Skip to content

Instantly share code, notes, and snippets.

@anon987654321

anon987654321/1 - README.md

Last active March 29, 2025 09:37
Show Gist options
  • Save anon987654321/36be8279260a0d9b445525605f4c53c7 to your computer and use it in GitHub Desktop.
Save anon987654321/36be8279260a0d9b445525605f4c53c7 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
1 - README.md

Amber: Your AI-Enhanced Fashion Network 👗👠👜

Amber is an innovative AI-enhanced social network for fashion that revolutionizes how you visualize, organize, and interact with your wardrobe. Whether you want to get style recommendations, track clothing usage, or discover new outfit combinations, Amber provides an intuitive and engaging platform for fashion enthusiasts.

Features 🚀

Core Functionality

  • Visualize Your Wardrobe 📱: Snap pictures of your clothes and Amber organizes them efficiently with color, size, and category metadata.

  • AI Style Assistant 🤖: Get personalized outfit suggestions using advanced AI that learns your preferences and style.

  • Mix & Match Magic 🔀: See new outfit combinations instantly with a single tap, discovering creative pairings you might never have considered.

  • Fashion Feed 📰: Stay updated with the latest trends, runway looks, and fashion news from around the world.

  • Shop Smarter 🛍️: Find clothes that match items you already own based on intelligent recommendations.

  • Wardrobe Analytics 📊: Track usage, cost-per-wear, and identify underutilized items to optimize your clothing investments.

Interactive Features

  • Live Chat 💬: Connect and chat with other fashion enthusiasts in real-time.

  • Live Webcam Streaming 📹: Share your outfits live or get real-time feedback on your look.

  • Public Chatroom 👥: Participate in public discussions with other users about fashion trends and styles.

  • Social Interactions 🌟: Like, comment, and share fashion ideas and outfits with your network.

Technical Highlights

  • Mobile-First PWA 📱: Amber is built as a Progressive Web App, ensuring a smooth experience on mobile devices.

  • Real-Time Updates ⚡: Using Hotwire (Turbo + Stimulus) for reactive interfaces without heavy JavaScript.

  • Interactive Galleries 🖼️: Browse your wardrobe with Packery layout and LightGallery for detailed viewing.

  • Secure Payments 💳: Integrated Stripe payment processing for premium features.

  • Location Services 🗺️: MapBox integration for location-based fashion recommendations.

Tech Stack 🛠️

  • Ruby on Rails 💎: The backend framework powering the application's functionality and structure.
  • PostgreSQL 🐘: Robust database for storing your wardrobe and user information.
  • Hotwire (Turbo + Stimulus) ⚡: Modern, reactive user interface with minimal JavaScript.
  • StimulusReflex 🔄: Real-time page updates without full page refreshes.
  • LangChain + OpenAI 🧠: AI integration for style recommendations and fashion assistance.
  • Stripe 💰: Secure payment processing.
  • MapBox 🗺️: Geographic services integration.
  • SCSS 🎨: Custom styling for an elegant user experience.
Raw
3 - amber.sh
# This script generates and installs the Amber application using Ruby On Rails 8.0
#!/usr/bin/env zsh
set -e
# Amber setup: AI-enhanced social network for fashion
APP_NAME="amber"
BASE_DIR="$HOME/dev/rails_apps"
source "$BASE_DIR/__shared.sh"
log "Starting Amber setup"
init_app "$APP_NAME"
setup_yarn
setup_rails "$APP_NAME"
cd "$APP_NAME"
# Core setup with all required gems
setup_core # Includes Rails, PostgreSQL, Hotwire (Turbo + Stimulus), StimulusReflex, etc.
setup_devise
setup_storage # For wardrobe photos
setup_stripe # Secure Payments
setup_mapbox # Location Services
setup_expiry_job
setup_seeds
setup_pwa # Mobile-First PWA
setup_i18n # Language support
# Wardrobe management and visualization
bin/rails g model WardrobeItem name:string color:string size:string category:string description:text usage_count:integer last_worn:datetime cost:decimal user:references photo:attachment
bin/rails g controller WardrobeItems index new create edit update destroy
cat <<EOF > app/controllers/wardrobe_items_controller.rb
class WardrobeItemsController < ApplicationController
before_action :authenticate_user!
before_action :set_item, only: [:edit, :update, :destroy]
def index
@wardrobe_items = current_user.wardrobe_items.order(:name)
@pagy, @items = pagy(@wardrobe_items)
end
def new
@wardrobe_item = current_user.wardrobe_items.build
end
def create
@wardrobe_item = current_user.wardrobe_items.build(item_params)
if @wardrobe_item.save
respond_to do |format|
format.html { redirect_to wardrobe_items_path, notice: "Item added successfully" }
format.turbo_stream
end
else
render :new, status: :unprocessable_entity
end
end
def edit
end
def update
if @item.update(item_params)
@item.increment!(:usage_count)
@item.update(last_worn: Time.now)
respond_to do |format|
format.html { redirect_to wardrobe_items_path, notice: "Item updated successfully" }
format.turbo_stream
end
else
render :edit, status: :unprocessable_entity
end
end
def destroy
@item.destroy
respond_to do |format|
format.html { redirect_to wardrobe_items_path, notice: "Item removed successfully" }
format.turbo_stream
end
end
private
def set_item
@item = current_user.wardrobe_items.find(params[:id])
end
def item_params
params.require(:wardrobe_item).permit(:name, :color, :size, :category, :description, :cost, :photo)
end
end
EOF
# AI Style Assistant with StimulusReflex
cat <<EOF > app/reflexes/style_assistant_reflex.rb
class StyleAssistantReflex < ApplicationReflex
def suggest
wardrobe_items = current_user.wardrobe_items.all
prompt = "Suggest a casual outfit from: #{wardrobe_items.map { |i| "#{i.name} (#{i.color}, #{i.size}, #{i.category})" }.join(', ')}"
llm = Langchain::LLM::OpenAI.new(api_key: ENV["OPENAI_API_KEY"])
response = llm.chat(messages: [{ role: "user", content: prompt }])
cable_ready.replace(selector: "#suggestions", html: "<div class='suggestion'>#{response.chat_completion}</div>").broadcast
end
end
EOF
# Mix & Match Magic with StimulusReflex
cat <<EOF > app/reflexes/mix_match_reflex.rb
class MixMatchReflex < ApplicationReflex
def combine
items = current_user.wardrobe_items.where(id: element.dataset["item_ids"].split(","))
combination = items.map(&:name).join(" + ")
cable_ready.replace(selector: "#mix-match-output", html: "<div class='combination'>#{combination}</div>").broadcast
end
end
EOF
# Wardrobe Analytics with StimulusReflex
cat <<EOF > app/reflexes/analytics_reflex.rb
class AnalyticsReflex < ApplicationReflex
def calculate
items = current_user.wardrobe_items.all
analytics = items.map do |i|
cost_per_wear = i.usage_count > 0 ? (i.cost.to_f / i.usage_count).round(2) : "N/A"
"#{i.name}: #{i.usage_count} uses, Last worn: #{i.last_worn&.strftime('%Y-%m-%d') || 'Never'}, Cost/Wear: #{cost_per_wear}"
end.join("<br>")
cable_ready.replace(selector: "#analytics-output", html: "<div class='stats'>Wardrobe Analytics:<br>#{analytics}</div>").broadcast
end
end
EOF
# Fashion Feed and Social Interactions
generate_social_models
# Shop Smarter Recommendations
bin/rails g controller Recommendations index
cat <<EOF > app/controllers/recommendations_controller.rb
class RecommendationsController < ApplicationController
before_action :authenticate_user!
def index
@wardrobe_items = current_user.wardrobe_items.all
@recommendations = @wardrobe_items.map { |i| "Pair #{i.name} (#{i.color}) with a complementary #{i.category.downcase}" }
end
end
EOF
# Live Chat and Public Chatroom
setup_chat
# Live Webcam Streaming
setup_live_streaming
# SCSS Styling
cat <<EOF > app/assets/stylesheets/amber.scss
:root {
--primary: #3b82f6;
--secondary: #10b981;
--text: #1f2937;
--error: #ef4444;
}
body {
font-family: system-ui, sans-serif;
background: #f9fafb;
color: var(--text);
}
header {
background: var(--primary);
color: white;
padding: 1rem;
display: flex;
justify-content: space-between;
align-items: center;
}
nav a {
color: white;
margin: 0 1rem;
text-decoration: none;
}
.wardrobe__item {
border: 1px solid var(--primary);
padding: 1rem;
margin: 0.5rem 0;
background: white;
border-radius: 4px;
}
.suggestion, .combination {
color: var(--secondary);
font-weight: bold;
padding: 1rem;
background: #e6ffe6;
border-radius: 4px;
}
.stats {
font-size: 0.9em;
padding: 1rem;
background: #f0f0f0;
border-radius: 4px;
}
.webcam {
width: 100%;
max-width: 400px;
border: 2px solid var(--primary);
border-radius: 4px;
}
form {
margin: 1rem 0;
}
.field {
margin-bottom: 1rem;
}
.field label {
display: block;
margin-bottom: 0.5rem;
}
.field input, .field textarea, .field select {
width: 100%;
padding: 0.5rem;
border: 1px solid #d1d5db;
border-radius: 4px;
}
.actions button {
background: var(--primary);
color: white;
padding: 0.75rem 1.5rem;
border: none;
border-radius: 4px;
cursor: pointer;
}
.actions button:hover {
background: #2563eb;
}
.error {
color: var(--error);
font-size: 0.875em;
}
EOF
# JavaScript Controllers
cat <<EOF > app/javascript/controllers/mix_match_controller.js
import { Controller } from "@hotwired/stimulus"
export default class extends Controller {
static targets = ["output"]
combine() {
this.outputTarget.innerHTML = "Mixing... <i class='fas fa-spinner fa-spin'></i>"
this.stimulate("MixMatchReflex#combine")
}
}
EOF
cat <<EOF > app/javascript/controllers/analytics_controller.js
import { Controller } from "@hotwired/stimulus"
export default class extends Controller {
static targets = ["output"]
calculate() {
this.outputTarget.innerHTML = "Calculating... <i class='fas fa-spinner fa-spin'></i>"
this.stimulate("AnalyticsReflex#calculate")
}
}
EOF
cat <<EOF > app/javascript/controllers/webcam_controller.js
import { Controller } from "@hotwired/stimulus"
export default class extends Controller {
connect() {
navigator.mediaDevices.getUserMedia({ video: true }).then(stream => {
this.element.srcObject = stream
}).catch(err => {
this.element.insertAdjacentHTML("afterend", "<p class='error'>Webcam access denied</p>")
console.error("Webcam error:", err)
})
}
}
EOF
# Fully Fleshed-Out Views
generate_view_and_scss "wardrobe_items/index" "<% content_for :title, 'Amber Wardrobe' %>
<% content_for :description, 'Manage and visualize your wardrobe' %>
<header role='banner'>
<h1>Wardrobe</h1>
<nav>
<%= link_to 'New Item', new_wardrobe_item_path %>
<%= link_to 'Recommendations', recommendations_path %>
<%= link_to 'Chat', chats_path %>
</nav>
</header>
<main>
<section id='fashion-feed' data-controller='infinite-scroll'>
<%= turbo_frame_tag 'posts' do %>
<% @posts.each do |post| %>
<%= render partial: 'posts/post', locals: { post: post } %>
<% end %>
<% end %>
<button id='sentinel' data-infinite-scroll-target='sentinel' class='hidden'>Load More</button>
</section>
<section id='search'>
<%= form_with url: wardrobe_items_path, method: :get, local: true, data: { reflex: 'submit->LiveSearch#search', controller: 'search' } do |form| %>
<div class='field'>
<%= form.label :query, 'Search Wardrobe' %>
<%= form.text_field :query, placeholder: 'Search by name, color...', data: { search_target: 'input', action: 'input->search#search' } %>
</div>
<% end %>
<div id='search-results'></div>
</section>
<section id='wardrobe-items' data-controller='packery lightbox' data-lightbox-type-value='image'>
<%= turbo_frame_tag 'items' do %>
<% @items.each_with_index do |item, i| %>
<div class='wardrobe__item grid-item' data-packery-size='<%= %w[1x1 2x1 1x2][i % 3] %>' data-controller='tooltip' data-tooltip-content='<%= item.name %>'>
<%= image_tag item.photo.url, data: { lightbox_target: 'image' } if item.photo.attached? %>
<p><%= item.name %> (<%= item.color %>, <%= item.size %>, <%= item.category %>)</p>
<%= link_to 'Edit', edit_wardrobe_item_path(item) %>
<%= button_to 'Delete', wardrobe_item_path(item), method: :delete, data: { turbo_confirm: 'Are you sure?' }, form: { data: { turbo_frame: '_top' } } %>
</div>
<% end %>
<% end %>
</section>
<section id='suggestions' data-reflex='click->StyleAssistant#suggest'>
<button>Get AI Style Suggestion</button>
</section>
<section id='mix-match' data-controller='mix-match' data-item-ids='<%= @wardrobe_items.pluck(:id).join(',') %>'>
<button data-action='click->mix-match#combine'>Mix & Match</button>
<div id='mix-match-output' data-mix-match-target='output'></div>
</section>
<section id='analytics' data-controller='analytics'>
<button data-action='click->analytics#calculate'>Show Analytics</button>
<div id='analytics-output' data-analytics-target='output'></div>
</section>
<section>
<video class='webcam' data-controller='webcam' autoplay></video>
</section>
</main>" ""
generate_view_and_scss "wardrobe_items/new" "<% content_for :title, 'New Wardrobe Item' %>
<% content_for :description, 'Add an item to your wardrobe' %>
<header role='banner'>
<h1>Add New Item</h1>
<nav>
<%= link_to 'Back to Wardrobe', wardrobe_items_path %>
</nav>
</header>
<main>
