Update Fedimint configuration and enhance onboarding process

- Upgraded Fedimint version to v0.10.0 in docker-compose.yml and manifest.yml, adding support for the built-in Guardian UI. - Modified .gitignore to exclude deploy-config.sh script. - Enhanced onboarding process in AuthManager to persist onboarding state and validate password strength during user setup. - Updated API to handle onboarding completion and password change requests, ensuring a smoother user experience. - Improved configuration management to support Nostr discovery and Tor proxy settings, enhancing node identity features.
2026-02-17 15:03:34 +00:00
parent 6035c93289
commit 1073d9fd2c
73 changed files with 5870 additions and 478 deletions
--- a/scripts/tor/README.md
+++ b/scripts/tor/README.md
@@ -0,0 +1,20 @@
+# Archipelago Tor Integration
+
+Each service gets its own .onion address. Tor runs in a container with host networking so it can reach host-mapped ports.
+
+## Service → Onion mapping
+
+| Service    | LAN Port | Tor Hidden Service Dir        |
+|-----------|----------|-------------------------------|
+| Archipelago | 80      | hidden_service_archipelago   |
+| LND UI    | 8081     | hidden_service_lnd           |
+| BTCPay    | 23000    | hidden_service_btcpay        |
+| Mempool   | 4080     | hidden_service_mempool       |
+| Fedimint  | 8175     | hidden_service_fedimint      |
+
+## Hostname files
+
+After Tor starts, each service's .onion address is written to:
+`/var/lib/archipelago/tor/hidden_service_<name>/hostname`
+
+The backend reads these to expose Tor addresses in the package API.
--- a/scripts/tor/torrc.template
+++ b/scripts/tor/torrc.template
@@ -0,0 +1,29 @@
+# Archipelago Tor Hidden Services
+# Each service gets its own .onion address
+# Tor runs with --network host so 127.0.0.1 refers to host ports
+# DataDirectory: use /var/lib/archipelago/tor so backend can read hostnames
+# SocksPort 9050: required for outbound .onion requests (peer messaging)
+
+SocksPort 9050
+ControlPort 0
+DataDirectory /var/lib/archipelago/tor
+
+# Archipelago main web UI (nginx port 80)
+HiddenServiceDir /var/lib/archipelago/tor/hidden_service_archipelago/
+HiddenServicePort 80 127.0.0.1:80
+
+# LND UI
+HiddenServiceDir /var/lib/archipelago/tor/hidden_service_lnd/
+HiddenServicePort 80 127.0.0.1:8081
+
+# BTCPay Server
+HiddenServiceDir /var/lib/archipelago/tor/hidden_service_btcpay/
+HiddenServicePort 80 127.0.0.1:23000
+
+# Mempool (frontend)
+HiddenServiceDir /var/lib/archipelago/tor/hidden_service_mempool/
+HiddenServicePort 80 127.0.0.1:4080
+
+# Fedimint Guardian UI
+HiddenServiceDir /var/lib/archipelago/tor/hidden_service_fedimint/
+HiddenServicePort 80 127.0.0.1:8175