forked from ipfs/kubo
-
Notifications
You must be signed in to change notification settings - Fork 2
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Filestore: Disable config.Filestore.APIServerSidePaths for now.
Disable config.Filestore.APIServerSidePaths for now due to security concerns. License: MIT Signed-off-by: Kevin Atkinson <[email protected]>
- Loading branch information
Showing
6 changed files
with
74 additions
and
64 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,31 @@ | ||
## Server side adds | ||
|
||
**Note: Server side adds are currently disabled in the code due to | ||
security concerns. If you wish to enable this feature you will need | ||
to compile IPFS from source and modify `repo/config/datastore.go`.** | ||
|
||
When adding a file when the daemon is online. The client sends both | ||
the file contents and path to the server, and the server will then | ||
verify that the same content is available via the specified path by | ||
reading the file again on the server side. To avoid this extra | ||
overhead and allow directories to be added when the daemon is | ||
online server side paths can be used. | ||
|
||
To use this feature you must first enable API.ServerSideAdds using: | ||
``` | ||
ipfs config Filestore.APIServerSidePaths --bool true | ||
``` | ||
*This option should be used with care since it will allow anyone with | ||
access to the API Server access to any files that the daemon has | ||
permission to read.* For security reasons it is probably best to only | ||
enable this on a single user system and to make sure the API server is | ||
configured to the default value of only binding to the localhost | ||
(`127.0.0.1`). | ||
|
||
With the `Filestore.APIServerSidePaths` option enabled you can add | ||
files using `filestore add -S`. For example, to add the file | ||
`hello.txt` in the current directory use: | ||
``` | ||
ipfs filestore add -S -P hello.txt | ||
``` | ||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters