bunny-lab/Borealis-Github-Replica
1
0
Fork 0
mirror of https://github.com/bunny-lab-io/Borealis.git synced 2025-10-26 23:41:58 -06:00
Code Issues Packages Projects Releases Wiki Activity

Additional Updates

Browse Source
This commit is contained in:
Nicole Rappe
2025-10-17 19:38:12 -06:00
parent a1dc656878
commit 98ee77caca
4 changed files with 54 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
Borealis.ps1
View File

@@ -958,6 +958,7 @@ switch ($choice) {
New-Item -Path $dataDestination -ItemType Directory -Force | Out-Null New-Item -Path $dataDestination -ItemType Directory -Force | Out-Null
Copy-Item "$dataSource\Server\Python_API_Endpoints" $dataDestination -Recurse Copy-Item "$dataSource\Server\Python_API_Endpoints" $dataDestination -Recurse
Copy-Item "$dataSource\Server\Sounds" $dataDestination -Recurse Copy-Item "$dataSource\Server\Sounds" $dataDestination -Recurse
Copy-Item "$dataSource\Server\Modules" $dataDestination -Recurse
Copy-Item "$dataSource\Server\server.py" $dataDestination Copy-Item "$dataSource\Server\server.py" $dataDestination
Copy-Item "$dataSource\Server\job_scheduler.py" $dataDestination Copy-Item "$dataSource\Server\job_scheduler.py" $dataDestination
} }

7
Data/Server/Modules/crypto/certificates.py
View File

@@ -42,7 +42,11 @@ def ensure_certificate(common_name: str = "Borealis Server") -> Tuple[Path, Path
try: try:
with _CERT_FILE.open("rb") as fh: with _CERT_FILE.open("rb") as fh:
cert = x509.load_pem_x509_certificate(fh.read()) cert = x509.load_pem_x509_certificate(fh.read())
if cert.not_valid_after.replace(tzinfo=timezone.utc) <= datetime.now(tz=timezone.utc): try:
expiry = cert.not_valid_after_utc # type: ignore[attr-defined]
except AttributeError:
expiry = cert.not_valid_after.replace(tzinfo=timezone.utc)
if expiry <= datetime.now(tz=timezone.utc):
regenerate = True regenerate = True
except Exception: except Exception:
regenerate = True regenerate = True
@@ -130,4 +134,3 @@ def build_ssl_context() -> ssl.SSLContext:
def certificate_paths() -> Tuple[str, str, str]: def certificate_paths() -> Tuple[str, str, str]:
cert_path, key_path, bundle_path = ensure_certificate() cert_path, key_path, bundle_path = ensure_certificate()
return str(cert_path), str(key_path), str(bundle_path) return str(cert_path), str(key_path), str(bundle_path)

29
Data/Server/WebUI/vite.config.mts
View File

@@ -4,13 +4,32 @@ import react from '@vitejs/plugin-react';
import path from 'path'; import path from 'path';
import fs from 'fs'; import fs from 'fs';
const defaultCert = path.resolve(__dirname, '../certs/borealis-server-cert.pem'); const certCandidates = [
const defaultKey = path.resolve(__dirname, '../certs/borealis-server-key.pem'); process.env.BOREALIS_TLS_CERT,
path.resolve(__dirname, '../certs/borealis-server-cert.pem'),
path.resolve(__dirname, '../../Data/Server/certs/borealis-server-cert.pem'),
] as const;
const certPath = process.env.BOREALIS_TLS_CERT ?? defaultCert; const keyCandidates = [
const keyPath = process.env.BOREALIS_TLS_KEY ?? defaultKey; process.env.BOREALIS_TLS_KEY,
path.resolve(__dirname, '../certs/borealis-server-key.pem'),
path.resolve(__dirname, '../../Data/Server/certs/borealis-server-key.pem'),
] as const;
const httpsOptions = fs.existsSync(certPath) && fs.existsSync(keyPath) const pickFirst = (candidates: readonly (string | undefined)[]) => {
for (const candidate of candidates) {
if (!candidate) continue;
if (fs.existsSync(candidate)) {
return candidate;
}
}
return undefined;
};
const certPath = pickFirst(certCandidates);
const keyPath = pickFirst(keyCandidates);
const httpsOptions = certPath && keyPath
? { ? {
cert: fs.readFileSync(certPath), cert: fs.readFileSync(certPath),
key: fs.readFileSync(keyPath), key: fs.readFileSync(keyPath),

27
Data/Server/server.py
View File

@@ -18,6 +18,22 @@ Section Guide:
* WebSocket Event Handling and Entrypoint * WebSocket Event Handling and Entrypoint
""" """
import os
import sys
# Ensure the modular server package is importable when the runtime is launched
# from a packaged directory (e.g., Server/Borealis). We look for the canonical
# Data/Server location as well as a sibling Modules folder.
_SERVER_DIR = os.path.abspath(os.path.dirname(__file__))
_SEARCH_ROOTS = [
_SERVER_DIR,
os.path.abspath(os.path.join(_SERVER_DIR, "..", "..", "Data", "Server")),
]
for root in _SEARCH_ROOTS:
modules_dir = os.path.join(root, "Modules")
if os.path.isdir(modules_dir) and root not in sys.path:
sys.path.insert(0, root)
import eventlet import eventlet
# Monkey-patch stdlib for cooperative sockets (keep real threads for tpool usage) # Monkey-patch stdlib for cooperative sockets (keep real threads for tpool usage)
eventlet.monkey_patch(thread=False) eventlet.monkey_patch(thread=False)
@@ -34,7 +50,6 @@ from werkzeug.middleware.proxy_fix import ProxyFix
from itsdangerous import URLSafeTimedSerializer, BadSignature, SignatureExpired from itsdangerous import URLSafeTimedSerializer, BadSignature, SignatureExpired
import time import time
import os # To Read Production ReactJS Server Folder
import json # For reading workflow JSON files import json # For reading workflow JSON files
import shutil # For moving workflow files and folders import shutil # For moving workflow files and folders
from typing import List, Dict, Tuple, Optional, Any, Set, Sequence from typing import List, Dict, Tuple, Optional, Any, Set, Sequence
@@ -8125,5 +8140,11 @@ def relay_ansible_run(data):
if __name__ == "__main__": if __name__ == "__main__":
# Use SocketIO runner so WebSocket transport works with eventlet. # Use SocketIO runner so WebSocket transport works with eventlet.
ssl_context = certificates.build_ssl_context() # Eventlet's WSGI server expects raw cert/key paths rather than an ssl.SSLContext.
socketio.run(app, host="0.0.0.0", port=5000, ssl_context=ssl_context) socketio.run(
app,
host="0.0.0.0",
port=5000,
certfile=TLS_CERT_PATH,
keyfile=TLS_KEY_PATH,
)