mataroa

Naked blogging platform.

Table of Contents

• Community
  • Tools
• Local Development
  • Subdomains
  • Docker
  • Dependencies
  • Environment variables
  • Database
  • Serve
  • Testing
  • Code linting and formatting
• Contributing
  • Directory structure
  • Coding Conventions
  • Git Commit Message Guidelines
  • Feature Release Checklist
  • Dependency Policy
• Operations
  • Deployment
  • Billing
  • Recurring Tasks
  • Post by email
  • Database Backup
  • Server Migration Checklist
  • On Server Outage
• License

Community

Main repository on GitHub: github.com/mataroablog/mataroa

Mirror on sr.ht: git.sr.ht/~sirodoht/mataroa

Bug tracking on GitHub: github.com/mataroablog/mataroa/issues

Community mailing list on sr.ht: lists.sr.ht/~sirodoht/mataroa-community

Tools

• mataroa-cli
• Mataroa Telegram Bot

Local Development

This is a Django codebase. Check out the Django docs for general technical documentation.

The Django project is mataroa. There is one Django app, main, with all business logic. Application CLI commands are generally divided into two categories, those under python manage.py and those under make.

Subdomains

Mataroa works primarily with subdomain, thus one cannot access the basic web app using the standard http://127.0.0.1:8000 or http://localhost:8000 URLs. What we do for local development is add a few custom entries on our /etc/hosts system file.

Important note: there needs to be an entry of each user account created in the local development environment, so that the web server can respond to it.

The first line is the main needed: mataroalocal.blog. The rest are included as examples of other users one can create in their local environment. The easiest way to create them is to go through the sign up page (http://mataroalocal.blog:8000/accounts/create/ using default values).

# /etc/hosts

127.0.0.1 mataroalocal.blog

127.0.0.1 paul.mataroalocal.blog
127.0.0.1 random.mataroalocal.blog
127.0.0.1 anyusername.mataroalocal.blog

This will enable us to access mataroa locally (once we start the web server) at http://mataroalocal.blog:8000/ and if we make a user account with username paul, then we will be able to access it at http://paul.mataroalocal.blog:8000/

Docker

To set up a development environment with Docker and Docker Compose, run the following to start the web server and database:

docker compose up

If you have also configured hosts as described above in the "Subdomains" section, mataroa should now be locally accessible at http://mataroalocal.blog:8000/

Note: The database data are saved in the git-ignored docker-postgres-data docker volume, located in the root of the project.

Dependencies

We use uv for dependency management and virtual environments.

uv sync --all-groups

See Dependency Policy for more details on adding/upgrading dependencies.

Environment variables

A file named .envrc is used to define the environment variables required for this project to function. One can either export it directly or use direnv. There is an example environment file one can copy as base:

cp .envrc.example .envrc

When on Docker, to change or populate environment variables, edit the environment key of the web service either directly on docker-compose.yml or by overriding it using the standard named git-ignored docker-compose.override.yml.

# docker-compose.override.yml

services:
  web:
    environment:
      EMAIL_HOST_USER: smtp-user
      EMAIL_HOST_PASSWORD: smtp-password

Finally, stop and start docker compose up again. It should pick up the override file as it has the default name docker-compose.override.yml.

Database

This project is using one PostreSQL database for persistence.

One can use the provided script to set up a local Postgres database (user mataroa, passwordless):

./setup-database-localdev.sh

And also easily reset it (drop database and user):

./reset-database-localdev.sh

After setting the DATABASE_URL (see above), create the database schema with:

uv python manage.py migrate

Initialising the database with some sample development data is possible with:

uv python manage.py loaddata dev-data

• dev-data is defined in main/fixtures/dev-data.json
• Credentials of the fixtured user are admin / admin.

Serve

To run the Django development server:

uv python manage.py runserver

If you have also configured hosts as described above in the "Subdomains" section, mataroa should now be locally accessible at http://mataroalocal.blog:8000/

Testing

Using the Django test runner:

uv run python manage.py test

For coverage, run:

uv run coverage run --source='.' --omit '.venv/*' manage.py test
uv run coverage report -m

Code linting and formatting

We use ruff for Python linting and code formatting.

To lint:

uv run ruff check

To apply automatic fixes if they exist:

uv run ruff check --fix

To format:

uv run ruff format --check

Contributing

Main repository on GitHub: github.com/mataroablog/mataroa

Mirror repository on sr.ht: git.sr.ht/~sirodoht/mataroa

Report bugs on GitHub: github.com/mataroablog/mataroa/issues

Contribute on GitHub with Pull Requests: github.com/mataroablog/mataroa/pulls

Contribute with email patches on sr.ht: ~sirodoht/public-inbox@lists.sr.ht. See how to contribute using email patches on git-send-email.io.

Directory structure

Here, an overview of the project's code sources is presented. The purpose is for the reader to understand what kind of functionality is located where in the source code.

All business logic of the application is in one Django app: main.

Condensed and commented sources file tree:

.
├── .build.yml # SourceHut CI build config
├── .envrc.example # example direnv file
├── .github/ # GitHub Actions config files
├── Caddyfile # configuration for Caddy webserver
├── Dockerfile
├── docker-compose.yml
├── export_base_epub/ # base sources for epub export functionality
├── export_base_hugo/ # base sources for hugo export functionality
├── export_base_zola/ # base sources for zola export functionality
├── main/
│   ├── admin.py
│   ├── apps.py
│   ├── denylist.py # list of various keywords allowed and denied
│   ├── feeds.py # django rss functionality
│   ├── fixtures/
│   │   └── dev-data.json # sample development data
│   ├── forms.py
│   ├── management/ # commands under `python manage.py`
│   │   └── commands/
│   │       ├── checkstripe.py
│   │       ├── mailexports.py
│   │       ├── mailsummary.py
│   │       ├── processnotifications.py
│   │       └── testbulkmail.py
│   ├── middleware.py # mostly subdomain routing
│   ├── migrations/
│   ├── models.py
│   ├── sitemaps.py
│   ├── static/
│   ├── templates
│   │   ├── main/ # HTML templates for most pages
│   │   ├── assets/
│   │   │   ├── drag-and-drop-upload.js
│   │   │   └── style.css
│   │   ├── partials/
│   │   │   ├── footer.html
│   │   │   ├── footer_blog.html
│   │   │   └── webring.html
│   │   └── registration/
│   ├── tests/
│   │   ├── test_api.py
│   │   ├── test_billing.py
│   │   ├── test_blog.py
│   │   └── testdata/
│   ├── text_processing.py # markdown and text utilities
│   ├── urls.py
│   ├── validators.py # custom form and field validators
│   └── views/
│       ├── api.py
│       ├── billing.py
│       ├── general.py
├── manage.py
└── mataroa
    ├── asgi.py
    ├── settings.py # django configuration file
    ├── urls.py
    └── wsgi.py

main/urls.py

All urls are in this module. They are visually divided into several sections:

• general, includes index, dashboard, static pages
• user system, includes signup, settings, logout
• blog posts, the CRUD operations of
• blog extras, includes rss and newsletter features
• comments, related to the blog post comments
• billing, subscription and card related
• blog import, export, webring
• images CRUD
• analytics list and details
• pages CRUD

main/views/

The majority of business logic is organized in the views/ directory, split across several modules for better organization.

Generally, Django class-based generic views are used most of the time as they provide useful functionality abstracted away.

The Django source code for generic views is also extremely readable:

• base.py: base View and TemplateView
• list.py: ListView
• edit.py: UpdateView, DeleteView, FormView
• detail.py: DetailView

Function-based views are used in cases where the CRUD/RESTful design pattern is not clear such as notification_unsubscribe_key where we unsubscribe an email via a GET operation.

main/views/general.py

The main view module containing most of the application's business logic:

• indexes, dashboard, static pages
• user CRUD and login/logout
• posts CRUD
• comments CRUD
• images CRUD
• pages CRUD
• webring
• analytics
• notifications subscribe/unsubscribe

main/views/api.py

This module contains all API related views. These views have their own api key based authentication.

main/views/export.py

This module contains all views related to the export capabilities of mataroa.

The way the exports work is by reading the base files from the repository root: export_base_hugo, export_base_zola, export_base_epub for Hugo, Zola, and epub respectively. After reading, we replace some strings on the configurations, generate posts as markdown strings, and zip-archive everything in-memory. Finally, we respond using the appropriate content type (application/zip or application/epub) and Content-Disposition attachment.

main/views/billing.py

This module contains all billing and subscription related views. It's designed to support one payment processor, Stripe.

main/views/moderation.py

This module contains all views related to moderating the content of the platform.

main/tests/

All tests are under this directory. They are divided into several modules, based on the functionality and the views they test.

Everything uses the built-in Python unittest module along with standard Django testing facilities.

main/models.py and main/migrations/

main/models.py is where the database schema is defined, translated into Django ORM-speak. This always displays the latest schema.

main/migrations/ includes all incremental migrations required to reach the schema defined in main/models.py starting from an empty database.

We use the built-in Django commands to generate and execute migrations, namely makemigrations and migrate. For example, the steps to make a schema change would be something like:

1. Make the change in main/models.py. See Django Model field reference.
2. Run python manage.py makemigrations to auto-generate the migrations.
3. Potentially refactor the auto-generated migration file (located at main/migrations/XXXX_auto_XXXXXXXX.py)
4. Run python manage.py migrate to execute migrations.
5. Also make format before committing.

main/forms.py

Here a collection of Django-based forms resides, mostly in regards to user creation, upload functionalities (for post import or image upload), and card details submission.

See Django Form fields reference.

main/text_processing.py

This module contains utilities for processing text content, including markdown rendering, syntax highlighting, and text transformations used throughout the application.

main/templates/assets/style.css

On mataroa, a user can enable an option, Theme Zia Lucia, and get a higher font size by default. Because we need to change the body font-size value, we render the CSS. It is not static. This is why it lives inside the templates directory.

Coding Conventions

1. All files should end with a new line character.
2. Python code should be formatted with ruff.

Git Commit Message Guidelines

We follow some simple non-austere git commit message guidelines.

• Start with a verb
  • add
  • change
  • delete
  • fix
  • refactor
  • tweak
  • et al.
• Start with a lowercase letter
  • eg. change analytic page path to the same of page slug
• Do not end with a fullstop

Feature Release Checklist

This document provides a comprehensive checklist for releasing a new version of Mataroa.

1. Finish with all commits, push to main
2. Verify CHANGELOG.md is up-to-date and add release date
3. Verify CI is green
4. Bump in in pyproject.toml with git commit -m "release v1.x"
5. Run uv lock
6. Create Git tag: git tag -a v1.x -m "v1.x"
7. Push tag: git push origin --tags and git push srht --tags

Dependency Policy

The mataroa project has an unusually strict yet usually unclear dependency policy.

Vague rules include:

• No third-party Django apps.
• All Python / PyPI packages should be individually vetted.
  • Packages should be published from community-trusted organisations or developers.
  • Packages should be actively maintained (though not necessarily actively developed).
  • Packages should hold a high quality of coding practices.
• No JavaScript libraries / dependencies.

Current list of top-level PyPI dependencies (source at pyproject.toml):

• Django
• psycopg
• gunicorn
• Markdown
• Pygments
• bleach
• stripe

Adding a new dependency

After approving a dependency, add it using uv:

1. Ensure uv is installed and a virtualenv exists (managed by uv).
2. Add the dependency to pyproject.toml and lockfile with:
   • Runtime: uv add PACKAGE
   • Dev-only: uv add --dev PACKAGE
3. Install/sync dependencies: uv sync

Upgrading dependencies

When a new Django version is out it’s a good idea to upgrade everything.

Steps:

1. Update the lockfile: uv lock --upgrade and review output changes.
2. Spot non-patch level version bumps and examine release notes.
3. Install updated deps: uv sync
4. Unless something comes up, make sure tests and smoke tests pass.
5. Deploy new dependency versions.

Operations

Details for people hosting their own mataroa instance.

Deployment

1. Choose domain name

For the purposes of this guide let us assume example.com is the domain name of choice.

2. Setup DNS

Both example.com and *.example.com should point to the mataroa server IP. Verify changes have propagated before provisioning:

dig example.com A
dig *.example.com A
dig randomsubdomain.example.com A

3. Configuration

Set up the config environment for provisioning. The config environment remains on your local machine.

cd deploy/

# make a copy of the example envrc file
cp .envrc.example .envrc

# edit parameters as required
vim .envrc

# load variables into environment
source .envrc

4. Provision

Finally, run the provisioning script:

cd deploy/
./provision.sh

This script will:

• install essential packages (gcc, git, rclone, postgresql, etc.)
• install and configure Caddy web server
• create the deploy user with proper permissions
• set up the postgres database
• install uv
• clone the mataroa repository
• configure all systemd services and timers
• run initial Django migrations and collect static files
• enable and start all systemd services

Note: Caddy will automatically obtain and manage SSL certificates for your domain and all subdomains using Let's Encrypt. The certificate generation for each domain happens when that domain is first accessed, which leads to increased latency for that first page visit.

5. Future deployments

To deploy new changes:

cd deploy/
./deploy.sh

This will connect to the server and:

• pull the latest code from git
• update python dependencies
• run database migrations
• collect static files
• reload the gunicorn/django service

Useful Commands

To reload the gunicorn process:

sudo systemctl reload mataroa

To reload Caddy:

systemctl restart caddy  # root only

gunicorn logs:

journalctl -fb -u mataroa

Caddy logs:

journalctl -fb -u caddy

Get an overview with systemd status:

systemctl status caddy
systemctl status mataroa

Billing

One can deploy mataroa without setting up billing functionalities. This is the default case. To handle payments and subscriptions this project uses Stripe. To enable Stripe and payments, one needs to have a Stripe account with a single Product (eg. "Mataroa Premium Plan").

To configure, add the following variables from your Stripe account to your .envrc:

export STRIPE_API_KEY="sk_test_XXX"
export STRIPE_PUBLIC_KEY="pk_test_XXX"
export STRIPE_WEBHOOK_SECRET="whsec_XXX"
export STRIPE_PRICE_ID="price_XXX"

Recurring Tasks

We don't use cron but systemd timers for jobs that need to run recurringly.

Process email notifications

python manage.py processnotifications

Sends notification emails for new blog posts.

Triggers daily at 10AM server time.

Email blog exports

python manage.py mailexports

Emails users their blog exports.

Triggers monthly, first day of the month, 6AM server time.

Daily summary

python manage.py mailsummary

Sends mataroa daily moderation summary.

Triggers daily at 00:15 server time.

Database Backup

We use the script backup-database.sh to dump the database and upload it into an S3-compatible object storage cloud using rclone.

To create a database dump run:

pg_dump -Fc --no-acl mataroa -h localhost -U mataroa -f /home/deploy/mataroa.dump -W

To restore a database dump run:

pg_restore --disable-triggers -j 4 -v -h localhost -cO --if-exists -d mataroa -U mataroa -W mataroa.dump

Server Migration Checklist

Nothing lasts forever. One day you might want to migrate your mataroa platform to another server. Mataroa stores everything, images including, in the PostgreSQL database. Naughty indeed, yet it makes it much easier to backup and migrate.

To start with, one a migrator has setup their new server we recommend that they they test everything in another domain, other than the main (existing) one:

1. Find a test domain name and set up DNS pointing to the new server
2. Set up deploy/.envrc for test domain name
3. Run deploy/provision.sh for new server via test domain name
4. Verify everything in the new server with the test domain works
5. Install old server's public key to new server's authorized keys so that we can scp the database dump

Then, for the migration:

1. Change Caddyfile to not reverse proxy to mataroa in the new server (so that we switch it on when we are ready)
2. Change Caddyfile to not reverse proxy to mataroa in the old server. This means down time begins.
3. Disconnect old server from public IP (we assume a floating IP is used)
4. Start the final database dump in the old server. Important: this assumes we are connected to the old server via another non-floating IP.
5. Change /etc/systemd/system/mataroa.env to point to the proper domain name (not the test one)
6. Install floating IP to new server (restart server to verify)
7. Once database dump finishes, secure copy it to the new server
8. Restore database dump in new server
9. Restore Caddyfile and restart Caddy

Finally, once the new server everything works don't forget to verify DEBUG is 0.

The above assume the migrator has a floating IP that they can move around. If not, there are two problems. The migrator needs to change DNS records but much more problematically all custom domains stop working :/ For this reason we should implement CNAME custom domains. However, CNAME custom domains do not support root domains, so what's the point anyway you ask. Good question. I don't know. I only hope I never decide to switch away from Hetzner.

On Server Outage

So, mataroa is down. What do we do?

First, we panic. We run around in circles with our hands up in despair. It's important to do this first, don't think of it as a joke. Once that's done:

1. Check Caddy

Caddy is the first point of contact inside the server from the outside world.

First ssh into server:

ssh root@mataroa.blog

Caddy runs as a systemd service. Check status with:

systemctl status caddy

Exit with q. If the service is not running and is errored restart with:

systemctl restart caddy

If restart does not work, check logs:

journalctl -u caddy -r

-r is for reverse. Use -f to follow logs real time:

journalctl -u caddy -f

To search within all logs do slash and then the keyword itself, eg: /keyword-here, then hit enter.

The config for Caddy is:

cat /etc/caddy/Caddyfile

The systemd config for Caddy is:

cat /etc/systemd/system/multi-user.target.wants/caddy.service

2. Check gunicorn

After Caddy receives the request, it forwards it to gunicorn. Gunicorn is what manages the mataroa Django instances, so it's named mataroa. It runs as a systemd service.

To see status:

systemctl status mataroa

To restart:

systemctl restart mataroa

To see logs:

journalctl -u mataroa -r

and to follow them:

journalctl -u mataroa -f

The systemd config for mataroa/gunicorn is:

cat /etc/systemd/system/multi-user.target.wants/mataroa.service

The env variables in a separate file:

cat /etc/systemd/system/mataroa.env

3. How to hotfix code

Here's where the code lives and how to access it:

sudo -i -u deploy
cd /var/www/mataroa/

# load env variables from the systemd env file:
# /etc/systemd/system/mataroa.env
# note: this file is root permissioned

uv run python manage.py

If you make a change in the source code files (inside /var/www/mataroa) you need to restart the service for the changes to take effect:

systemctl restart mataroa

License

Copyright Mataroa Contributors

This program is free software: you can redistribute it and/or modify it under the terms of the GNU Affero General Public License as published by the Free Software Foundation, version 3.