<%= form_with model: @wardrobe_item, local: true, data: { controller: 'character-counter', character_counter_target: 'form' } do |form| %>
<% if @wardrobe_item.errors.any? %>
<div id='error_explanation' class='error'>
<h2><%= pluralize(@wardrobe_item.errors.count, 'error') %> prohibited this item from being saved:</h2>
<ul>
<% @wardrobe_item.errors.full_messages.each do |message| %>
<li><%= message %></li>
<% end %>
</ul>
</div>
<% end %>
<div class='field'>
<%= form.label :name %>
<%= form.text_field :name, required: true, placeholder: 'e.g., Blue Jeans' %>
</div>
<div class='field'>
<%= form.label :color %>
<%= form.text_field :color, required: true, placeholder: 'e.g., Blue' %>
</div>
<div class='field'>
<%= form.label :size %>
<%= form.text_field :size, required: true, placeholder: 'e.g., M' %>
</div>
<div class='field'>
<%= form.label :category %>
<%= form.select :category, ['Top', 'Bottom', 'Dress', 'Outerwear', 'Shoes', 'Accessories'], { prompt: 'Select Category' }, required: true %>
</div>
<div class='field'>
<%= form.label :description %>
<%= form.text_area :description, data: { character_counter_target: 'input', action: 'input->character-counter#count' }, placeholder: 'Describe your item...' %>
<span data-character-counter-target='count'></span>
</div>
<div class='field'>
<%= form.label :cost %>
<%= form.number_field :cost, step: 0.01, placeholder: 'e.g., 29.99' %>
</div>
<div class='field'>
<%= form.label :photo %>
<%= form.file_field :photo, accept: 'image/*', data: { controller: 'file-preview', file_preview_target: 'input' } %>
<img data-file-preview-target='preview' style='max-width: 200px; display: none;' />
</div>
<div class='actions'>
<%= form.submit 'Add Item' %>
</div>
<% end %>
</main>" ""
generate_view_and_scss "wardrobe_items/edit" "<% content_for :title, 'Edit Wardrobe Item' %>
<% content_for :description, 'Update your wardrobe item' %>
<header role='banner'>
<h1>Edit <%= @wardrobe_item.name %></h1>
<nav>
<%= link_to 'Back to Wardrobe', wardrobe_items_path %>
</nav>
</header>
<main>
<%= form_with model: @wardrobe_item, local: true, data: { controller: 'character-counter', character_counter_target: 'form' } do |form| %>
<% if @wardrobe_item.errors.any? %>
<div id='error_explanation' class='error'>
<h2><%= pluralize(@wardrobe_item.errors.count, 'error') %> prohibited this item from being saved:</h2>
<ul>
<% @wardrobe_item.errors.full_messages.each do |message| %>
<li><%= message %></li>
<% end %>
</ul>
</div>
<% end %>
<div class='field'>
<%= form.label :name %>
<%= form.text_field :name, required: true %>
</div>
<div class='field'>
<%= form.label :color %>
<%= form.text_field :color, required: true %>
</div>
<div class='field'>
<%= form.label :size %>
<%= form.text_field :size, required: true %>
</div>
<div class='field'>
<%= form.label :category %>
<%= form.select :category, ['Top', 'Bottom', 'Dress', 'Outerwear', 'Shoes', 'Accessories'], { selected: @wardrobe_item.category }, required: true %>
</div>
<div class='field'>
<%= form.label :description %>
<%= form.text_area :description, data: { character_counter_target: 'input', action: 'input->character-counter#count' } %>
<span data-character-counter-target='count'></span>
</div>
<div class='field'>
<%= form.label :cost %>
<%= form.number_field :cost, step: 0.01 %>
</div>
<div class='field'>
<%= form.label :photo %>
<%= form.file_field :photo, accept: 'image/*', data: { controller: 'file-preview', file_preview_target: 'input' } %>
<% if @wardrobe_item.photo.attached? %>
<p>Current: <%= image_tag @wardrobe_item.photo.url, style: 'max-width: 200px;' %></p>
<% end %>
<img data-file-preview-target='preview' style='max-width: 200px; display: none;' />
</div>
<div class='actions'>
<%= form.submit 'Update Item' %>
</div>
<% end %>
</main>" ""
generate_view_and_scss "wardrobe_items/create.turbo_stream" "<%= turbo_stream.append 'items', partial: 'wardrobe_items/wardrobe_item', locals: { item: @wardrobe_item } %>
<%= turbo_stream.replace 'notices', partial: 'shared/notices', locals: { notice: 'Item added successfully' } %>
<%= turbo_stream.update 'new_wardrobe_item_form', '' %>" ""
generate_view_and_scss "wardrobe_items/update.turbo_stream" "<%= turbo_stream.replace @wardrobe_item, partial: 'wardrobe_items/wardrobe_item', locals: { item: @wardrobe_item } %>
<%= turbo_stream.replace 'notices', partial: 'shared/notices', locals: { notice: 'Item updated successfully' } %>" ""
generate_view_and_scss "wardrobe_items/destroy.turbo_stream" "<%= turbo_stream.remove @wardrobe_item %>
<%= turbo_stream.replace 'notices', partial: 'shared/notices', locals: { notice: 'Item removed successfully' } %>" ""
generate_view_and_scss "wardrobe_items/_wardrobe_item" "<div class='wardrobe__item grid-item' id='<%= dom_id(item) %>' data-packery-size='1x1' data-controller='tooltip' data-tooltip-content='<%= item.name %>'>
<%= image_tag item.photo.url, data: { lightbox_target: 'image' } if item.photo.attached? %>
<p><%= item.name %> (<%= item.color %>, <%= item.size %>, <%= item.category %>)</p>
<%= link_to 'Edit', edit_wardrobe_item_path(item) %>
<%= button_to 'Delete', wardrobe_item_path(item), method: :delete, data: { turbo_confirm: 'Are you sure?' }, form: { data: { turbo_frame: '_top' } } %>
</div>" ""
generate_view_and_scss "recommendations/index" "<% content_for :title, 'Amber Recommendations' %>
<% content_for :description, 'Shop smarter with wardrobe-based suggestions' %>
<header role='banner'>
<h1>Recommendations</h1>
<nav>
<%= link_to 'Back to Wardrobe', wardrobe_items_path %>
</nav>
</header>
<main>
<section>
<%= tag.h1 'Shop Smarter' %>
<%= tag.ul do %>
<% @recommendations.each do |rec| %>
<%= tag.li rec %>
<% end %>
<% end %>
</section>
</main>" ""
# Shared Notices Partial
mkdir -p app/views/shared
cat <<EOF > app/views/shared/_notices.html.erb
<% if notice %>
<div id='notices' class='suggestion'><%= notice %></div>
<% end %>
<% if alert %>
<div id='alerts' class='error'><%= alert %></div>
<% end %>
EOF
# Final setup
setup_scss
setup_streams
setup_reflexes
setup_chat
setup_layout
setup_errors
setup_performance
setup_production
setup_env
bin/rails db:migrate
commit "Amber setup complete: AI-enhanced fashion network"
log "Amber ready. Run 'bin/rails server' to start."
Raw
4 - master.json
// Battle-tested collection of custom made AI prompts
{
"setup": {
"title": "#1 MASTER APP COMPLETER",
"description": "IMPORTANT -- STRICTLY ADHERE TO THESE PROMPTS. This is a set of rules and phases to help LLMs complete user projects. Start automatically at Phase 1 and then proceed sequentially.",
"metadata": {
"version": "6.1.8",
"updated_at": "2025-03-28"
},
"startup": {
"auto_start": true,
"sequence": [
{
"id": "context",
"prompt": "Review related documentation (e.g., dependencies)?",
"action": "Analyze provided documents and auto-detect dependencies if yes",
"next": "project"
},
{
"id": "project",
"prompt": "Which project to complete?",
"action": "Set project focus",
"next": "evaluation"
}
]
},
"runtime": {
"execution": {
"mode": "sequential",
"parallel": {
"enabled": false,
"max_threads": 4
},
"phase_completion": "required",
"logging": {
"level": "minimal",
"verbose": false,
"file": "refinement.log",
"format": "id:status"
},
"feedback": {
"updates": "enabled",
"persistence": "redis if available, else memory",
"interval": "5s"
}
},
"integrity": {
"errors": {
"action": "stop",
"notify": "Prompt for clarification"
},
"output_validation": "strict"
},
"versioning": {
"strategy": "Increment minor version per update",
"retain_original": true,
"history": {
"enabled": true,
"max_iterations": 3,
"description": "Retain original script and up to 2 previous iterations for comparison"
}
}
}
},
"process": {
"principles": [
"Clarity",
"Functionality",
"Maintainability",
"Robustness",
"Modularity: Do one thing and do it well",
"Simplicity: Things should be as simple as possible, but not simpler",
"Minimalism: Good design is when there's nothing left to take away"
],
"phases": [
{
"id": "evaluation",
"description": "Review process structure proactively.",
"inputs": [],
"tasks": [
{
"id": "structure",
"name": "Assess overall structure",
"value": ["Review task coherence and section overlap, suggest merging if needed"]
}
],
"outputs": ["evaluation_report"],
"next": "analysis"
},
{
"id": "analysis",
"description": "Gather needs and evaluate project state.",
"inputs": ["script_list", "documentation", "project_type"],
"tasks": [
{
"id": "features",
"name": "List features",
"value": ["Parse script and documentation"]
},
{
"id": "improvements",
"name": "Identify optimization opportunities",
"value": ["Note pitfalls, improvements, feature ideas with priority", "Scan for unnecessary duplicates"]
},
{
"id": "data",
"name": "Define schemas",
"value": ["Set storage structures"]
},
{
"id": "estimate",
"name": "Estimate iterations",
"value": ["Analyze source and documents to estimate iterations needed"]
},
{
"id": "research",
"name": "Explore innovations",
"value": ["Search arXiv.org with creative keyword combos for innovative ideas"]
}
],
"outputs": ["requirements", "schemas", "iteration_estimate", "research_notes"],
"next": "integrity_check"
},
{
"id": "integrity_check",
"description": "Ensure script syntax, security, and structure.",
"inputs": ["requirements", "schemas"],
"tasks": [
{
"id": "verify_syntax",
"name": "Confirm syntax",
"value": ["Full syntax check"]
},
{
"id": "security",
"name": "Ensure security",
"value": [
"Validate inputs",
"Apply appropriate parameter sanitization techniques",
"Check for injection risks (e.g., SQL, command, etc.)"
]
},
{
"id": "format",
"name": "Apply formatting",
"value": [
"Follow language-appropriate style conventions and consistent indentation",
"Style preferences: Consistent quote style, readable multiline over cryptic oneliners",
"Spacing: One consecutive blank line maximum between logical parts",
"Comments: Place above code, use simple section headers (e.g., '# Section')",
"Documentation: Apply brevity and clarity principles (active voice, concise wording)",
"Markdown: Use minimalistic academic style (# Heading, - List, minimal whitespace)"
]
}
],
"outputs": ["script_outline"],
"next": "optimization"
},
{
"id": "optimization",
"description": "Polish script efficiency and clarity.",
"inputs": ["script_outline", "iteration_estimate", "original_script", "previous_iterations"],
"tasks": [
{
"id": "simplify",
"name": "Streamline implementation",
"value": [
"Use direct commands",
"Structure chronologically or by importance for natural flow",
"Eliminate redundancies while preserving functionality",
"Merge similar logic where goals align, split when purposes diverge"
]
},
{
"id": "flesh_out",
"name": "Flesh out features",
"value": ["Expand all features over iteration_estimate iterations"]
},
{
"id": "review",
"name": "Review and refine",
"value": [
"Compare with original and previous iterations",
"Ensure no functional regression",
"Adjust based on comparison, removing only unnecessary elements"
]
},
{
"id": "report",
"name": "Report completion",
"value": ["Report completion with final version and comparison summary"]
}
],
"outputs": ["optimized_script", "comparison_report"],
"next": "delivery"
},
{
"id": "delivery",
"description": "Present final scripts and insights.",
"inputs": ["optimized_script", "comparison_report"],
"tasks": [
{
"id": "save",
"name": "Save versions",
"value": ["Deliver to user with versioned backups including original and previous iterations"]
},
{
"id": "display",
"name": "Show final script",
"value": ["Present full final version with concise README.md, comparison summary, and process visualization"]
}
],
"outputs": ["refined_scripts", "research_notes", "comparison_report"],
"required_output": true,
"final": true
}
]
},
"$schema": "https://json-schema.org/draft/2020-12/schema"
}
Raw
5 - openbsd.sh
# OpenBSD is the world's simplest and most secure Unix-like OS.
#!/usr/bin/env zsh
# Sets up OpenBSD 7.6 for Rails with Norid.no DNS
# Usage: doas zsh openbsd.sh [--help | --resume]
# Updated: 2025-03-29
set -e
setopt nullglob extendedglob
# Rails apps with domains (primary apps)
RAILS_APPS=(
"brgen:brgen.no"
"amber:amberapp.com"
"bsdports:bsdports.org"
)
# All domains with subdomains (used for NSD, ACME, Relayd, etc.)
ALL_DOMAINS=(
"brgen.no:markedsplass,playlist,dating,tv,takeaway,maps"
"longyearbyn.no:markedsplass,playlist,dating,tv,takeaway,maps"
"oshlo.no:markedsplass,playlist,dating,tv,takeaway,maps"
"stvanger.no:markedsplass,playlist,dating,tv,takeaway,maps"
"trmso.no:markedsplass,playlist,dating,tv,takeaway,maps"
"trndheim.no:markedsplass,playlist,dating,tv,takeaway,maps"
"reykjavk.is:markadur,playlist,dating,tv,takeaway,maps"
"kbenhvn.dk:markedsplads,playlist,dating,tv,takeaway,maps"
"gtebrg.se:marknadsplats,playlist,dating,tv,takeaway,maps"
"mlmoe.se:marknadsplats,playlist,dating,tv,takeaway,maps"
"stholm.se:marknadsplats,playlist,dating,tv,takeaway,maps"
"hlsinki.fi:markkinapaikka,playlist,dating,tv,takeaway,maps"
"brmingham.uk:marketplace,playlist,dating,tv,takeaway,maps"
"cardff.uk:marketplace,playlist,dating,tv,takeaway,maps"
"edinbrgh.uk:marketplace,playlist,dating,tv,takeaway,maps"
"glasgw.uk:marketplace,playlist,dating,tv,takeaway,maps"
"lndon.uk:marketplace,playlist,dating,tv,takeaway,maps"
"lverpool.uk:marketplace,playlist,dating,tv,takeaway,maps"
"mnchester.uk:marketplace,playlist,dating,tv,takeaway,maps"
"amstrdam.nl:marktplaats,playlist,dating,tv,takeaway,maps"
"rottrdam.nl:marktplaats,playlist,dating,tv,takeaway,maps"
"utrcht.nl:marktplaats,playlist,dating,tv,takeaway,maps"
"brssels.be:marche,playlist,dating,tv,takeaway,maps"
"zrich.ch:marktplatz,playlist,dating,tv,takeaway,maps"
"lchtenstein.li:marktplatz,playlist,dating,tv,takeaway,maps"
"frankfrt.de:marktplatz,playlist,dating,tv,takeaway,maps"
"brdeaux.fr:marche,playlist,dating,tv,takeaway,maps"
"mrseille.fr:marche,playlist,dating,tv,takeaway,maps"
"mlan.it:mercato,playlist,dating,tv,takeaway,maps"
"lisbon.pt:mercado,playlist,dating,tv,takeaway,maps"
"wrsawa.pl:marktplatz,playlist,dating,tv,takeaway,maps"
"gdnsk.pl:marktplatz,playlist,dating,tv,takeaway,maps"
"austn.us:marketplace,playlist,dating,tv,takeaway,maps"
"chcago.us:marketplace,playlist,dating,tv,takeaway,maps"
"denvr.us:marketplace,playlist,dating,tv,takeaway,maps"
"dllas.us:marketplace,playlist,dating,tv,takeaway,maps"
"dnver.us:marketplace,playlist,dating,tv,takeaway,maps"
"dtroit.us:marketplace,playlist,dating,tv,takeaway,maps"
"houstn.us:marketplace,playlist,dating,tv,takeaway,maps"
"lsangeles.com:marketplace,playlist,dating,tv,takeaway,maps"
"mnnesota.com:marketplace,playlist,dating,tv,takeaway,maps"
"newyrk.us:marketplace,playlist,dating,tv,takeaway,maps"
"prtland.com:marketplace,playlist,dating,tv,takeaway,maps"
"wshingtondc.com:marketplace,playlist,dating,tv,takeaway,maps"
"pub.healthcare"
"pub.attorney"
"freehelp.legal"
"bsdports.org"
"bsddocs.org"
"discordb.org"
"privcam.no"
"foodielicio.us"
"stacyspassion.com"
"antibettingblog.com"
"anticasinoblog.com"
"antigamblingblog.com"
"foball.no"
)
# Nameserver IPs
BRGEN_IP="46.23.95.45" # ns.brgen.no
HYP_IP="194.63.248.53" # ns.hyp.net (DOMENESHOP)
# State file in CWD
STATE_FILE="./openbsd_setup_state"
# App ports array
typeset -A APP_PORTS
# Generate random port (10000-60000)
generate_random_port() {
local port
while true
do
port=$((RANDOM % 50000 + 10000))
if ! netstat -an | grep -q "\.${port} "
then
echo "$port"
break
fi
done
}
# Exit with error
error_exit() {
echo "ERROR: $1" >&2
exit 1
}
# Start service with check
enable_and_start_service() {
echo "Enabling and starting $1..." >&2
rcctl enable "$1"
rcctl start "$1"
if [ $? -ne 0 ]
then
error_exit "$1 failed to start via rcctl"
