Skip to content

Sedimark/dlt-booth

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

174 Commits
api
api
 
 
dlt-booth
dlt-booth
 
 
kubernetes
kubernetes
 
 
smart-contracts
smart-contracts
 
 
.dockerignore
.dockerignore
 
 
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
docker-compose.yml
docker-compose.yml
 
 

Repository files navigation

DLT Booth

DLT Booth is a fork of the connector component of the Mediterraneus Protocol. This component has been customized to be integrated into the Sedimark Toolbox.

DLT Booth consists in an http server written in Rust and deployed as a docker image, which requires to be connected to a Postgres database.

Main functionalities

DLT Booth can be used to execute operation on a configured EVM through http requests. It also communicates with a configured DLT to perform SSI operations:

SSI operations

  • Create a DID Document
  • Publish a DID Document on the configured DLT
  • Request for Verifiable Credential issuance to a Issuer for Sedimark marketplace onboarding
  • Request for Verifiable Credential revocation
  • Create Verifiable Presentation

EVM operations

  • EIP191 formatted message signatures
  • Execute EVM transactions:
    • Publish offering metadata
    • Exchange data tokens

ToC

  1. Environnement setup
  2. Running the application
  3. Next Steps
  4. Useful tools for development and integration

Environment setup

In dlt-booth/env folder, create a .env file starting from example.env and update the values accordingly to your development enviroment.

RUST_LOG="dlt_booth=debug, info" # Log level [debug, info, error]

# HTTP SERVER CONFIG
HOST_ADDRESS=0.0.0.0 # Http server bind address
HOST_PORT=8085 # Http server bind port

# DLT CONFIG
NODE_URL=https://stardust.unican.sedimark.eu
FAUCET_API_ENDPOINT=https://stardust.linksfoundation.com/faucet/l1/api/enqueue
RPC_PROVIDER=https://stardust.unican.sedimark.eu/sedimark-chain
CHAIN_ID=1074

# ISSUER CONFIG
ISSUER_URL=http://issuer.stardust.linksfoundation.com/dev/

# KEY STORAGE CONFIG
KEY_STORAGE_STRONGHOLD_SNAPSHOT_PATH="./key_storage.stronghold" # file path where secrets will be stored
KEY_STORAGE_STRONGHOLD_PASSWORD="some_hopefully_secure_password" # password used for Stronghold file encryption

## WALLET CONFIG
WALLET_STRONGHOLD_SNAPSHOT_PATH="./wallet.stronghold" # file path where wallet keys will be stored
WALLET_STRONGHOLD_PASSWORD="some_hopefully_secure_password" # password used for Stronghold file encryption

# DATABASE CONNECTION CONFIG
DB_USER="postgres"
DB_PASSWORD="dlt_booth"
DB_NAME="dlt_booth"
DB_HOST=127.0.0.1 # "postgres" for deploying, "127.0.0.1 " for dev
DB_PORT=5432
DB_MAX_POOL_SIZE=16

Running the Application

Running from Docker

A Docker compose file has been set for deploying. A Postgres database and the application container is created.

docker compose --profile deploy up -d

Remember to properly configure environnment variables before running the command.

Backup and restore

Generated keys are stored in files generated for key storage and wallet. They're both saved in /data inside the container. Those files are protected with the passwords provided in the environnment variables. The data folder needs to be syncronized with postgres data as well.

Backup operation
  • Copy the container /data folder into a different storage
  • Store the passwords securely
  • Backup Postgres
Restore operation
  • Copy back into the /data folder
  • Set corresponding passwords in the environnment variable
  • Restore Postgres backup

Next steps

Some interactions of the component with the DLT are changing the state of the Smart Contract Platform. Specifically the DLT-booth can perform operations associated to the marketplace if the followings conditions are met:

  1. The DLT-booth has a valid Verifiable Credential, provided by a supported Issuer for the SEDIMARK Marketplace.
  2. The EVM address associated with the participant identity can sign transaction on the smart contract platform. The address also needs to own some native tokens to complete stateful operations on the chain.

VC Issuance

The DLT-booth is involved during the onboarding process; it can connect to the configured issuer and negotiate the issuance of a Verifiable Credential that can be use to operate in the Marketplace.

Participants of the Marketplace must create their own self sovereign identity using the POST /delegated/identities method.

The DLT-Booth provide information about the generated identity through the following endpoints:

  • GET /delegated/identities => Claims verified by the issuer
  • GET /dids/did?={url_encoded_did} => Resolve the credential subject's DID and read public keys from the DID document

Funding an EVM account

Participants are required to be funded with native tokens, in order to operate on the Smart Contract Platform. EVM addresses added in participants' DID documents can be funded with a faucet available online. This simple user interface allows you to specify the address where to send funds. The address is the one specified in the DID document of the participant.

Finally, a participant that owns a valid credential and enough funds can update the SCP state with the following methods:

  • POST /delegated/offerings => Publish a new offering
  • POST /delegated/dt/{nftAddress} => Purchase a new datatoken

Dev Utils

Docker compose example

services:
  dlt-booth:
    build:
      context: .
      dockerfile: Dockerfile
    image: dlt-booth
    container_name: dlt-booth
    restart: unless-stopped
    ports:
      - "8085:8085"
    depends_on:
      postgres:
       condition: service_healthy 
    volumes:
      - "./docker_data:/data"
    networks:
      - dlt-booth-net
    environment:
      RUST_BACKTRACE: 1
      RUST_LOG: info
      # HTTP SERVER CONFIG
      HOST_ADDRESS: 0.0.0.0
      HOST_PORT: 8085
      # DLT CONFIG
      NODE_URL: https://stardust.unican.sedimark.eu
      FAUCET_API_ENDPOINT: https://stardust.linksfoundation.com/faucet/l1/api/enqueue
      RPC_PROVIDER: https://stardust.unican.sedimark.eu/sedimark-chain
      CHAIN_ID: 1074
      # ISSUER CONFIG
      ISSUER_URL: http://issuer.stardust.linksfoundation.com/dev/api
      # KEY STORAGE CONFIG
      KEY_STORAGE_STRONGHOLD_SNAPSHOT_PATH: ./key_storage.stronghold
      KEY_STORAGE_STRONGHOLD_PASSWORD: some_hopefully_secure_password
      # WALLET CONFIG
      WALLET_STRONGHOLD_SNAPSHOT_PATH: ./wallet.stronghold
      WALLET_STRONGHOLD_PASSWORD: some_hopefully_secure_password
      # DATABASE CONNECTION CONFIG
      DB_USER: postgres
      DB_PASSWORD: dlt_booth
      DB_NAME: dlt_booth
      DB_HOST: postgres
      DB_PORT: 5432
      DB_MAX_POOL_SIZE: 16
  postgres:
    container_name: postgres
    hostname: postgres
    image: postgres:latest
    ports:
      - "5432:5432"
    env_file: 
      - ./dlt-booth/env/postgres.env
    volumes: 
      - ./dlt-booth/postgresdata:/var/lib/postgresql/data
      - ./dlt-booth/sql/dbinit.sql:/docker-entrypoint-initdb.d/dbinit.sql 
    restart: always
    healthcheck:
      test: [ "CMD-SHELL", "pg_isready -d $${POSTGRES_DB} -U $${POSTGRES_USER}" ]
      interval: 10s
      timeout: 5s
      retries: 5
    environment:
      POSTGRES_USER: postgres
      POSTGRES_PASSWORD: dlt_booth
      POSTGRES_DB: dlt_booth
    networks:
      - dlt-booth-net
networks:
  dlt-booth-net:
    name: dlt-booth-net

Kubernetes deployment

To deploy the DLT Booth in a Kubernetes cluster, first set the necessary environment variables to be parsed in the manifests:

Name Description Example (in clear text) base64
DLT_BOOTH_NAMESPACE Kubernetes namespace for the DLT Booth dlt-booth No
DLT_BOOTH_APP_NAME Application name used for Kubernetes resources dlt-booth No
STORAGECLASS Kubernetes storage class for persistent volumes nfs-storageclass No
DLT_BOOTH_NODE_URL URL for the blockchain node https://stardust.linksfoundation.com/node1 No
DLT_BOOTH_FAUCET_API_ENDPOINT API endpoint for the blockchain faucet https://stardust.linksfoundation.com/faucet/l1/api/enqueue No
DLT_BOOTH_RPC_PROVIDER RPC provider URL for blockchain https://json-rpc.evm.stardust.linksfoundation.com/sedimark-chain No
DLT_BOOTH_CHAIN_ID Blockchain network ID 1074 No
DLT_BOOTH_ISSUER_URL URL of the issuer http://issuer.dlt-booth.svc.cluster.local:3213 No
DLT_BOOTH_DB_USER Database username postgres No
DLT_BOOTH_DB_PASSWORD Database password password Yes
DLT_BOOTH_DOCKER_REGISTRY_CREDENTIALS Base64 encoded Docker registry credentials {"auths":{"registry.example.com":{"username":"user","password":"pass"}}} Yes
DLT_BOOTH_KEY_STORAGE_STRONGHOLD_SNAPSHOT_PATH Path to the Stronghold snapshot file ./key_storage.stronghold Yes
DLT_BOOTH_KEY_STORAGE_STRONGHOLD_PASSWORD Password for the Stronghold snapshot some_hopefully_secure_password Yes
DLT_BOOTH_WALLET_STRONGHOLD_SNAPSHOT_PATH File path where wallet keys will be stored ./wallet.stronghold Yes
DLT_BOOTH_WALLET_STRONGHOLD_PASSWORD Password used for Stronghold file encryption some_hopefully_secure_password Yes
DLT_BOOTH_DOCKER_IMAGE Docker image name registry.example.com/dlt-booth No
DLT_BOOTH_IMAGETAG Docker image tag for the DLT Booth dev No
DLT_BOOTH_POSTGRES_IMAGETAG Docker image tag for PostgreSQL 17.4 No

Then, apply the Kubernetes manifests:

cat ./kubernetes/*.yaml | envsubst | kubectl apply -f -

The manifests don't provide any ingress, so to access the DLT Booth API, you can use port-forwarding:

kubectl port-forward -n $DLT_BOOTH_NAMESPACE svc/$DLT_BOOTH_APP_NAME 8085:8085

License

GPL-3.0-or-later

About

The DLT Booth is the keeper of the gates, managing user identity and credentials usage in general

Resources

Readme

License

GPL-3.0 license
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases 3

v1.0.3 Latest
Oct 14, 2025
+ 2 releases

Packages

 
 
 

Languages

  • Rust 94.8%
  • Bru 3.2%
  • PLpgSQL 1.1%
  • Dockerfile 0.9%