+201

hosts/server/slop/brave-shim.nix

··· 1 1 + { pkgs }: 2 2 + 3 3 + let 4 4 + pythonEnv = pkgs.python3.withPackages (ps: with ps; [ 5 5 + fastapi 6 6 + uvicorn 7 7 + ddgs 8 8 + pyyaml 9 9 + ]); 10 10 + in 11 11 + pkgs.stdenvNoCC.mkDerivation { 12 12 + pname = "brave-shim"; 13 13 + version = "0.1.0"; 14 14 + dontUnpack = true; 15 15 + 16 16 + installPhase = '' 17 17 + mkdir -p $out/bin $out/share/brave-shim 18 18 + 19 19 + cat > $out/share/brave-shim/brave_shim.conf <<'CONF' 20 20 + server: 21 21 + host: "127.0.0.1" 22 22 + port: 8000 23 23 + 24 24 + ssl: 25 25 + use_custom_ca: false 26 26 + ca_bundle_path: "/etc/ssl/certs/ca-certificates.crt" 27 27 + verify_ssl: true 28 28 + 29 29 + logging: 30 30 + file_path: "/home/ocbwoy3/.local/state/brave-shim/brave_shim.log" 31 31 + level: "INFO" 32 32 + 33 33 + bot_protection: 34 34 + cache_expiration: 3600 35 35 + min_delay: 1.0 36 36 + max_delay: 2.5 37 37 + 38 38 + search: 39 39 + default_count: 10 40 40 + local_count: 5 41 41 + CONF 42 42 + 43 43 + cat > $out/share/brave-shim/brave_shim.py <<'PY' 44 44 + import time 45 45 + import random 46 46 + import yaml 47 47 + import uvicorn 48 48 + import logging 49 49 + import os 50 50 + import ssl 51 51 + from fastapi import FastAPI, Query 52 52 + from ddgs import DDGS 53 53 + from pathlib import Path 54 54 + 55 55 + config_path = Path(os.environ.get("BRAVE_SHIM_CONF", "brave_shim.conf")) 56 56 + if not config_path.exists(): 57 57 + raise FileNotFoundError(f"Config not found: {config_path}") 58 58 + 59 59 + with open(config_path, "r") as f: 60 60 + config = yaml.safe_load(f) 61 61 + 62 62 + os.makedirs(os.path.dirname(config["logging"]["file_path"]), exist_ok=True) 63 63 + logging.basicConfig( 64 64 + level=config['logging']['level'], 65 65 + format="%(asctime)s [%(levelname)s] %(message)s", 66 66 + handlers=[logging.FileHandler(config['logging']['file_path'])] 67 67 + ) 68 68 + logger = logging.getLogger("brave_shim") 69 69 + 70 70 + ssl_cfg = config.get('ssl', {}) 71 71 + verify_ssl = ssl_cfg.get('verify_ssl', True) 72 72 + custom_ca_status = "System Default" 73 73 + 74 74 + if ssl_cfg.get('use_custom_ca'): 75 75 + ca_path = ssl_cfg['ca_bundle_path'] 76 76 + if os.path.exists(ca_path): 77 77 + os.environ["SSL_CERT_FILE"] = ca_path 78 78 + os.environ["REQUESTS_CA_BUNDLE"] = ca_path 79 79 + os.environ["CURL_CA_BUNDLE"] = ca_path 80 80 + 81 81 + if not verify_ssl: 82 82 + ssl._create_default_https_context = ssl._create_unverified_context 83 83 + custom_ca_status = f"Active (Verify=OFF, Path={ca_path})" 84 84 + logger.warning("SSL verification disabled") 85 85 + else: 86 86 + try: 87 87 + context = ssl.create_default_context(cafile=ca_path) 88 88 + ssl._create_default_https_context = lambda: context 89 89 + custom_ca_status = f"Active (Path={ca_path})" 90 90 + except Exception as e: 91 91 + logger.error(f"SSL bundle load error: {e}") 92 92 + else: 93 93 + logger.error(f"SSL CA bundle not found: {ca_path}") 94 94 + custom_ca_status = "Error: File not found" 95 95 + 96 96 + app = FastAPI(title="Brave Search API Shim", docs_url=None, redoc_url=None) 97 97 + search_cache = {} 98 98 + 99 99 + def get_from_cache(q): 100 100 + expiration = config['bot_protection']['cache_expiration'] 101 101 + if q in search_cache: 102 102 + timestamp, data = search_cache[q] 103 103 + if time.time() - timestamp < expiration: 104 104 + return data 105 105 + return None 106 106 + 107 107 + @app.get("/status") 108 108 + async def health_check(): 109 109 + return { 110 110 + "status": "online", 111 111 + "cache_entries": len(search_cache), 112 112 + "ssl_verify": verify_ssl, 113 113 + "ca_bundle": custom_ca_status 114 114 + } 115 115 + 116 116 + @app.get("/res/v1/web/search") 117 117 + async def search_proxy(q: str = Query(...), count: int = None): 118 118 + res_count = count or config['search']['default_count'] 119 119 + cached_res = get_from_cache(q) 120 120 + if cached_res: 121 121 + logger.info(f"CACHE HIT: {q}") 122 122 + return cached_res 123 123 + 124 124 + time.sleep(random.uniform(config['bot_protection']['min_delay'], config['bot_protection']['max_delay'])) 125 125 + logger.info(f"FETCH WEB: {q}") 126 126 + try: 127 127 + with DDGS(verify=verify_ssl) as ddgs: 128 128 + results = [] 129 129 + for r in ddgs.text(q, max_results=res_count): 130 130 + results.append({ 131 131 + "title": r.get("title"), 132 132 + "url": r.get("href"), 133 133 + "description": r.get("body"), 134 134 + "meta_url": {"path": r.get("href")} 135 135 + }) 136 136 + 137 137 + response_data = {"web": {"results": results}} 138 138 + search_cache[q] = (time.time(), response_data) 139 139 + return response_data 140 140 + except Exception as e: 141 141 + logger.error(f"WEB search error for '{q}': {e}") 142 142 + return {"web": {"results": []}, "error": str(e)} 143 143 + 144 144 + @app.get("/res/v1/local/pois") 145 145 + async def local_proxy(q: str = Query(...), count: int = None): 146 146 + res_count = count or config['search']['local_count'] 147 147 + logger.info(f"FETCH LOCAL: {q}") 148 148 + try: 149 149 + with DDGS(verify=verify_ssl) as ddgs: 150 150 + res = [ 151 151 + { 152 152 + "id": str(i), 153 153 + "name": r["title"], 154 154 + "address": r["body"][:100], 155 155 + "phone": "", 156 156 + "coordinates": {"latitude": 0.0, "longitude": 0.0} 157 157 + } 158 158 + for i, r in enumerate(ddgs.text(f"place {q}", max_results=res_count)) 159 159 + ] 160 160 + return {"results": res} 161 161 + except Exception as e: 162 162 + logger.error(f"LOCAL search error for '{q}': {e}") 163 163 + return {"results": []} 164 164 + 165 165 + @app.get("/res/v1/local/descriptions") 166 166 + async def local_descriptions(id: str = Query(...)): 167 167 + return {"descriptions": {id: "Data from DDGS proxy."}} 168 168 + 169 169 + @app.get("/res/v1/summarizer/summary") 170 170 + async def summarizer_proxy(key: str = Query(...)): 171 171 + return {"summary": "Summary ready.", "status": "complete"} 172 172 + 173 173 + if __name__ == "__main__": 174 174 + logger.info(f"Starting brave-shim on {config['server']['host']}:{config['server']['port']}") 175 175 + uvicorn.run( 176 176 + app, 177 177 + host=config['server']['host'], 178 178 + port=config['server']['port'], 179 179 + access_log=False, 180 180 + log_level="critical" 181 181 + ) 182 182 + PY 183 183 + 184 184 + cat > $out/bin/brave-shim <<EOF 185 185 + #!${pkgs.bash}/bin/bash 186 186 + set -euo pipefail 187 187 + export BRAVE_SHIM_CONF=\"\ 188 188 + s h\ 189 189 + \" 190 190 + EOF 191 191 + 192 192 + # simpler wrapper (avoid quoting bugs) 193 193 + cat > $out/bin/brave-shim <<EOF 194 194 + #!${pkgs.bash}/bin/bash 195 195 + set -euo pipefail 196 196 + export BRAVE_SHIM_CONF="''${BRAVE_SHIM_CONF:-$out/share/brave-shim/brave_shim.conf}" 197 197 + exec ${pythonEnv}/bin/python $out/share/brave-shim/brave_shim.py 198 198 + EOF 199 199 + chmod +x $out/bin/brave-shim 200 200 + ''; 201 201 + }

+4 -9

hosts/server/slop/brave.nix

··· 1 1 { pkgs, ... }: 2 2 3 3 + let 4 4 + braveShim = pkgs.callPackage ./brave-shim.nix { }; 5 5 + in 3 6 { 4 7 # Local Brave API shim as a user service 5 8 systemd.user.services.brave-shim = { ··· 10 13 11 14 serviceConfig = { 12 15 Type = "simple"; 13 13 - WorkingDirectory = "/home/ocbwoy3/Projects/brave_shim"; 14 14 - ExecStart = '' 15 15 - ${pkgs.uv}/bin/uv run \ 16 16 - --with fastapi \ 17 17 - --with uvicorn \ 18 18 - --with ddgs \ 19 19 - --with pyyaml \ 20 20 - python brave_shim.py 21 21 - ''; 16 16 + ExecStart = "${braveShim}/bin/brave-shim"; 22 17 Restart = "always"; 23 18 RestartSec = "3"; 24 19 };

+1

hosts/server/slop/openclaw.nix

··· 25 25 packages = [ 26 26 openclawPatched 27 27 (pkgs.callPackage ./gogcli.nix { }) 28 28 + (pkgs.callPackage ./brave-shim.nix { }) 28 29 pkgs.uv 29 30 pkgs.python3 30 31 ];