coracle/caravel
1
1
Fork 2
Code Issues 4 Pull Requests Actions Packages Projects Releases Wiki Activity
211 Commits 1 Branch 1 Tag
90f5a552691c41538a7d217ca05e2beaf86db4fd
T
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Jon Staab 90f5a55269
Docker / build-and-push-image (push) Successful in 1m41s
Details
Add custom domain support
2026-06-12 13:31:40 -07:00
.agents/skills
Add backend skill
2026-06-02 15:11:19 -07:00
.gitea/workflows
Add build cache, remove arm build target
2026-06-11 16:47:06 -07:00
backend
Add custom domain support
2026-06-12 13:31:40 -07:00
frontend
Add custom domain support
2026-06-12 13:31:40 -07:00
.ackrc
Rework billing
2026-04-09 14:11:30 -07:00
.dockerignore
Consolidate dockerfiles
2026-06-02 10:01:43 -07:00
.fdignore
Add dunning
2026-05-29 11:32:06 -07:00
.gitignore
Add frontend skill
2026-06-02 14:17:27 -07:00
AGENTS.md
Add checkout sessions for paying an invoice
2026-06-03 10:02:43 -07:00
Dockerfile
Make logo customizable
2026-06-03 16:46:20 -07:00
entrypoint.sh
Disable logging when serving frontend
2026-06-03 17:07:53 -07:00
justfile
Conflate id and schema
2026-05-05 17:47:13 -07:00
LICENSE
Add license
2026-06-08 10:47:43 -07:00
README.md
Add custom domain support
2026-06-12 13:31:40 -07:00

README.md

Caravel

A multi-tenant platform for hosting Nostr community relays, built on top of zooid.

Deployment

Caravel ships as a single Docker image, built from the repository-root Dockerfile and published by .gitea/workflows/docker-publish.yml as gitea.coracle.social/coracle/caravel. One container runs both services: the backend API on port 2892 and the frontend on port 3000.

Both the backend and the frontend are compiled into the image at build time. The frontend is built with placeholder config that the entrypoint replaces with the real values when the container starts, so one image can be deployed with any configuration — no rebuild required.

Caravel needs a reachable zooid instance (the Local Development section below shows how to run one). Substitute your own values for the placeholders below:

docker run -d \
  --name caravel \
  -p 2892:2892 \
  -p 3000:3000 \
  -v my-caravel-data:/app/data \
  -e PLATFORM_NAME=Caravel \
  -e PLATFORM_LOGO=/caravel.png \
  -e RELAY_DOMAIN=example.com \
  -e APP_URL=https://example.com \
  -e ZOOID_API_URL=http://zooid:3334 \
  -e SERVER_URL=https://api.example.com \
  -e SERVER_ADMIN_PUBKEYS=<your-hex-pubkey> \
  -e SERVER_ALLOW_ORIGINS=https://example.com \
  -e ROBOT_SECRET=<hex-nostr-secret-key> \
  -e ROBOT_NAME=Caravel \
  -e ROBOT_DESCRIPTION="Relay manager bot" \
  -e ROBOT_PICTURE=https://example.com/robot.png \
  -e ROBOT_WALLET=<nwc-connection-uri> \
  -e ROBOT_OUTBOX_RELAYS=wss://relay.damus.io,wss://relay.primal.net,wss://nos.lol \
  -e ROBOT_INDEXER_RELAYS=wss://purplepag.es,wss://relay.damus.io,wss://indexer.coracle.social \
  -e ROBOT_MESSAGING_RELAYS=wss://auth.nostr1.com,wss://relay.keychat.io,wss://relay.ditto.pub \
  -e BLOSSOM_S3_ENDPOINT=https://s3.example.com \
  -e BLOSSOM_S3_REGION=us-east-1 \
  -e BLOSSOM_S3_BUCKET=caravel-blossom \
  -e BLOSSOM_S3_ACCESS_KEY=<s3-access-key> \
  -e BLOSSOM_S3_SECRET_KEY=<s3-secret-key> \
  -e LIVEKIT_URL=wss://livekit.example.com \
  -e LIVEKIT_API_KEY=<livekit-api-key> \
  -e LIVEKIT_API_SECRET=<livekit-api-secret> \
  -e STRIPE_SECRET_KEY=<stripe-secret-key> \
  gitea.coracle.social/coracle/caravel

Notes:

  • Every backend variable above is required — the server exits on startup if any is missing or empty. See backend/.env.template for what each one means.
  • ROBOT_SECRET is the robot account's hex nostr secret key; its pubkey must be in zooid's API_WHITELIST (the backend signs zooid requests with it via NIP-98).
  • SERVER_ALLOW_ORIGINS must include the frontend's public origin, or browsers will be blocked by CORS.
  • The frontend's VITE_ prefixed env variables are automatically populated from the provided env variables.
  • -v my-caravel-data:/app/data persists the SQLite database.

