF/mirrors.json
The `create-mirrors` command takes a list of mirrors as additional arguments if
you do want to list mirrors.
In order for secure clients to bootstrap the root security metadata from your
server, you will need to provide them with the public key IDs of your root keys;
you can find these as the file names of the files created in
`/path/to/keys/root` (as well as in the generated root.json under the
`signed.roles.root.keyids`). An example `cabal` client configuration might look
something like
repository my-private-hackage
url: http://example.com:8080/
secure: True
root-keys: 865cc6ce84231ccc990885b1addc92646b7377dd8bb920bdfe3be4d20c707796
dd86074061a8a6570348e489aae306b997ed3ccdf87d567260c4568f8ac2cbee
e4182227adac4f3d0f60c9e9392d720e07a8586e6f271ddcc1697e1eeab73390
key-threshold: 2
Note that if you elect to not use a secure client, the hackage server will not
provide your client the most recent versions of packages from its index. The
cabal-version:2.0 format packages are thus only available in the newer secure
repository mode. See [Issue #4625](https://github.com/haskell/cabal/issues/4624)
for further information.
## Running
cabal install
hackage-server init
hackage-server run
If you want to run the server directly from the build tree, run
cabal v2-run -- hackage-server init
once to initialise the state. After that you can run the server with
cabal v2-run -- hackage-server run --static-dir=datafiles/ --base-uri=http://127.0.0.1:8080
By default the server runs on port `8080` with the following settings:
URL: http://localhost:8080/
username: admin
password: admin
To specify something different, see `hackage-server init --help` for details.
The http://127.0.0.1:8080/packages/uploaders/edit is used to add users
(e.g. `admin`) to *Uploaders* group.
The server can be stopped by using `Control-C`.
This will save the current state and shutdown cleanly. Running again
will resume with the same state.
### Resetting
To reset everything, kill the server and delete the server state:
```bash
rm -rf state/
```
Note that the `datafiles/` and `state/` directories differ:
`datafiles` is for static html, templates and other files.
The `state` directory holds the database (using `acid-state`
and a separate blob store).
### Creating users & uploading packages
* Admin front-end:
* List of users:
* Register new users:
Currently there is no restriction on registering, but only an admin
user can grant privileges to registered users e.g. by adding them to
other groups. In particular there are groups:
* admins `http://localhost:8080/users/admins/` -- administrators can
do things with user accounts like disabling, deleting, changing
other groups etc.
* trustees `http://localhost:8080/packages/trustees/` -- trustees can
do janitorial work on all packages
* mirrors `http://localhost:8080/packages/mirrorers/` -- for special
mirroring clients that are trusted to upload packages
* per-package maintainer groups
`http://localhost:8080/package/foo/maintainers` -- users allowed to
upload packages
* uploaders `http://localhost:8080/packages/uploaders/` -- for
uploading new packages
### Mirroring
There is a client program included in the `hackage-server` package called
`hackage-mirror`. It's intended to run against two servers, syncing all the
packages from one to the other, e.g. getting all the packages from the old
hackage and uploading them to a local instance of a hackage-server.
To try it out:
1. On the target server, add a user to the mirrorers group via
http://localhost:8080/packages/mirrorers/.
2. Create a config file that contains the source and target
servers. Assuming you are cloning the packages on
locally, create the file `servers.cfg`:
```
source "hackage"
uri: http://hackage.haskell.org
type: secure
target "mirror"
uri: http://admin:admin@localhost:8080
type: hackage2
post-mirror-hook: "shell command to execute"
```
Recognized types are `hackage2`, `secure` and `local`.
The target server name was displayed when you ran.
Note, the target must _not_ have a trailing slash, or confusion
will tend to occur. Additionally, if you have ipv6 setup on the
machine, you may need to replace `localhost` with `127.0.0.1`.
Also note that you should mirror _from_ `hackage2` or `secure`
typically and mirror _to_ `hackage2`. Only mirroring from `secure`
will include dependency revision information.
```bash
hackage-server run
```
3. Run the client, pointing to the config file:
```bash
hackage-mirror servers.cfg
```
This will do a one-time sync, and will bail out at the first sign of
trouble. You can also do more robust and continuous mirroring. Use the
flag `--continuous`. It will sync every 30 minutes (configurable with
`--interval`). In this mode it carries on even when some packages
cannot be mirrored for some reason and remembers them so it doesn't
try them again and again. You can force it to try again by deleting
the state files it mentions.