A Telegram captcha bot written in Clojure and compiled with GraalVM native image. Runs on bare Linux/MacOS with no requirements. Fast and robust.
Telegram chats suffer from spammers who are pretty smart nowadays. They don't use bots; instead, they register ordinary accounts and automate them with Selenium + web-version of Telegram. Personally, I found Shieldy and other bots useless when dealing with such kind of spammers. This project aims the goal to finish that mess.
Another reason I opened Teleward for is to try my skills in developing Clojure applications with GraalVM. Binary applications are nice: they are fast, and they don't need installing JDK. At the same time, they're are still Clojure: REPL is here, and that's amazing.
+
, -
, and *
operators are corresponding Unicode characters that
prevent captcha from naive evaluation.The bot listens for all the messages in a group. Once a new pack of messages arrives, the bot applies the following procedure to each message:
Please note: the bot processes only messages no older than two minutes from now. In other words, the bot is interested in what is happening now (with a slight delay), but not in the far past. This is to prevent a sutuation what a bot had been inactive and then has started to consume messages. Without this condition, it will send captcha to chat members who have already joined and confuse them.
To make a Jar artefact, run:
make uberjar
The uberjar
target calls lein uberjar
and also injects the VERSION
file
into it. The output file is ./target/teleward.jar
.
Linux version is built inside a Docker image, namely the
ghcr.io/graalvm/graalvm-ce
one with native-image
extension preinstalled. Run
the following command:
make build-binary-docker
The output binary file appears at ./builds/teleward-Linux-x86_64
.
Install GraalVM locally.
Install the "native image" extension:
gu install native-image
make
the project:make
# or
make build-binary-local
The output will be ./builds/teleward-Darwin-x86_64
.
To run the bot, first you need a token. Contact @BotFather
in Telegram to
create a new bot. Copy the token and don't share it.
Add your new bot into a Telegram group. Promote it to admins. At least the bot must be able to 1) send messages, 2) delete messages, and 3) ban users.
Run the bot locally:
teleward -t <telegram-token> -l debug
If everything is fine, the bot will start consuming messages and print them in console.
See the version with -v
, and help with -h
. The bot takes into account plenty
of settings, yet not all of them are available for configuration for now. Below,
we name the most important parameters you will need.
-t, --telegram.token
: the Telegram token you obtain from
BotFather. Required, can be set via an env variable TELEGRAM_TOKEN
.
-m, --mode
: Working mode. Either polling
or webhook
, default is polling.
--webhook.path
: Webhook path, default is /telegram/webhook
.
--webhook.server.host
: Hostname of the webhook server, default is
localhost
.
-p, --webhook.server.port
: Port to listen in webhook mode, default is 8090.
-l, --logging.level
: the logging level. Can be debug, info, error
. Default
is info
. In production, most likely you will set error
.
--telegram.offset-file
: where to store offset number for the next
getUpdates
call. Default is TELEGRAM_OFFSET
in the current working
directory.
--lang
: the language for messages. Can be en, ru
, default is ru
.
--captcha.style
: a type of captcha. When lisp
, the captcha looks like (+ 4 3)
. Any other value type will produce 4 + 3
. The operator is taken
randomly.
Example:
./target/teleward -t <...> -l debug \
--lang=en --telegram.offset-file=mybot.offset \
--captcha.style=normal
For the rest of the config, see the src/teleward/config.clj
file.
Buy the cheapest VPS machine and SSH to it.
Create a user:
sudo useradd -s /bin/bash -d /home/ivan/ -m -G sudo ivan
sudo passwd ivan
mkdir /home/ivan/teleward
scp ./builds/teleward-Linux-x86_64 ivan@hostname:/home/ivan/teleward/
systemctl
service:sudo mcedit /etc/systemd/system/teleward.service
[Unit]
Description = Teleward bot
After = network.target
[Service]
Type = simple
Restart = always
RestartSec = 1
User = ivan
WorkingDirectory = /home/ivan/teleward/
ExecStart = /home/ivan/teleward/teleward-Linux-x86_64 -l debug
Environment = TELEGRAM_TOKEN=xxxxxxxxxxxxxx
[Install]
WantedBy = multi-user.target
sudo systemctl enable teleward
sudo systemctl stop teleward
sudo systemctl start teleward
sudo systemctl status teleward
For Jar, the config file would be almost the same except the ExecStart
section. There, you specify something like java -jar teleward.jar ...
.
In the teleward.service
file, specify the -m webhook
parameter:
ExecStart = .../teleward-Linux-x86_64 -m webhook -p 8090 ...
Install Caddy server for SSL. Modify its service config:
# sudo mcedit /lib/systemd/system/caddy.service
[Service]
ExecStart=caddy reverse-proxy --from <DOMAIN> --to localhost:8090
See the /conf
directory for configuration.
Compile uberjar with with a special profile:
make yc-jar
In Dynamo DB or Yandex Db, create a table with (chat_id, user_id)
pair for the
primary key (both integers).
Zip and upload this jar into S3/YC bucket. Create a lambda/function with these settings:
Setting | Value |
---|---|
environment | Java 11 |
bucket | the name of the bucket |
object | path to the zip file |
entrypoint | teleward.YCHandler |
timeout | minimum 5 seconds |
memory | 128 is enough |
Setup the env vars:
Variable | Value |
---|---|
TELEGRAM_TOKEN | your telegram token |
LOGGING_LEVEL | debug/info/error |
DYNAMODB_TABLE | table to store the state |
AWS_ACCESS_KEY_ID | aws public key |
AWS_SECRET_ACCESS_KEY | aws secret key |
DYNAMODB_ENDPOINT | HTTPS URL to DynamoDB/YDB |
Make you lambda/function public. Use its URL as a webhook for your bot.
The bot accepts the /health
command which it replies to "OK".
/health
.© 2022 Ivan Grishaev
Can you improve this documentation?Edit on GitHub
cljdoc is a website building & hosting documentation for Clojure/Script libraries
× close