To build the image yourself instead of pulling it:

docker build -t caravel .

Zooid and TLS

Zooid (the relay engine) should run on its own server with Caddy as the TLS-terminating reverse proxy. Keeping Zooid separate lets it scale independently and makes custom relay domains work without touching the Caravel host.

Why Caddy? Caravel supports tenant-facing custom domains, which require per-domain TLS certificates that are provisioned automatically. Caddy's on-demand TLS handles this: it calls a Caravel endpoint before issuing each certificate, so only known domains get one.

Zooid server setup

On the Zooid server, create a Caddyfile:

{
  on_demand_tls {
    ask http://<caravel-host>:2892/domains/check
    interval 2m
    burst 5
  }
}

:443 {
  tls {
    on_demand
  }
  reverse_proxy localhost:3334
}

Replace <caravel-host> with the hostname or IP of the Caravel server. The /domains/check endpoint returns 200 for any subdomain of RELAY_DOMAIN and for any tenant custom domain that has been verified, and 404 otherwise — Caddy will only obtain a certificate if it gets a 200.

Run Caddy and Zooid together, for example with Docker Compose:

services:
  caddy:
    image: caddy:2
    ports:
      - "80:80"
      - "443:443"
    volumes:
      - ./Caddyfile:/etc/caddy/Caddyfile
      - caddy_data:/data
    restart: unless-stopped

  zooid:
    image: gitea.coracle.social/coracle/zooid
    environment:
      API_HOST: api.zooid.example.com
      API_WHITELIST: <hex-pubkey-matching-ROBOT_SECRET>
    volumes:
      - zooid_data:/app/data
    restart: unless-stopped

volumes:
  caddy_data:
  zooid_data:

Point your wildcard DNS record (*.relay_domain) at this server's IP. Custom domains are pointed there by tenants via a CNAME to their relay's canonical subdomain; Caravel verifies the CNAME in the background and notifies Zooid once confirmed.

Set ZOOID_API_URL in Caravel's environment to the same value as zooid's API_HOST value, prefixed with the protocol, e.g. https://api.zooid.example.com.

Local Development

Prerequisites

  • Rust (for the backend)
  • Bun (for the frontend)
  • just (task runner)
  • onchange (npm i -g onchange, used by just dev for backend file watching)
  • Docker (for zooid)

1. Start zooid

Zooid is the relay engine that Caravel manages. The backend authenticates to zooid's API using NIP-98, signing requests with a Nostr secret key. Zooid must be configured to accept requests from the corresponding public key.

Generate a keypair to use for this. The hex secret key goes in the backend's ZOOID_API_SECRET, and the hex public key goes in zooid's API_WHITELIST.

docker run -it \
  -p 3334:3334 \
  -e API_HOST=127.0.0.1:3334 \
  -e API_WHITELIST=<hex-pubkey-matching-ZOOID_API_SECRET> \
  -v ./config:/app/config \
  -v ./media:/app/media \
  -v ./data:/app/data \
  gitea.coracle.social/coracle/zooid

2. Configure the backend

Copy the template and fill in the required values:

cp backend/.env.template backend/.env

At minimum for local dev, set:

Variable Value Notes
ADMINS Your hex pubkey Gives you admin access in the UI
ZOOID_API_SECRET Hex Nostr secret key The keypair whose pubkey you put in API_WHITELIST above
RELAY_DOMAIN localhost Base domain appended to relay subdomains

The rest of the defaults work as-is. ROBOT_*, LIVEKIT_*, billing, and Stripe vars are optional for basic local development.

3. Configure the frontend

cp frontend/.env.template frontend/.env

The defaults (VITE_API_URL=http://127.0.0.1:2892) point at the backend and work out of the box.

4. Install dependencies and run

cd frontend && bun install && cd ..
just dev

This starts the backend (with auto-reload on file changes) at http://127.0.0.1:2892 and the frontend at http://127.0.0.1:5173.

Project docs

Reference in New Issue View Git Blame Copy Permalink
S
Description
Hosting manager and dashboard for zooid relays
Readme MIT 4.8 MiB
Languages
TypeScript 59.6%
Rust 37%
JavaScript 1.9%
Dockerfile 0.7%
Shell 0.3%
Other 0.4%