fi
sleep 5
if ! rcctl check "$1"
then
echo "Service $1 failed. Logs from /var/log/messages:" >&2
tail -n 10 /var/log/messages >&2
error_exit "$1 failed to start"
fi
}
# Check root
check_root() {
if [ "$(id -u)" -ne 0 ]
then
error_exit "Run with doas"
fi
}
# Clean up NSD and port 53
cleanup_nsd() {
echo "Cleaning up NSD processes..." >&2
zap -f nsd
fuser -k 53/udp 2>/dev/null
sleep 2
if netstat -an | grep -q "46.23.95.45.53"
then
error_exit "Port 53 still in use after cleanup"
fi
}
# Phase 1: Minimal DNS
phase_1() {
pkg_add -U ldns-utils ruby-3.3.5 postgresql-server redis sshguard
sysctl kern.maxfiles=10000
cat > /etc/sysctl.conf <<-EOF
kern.maxfiles=10000
EOF
if ! grep -q "openfiles-max=2048" /etc/login.conf
then
cat << 'EOF' >> /etc/login.conf
daemon:\
:openfiles-max=2048:\
:tc=default:
EOF
fi
rm -rf /var/nsd/*/*
mkdir -p /var/nsd/zones/master /var/nsd/etc
chmod 750 /var/nsd/zones/master /var/nsd/etc
chown _nsd:_nsd /var/nsd/zones/master /var/nsd/etc
cat > /var/nsd/etc/nsd.conf <<-EOF
server:
ip-address: $BRGEN_IP
hide-version: yes
verbosity: 2
zonesdir: "/var/nsd/zones/master"
EOF
for domain_entry in "${ALL_DOMAINS[@]}"
do
local domain="${domain_entry%%:*}"
cat >> /var/nsd/etc/nsd.conf <<-EOF
zone:
name: "$domain"
zonefile: "$domain.zone"
EOF
done
nsd-checkconf /var/nsd/etc/nsd.conf
if [ $? -ne 0 ]
then
error_exit "nsd.conf invalid"
fi
chown root:_nsd /var/nsd/etc/nsd.conf
chmod 640 /var/nsd/etc/nsd.conf
local serial=$(date +"%Y%m%d%H")
for domain_entry in "${ALL_DOMAINS[@]}"
do
local domain="${domain_entry%%:*}"
local subdomains="${domain_entry#*:}"
cat > "/var/nsd/zones/master/$domain.zone" <<-EOF
\$ORIGIN $domain.
\$TTL 3600
@ IN SOA ns.brgen.no. hostmaster.$domain. ($serial 1800 900 604800 86400)
@ IN NS ns.brgen.no.
@ IN A $BRGEN_IP
ns IN A $BRGEN_IP
EOF
if [ -n "$subdomains" ]
then
for subdomain in ${(s/,/)subdomains}
do
echo "$subdomain IN A $BRGEN_IP" >> "/var/nsd/zones/master/$domain.zone"
done
fi
nsd-checkzone "$domain" "/var/nsd/zones/master/$domain.zone"
if [ $? -ne 0 ]
then
error_exit "Zone file for $domain invalid"
fi
chown root:_nsd "/var/nsd/zones/master/$domain.zone"
chmod 640 "/var/nsd/zones/master/$domain.zone"
done
if ! [ -f /var/nsd/etc/nsd_server.key ]
then
nsd-control-setup
fi
cleanup_nsd
enable_and_start_service nsd
echo "Phase 1 done. Set ns.brgen.no ($BRGEN_IP) glue records at DOMENESHOP." >&2
echo "Propagation takes up to 48 hours." >&2
cat > "$STATE_FILE" <<-EOF
phase_1_complete
EOF
exit 0
}
# Phase 2: Full Setup
phase_2() {
rm -rf /var/nsd/*/*
mkdir -p /var/nsd/zones/master /var/nsd/etc
chmod 750 /var/nsd/zones/master /var/nsd/etc
chown _nsd:_nsd /var/nsd/zones/master /var/nsd/etc
cat > /var/nsd/etc/nsd.conf <<-EOF
server:
ip-address: $BRGEN_IP
ip-address: 127.0.0.1
hide-version: yes
verbosity: 2
zonesdir: "/var/nsd/zones/master"
EOF
for domain_entry in "${ALL_DOMAINS[@]}"
do
local domain="${domain_entry%%:*}"
cat >> /var/nsd/etc/nsd.conf <<-EOF
zone:
name: "$domain"
zonefile: "$domain.zone.signed"
EOF
if [ "$domain" = "brgen.no" ]
then
cat >> /var/nsd/etc/nsd.conf <<-EOF
notify: $HYP_IP NOKEY
provide-xfr: $HYP_IP NOKEY
EOF
fi
done
nsd-checkconf /var/nsd/etc/nsd.conf
if [ $? -ne 0 ]
then
error_exit "nsd.conf invalid"
fi
chown root:_nsd /var/nsd/etc/nsd.conf
chmod 640 /var/nsd/etc/nsd.conf
# HTTPD and ACME setup first for TLSA
chmod 750 /var/www/acme/.well-known/acme-challenge
if ! [ -f /etc/acme/letsencrypt-privkey.pem ]
then
openssl genpkey -algorithm RSA -out /etc/acme/letsencrypt-privkey.pem -pkeyopt rsa_keygen_bits:4096
fi
chmod 600 /etc/acme/letsencrypt-privkey.pem
cat > /etc/httpd.conf <<-EOF
server "acme" {
listen on $BRGEN_IP port 80
location "/.well-known/acme-challenge/*" { root "/acme"; request strip 2 }
location "*" { block return 301 "https://\$HTTP_HOST\$REQUEST_URI" }
}
EOF
httpd -n -f /etc/httpd.conf
if [ $? -ne 0 ]
then
error_exit "httpd.conf invalid"
fi
cat > /etc/acme-client.conf <<-EOF
authority letsencrypt {
api url "https://acme-v02.api.letsencrypt.org/directory"
account key "/etc/acme/letsencrypt-privkey.pem"
}
EOF
for domain_entry in "${ALL_DOMAINS[@]}"
do
local domain="${domain_entry%%:*}"
cat >> /etc/acme-client.conf <<-EOF
domain $domain {
domain key "/etc/ssl/private/$domain.key"
domain full chain certificate "/etc/ssl/$domain.fullchain.pem"
sign with letsencrypt
challengedir "/var/www/acme"
}
EOF
done
acme-client -n -f /etc/acme-client.conf
if [ $? -ne 0 ]
then
error_exit "acme-client.conf invalid"
fi
chmod 700 /etc/ssl/private
enable_and_start_service httpd
acme-client -v -f /etc/acme-client.conf # Fetch certificates
local serial=$(date +"%Y%m%d%H")
for domain_entry in "${ALL_DOMAINS[@]}"
do
local domain="${domain_entry%%:*}"
local subdomains="${domain_entry#*:}"
cat > "/var/nsd/zones/master/$domain.zone" <<-EOF
\$ORIGIN $domain.
\$TTL 3600
@ IN SOA ns.brgen.no. hostmaster.$domain. ($serial 1800 900 604800 86400)
@ IN NS ns.brgen.no.
@ IN A $BRGEN_IP
ns IN A $BRGEN_IP
EOF
if [ "$domain" = "brgen.no" ]
then
cat >> "/var/nsd/zones/master/$domain.zone" <<-EOF
@ IN NS ns.hyp.net.
@ IN CAA 0 issue "letsencrypt.org"
www IN A $BRGEN_IP
EOF
fi
if [ -n "$subdomains" ]
then
for subdomain in ${(s/,/)subdomains}
do
