Fastly Blossom Server

A Blossom media server for Nostr running on Fastly Compute, optimized for video content.

Architecture

Fastly Compute (Rust) → Backblaze B2 (blobs) + Fastly KV (metadata)
                     → GCP (async moderation)

Features

BUD-01: Blob retrieval (GET/HEAD)
BUD-02: Upload/delete/list management
BUD-03: User server list support
Nostr auth: Kind 24242 signature validation
Shadow restriction: Moderated content only visible to owner
Range requests: Native video seeking support
Free egress: B2 → Fastly bandwidth is free

Setup

Prerequisites

Fastly CLI
Rust with wasm32-wasi target
Backblaze B2 account
Fastly account with Compute enabled

Install Rust target

rustup target add wasm32-wasi

Configure secrets

Create a Backblaze B2 bucket
Create an application key with read/write access
Set up Fastly stores:

# Create KV store
fastly kv-store create --name blossom_metadata

# Create config store
fastly config-store create --name blossom_config
fastly config-store-entry create --store-id <id> --key b2_bucket --value your-bucket-name
fastly config-store-entry create --store-id <id> --key b2_region --value us-west-004

# Create secret store
fastly secret-store create --name blossom_secrets
fastly secret-store-entry create --store-id <id> --key b2_key_id --value your-key-id
fastly secret-store-entry create --store-id <id> --key b2_app_key --value your-app-key

Local development

# Copy the example config and fill in your credentials
cp fastly.toml.example fastly.toml

# Edit fastly.toml with your B2 credentials (this file is gitignored)
# Then run:
fastly compute serve

Note: fastly.toml is gitignored to prevent accidentally committing secrets. The [local_server.secret_stores] section is only used for local testing.

Deploy

fastly compute publish

API Endpoints

BUD-01: Retrieval

Method	Path	Description
`GET`	`/<sha256>[.ext]`	Retrieve blob
`HEAD`	`/<sha256>[.ext]`	Check blob exists

BUD-02: Management

Method	Path	Auth	Description
`PUT`	`/upload`	Required	Upload blob
`HEAD`	`/upload`	None	Get upload requirements
`DELETE`	`/<sha256>`	Required	Delete blob
`GET`	`/list/<pubkey>`	Optional	List user's blobs

Authentication

Uses Nostr kind 24242 events:

{
  "kind": 24242,
  "content": "Upload blob",
  "tags": [
    ["t", "upload"],
    ["x", "<sha256>"],
    ["expiration", "<unix_timestamp>"]
  ]
}

Send as: Authorization: Nostr <base64_encoded_signed_event>

License

MIT

Name		Name	Last commit message	Last commit date
Latest commit History 24 Commits
cloud-functions		cloud-functions
cloud-run-upload		cloud-run-upload
docs/plans		docs/plans
scripts		scripts
src		src
.gitignore		.gitignore
CHANGELOG.md		CHANGELOG.md
CLAUDE.md		CLAUDE.md
Cargo.toml		Cargo.toml
LICENSE		LICENSE
README.md		README.md
config.json.example		config.json.example
fastly.toml.example		fastly.toml.example
rust-toolchain.toml		rust-toolchain.toml
secrets.json.example		secrets.json.example

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

Fastly Blossom Server

Architecture

Features

Setup

Prerequisites

Install Rust target

Configure secrets

Local development

Deploy

API Endpoints

BUD-01: Retrieval

BUD-02: Management

Authentication

License

About

Uh oh!

Releases

Packages

Contributors 2

Uh oh!

Languages

License

divinevideo/divine-blossom

Folders and files

Latest commit

History

Repository files navigation

Fastly Blossom Server

Architecture

Features

Setup

Prerequisites

Install Rust target

Configure secrets

Local development

Deploy

API Endpoints

BUD-01: Retrieval

BUD-02: Management

Authentication

License

About

Resources

License

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Contributors 2

Uh oh!

Languages

Packages