briefkasten is a reasonably secure web application for submitting content anonymously. It allows to upload attachments which are then sanitized of a number of meta-data which could compromise the submitters identity. Next, the sanitized files are encrypted via GPG and sent via email to a pre-configured list of recipients. The original (potentially 'dirty') files are then deleted from the file system of the server. Thus, neither should admins with access to the server be able to access any submissions, nor should any of the recipients have access to the unsanitized raw material.
Upon successful upload the submitter receives a unique URL with a token that he or she can use to access any replies the recipients may post. That reply is the only data persisted on the server.
The current implementation should be ready for general use on a functional level, the only part that is (currently) hard-coded for the specific deployment at ZEIT ONLINE is the HTML markup in the templates and static assets such as logos and CSS, but these are easily modified, so in theory anybody should be able to host their own secure briefkasten with minimal setup pain.
A future release may contain more configurable options, but for now the main goal of publishing the code is transparency with re-usability coming in second.
The web application requires Python 2.7, the sanitizing scripts depend on a number of helper packages (such as GnuPG etc.) which are currently not yet documented.
Simply run:
$ makeNote: you can optionally provide a custom path to your python, i.e. make python=/opt/local/bin/python2.7.
Then you can start the web application like so:
$ bin/pserve etc/briefkasten.iniand visit http://localhost:6543/briefkasten/submit
The 'briefkasten' web application is developed in Python 2.7 as a pyramid application and set up via buildout.
Tests are run using pytest like so:
$ bin/testThis outputs a textbased coverage report. If that should drop below 100% you can run:
$ bin/test-coverageThis generates a pretty report in htmlcov/index.html where you can browse the code and see which lines are not covered.
All user facing text of the briefkasen application are translated using a gettext messsage catalog. To customize and update these messages you must:
- install the required tools
- update the catalog file
- compile the catalog
It's recommended to use virtualenv:
virtualenv-2.7 .
source bin/activate
pip install lingua BabelTo find untranslated text and create entries for them, do this:
cd src/briefkasten
python setup.py extract_messages update_catalogThen you can edit the message catalog in src/briefkasten/briefkasten/locale/XX/LCMESSAGES/briefkasten.po
Finally (still in src/briefkasten):
python setup.py compile_catalogAfter restarting the application, the new translations will be active.
For more details check these links: