Heya!

Considering the actual deployment of codapi to run our sandboxes, we've come to the conclusion that all is shiny if codapi is run on a VM, with access to a docker daemon (same machine or not). That's fine, and it's likely the way to go, but I'm also wondering what it would take to make codapi play nice with running on K8s.

As far as I tried, it works from within a rigged dind (docker-in-docker) container, but that still requires the k8s pod to run in privileged mode. Now, it feels weird to require elevated privs just to drop them... So far, I haven't come up with much, though. Do you have any ideas or solved this conundrum before?

Thanks! 🙃

I see that there's a commercial license option for $500/yr, but is there any lower tier for individual users who don't have a product that uses codapi yet, but they think it's neat and has potential?

I'm really excited about this project and considering using it. I'm curious what the purpose of files is in the http api, and I couldn't find it documented anywhere. In every example I see it looks something like this

{
  ...
  files: { "": "someCode()" }
}

What else could go in files? If I wanted to include some data to be available in a sandbox, could it be in files?

Hello, I am the initiator of HelloGitHub project.

"HelloStar Plan" is a Star growth plan for individual developers. I will use HelloGitHub's traffic (400,000 fans on the entire network) without reservation to help individual developers' open source projects and complete the cold drive phase of the project. Just for making friends and open source, I hope that after your project takes off, you can remember to have HelloGitHub as a friend on your open source road. Those who work hard on open source should be honored and become open source stars.

Requirements are as follows:

1. Individual developer, loves open source
2. Open source project Star < 1k, continuous maintenance for more than 3 months and plans to maintain it for a long time
3. HelloGitHub fans

I plan to help 100 individual open source authors this year, including but not limited to providing help in promotion, operations, and contributions. As long as you treat me as a friend, everything will make sense. If you are interested, bring your open source project and come to me! WeChat: xueweihan (note: 100)

• codapi
• HelloGitHub

I'm trying to set up a tool sandbox where the tool would listen on a port, and you can basically configure this tool. Similar to this example on the website: https://codapi.org/try/caddy/

But I'm unable to figure out how to do it. I've looked at the code and tried setting it up, but it does not work. Are there any documents or pointers on creating something like that?

I then tried to set up something basic and then build from there, and I failed. I created a Docker image with HTTPBin and curl and tried doing this:

Dockerfile:

FROM kennethreitz/httpbin:latest

RUN adduser --home /sandbox --disabled-password --gecos '' sandbox

RUN apt-get update -y
RUN apt-get install -y curl

USER sandbox
WORKDIR /sandbox

boxes.json:

{
    "alpine": {
        "image": "codapi/alpine"
    },
    "python": {
        "image": "codapi/python"
    },
    "network-tools": {
        "image": "codapi/network-tools"
    },
    "httpbin": {
        "image": "codapi/httpbin"
    }
}

config.json:

{
    "pool_size": 8,
    "verbose": true,
    "box": {
        "runtime": "runc",
        "cpu": 1,
        "memory": 64,
        "network": "bridge",
        "writable": false,
        "volume": "%s:/sandbox:ro",
        "cap_drop": ["all"],
        "ulimit": ["nofile=96"],
        "nproc": 64
    },
    "step": {
        "user": "sandbox",
        "action": "run",
        "timeout": 5,
        "noutput": 4096
    }
}

httpbin.json:

{
    "run": {
        "engine": "docker",
        "entry": "main.sh",
        "steps": [
            {
                "box": "httpbin",
                "command": ["sh", "main.sh"],
                "noutput": 8192
            }
        ]
    }
}

I expected this to run the shell command (which will be a curl command) on the HTTPBin container, but the command fails with the error connect to 127.0.0.1 port 80 failed: Connection refused (isn't HTTPBin running?). I also tried other permutations of the configurations and tested the Docker image in the VM, but nothing seemed to work.

I'm obviously missing something, so I was wondering if there are examples I can look into.

Thanks.

I have tried using step by step process written in add-sandbox.md file, but it's not working. Please guide me on how can I clean setup the MySQL sandbox on the system.

When using sh command API

curl -H "content-type: application/json" -d '{ "sandbox": "sh", "command": "run", "files": {"": "echo hello" }}' http://localhost:1313/v1/exec

the output is

{
    "id": "sh_run_dd27ed27",
    "ok": true,
    "duration": 650,
    "stdout": "hello\n",
    "stderr": ""
}

I installed codeapi on my personal blog. However, when I run the code snippets, I see the below error:

403 - Forbidden. Your domain is probably not allowed on Codapi.

Do I need a subscription to the codeapi platform in order to run the examples?

Can I run Classic asp?

Similar to go.dev/play

PS awesome project! I’d like to use your codapi on expr-lang.org :)

import matplotlib.pyplot as plt
import numpy as np

# Create a figure and a set of subplots
fig, axs = plt.subplots(3, 3)

# Generate some random data
data = np.random.rand(3, 3)

# Plot the data on each subplot
for i in range(3):
    for j in range(3):
        axs[i, j].plot(data[i, :], data[j, :])

# Add a grid to each subplot
for ax in axs.flat:
    ax.grid(True)

# Show the plot
plt.show()

Gets the following errors :

Traceback (most recent call last):
  File "/sandbox/main.py", line 1, in <module>
    import matplotlib.pyplot as plt
ModuleNotFoundError: No module named 'matplotlib'
 (exit status 1)

I was trying to get the self-hosted server running Alpine 3.19 to work but ran into problems when accessing the temporary files from the docker image:

/srv/codapi # cat bin/test
#!/bin/sh

curl \
  -H "content-type: application/json" \
  -d '{ "sandbox": "sh", "command": "run", "files": {"": "echo hello" }}' \
  http://localhost:1313/v1/exec
/srv/codapi # bin/test | jq
{
  "id": "sh_run_b3a94e77",
  "ok": false,
  "duration": 416,
  "stdout": "",
  "stderr": "sh: can't open 'main.sh': Permission denied\n (exit status 2)"
}

The logs look similar:

/var/lib/codapi # tail -n2 /var/log/codapi/openrc.log 
2024/01/15 22:23:50 [run --rm --name sh_run_b3a94e77 --runtime runc --cpus 1 --memory 64m --network none --pids-limit 64 --user sandbox --read-only --volume /tmp/1851081613:/sandbox:ro --cap-drop all --ulimit nofile=96 codapi/alpine sh main.sh]
2024/01/15 22:23:50 ✗ sh_run_b3a94e77: sh: can't open 'main.sh': Permission denied (exit status 2)

The folder /tmp has the usual permissions.

I've documented my setup [here][1]. Is there something I've misconfigured?

Thanks for your help in advance!

[1]: https://git.tigger.cloud/public/codapi-setup-alpine

I hava self-hosted the service, but I still get 403 - Forbidden on my wordpress blog. Your domain is probably not allowed on Codapi. What should I do next?

```python
def greet(name):
  print(f"Hello, {name}!")

greet("World")
```

<codapi-snippet sandbox="python" editor="basic"></codapi-snippet>
<link rel="stylesheet" href="https://unpkg.com/@antonz/[email protected]/dist/snippet.css" />
<script src="https://unpkg.com/@antonz/[email protected]/dist/snippet.js"></script>

root@iZbp13y80xusaram14psd0Z:/opt/codapi# curl -H "content-type: application/json" -d '{ "sandbox": "sh", "command": "run", "files": {"": "echo hello" }}' http://localhost:1313/v1/exec
{"id":"sh_run_16572a32","ok":true,"duration":2091,"stdout":"hello","stderr":""}

root@iZbp13y80xusaram14psd0Z:/opt/codapi# ls
codapi                           codapi.log  images
codapi_0.8.0_linux_amd64.tar.gz  configs     LICENSE
root@iZbp13y80xusaram14psd0Z:/opt/codapi#