echo "$subdomain IN A $BRGEN_IP" >> "/var/nsd/zones/master/$domain.zone"
done
fi
local cert="/etc/ssl/$domain.fullchain.pem"
if [ -f "$cert" ]
then
local tlsa_hash=$(openssl x509 -noout -pubkey -in "$cert" | openssl rsa -pubin -outform DER 2>/dev/null | sha256sum | cut -d' ' -f1)
echo "_443._tcp IN TLSA 3 1 1 $tlsa_hash" >> "/var/nsd/zones/master/$domain.zone"
fi
cd /var/nsd/zones/master
local zsk_key=$(ldns-keygen -a RSASHA256 -b 1024 "$domain")
local ksk_key=$(ldns-keygen -k -a RSASHA256 -b 1024 "$domain")
ldns-signzone "$domain.zone" "$ksk_key" "$zsk_key"
nsd-checkzone "$domain" "$domain.zone.signed"
if [ $? -ne 0 ]
then
error_exit "Signed zone for $domain invalid"
fi
chown root:_nsd "$domain.zone" "$domain.zone.signed" *.key *.private
chmod 640 "$domain.zone" "$domain.zone.signed" *.key *.private
done
cleanup_nsd
enable_and_start_service nsd
cat > /etc/pf.conf <<-EOF
ext_if="vio0"
set skip on lo
pass in on \$ext_if proto tcp to \$ext_if port { 22, 80, 443 } keep state
pass in on \$ext_if proto { tcp, udp } from $HYP_IP to $BRGEN_IP port 53 keep state
pass out on \$ext_if proto { tcp, udp } from $BRGEN_IP to $HYP_IP port 53 keep state
anchor "relayd/*"
EOF
pfctl -nf /etc/pf.conf
if [ $? -ne 0 ]
then
error_exit "pf.conf invalid"
fi
pfctl -f /etc/pf.conf
enable_and_start_service sshguard
if ! [ -d /var/postgresql/data ]
then
install -d -o _postgresql -g _postgresql /var/postgresql/data
su -l _postgresql -c "/usr/local/bin/initdb -D /var/postgresql/data -U postgres -A scram-sha-256 -E UTF8"
fi
enable_and_start_service postgresql
cat > /etc/redis.conf <<-EOF
bind 127.0.0.1
port 6379
protected-mode yes
daemonize yes
dir /var/redis
EOF
redis-server --dry-run /etc/redis.conf
if [ $? -ne 0 ]
then
error_exit "redis.conf invalid"
fi
enable_and_start_service redis
for domain_entry in "${ALL_DOMAINS[@]}"
do
local domain="${domain_entry%%:*}"
local app="${domain%%.*}"
local port=$(generate_random_port)
APP_PORTS[$app]=$port
if ! id "$app" >/dev/null 2>&1
then
useradd -m -s /bin/ksh -L rails "$app"
fi
mkdir -p "/home/$app/$app" "/var/www/log/$app"
chown -R "$app:$app" "/home/$app" "/var/www/log/$app"
if ! [ -f "/home/$app/$app/Gemfile" ]
then
doas su - "$app" -c "cd /home/$app/$app && rails new . --force --database=postgresql"
fi
doas su - "$app" -c "cd /home/$app/$app && gem install bundler && bundle install"
cat > "/etc/rc.d/$app" <<-EOF
#!/bin/ksh
daemon="/bin/ksh -c 'cd /home/$app/$app && export RAILS_ENV=production && /usr/local/bin/bundle exec falcon serve -b tcp://127.0.0.1:$port'"
daemon_user="$app"
. /etc/rc.d/rc.subr
rc_cmd \$1
EOF
chmod +x "/etc/rc.d/$app"
# No direct checker for rc.d scripts; assume valid if syntax is correct
enable_and_start_service "$app"
done
cat > /etc/relayd.conf <<-EOF
log connection
table <acme_client> { 127.0.0.1:80 }
EOF
for domain_entry in "${ALL_DOMAINS[@]}"
do
local domain="${domain_entry%%:*}"
local app="${domain%%.*}"
local port="${APP_PORTS[$app]}"
cat >> /etc/relayd.conf <<-EOF
table <${app}_backend> { 127.0.0.1:$port }
relay "relay_${app}" {
listen on $BRGEN_IP port 443 tls
protocol "secure_rails"
forward to <${app}_backend> check tcp
}
relay "acme_${domain}" {
listen on $BRGEN_IP port 80
protocol "filter_challenge"
forward to <acme_client> check tcp
}
EOF
done
cat >> /etc/relayd.conf <<-EOF
http protocol "filter_challenge" {
match request header set "X-Forwarded-For" value "\$REMOTE_ADDR"
pass request path "/.well-known/acme-challenge/*" forward to <acme_client>
}
http protocol "secure_rails" {
match request header set "X-Forwarded-For" value "\$REMOTE_ADDR"
match response header set "Strict-Transport-Security" value "max-age=31536000"
}
EOF
relayd -n -f /etc/relayd.conf
if [ $? -ne 0 ]
then
error_exit "relayd.conf invalid"
fi
enable_and_start_service relayd
# Cron script for auto-signing zones
cat > /usr/local/bin/auto-sign-zones <<-EOF
#!/bin/sh
ZONES="/var/nsd/zones/master"
for domain_entry in "${ALL_DOMAINS[@]}"
do
DOMAIN="\${domain_entry%%:*}"
ZONE="\${ZONES}/\${DOMAIN}.zone"
if [ ! -f "\${ZONE}" ]
then
echo "Unable to locate zone \${ZONE}"
exit 1
fi
echo "Convert zone \${DOMAIN} to \${DOMAIN}.tosign"
ldns-read-zone -S $serial "\${ZONE}" > "\${ZONE}.tosign"
KSK=\$(find "\${ZONES}" -name "K\${DOMAIN}.+008+*.key" | sort -nr | head -1 | sed 's|\./||;s|[0-9]\+ ||;s|.key\$||')
ZSK=\$(find "\${ZONES}" -name "K\${DOMAIN}.+008+*.key" | sort -n | head -1 | sed 's|\./||;s|[0-9]\+ ||;s|.key\$||')
echo "Signing zone \${ZONE}"
ldns-signzone -f "\${ZONE}.signed" "\${ZONE}.tosign" "\${KSK}" "\${ZSK}"
nsd-checkzone "\${DOMAIN}" "\${ZONE}.signed"
if [ \$? -ne 0 ]
then
echo "Signed zone for \${DOMAIN} invalid"
exit 1
fi
done
nsd-control reload
EOF
chmod +x /usr/local/bin/auto-sign-zones
rm -f "$STATE_FILE"
echo "Setup complete" >&2
}
# Main function
main() {
check_root
if [ "$1" = "--help" ]
then
echo "Sets OpenBSD 7.6 for Rails."
echo "Usage: doas zsh openbsd.sh [--help | --resume]"
exit 0
fi
if [ "$1" = "--resume" ] || [ -f "$STATE_FILE" ]
then
if ! [ -f "$STATE_FILE" ]
then
error_exit "No state file. Run without --resume."
fi
echo "Resuming Phase 2" >&2
phase_2
else
echo "Starting Phase 1" >&2
phase_1
echo "Starting Phase 2" >&2
phase_2
fi
}
main "$@"
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment