NotAShelf/watchdog
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
23 commits 1 branch 0 tags 159 KiB
Commit graph

23 commits

This branch
This branch
All branches
Author SHA1 Message Date
NotAShelf
326cbbc68c
 		watchdog: more graceful shutdown; secure static file serving 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: I2a55b2c4f380a1d78ec1ffa0391720256a6a6964
 2026-03-02 22:38:06 +03:00
NotAShelf
7e1ef845e8
 		internal/api: resolve IPv6 handling; prevent XFF spoofing & add rate limiting 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: Ibe415a133bbc8bd533a21ed1ccd44cf36a6a6964
 2026-03-02 22:38:05 +03:00
NotAShelf
8187608b38
 		internal/api: centralize constants; improve validation & santize errors 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: I3c3e4acb12a5a965bfaba950bf9aa5776a6a6964
 2026-03-02 22:38:04 +03:00
NotAShelf
8392992b41
 		internal/aggregate: optimize HyperLogLog to prevent O(16384) operations 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: Ibc7e6d7a86e8679e299c46debee9683f6a6a6964
 2026-03-02 22:38:03 +03:00
NotAShelf
bb56df6423
 		internal/aggregate: optimize path registry for read-heavy workloads 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: Ibc477830b471fe09838b7477fe73ffa56a6a6964
 2026-03-02 22:38:02 +03:00
NotAShelf
ffb4ab2295
 		internal/normalize: harden against possible attacks; optimize registry 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: Iaf89cda3c480d6a8371e5f146ee95fcf6a6a6964
 2026-03-02 22:38:01 +03:00
NotAShelf
b2256183e1
 		config: add security and performance sections to sample config; validate 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: Ieda42bcbd09014c45fb14bee579f829c6a6a6964
 2026-03-02 22:38:01 +03:00
NotAShelf
c3b77696aa
 		internal: centralize size/length constants; better DoS protection 
...also adds a bounded custom event registry for cardinality control but
I ran out of space in the commit message. Praise be to the long
descriptions...

Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: Ic205f69804c7fb24c39fa84abdd9546b6a6a6964
 2026-03-02 22:38:00 +03:00
NotAShelf
371c5f3506
 		chore: bump deps; tidy 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: I78644673019b40dffe3d5900cb7cba806a6a6964
 2026-03-02 22:37:59 +03:00
NotAShelf
993e47e603
 		internal/aggregate: add HyperLogLog unique visitor tracking 
Extracts IP from X-Forwarded-For/X-Real-IP/RemoteAddr. Only active
when `config.Site.SaltRotation` is set.

Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: Ieef93b81e9894fc2e9e129451bf2dfdf6a6a6964
 2026-03-02 22:37:58 +03:00
NotAShelf
b6f2380a20
 		web: Javascript beacon for client-side tracking; custom event API 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: I8e1f329ad3dfe7ba3f34ce450b1e1a0f6a6a6964
 2026-03-02 22:37:57 +03:00
NotAShelf
b894833ac7
 		various: HTTP server; migrate to cobra pattern for repository 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: Ifac6e992b77dfaf92e3059944aa871f16a6a6964
 2026-03-02 22:37:56 +03:00
NotAShelf
e0ec475a81
 		internal/api: ingestion handler; wire normalization pipeline 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: I1890a039b874fcc76ac4a545c2901d4e6a6a6964
 2026-03-02 22:37:55 +03:00
NotAShelf
c5109ace92
 		internal/api: add event model with validation 
Supports both pageview and custom event types

Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: Iaf48291cd952865ea9ec21361ae33c746a6a6964
 2026-03-02 22:37:54 +03:00
NotAShelf
bc4d3fed53
 		internal: initial metrics aggregator 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: I9cdd6e2b33bb65182568db9db4460bc46a6a6964
 2026-03-02 22:37:53 +03:00
NotAShelf
ce848ed6f0
 		internal: add bounded path registry to prevent cardinality explosion 
"cardinality explosion" would make for an epic rock band name...

Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: I53cceb00ab9b17039b1fb1389977bf6b6a6a6964
 2026-03-02 22:37:52 +03:00
NotAShelf
be4534bac8
 		internal: add referrer classification 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: Ibcaa09bfd4767876ea1cdd5b61c53b476a6a6964
 2026-03-02 22:37:51 +03:00
NotAShelf
0691e5ee34
 		internal: implement path normalization w/ configurable rules 
Strips query strings and URL fragmenets, prevents unbounded Prometheus
metrics by normalizing paths like:

- `/users/12345/profile -> /users/:id/profile`
- `/page?utm_source=twitter -> /page`
- `/a/../b -> /b`

etc.

Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: I72f2fa2452f4666567143d052b5716476a6a6964
 2026-03-02 22:37:50 +03:00
NotAShelf
28abcf50e2
 		docs: improve introduction paragraph; tiny cleanup 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: I2d331809c915f4695603b72ff52857cc6a6a6964
 2026-03-02 22:37:49 +03:00
NotAShelf
b4f3828895
 		meta: add direnv support 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: I27df8e0c8b731759748fc6c1a734ded76a6a6964
 2026-03-02 22:37:48 +03:00
NotAShelf
4c84393286
 		config: data structures; basic tests 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: Ia7d6f19a46ec8a4987ea429ec6502f676a6a6964
 2026-03-02 22:37:47 +03:00
NotAShelf
3fca34dd6f
 		nix: initial tooling 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: Iabcad180d133f01d3c98e3d5fc9630b26a6a6964
 2026-03-02 22:37:46 +03:00
NotAShelf
7146a61326
 		initial commit 
Signed-off-by: NotAShelf <raf@notashelf.dev>
Change-Id: Id13648d9d5579614595101592739fe2a6a6a6964
 2026-03-02 22:37:45 +03:00