Deploying Soapbox at Scale
Fortunately Soapbox is just static files! HTML, CSS, and JS is as scalable as it gets, but there are some additional considerations when deploying at scale.
This guide is intended for users with a lot of traffic, who need to serve Soapbox behind a load-balancer.
Getting or building Soapbox
The best way to get Soapbox builds is from a GitLab CI job. The official build URL is here:
https://dl.soapbox.pub/main/soapbox.zip
(Note that main
in that URL can be replaced with any git ref, eg v2.0.0
, and thus will be updated with the latest zip whenever a new commit is pushed to main
.)
Producing a custom build
If you'd like to customize Soapbox, we recommend forking it on GitLab and having GitLab CI produce the build for you at your own URL.
You may be interested in build configuration options for customization and compile-time options.
Load-balanced Nginx
A common way to deploy Soapbox at scale is with multiple Nginx servers behind a load-balancer. The load-balancer could run HAProxy, be a Cloudflare load-balancer, or even be another Nginx.
Each Nginx should have the latest Soapbox deployed on it, while the load-balancer distributes traffic to each Nginx.
Soapbox is an SPA (single-page application), meaning Nginx should serve the same index.html
for every route except build files and known API paths.
Loosely, that can be achieved like this:
location / {
root /opt/soapbox/static;
try_files $uri index.html;
}
location ~ ^/(api|oauth|admin) {
proxy_pass http://127.0.0.1:3000;
}
We recommend trying mastodon.conf
as a starting point. It is fine-tuned, includes support for federation, and should work with any backend.
Deploying files in order
Soapbox files depend on one-another, so it's important they're deployed in the following order:
packs/
is deployed to all servers first.index.html
is deployed to all servers next.sw.js
(and everything else) is deployed to all servers last.
"All servers" is stressed because with a load-balanced deployment, it's important to wait between each step so things don't get out of sync.
Files in packs/
are generated with contenthash filenames, so a new deployment won't interfere with the running deployment. It is safe to merge directories with "overwrite" or "skip" mode.
The index.html
contains hardcoded paths to files in packs/
, so it must be deployed after all packs/
have been uploaded. New index files will overwrite the existing one on each server.
Finally, sw.js
should be deployed, overwriting the existing one on each server. It is dependent on index.html
, and if deployed too soon, the ServiceWorker could cache an outdated index.html
leaving users stuck on an old version of your website.
Cache considerations
Build files in packs/
have unique filenames based on their content. They are considered idempotent and may be cached forever. You could even consider deploying these to an S3-compatible CDN.
However, all other files else should not be cached at all.
Please ensure that your Nginx configuration does not return cache-control
headers on the index of your website (or any other page that serves Soapbox), and you must not enable edge caching in Nginx or third-party services like Cloudflare.
Furthermore, sw.js
must not be cached at the edge.
Failure to do this could lead to improper ServiceWorker functioning upon new deployments, leaving users stuck on a malfunctioning version of the site.
Server Side Rendering (SSR)
AKA "why don't links to my website show a preview when posted on Facebook/Twitter/Slack/etc"?
Deploying with Nginx means that you forego the link preview functionality offered by Pleroma and Mastodon, since Soapbox has no knowledge of the backend whatsoever.
Our official solution is Soapbox Worker, a Cloudflare Worker that intercepts the reqest/response and injects metadata into the page by querying the API behind the scenes.