posta/spec
0
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
No description
2 commits 1 branch 0 tags 247 KiB
  • Go 100%
Find a file
Exact
Arne Skaar Fismen 4b3f20d9f5 rename project from msg to posta 
Module path code.bas.es/arne/msg -> code.bas.es/posta/spec. Binary,
Go package (pkg/posta), CLI dir (cmd/posta), user-data dirs
(~/.config/posta, ~/.local/share/posta), and example filenames all
follow.

Wire protocol v1 (not yet released, so no compat shim): Content-Type
is application/posta+json and the signature header is Posta-Signature.
Vectors 08 & 09 updated; Go, Python, JavaScript, and bash reference
clients all agree on every vector.

Also bundles the in-flight TUI/store/daemon reshape and the removal
of the receipt feature (pkg/msg/receipt.go, internal/daemon/receipt_test.go).

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-05-09 08:49:40 +02:00
cmd rename project from msg to posta 2026-05-09 08:49:40 +02:00
examples rename project from msg to posta 2026-05-09 08:49:40 +02:00
internal rename project from msg to posta 2026-05-09 08:49:40 +02:00
pkg/posta rename project from msg to posta 2026-05-09 08:49:40 +02:00
testdata/vectors rename project from msg to posta 2026-05-09 08:49:40 +02:00
.gitignore initial commit 2026-05-07 10:41:37 +02:00
CLAUDE.md rename project from msg to posta 2026-05-09 08:49:40 +02:00
CONTEXT.md rename project from msg to posta 2026-05-09 08:49:40 +02:00
go.mod rename project from msg to posta 2026-05-09 08:49:40 +02:00
go.sum initial commit 2026-05-07 10:41:37 +02:00
README.md rename project from msg to posta 2026-05-09 08:49:40 +02:00
SPEC.md rename project from msg to posta 2026-05-09 08:49:40 +02:00

README.md

posta

URL-to-URL messaging with cryptographic origin authentication.

Every participant is a URL. To send Alice a message, you POST to her URL. When her server receives a message claiming to be from Bob, it verifies the signature against the public key Bob publishes at his own URL. No relays, no central directory, no PKI — HTTPS bootstraps the trust.

Quick start

# install
go install <module>/cmd/posta@latest

# first-run setup (interactive: URL, TLS mode, display name)
posta init

# start the daemon (auto-TLS via Let's Encrypt by default)
posta serve

# open the inbox/compose TUI
posta

# one-shot send (for shell pipelines)
echo '{"hello":"world"}' | posta send https://bob.example/inbox

What's in this repo

  • A wire protocol, defined in SPEC.md. Implementable in any language with an HTTP client and Ed25519. Test vectors under testdata/vectors/ are part of the spec.
  • A reference Go implementation as a single binary: HTTPS daemon, bubbletea TUI, SQLite-backed inbox/outbox.
  • Examples under examples/ (Python, JavaScript, Bash) — send and receive in third-party languages, demonstrating the protocol's portability.

Why this exists

If you want to receive a message at https://alice.example/inbox and know with cryptographic certainty that it really came from https://bob.example/inbox, this is the simplest thing that works. No accounts, no shared API keys, no service in the middle.

Design

See CONTEXT.md for the design rationale, vocabulary, and explicit non-goals.

The Go binary is a reference implementation, not the source of truth. Behavior changes require test vector updates. See CLAUDE.md for contributor and AI-agent conventions.

Status

v1 in development.

License

TBD.