wip

Author: jbruechert

ansible/crowd-sourced-realtime.yml

@@ -0,0 +1,8 @@
+# SPDX-FileCopyrightText: 2025 Jonah Brüchert <[email protected]>
+#
+# SPDX-License-Identifier: AGPL-3.0-or-later
+
+- name: Set up MOTIS servers
+  hosts: crowd-sourced-realtime
+  roles:
+    - crowd-sourced-realtime

ansible/roles/motis/templates/motis-update-feeds.sh

@@ -22,3 +22,4 @@ chown -R motis:motis /var/lib/motis/data/
 
 echo "Restarting MOTIS…"
 systemctl --no-ask-password restart motis.service
+systemctl --no-ask-password restart delay-tracker.service

ansible/roles/nginx/files/nginx.conf

@@ -29,7 +29,7 @@ http {
 	include /etc/nginx/mime.types;
 	default_type application/octet-stream;
 
-	proxy_cache_path /var/cache/nginx max_size=10g keys_zone=motis:100m inactive=5d;
+	proxy_cache_path /var/cache/nginx/motis/ max_size=10g keys_zone=motis:100m inactive=5d;
 
 	##
 	# SSL Settings

ansible/roles/nginx/tasks/main.yml

@@ -20,9 +20,14 @@
      - nginx
      - certbot
 
-- name: Create nginx cache directory
+- name: Create nginx motis cache directory
   file:
-    path: /var/cache/nginx
+    path: /var/cache/nginx/motis/
+    state: directory
+
+- name: Create nginx gtfsrt cache directory
+  file:
+    path: /var/cache/nginx/gtfsrt
     state: directory
 
 - name: Install nginx config
@@ -58,6 +63,13 @@
         - address: 10.11.1.1:8080
           options: "backup"
 
+- name: Install site config
+  template:
+    src: "crowd-sourced-realtime.conf.j2"
+    dest: "/etc/nginx/sites-available/{{ vhost }}"
+  vars:
+    vhost: "crowdsourcing.transitous.org"
+
 - name: Disable default site configuration
   file:
     path: /etc/nginx/sites-enabled/default
@@ -71,6 +83,7 @@
   with_items:
     - vhost: api.transitous.org
     - vhost: staging.api.transitous.org
+    - vhost: crowdsourcing.transitous.org
 
 - name: Reload nginx
   systemd:

ansible/roles/nginx/templates/crowd-sourced-realtime.conf.j2

@@ -0,0 +1,93 @@
+# SPDX-FileCopyrightText: 2025 Jonah Brüchert <jbb@kaidan.im>
+#
+# SPDX-License-Identifier: AGPL-3.0-or-later
+#
+
+proxy_cache_path /var/cache/nginx/gtfsrt/ max_size=1g keys_zone=gtfsrt:20m;
+
+server {
+    listen 80;
+    server_name {{ vhost }};
+
+    # For certbot
+    location ^~ /.well-known/acme-challenge/ {
+        root /var/www/html/;
+    }
+
+    return 301 https://$host$request_uri;
+}
+
+server {
+    listen 443 http2 ssl;
+    listen [::]:443 http2 ssl;
+
+    # Override TLS settings from included file
+    ssl_protocols TLSv1.2 TLSv1.3;
+
+    ssl_ecdh_curve X25519:prime256v1:secp384r1;
+    ssl_ciphers ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-CHACHA20-POLY1305;
+    ssl_prefer_server_ciphers off;
+
+    # see also ssl_session_ticket_key alternative to stateful session cache
+    ssl_session_timeout 1d;
+    ssl_session_cache shared:MozSSL:10m;  # about 40000 sessions
+
+    # OCSP stapling
+    ssl_stapling on;
+    ssl_stapling_verify on;
+
+    server_name {{ vhost }};
+
+    ssl_certificate /etc/letsencrypt/live/api.transitous.org/fullchain.pem;
+    ssl_certificate_key /etc/letsencrypt/live/api.transitous.org/privkey.pem;
+
+    charset UTF-8;
+
+    # For certbot
+    location ^~ /.well-known/acme-challenge/ {
+        root /var/www/html/;
+    }
+
+    location ~ ^/gtfsrt/(?<feed_name>[^/]+)/trip-updates.pb {
+        proxy_pass http://10.11.1.1:5002/$feed_name/trip-updates.pb;
+        proxy_buffering on;
+        proxy_cache gtfsrt;
+        proxy_cache_revalidate off;
+        proxy_cache_valid 200 304 5s;
+        proxy_cache_lock on;
+    }
+
+    location ~ ^/gtfsrt/(?<feed_name>[^/]+)/vehicle-positions.pb {
+        proxy_pass http://10.11.1.1:5001/gtfsrt/$feed_name/vehicle-positions.pb;
+        proxy_buffering on;
+        proxy_cache gtfsrt;
+        proxy_cache_revalidate off;
+        proxy_cache_valid 200 304 5s;
+        proxy_cache_lock on;
+    }
+
+    location /api/v1/submit {
+        proxy_pass http://10.11.1.1:5001/api/v1/submit;
+    }
+
+    location / {
+        add_header Content-Type text/html;
+        return 200 '
+<h2>work in progress...</h2>
+<h3>Supported endpoints</h3>
+<p>
+<code>POST /api/v1/submit</code><br />
+
+Example body:<br />
+<code>
+{"position": {"lat": 43.58199, "lon": 19.52472}, "motis_trip_id": "20250722_20:10_zpcg_237", "timestamp": 12345}
+</code>
+</p>
+<p>
+<code>GET /gtfsrt/{feed}/trip-updates.pb</code>
+</p>
+<p>
+<code>GET /gtfsrt/{feed}/vehicle-positions.pb</code>
+</p>';
+    }
+}

configs/delay-tracker/config.toml

@@ -0,0 +1,2 @@
+[server]
+address = "10.11.1.1:5001"

configs/gps-collector/config.toml

@@ -0,0 +1,2 @@
+[server]
+address = "10.11.1.1:5002"

configs/motis/config.yml

@@ -0,0 +1,51 @@
+# SPDX-FileCopyrightText: 2024 Jonah Brüchert <[email protected]>
+#
+# SPDX-License-Identifier: AGPL-3.0-or-later
+
+server:
+  host: 0.0.0.0
+  port: 8080
+  web_folder: "/opt/motis/ui/"  # Just for testing, not used on server
+  data_attribution_link: https://transitous.org/sources/
+
+street_routing: true
+osr_footpath: false
+elevators: false
+geocoding: true
+reverse_geocoding: true
+
+osm: planet-latest.osm.pbf
+
+tiles:
+  profile: /opt/motis/tiles-profiles/full.lua
+  coastline: land-polygons-complete-4326.zip
+
+timetable:
+  first_day: TODAY
+  num_days: 365
+  railviz: true
+  with_shapes: true
+  ignore_errors: true
+  adjust_footpaths: true
+  merge_dupes_intra_src: true
+  merge_dupes_inter_src: true
+  link_stop_distance: 100
+  update_interval: 60
+  http_timeout: 30
+  incremental_rt_update: false
+  max_footpath_length: 12
+  extend_missing_footpaths: true
+# The datasets are filled in by ./src/generate-motis-config.py
+  datasets:
+
+gbfs:
+  feeds:
+
+limits:
+  stoptimes_max_results: 16384
+  plan_max_results: 256
+  plan_max_search_window_minutes: 5760
+  stops_max_results: 2048
+  onetoall_max_results: 524288
+  onetoall_max_travel_minutes: 2880
+  routing_max_timeout_seconds: 90