Skip to content
Snippets Groups Projects
Select Git revision
  • 7b126bf10f0cca1491a994b209c82ff6347d4896
  • master default protected
2 results

static_contact

Name Last commit Last update
configuration
src
.gitignore
Cargo.lock
Cargo.toml
LICENSE
README.md
README.md

static_contact

static_contact is a Rust based server side service that relays http POST requests with form fields like name, email, phone and message to email targets via SMTP.
This is meant to be a simple self-hosted solution to allow contact forms on static websites. You add a form and a little bit of javascript to a static website, it POSTs the message to a different server, where it is sanitzed and HTML escaped, a few checks are made (e.g. validity of the email) and sends it to an target adress via email. It is possible to connect multiple websites to a single instance of the service and relay them to different target websites. The most complicated thing is to get the CORS authentification right – just check the Examples.

Installation

static_contact runs as a systemd-service on a local port. Although it would be possible to expose this directly to the web, it is recommended to run this service behind a a reverse proxy server (like nginx).

  1. Install Rust by using curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh
  2. Install cargo deb by running cargo install cargo-deb
  3. Make sure to have libssl-dev and pkg-config installed
  4. Get the package by cloning this git repository and cd into it
  5. Compile via cargo build --release
  6. Bundle debian package by running cargo deb
  7. Install package with sudo dpkg -i target/debian/*.deb

Configuration

Before running the thing you should update your configuration to make it work. Do this by editing the config at /etc/static_contact/config.toml e.g. like this:

sudo vim /etc/static_contact/config.toml

Pay special attention to the SMTP configuration, it should reflect the values of your SMTP server.

System Operation

  • Start the service via sudo systemctl start static_contact
  • Check the service status via sudo systemctl status static_contact
  • Check the logs via journalctl -u static_contact
  • Stop the service via sudo systemctl stop static_contact
  • Automatically start the service on boot via sudo systemctl enable static_contact
  • Update by running this in the local repository: git pull && cargo build --release && cargo deb && sudo dpkg -r static_contact && sudo dpkg -i target/debian/*.deb && sudo systemctl daemon-reload && sudo systemctl restart static_contact

Example Nginx Configuration

Note that this used Certbot to generate Let's Encrypt certificates, these are ommited for previty. Replace post.example.com with the Domain (or IP+port) your service runs under:

server {
        server_name     post.example.com;

        add_header      Cache-Control   no-cache;
        add_header Strict-Transport-Security "max-age=31536000; includeSubdomains; preload;";
        add_header x-frame-options SAMEORIGIN;
        add_header X-Content-Type-Options nosniff;
        add_header X-XSS-Protection "1; mode=block";

        # listen [::]:443 ssl ipv6only=on;
        listen 443 ssl;

        # → Certs here omited for  ←

        location / {
                proxy_set_header Host $host;
                proxy_set_header X-Forwarded-Host $host;
                proxy_set_header X-Forwarded-Server $host;
                proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
                proxy_http_version 1.1;
                proxy_set_header Upgrade $http_upgrade;
                proxy_set_header Connection "upgrade";

                # Make sure this fits the port configured in your /etc/static_contact/config.toml
                proxy_redirect http://127.0.0.1:8088/ /;
                proxy_pass http://127.0.0.1:8088;
                proxy_read_timeout 86400s;
                proxy_send_timeout 86400s;
                allow all; # Any IP can perform any other requests

                add_header 'Access-Control-Allow-Headers' 'Authorization,Accept,Origin,DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range';
                add_header 'Access-Control-Allow-Methods' 'GET,POST,OPTIONS';
        }
}

Frontend Example

HTML

Replace the identifier value mysitename with the corresponding identifier set in the config.toml on your server:

<!DOCTYPE html>
<html>
    <head>
        <meta charset="utf-8">
        <title>static_contact Example</title>
    </head>
    <body>
        <form id="contactform" name="contact" method="POST">
            <label id="namelabel">Name *</label>
            <input id="name" type="text" name="name" required="required" placeholder="Your Name" />

            <label id="emaillabel">Email *</label>
            <input id="email" type="text" name="email" required="required" placeholder="Your mail adress"/>

            <label id="phonelabel">Phone</label>
            <input id="phone" type="text" name="phone" placeholder="Your Phone number (optional)"/>

            <label id="messagelabel">Message *</label>
            <textarea  id="message" name="message" placeholder="Your message to us"></textarea>

            <button id="submit" class="submit" type="submit" name="identifier" value="mysiteidentifier">Send</button>
        </form>

    <script src="js/submit.js"></script>
    </body>
</html>

Javascript

Replace post.example.com with the Domain (or IP+port) your service runs under:

// Serializes Form into JSON
const formToJSON = elements => [].reduce.call(elements, (data, element) => {
    data[element.name] = element.value;
    return data;
}, {});

// Submit form data to server
const Submit = event => {
    event.preventDefault();
    const data = formToJSON(form.elements);
    console.log(JSON.stringify(data, null, "  "));
    var xhr = new XMLHttpRequest();
    xhr.open("POST", "https://post.example.com", true);
    xhr.setRequestHeader('Content-Type', 'text/plain');
    xhr.send(JSON.stringify(data, null, "  "));
};

const form = document.getElementById('contactform');
form.addEventListener('submit', Submit);

Testing

You can send a test request to static_contact via curl, replace the adress at the end with the domain of your service if you run it there and make sure the identifier is found in your config.toml:

curl --header "Content-Type: application/json" --request POST --data '{"name":"Mr. Foo Bar", "email":"mrfoo@bar.com", "phone":"+49012345678", "message":"Media is the massage", "identifier":"mysiteidentifier"}' http://localhost:8088

This emulates a user with the name "Mr. Foo Bar", the email "mrfoo@bar.com" and the phone number "+49012345678" writing a message with the content "Media is the massage". Note the field "identifier":"mysiteidentifier" – this identifies the site against the server. If there is no endpoint with the identifier "mysiteidentifier" in the config.toml, the request is ignored. This message is checked for type and length, and will be sent via SMTP to the according endpoint.target email adress specified in the config.

Todo

  • Currently fields are fixed, allow for custom Forms per endpoint
  • Make installation easier
  • Implement SMTP settings like port and encryption types