Skip to content

Anyr00d/DropZone

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

30 Commits
.github/workflows
.github/workflows
 
 
client
client
 
 
infra
infra
 
 
proto
proto
 
 
services
services
 
 
README.md
README.md
 
 

Repository files navigation

DropZone - Secure File Drop Service

DropZone is a secure CLI-based ephemeral file sharing system designed for internal teams. Built with Node.js, gRPC, RabbitMQ, and MinIO, it ensures privacy, auditability, and ease of deployment. Note: Currently this project is just in its initial phase. Play around but don't upload anything sesnsitive until further notice.

🌐 Features

  • ⚡ Secure file upload/download with passcode-protected HMAC tokens
  • 🪝 Event-based audit logging with RabbitMQ and MongoDB
  • ☁️ Internal-only object storage via S3-compatible MinIO
  • 🧾 Auto-expiry, rate-limiting, and CLI token-based access
  • 📈 Deployable via Docker Compose or Kubernetes with ArgoCD (Yet to be added. Stay tuned!!!)

🚀 Quickstart

Prerequisites

Client installation and usage

🛠 Build CLI

cd client/
npm install
npm run build
npm link   # Register globally as `dropzone`

📥 Upload a file

dropzone upload ./secrets.txt

📤 Download a file

dropzone download <TOKEN>

📁 Project Structure

dropzone/
├── client/              # CLI interface (dropzone upload/download)
├── services/
│   ├── file-service/    # gRPC upload/download service
│   └── audit-service/   # RabbitMQ consumer that logs events to MongoDB
├── proto/               # gRPC proto files
├── infra/
│   └── docker-compose.yml  # Local dev setup
└── README.md

Self-hosting:

Note: Modify client to call your deployed file-service

cd infra/
docker-compose up -d

✅ Creates a MinIO bucket: dropzone (must be created manually or on first run)

🔧 Environment Variables

Set up a .env file in file-service/:

MINIO_ACCESS_KEY=minio
MINIO_SECRET_KEY=minio123
S3_BUCKET=dropzone
S3_ENDPOINT=http://localhost:9000

Do the same for audit-service/ (for MongoDB URL, if needed). You can check out your variables in docker-compose.yml.

File Service

cd services/file-service
npx ts-node src/index.ts

Audit Service

cd services/audit-service
npx ts-node src/index.ts

Mongo Inspection

You can inspect logs:

docker exec -it <mongo-container> mongosh
use dropzone
show collections

🔒 Security Notes

  • Token is HMAC signed using passcode (but can be brute-forced — future: use signed URLs)
  • MinIO is internal-only — not exposed to internet
  • Rate-limiting and expiry implemented in memory (can be enhanced via Redis)

🤝 Contributing / Feedback

Pull requests welcome! Raise issues for bugs or enhancements.

📜 License

MIT License

About

Secure CLI based file sharing microservice system.

Resources

Readme
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages