DeBros/network
4
0
Fork 0
mirror of https://github.com/DeBrosOfficial/network.git synced 2025-10-06 04:49:08 +00:00
Code Issues Packages Projects Releases Wiki Activity
149 Commits 2 Branches 7 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
anonpenguin b5fc5cff4b
Merge pull request #38 from DeBrosOfficial/nightly 
Fixed wrong URL /v1/db to /v1/rqlite
2025-09-23 07:46:26 +03:00
.githooks
Add pre-push hook to run all tests before pushing
2025-09-13 06:02:56 +03:00
.zed
- Updated Gateway port from 8080/8005 to 6001 - Added Gateway port on
2025-09-20 08:15:31 +03:00
cmd
Removed anyone proxy from libp2p, anyone will be added
2025-09-22 17:38:18 +03:00
e2e
Fixed wrong URL /v1/db to /v1/rqlite
2025-09-23 07:42:34 +03:00
examples
Fixed wrong URL /v1/db to /v1/rqlite
2025-09-23 07:42:34 +03:00
migrations
Add wallet-based API key management and auth
2025-08-20 10:42:40 +03:00
openapi
Fixed wrong URL /v1/db to /v1/rqlite
2025-09-23 07:42:34 +03:00
pkg
Fixed wrong URL /v1/db to /v1/rqlite
2025-09-23 07:42:34 +03:00
scripts
Removed unused command setup-production-security.sh
2025-09-20 13:28:44 +03:00
.gitignore
Switch node startup to YAML config files
2025-08-14 15:49:07 +03:00
.goreleaser.yaml
contribution related changes
2025-08-09 21:44:26 +03:00
CHANGELOG.md
Fixed wrong URL /v1/db to /v1/rqlite
2025-09-23 07:42:34 +03:00
CODE_OF_CONDUCT.md
contribution related changes
2025-08-09 21:44:26 +03:00
CONTRIBUTING.md
replaced git.debros.io with github.com
2025-09-18 15:27:53 +03:00
go.mod
replaced git.debros.io with github.com
2025-09-18 15:27:53 +03:00
go.sum
Bump version to 0.42.0-beta and add node monitoring
2025-09-13 07:35:48 +03:00
LICENSE
contribution related changes
2025-08-09 21:44:26 +03:00
Makefile
Updated make file
2025-09-23 07:43:23 +03:00
README.md
Fixed wrong URL /v1/db to /v1/rqlite
2025-09-23 07:42:34 +03:00

README.md

DeBros Network - Distributed P2P Database System

A robust, decentralized peer-to-peer network built in Go, providing distributed SQL database, key-value storage, pub/sub messaging, and resilient peer management. Designed for applications needing reliable, scalable, and secure data sharing without centralized infrastructure.

Table of Contents

Features

  • Distributed SQL Database: RQLite-backed, Raft-consensus, ACID transactions, automatic failover.
  • Pub/Sub Messaging: Topic-based, real-time, namespaced, automatic cleanup.
  • Peer Discovery & Management: Nodes discover peers, bootstrap support, health monitoring.
  • Application Isolation: Namespace-based multi-tenancy, per-app config.
  • Secure by Default: Noise/TLS transport, peer identity, systemd hardening.
  • Simple Client API: Lightweight Go client for apps and CLI tools.

Architecture Overview

┌─────────────────────────────────────────────────────────────┐
│                  DeBros Network Cluster                    │
├─────────────────────────────────────────────────────────────┤
│                   Application Layer                        │
│ ┌─────────────┐ ┌─────────────┐ ┌────────────────────────┐ │
│ │   Anchat    │ │ Custom App  │ │      CLI Tools        │ │
│ └─────────────┘ └─────────────┘ └────────────────────────┘ │
├─────────────────────────────────────────────────────────────┤
│                      Client API                            │
│ ┌─────────────┐ ┌────────────────────────┐               │
│ │  Database   │ │        PubSub         │               │
│ │   Client    │ │        Client         │               │
│ └─────────────┘ └────────────────────────┘               │
├─────────────────────────────────────────────────────────────┤
│                    Network Node Layer                      │
│ ┌─────────────┐ ┌─────────────┐ ┌────────────────────────┐ │
│ │ Discovery   │ │   PubSub    │ │      Database         │ │
│ │  Manager    │ │   Manager   │ │    (RQLite)          │ │
│ └─────────────┘ └─────────────┘ └────────────────────────┘ │
├─────────────────────────────────────────────────────────────┤
│                  Transport Layer                           │
│ ┌─────────────┐ ┌─────────────┐ ┌────────────────────────┐ │
│ │   LibP2P    │ │   Noise/TLS │ │      RQLite           │ │
│ │   Host      │ │  Encryption │ │    Database           │ │
│ └─────────────┘ └─────────────┘ └────────────────────────┘ │
└─────────────────────────────────────────────────────────────┘
  • Node: Full P2P participant, runs services, handles peer discovery, database, pubsub.
  • Client: Lightweight, connects only to bootstrap peers, consumes services, no peer discovery.

System Requirements

Software

  • Go: 1.21+ (recommended)
  • RQLite: 8.x (distributed SQLite)
  • Git: For source management
  • Make: For build automation (recommended)

Hardware

  • Minimum: 2 CPU cores, 4GB RAM, 10GB disk, stable internet
  • Recommended: 4+ cores, 8GB+ RAM, 50GB+ SSD, low-latency network

Network Ports

  • 4001: LibP2P P2P communication
  • 5001: RQLite HTTP API
  • 7001: RQLite Raft consensus

Quick Start

1. Clone and Setup

git clone https://github.com/DeBrosOfficial/network.git
cd network

2. Build All Executables

make build

3. Start a Bootstrap Node

make run-node
# Or manually:
go run ./cmd/node --config configs/bootstrap.yaml

4. Start Additional Nodes

make run-node2
# Or manually:
go run ./cmd/node --config configs/node.yaml

5. Test with CLI

./bin/network-cli health
./bin/network-cli peers
./bin/network-cli pubsub publish notifications "Hello World"
./bin/network-cli pubsub subscribe notifications 10s

Deployment & Installation

Automated Production Install

Run the install script for a secure, production-ready setup:

curl -sSL https://github.com/DeBrosOfficial/network/raw/main/scripts/install-debros-network.sh | sudo bash

What the Script Does:

  • Detects OS, installs Go, RQLite, dependencies
  • Creates debros system user, secure directory structure
  • Generates LibP2P identity keys
  • Clones source, builds binaries
  • Sets up systemd service (debros-node)
  • Configures firewall (UFW) for required ports
  • Generates YAML config in /opt/debros/configs/node.yaml

Directory Structure:

/opt/debros/
├── bin/           # Binaries
├── configs/       # YAML configs
├── keys/          # Identity keys
├── data/          # RQLite DB, storage
├── logs/          # Node logs
├── src/           # Source code

Service Management:

sudo systemctl status debros-node
sudo systemctl start debros-node
sudo systemctl stop debros-node
sudo systemctl restart debros-node
sudo journalctl -u debros-node.service -f

Configuration

Example Configuration Files

configs/bootstrap.yaml

node:
  id: ""
  listen_addresses:
    - "/ip4/0.0.0.0/tcp/4001"
  data_dir: "./data/bootstrap"
  max_connections: 100

database:
  data_dir: "./data/db"
  replication_factor: 3
  shard_count: 16
  max_database_size: 1073741824
  backup_interval: 24h
  rqlite_port: 5001
  rqlite_raft_port: 7001
  rqlite_join_address: "" # Bootstrap node does not join

discovery:
  bootstrap_peers: []
  discovery_interval: 15s
  bootstrap_port: 4001
  http_adv_address: "127.0.0.1"
  raft_adv_address: ""

security:
  enable_tls: false
  private_key_file: ""
  certificate_file: ""

logging:
  level: "info"
  format: "console"
  output_file: ""

configs/node.yaml

node:
  id: "node2"
  listen_addresses:
    - "/ip4/0.0.0.0/tcp/4002"
  data_dir: "./data/node2"
  max_connections: 50

database:
  data_dir: "./data/db"
  replication_factor: 3
  shard_count: 16
  max_database_size: 1073741824
  backup_interval: 24h
  rqlite_port: 5002
  rqlite_raft_port: 7002
  rqlite_join_address: "http://127.0.0.1:5001"

discovery:
  bootstrap_peers:
    - "/ip4/127.0.0.1/tcp/4001/p2p/<YOUR_BOOTSTRAP_PEER_ID>"
  discovery_interval: 15s
  bootstrap_port: 4002
  http_adv_address: "127.0.0.1"
  raft_adv_address: ""

security:
  enable_tls: false
  private_key_file: ""
  certificate_file: ""

logging:
  level: "info"
  format: "console"
  output_file: ""

YAML Reference

Node YAML (configs/node.yaml or configs/bootstrap.yaml)

The .yaml files are required in order for the nodes and the gateway to run correctly.

node:

  • id (string) Optional node ID. Auto-generated if empty.
  • type (string) "bootstrap" or "node". Default: "node".
  • listen_addresses (string[]) LibP2P listen multiaddrs. Default: ["/ip4/0.0.0.0/tcp/4001"].
  • data_dir (string) Data directory. Default: "./data".
  • max_connections (int) Max peer connections. Default: 50.

database:

  • data_dir (string) Directory for database files. Default: "./data/db".
  • replication_factor (int) Number of replicas. Default: 3.
  • shard_count (int) Shards for data distribution. Default: 16.
  • max_database_size (int64 bytes) Max DB size. Default: 1073741824 (1GB).
  • backup_interval (duration) e.g., "24h". Default: 24h.
  • rqlite_port (int) RQLite HTTP API port. Default: 5001.
  • rqlite_raft_port (int) RQLite Raft port. Default: 7001.
  • rqlite_join_address (string) HTTP address of an existing RQLite node to join. Empty for bootstrap.

discovery:

  • bootstrap_peers (string[]) List of LibP2P multiaddrs of bootstrap peers.
  • discovery_interval (duration) How often to announce/discover peers. Default: 15s.
  • bootstrap_port (int) Default port for bootstrap nodes. Default: 4001.
  • http_adv_address (string) Advertised HTTP address for RQLite (host:port).
  • raft_adv_address (string) Advertised Raft address (host:port).
  • node_namespace (string) Namespace for node identifiers. Default: "default".

security:

  • enable_tls (bool) Enable TLS for externally exposed services. Default: false.
  • private_key_file (string) Path to TLS private key (if TLS enabled).
  • certificate_file (string) Path to TLS certificate (if TLS enabled).

logging:

  • level (string) one of "debug", "info", "warn", "error". Default: "info".
  • format (string) "json" or "console". Default: "console".
  • output_file (string) Empty for stdout; otherwise path to log file.

Precedence (node): Flags > YAML > Defaults.

Example node.yaml

node:
  id: "node2"
  listen_addresses:
    - "/ip4/0.0.0.0/tcp/4002"
  data_dir: "./data/node2"
  max_connections: 50
  disable_anonrc: true

database:
  data_dir: "./data/db"
  replication_factor: 3
  shard_count: 16
  max_database_size: 1073741824
  backup_interval: 24h
  rqlite_port: 5001
  rqlite_raft_port: 7001
  rqlite_join_address: "http://127.0.0.1:5001"

discovery:
  bootstrap_peers:
    - "<YOUR_BOOTSTRAP_PEER_ID_MULTIADDR>"
  discovery_interval: 15s
  bootstrap_port: 4001
  http_adv_address: "127.0.0.1"
  raft_adv_address: ""
  node_namespace: "default"

security:
  enable_tls: false
  private_key_file: ""
  certificate_file: ""
  auth_enabled: false

logging:
  level: "info"
  format: "console"
  output_file: ""

Gateway YAML (configs/gateway.yaml)

  • listen_addr (string) HTTP listen address, e.g., ":6001". Default: ":6001".
  • client_namespace (string) Namespace used by the gateway client. Default: "default".
  • bootstrap_peers (string[]) List of bootstrap peer multiaddrs. Default: empty.

Precedence (gateway): Flags > Environment Variables > YAML > Defaults. Environment variables:

  • GATEWAY_ADDR
  • GATEWAY_NAMESPACE
  • GATEWAY_BOOTSTRAP_PEERS (comma-separated)

Example gateway.yaml

listen_addr: ":6001"
client_namespace: "default"
bootstrap_peers:
  - "<YOUR_BOOTSTRAP_PEER_ID_MULTIADDR>"

Flags & Environment Variables

  • Flags: Override config at startup (--data, --p2p-port, --rqlite-http-port, etc.)
  • Env Vars: Override config and flags (NODE_ID, RQLITE_PORT, BOOTSTRAP_PEERS, etc.)
  • Precedence (gateway): Flags > Env Vars > YAML > Defaults
  • Precedence (node): Flags > YAML > Defaults

Bootstrap & Database Endpoints

  • Bootstrap peers: Set in config or via BOOTSTRAP_PEERS env var.
  • Database endpoints: Set in config or via RQLITE_NODES env var.
  • Development mode: Use NETWORK_DEV_LOCAL=1 for localhost defaults.

CLI Usage

Network Operations

./bin/network-cli health                    # Check network health
./bin/network-cli status                    # Get network status
./bin/network-cli peers                     # List connected peers

Database Operations

./bin/network-cli query "SELECT * FROM table"              # Execute SQL
./bin/network-cli query "CREATE TABLE users (id INTEGER)"  # DDL operations

Pub/Sub Messaging

./bin/network-cli pubsub publish <topic> <message>     # Send message
./bin/network-cli pubsub subscribe <topic> [duration]  # Listen for messages
./bin/network-cli pubsub topics                        # List active topics

CLI Options

--format json                 # Output in JSON format
--timeout 30s                 # Set operation timeout
--bootstrap <multiaddr>       # Override bootstrap peer
--production                  # Use production bootstrap peers

Database Operations (Gateway REST)

POST /v1/rqlite/exec             # Body: {"sql": "INSERT/UPDATE/DELETE/DDL ...", "args": [...]}
POST /v1/rqlite/find             # Body: {"table":"...", "criteria":{"col":val,...}, "options":{...}}
POST /v1/rqlite/find-one         # Body: same as /find, returns a single row (404 if not found)
POST /v1/rqlite/select           # Body: {"table":"...", "select":[...], "where":[...], "joins":[...], "order_by":[...], "limit":N, "offset":N, "one":false}
POST /v1/rqlite/transaction      # Body: {"ops":[{"kind":"exec|query","sql":"...","args":[...]}], "return_results": true}
POST /v1/rqlite/query            # Body: {"sql": "SELECT ...", "args": [..]}  (legacy-friendly SELECT)
GET  /v1/rqlite/schema           # Returns tables/views + create SQL
POST /v1/rqlite/create-table     # Body: {"schema": "CREATE TABLE ..."}
POST /v1/rqlite/drop-table       # Body: {"table": "table_name"}

Common workflows:

# Exec (INSERT/UPDATE/DELETE/DDL)
curl -X POST "$GW/v1/rqlite/exec" \
  -H "Authorization: Bearer $API_KEY" -H 'Content-Type: application/json' \
  -d '{"sql":"INSERT INTO users(name,email) VALUES(?,?)","args":["Alice","alice@example.com"]}'

# Find (criteria + options)
curl -X POST "$GW/v1/rqlite/find" \
  -H "Authorization: Bearer $API_KEY" -H 'Content-Type: application/json' \
  -d '{
        "table":"users",
        "criteria":{"active":true},
        "options":{"select":["id","email"],"order_by":["created_at DESC"],"limit":25}
      }'

# Select (fluent builder via JSON)
curl -X POST "$GW/v1/rqlite/select" \
  -H "Authorization: Bearer $API_KEY" -H 'Content-Type: application/json' \
  -d '{
        "table":"orders o",
        "select":["o.id","o.total","u.email AS user_email"],
        "joins":[{"kind":"INNER","table":"users u","on":"u.id = o.user_id"}],
        "where":[{"conj":"AND","expr":"o.total > ?","args":[100]}],
        "order_by":["o.created_at DESC"],
        "limit":10
      }'

# Transaction (atomic batch)
curl -X POST "$GW/v1/rqlite/transaction" \
  -H "Authorization: Bearer $API_KEY" -H 'Content-Type: application/json' \
  -d '{
        "return_results": true,
        "ops": [
          {"kind":"exec","sql":"INSERT INTO users(email) VALUES(?)","args":["bob@example.com"]},
          {"kind":"query","sql":"SELECT last_insert_rowid() AS id","args":[]}
        ]
      }'

# Schema
curl "$GW/v1/rqlite/schema" -H "Authorization: Bearer $API_KEY"

# DDL helpers
curl -X POST "$GW/v1/rqlite/create-table" -H "Authorization: Bearer $API_KEY" -H 'Content-Type: application/json' \
  -d '{"schema":"CREATE TABLE IF NOT EXISTS users (id INTEGER PRIMARY KEY, name TEXT, email TEXT)"}'
curl -X POST "$GW/v1/rqlite/drop-table" -H "Authorization: Bearer $API_KEY" -H 'Content-Type: application/json' \
  -d '{"table":"users"}'

Authentication

The CLI features an enhanced authentication system with automatic wallet detection and multi-wallet support:

  • Automatic Authentication: No manual auth commands required - authentication happens automatically when operations need credentials
  • Multi-Wallet Management: Seamlessly switch between multiple wallet credentials
  • Persistent Sessions: Wallet credentials are automatically saved and restored between sessions
  • Enhanced User Experience: Streamlined authentication flow with better error handling and user feedback

When using operations that require authentication (storage, database, pubsub), the CLI will automatically:

  1. Check for existing valid credentials
  2. Prompt for wallet authentication if needed
  3. Handle signature verification
  4. Persist credentials for future use

Example with automatic authentication:

# First time - will prompt for wallet authentication when needed
./bin/network-cli pubsub publish notifications "Hello World"

HTTP Gateway

The DeBros Network includes a powerful HTTP/WebSocket gateway that provides a modern REST API and WebSocket interface over the P2P network, featuring an enhanced authentication system with multi-wallet support.

Quick Start

make run-gateway
# Or manually:
go run ./cmd/gateway

Configuration

The gateway can be configured via configs/gateway.yaml and environment variables (env override YAML):

# Basic Configuration
export GATEWAY_ADDR="0.0.0.0:6001"
export GATEWAY_NAMESPACE="my-app"
export GATEWAY_BOOTSTRAP_PEERS="/ip4/127.0.0.1/tcp/4001/p2p/YOUR_PEER_ID"

# Authentication Configuration
export GATEWAY_REQUIRE_AUTH=true
export GATEWAY_API_KEYS="key1:namespace1,key2:namespace2"

Enhanced Authentication System

The gateway features a significantly improved authentication system with the following capabilities:

Key Features

  • Automatic Authentication: No manual auth commands required - authentication happens automatically when needed
  • Multi-Wallet Support: Seamlessly manage multiple wallet credentials with automatic switching
  • Persistent Sessions: Wallet credentials are automatically saved and restored
  • Enhanced User Experience: Streamlined authentication flow with better error handling

Authentication Methods

Wallet-Based Authentication (Ethereum EIP-191)

  • Uses personal_sign for secure wallet verification
  • Supports multiple wallets with automatic detection
  • Addresses are case-insensitive with normalized signature handling

JWT Tokens

  • Issued by the gateway with configurable expiration
  • JWKS endpoints available at /v1/auth/jwks and /.well-known/jwks.json
  • Automatic refresh capability

API Keys

  • Support for pre-configured API keys via Authorization: Bearer <key> or X-API-Key headers
  • Optional namespace mapping for multi-tenant applications

API Endpoints

Health & Status

GET /health                 # Basic health check
GET /v1/health             # Detailed health status
GET /v1/status             # Network status
GET /v1/version            # Version information

Authentication (Public Endpoints)

POST /v1/auth/challenge    # Generate wallet challenge
POST /v1/auth/verify       # Verify wallet signature
POST /v1/auth/register     # Register new wallet
POST /v1/auth/refresh      # Refresh JWT token
POST /v1/auth/logout       # Clear authentication
GET  /v1/auth/whoami       # Current auth status
POST /v1/auth/api-key      # Generate API key (authenticated)

RQLite HTTP ORM Gateway (/v1/db)

The gateway now exposes a full HTTP interface over the Go ORM-like client (see pkg/rqlite/gateway.go) so you can build SDKs in any language.

  • Base path: /v1/db
  • Endpoints:
    • POST /v1/rqlite/exec — Execute write/DDL SQL; returns { rows_affected, last_insert_id }
    • POST /v1/rqlite/find — Map-based criteria; returns { items: [...], count: N }
    • POST /v1/rqlite/find-one — Single row; 404 if not found
    • POST /v1/rqlite/select — Fluent SELECT via JSON (joins, where, order, group, limit, offset)
    • POST /v1/rqlite/transaction — Atomic batch of exec/query ops, optional per-op results
    • POST /v1/rqlite/query — Arbitrary SELECT (legacy-friendly), returns items
    • GET /v1/rqlite/schema — List user tables/views + create SQL
    • POST /v1/rqlite/create-table — Convenience for DDL
    • POST /v1/rqlite/drop-table — Safe drop (identifier validated)

Payload examples are shown in the Database Operations (Gateway REST) section.

Network Operations

GET  /v1/network/status    # Network status
GET  /v1/network/peers     # Connected peers
POST /v1/network/connect   # Connect to peer
POST /v1/network/disconnect # Disconnect from peer

Pub/Sub Messaging

WebSocket Interface

GET /v1/pubsub/ws?topic=<topic>  # WebSocket connection for real-time messaging

REST Interface

POST /v1/pubsub/publish    # Publish message to topic
GET  /v1/pubsub/topics     # List active topics

SDK Authoring Guide

Base concepts

  • OpenAPI: a machine-readable spec is available at openapi/gateway.yaml for SDK code generation.
  • Auth: send X-API-Key: <key> or Authorization: Bearer <key|JWT> with every request.
  • Versioning: all endpoints are under /v1/.
  • Responses: mutations return {status:"ok"}; queries/lists return JSON; errors return { "error": "message" } with proper HTTP status.

Key HTTP endpoints for SDKs

  • Database
    • Exec: POST /v1/rqlite/exec {sql, args?}{rows_affected,last_insert_id}
    • Find: POST /v1/rqlite/find {table, criteria, options?}{items,count}
    • FindOne: POST /v1/rqlite/find-one {table, criteria, options?} → single object or 404
    • Select: POST /v1/rqlite/select {table, select?, joins?, where?, order_by?, group_by?, limit?, offset?, one?}
    • Transaction: POST /v1/rqlite/transaction {ops:[{kind,sql,args?}], return_results?}
    • Query: POST /v1/rqlite/query {sql, args?}{items,count}
    • Schema: GET /v1/rqlite/schema
    • Create Table: POST /v1/rqlite/create-table {schema}
    • Drop Table: POST /v1/rqlite/drop-table {table}
  • PubSub
    • WS Subscribe: GET /v1/pubsub/ws?topic=<topic>
    • Publish: POST /v1/pubsub/publish {topic, data_base64}{status:"ok"}
    • Topics: GET /v1/pubsub/topics{topics:[...]}

Migrations

  • Add column: ALTER TABLE users ADD COLUMN age INTEGER
  • Change type / add FK (recreate pattern): create _new table, copy data, drop old, rename.
  • Always send as one POST /v1/rqlite/transaction.

Minimal examples

TypeScript (Node)

import { GatewayClient } from "../examples/sdk-typescript/src/client";

const client = new GatewayClient(
  process.env.GATEWAY_BASE_URL!,
  process.env.GATEWAY_API_KEY!
);
await client.createTable(
  "CREATE TABLE users (id INTEGER PRIMARY KEY, name TEXT)"
);
const res = await client.query("SELECT name FROM users WHERE id = ?", [1]);

Python

import os, requests

BASE = os.environ['GATEWAY_BASE_URL']
KEY  = os.environ['GATEWAY_API_KEY']
H    = { 'X-API-Key': KEY, 'Content-Type': 'application/json' }

def query(sql, args=None):
    r = requests.post(f'{BASE}/v1/rqlite/query', json={ 'sql': sql, 'args': args or [] }, headers=H, timeout=15)
    r.raise_for_status()
    return r.json()['rows']

Go

req, _ := http.NewRequest(http.MethodPost, base+"/v1/rqlite/create-table", bytes.NewBufferString(`{"schema":"CREATE TABLE ..."}`))
req.Header.Set("X-API-Key", apiKey)
req.Header.Set("Content-Type", "application/json")
resp, err := http.DefaultClient.Do(req)

Security Features

  • Namespace Enforcement: All operations are automatically prefixed with namespace for isolation
  • CORS Support: Configurable CORS policies (permissive for development, configurable for production)
  • Transport Security: All network communications use Noise/TLS encryption
  • Authentication Middleware: Flexible authentication with support for multiple credential types

Usage Examples

Wallet Authentication Flow

# 1. Get challenge (automatic)
curl -X POST http://localhost:6001/v1/auth/challenge

# 2. Sign challenge with wallet (handled by client)
# 3. Verify signature (automatic)
curl -X POST http://localhost:6001/v1/auth/verify \
  -H "Content-Type: application/json" \
  -d '{"wallet":"0x...","nonce":"...","signature":"0x..."}'

Real-time Messaging

// WebSocket connection
const ws = new WebSocket("ws://localhost:6001/v1/pubsub/ws?topic=chat");

ws.onmessage = (event) => {
  console.log("Received:", event.data);
};

// Send message
ws.send("Hello, network!");

Development

Project Structure

network/
├── cmd/
│   ├── node/         # Network node executable
│   └── cli/          # Command-line interface
├── pkg/
│   ├── client/       # Client library
│   ├── node/         # Node implementation
│   ├── database/     # RQLite integration
│   ├── pubsub/       # Pub/Sub messaging
│   ├── config/       # Centralized config
│   └── discovery/    # Peer discovery (node only)
├── scripts/          # Install, test scripts
├── configs/          # YAML configs
├── bin/              # Built executables

Build & Test

make build           # Build all executables
make test            # Run unit tests
make clean           # Clean build artifacts

Local Multi-Node Testing

scripts/test-multinode.sh

Database Client (Go ORM-like)

A lightweight ORM-like client over rqlite using Gos database/sql. It provides:

  • Query/Exec for raw SQL
  • A fluent QueryBuilder (Where, InnerJoin, LeftJoin, OrderBy, GroupBy, Limit, Offset)
  • Simple repositories with Find/FindOne
  • Save/Remove for entities with primary keys
  • Transaction support via Tx

Installation

  • Ensure rqlite is running (the node starts and manages rqlite automatically).
  • Import the client:
    • Package: github.com/DeBrosOfficial/network/pkg/rqlite

Quick Start

package main

import (
	"context"
	"database/sql"
	"time"

	"github.com/DeBrosOfficial/network/pkg/rqlite"
	_ "github.com/rqlite/gorqlite/stdlib"
)

type User struct {
	ID        int64     `db:"id,pk,auto"`
	Email     string    `db:"email"`
	FirstName string    `db:"first_name"`
	LastName  string    `db:"last_name"`
	CreatedAt time.Time `db:"created_at"`
}

func (User) TableName() string { return "users" }

func main() {
	ctx := context.Background()

	adapter, _ := rqlite.NewRQLiteAdapter(manager)
	client := rqlite.NewClientFromAdapter(adapter)

	// Save (INSERT)
	u := &User{Email: "alice@example.com", FirstName: "Alice", LastName: "A"}
	_ = client.Save(ctx, u) // auto-sets u.ID if autoincrement is available

	// FindOneBy
	var one User
	_ = client.FindOneBy(ctx, &one, "users", map[string]any{"email": "alice@example.com"})

	// QueryBuilder
	var users []User
	_ = client.CreateQueryBuilder("users").
		Where("email LIKE ?", "%@example.com").
		OrderBy("created_at DESC").
		Limit(10).
		GetMany(ctx, &users)
}

### Entities and Mapping

- Use struct tags: `db:"column_name"`; the first tag value is the column name.
- Mark primary key: `db:"id,pk"` (and `auto` if autoincrement): `db:"id,pk,auto"`.
- Fallbacks:
  - If no `db` tag is provided, the field name is used as the column (case-insensitive).
  - If a field is named `ID`, it is treated as the primary key by default.

```go
type Post struct {
	ID        int64     `db:"id,pk,auto"`
	UserID    int64     `db:"user_id"`
	Title     string    `db:"title"`
	Body      string    `db:"body"`
	CreatedAt time.Time `db:"created_at"`
}
func (Post) TableName() string { return "posts" }

Basic queries

Raw SQL with scanning into structs or maps:

var users []User
err := client.Query(ctx, &users, "SELECT id, email, first_name, last_name, created_at FROM users WHERE email LIKE ?", "%@example.com")
if err != nil {
	// handle
}

var rows []map[string]any
_ = client.Query(ctx, &rows, "SELECT id, email FROM users WHERE id IN (?,?)", 1, 2)

Query Buider

Build complex SELECTs with joins, filters, grouping, ordering, and pagination.

var results []User
qb := client.CreateQueryBuilder("users u").
	InnerJoin("posts p", "p.user_id = u.id").
	Where("u.email LIKE ?", "%@example.com").
	AndWhere("p.created_at >= ?", "2024-01-01T00:00:00Z").
	GroupBy("u.id").
	OrderBy("u.created_at DESC").
	Limit(20).
	Offset(0)

if err := qb.GetMany(ctx, &results); err != nil {
	// handle
}

// Single row (LIMIT 1)
var one User
if err := qb.Limit(1).GetOne(ctx, &one); err != nil {
	// handle sql.ErrNoRows, etc.
}

FindBy / FindOneBy

Simple map-based filters:

var active []User
_ = client.FindBy(ctx, &active, "users", map[string]any{"last_name": "A"}, rqlite.WithOrderBy("created_at DESC"), rqlite.WithLimit(50))

var u User
if err := client.FindOneBy(ctx, &u, "users", map[string]any{"email": "alice@example.com"}); err != nil {
	// sql.ErrNoRows if not found
}

Save / Remove

Save inserts if PK is zero, otherwise updates by PK. Remove deletes by PK.

// Insert (ID is zero)
u := &User{Email: "bob@example.com", FirstName: "Bob"}
_ = client.Save(ctx, u) // INSERT; sets u.ID if autoincrement

// Update (ID is non-zero)
u.FirstName = "Bobby"
_ = client.Save(ctx, u) // UPDATE ... WHERE id = ?

// Remove
_ = client.Remove(ctx, u) // DELETE ... WHERE id = ?

transactions

Run multiple operations atomically. If your function returns an error, the transaction is rolled back; otherwise it commits.

err := client.Tx(ctx, func(tx rqlite.Tx) error {
	// Read inside the same transaction
	var me User
	if err := tx.Query(ctx, &me, "SELECT * FROM users WHERE id = ?", 1); err != nil {
		return err
	}

	// Write inside the same transaction
	me.LastName = "Updated"
	if err := tx.Save(ctx, &me); err != nil {
		return err
	}

	// Complex query via builder
	var recent []User
	if err := tx.CreateQueryBuilder("users").
		OrderBy("created_at DESC").
		Limit(5).
		GetMany(ctx, &recent); err != nil {
		return err
	}

	return nil // commit
})

Repositories (optional, generic)

Strongly-typed convenience layer bound to a table:

repo := client.Repository[User]("users")

var many []User
_ = repo.Find(ctx, &many, map[string]any{"last_name": "A"}, rqlite.WithOrderBy("created_at DESC"), rqlite.WithLimit(10))

var one User
_ = repo.FindOne(ctx, &one, map[string]any{"email": "alice@example.com"})

_ = repo.Save(ctx, &one)
_ = repo.Remove(ctx, &one)

Migrations

Option A: From the node (after rqlite is ready)

ctx := context.Background()
dirs := []string{
    "network/migrations",           // default
    "path/to/your/app/migrations",  // extra
}

if err := rqliteManager.ApplyMigrationsDirs(ctx, dirs); err != nil {
    logger.Fatal("apply migrations failed", zap.Error(err))
}

Option B: Using the adapter sql.DB

ctx := context.Background()
db := adapter.GetSQLDB()
dirs := []string{"network/migrations", "app/migrations"}

if err := rqlite.ApplyMigrationsDirs(ctx, db, dirs, logger); err != nil {
    logger.Fatal("apply migrations failed", zap.Error(err))
}

Troubleshooting

Common Issues

Bootstrap Connection Failed

  • Symptoms: Failed to connect to bootstrap peer
  • Solutions: Check node is running, firewall settings, peer ID validity.

Database Operations Timeout

  • Symptoms: Query timeout or No RQLite connection available
  • Solutions: Ensure RQLite ports are open, leader election completed, cluster join config correct.

Message Delivery Failures

  • Symptoms: Messages not received by subscribers
  • Solutions: Verify topic names, active subscriptions, network connectivity.

High Memory Usage

  • Symptoms: Memory usage grows continuously
  • Solutions: Unsubscribe when done, monitor connection pool, review message retention.

Authentication Issues

  • Symptoms: Authentication failed, Invalid wallet signature, JWT token expired
  • Solutions:
    • Check wallet signature format (65-byte r||s||v hex)
    • Ensure nonce matches exactly during wallet verification
    • Verify wallet address case-insensitivity
    • Use refresh endpoint or re-authenticate for expired tokens
    • Clear credential cache if multi-wallet conflicts occur: rm -rf ~/.debros/credentials

Gateway Issues

  • Symptoms: Gateway connection refused, CORS errors, WebSocket disconnections
  • Solutions:
    • Verify gateway is running and accessible on configured port
    • Check CORS configuration for web applications
    • Ensure proper authentication headers for protected endpoints
    • Verify namespace configuration and enforcement

Database Migration Issues

  • Symptoms: Migration failed, SQL syntax error, Version conflict
  • Solutions:
    • Check SQL syntax in migration files
    • Ensure proper statement termination
    • Verify migration file naming and sequential order
    • Review migration logs for transaction rollbacks

Debugging & Health Checks

export LOG_LEVEL=debug
./bin/network-cli health
./bin/network-cli peers
./bin/network-cli query "SELECT 1"
./bin/network-cli pubsub publish test "hello"
./bin/network-cli pubsub subscribe test 10s

# Gateway health checks
curl http://localhost:6001/health
curl http://localhost:6001/v1/status

Service Logs

# Node service logs
sudo journalctl -u debros-node.service --since "1 hour ago"

# Gateway service logs (if running as service)
sudo journalctl -u debros-gateway.service --since "1 hour ago"

# Application logs
tail -f ./logs/gateway.log
tail -f ./logs/node.log

License

Distributed under the MIT License. See LICENSE for details.

Further Reading

This README reflects the latest architecture, configuration, and operational practices for the DeBros Network. For questions or contributions, please open an issue or pull request.

Description
A robust, decentralized peer-to-peer network built in Go, providing distributed SQL database, key-value storage, pub/sub messaging, and resilient peer management. Designed for applications needing reliable, scalable, and secure data sharing without centralized infrastructure.
https://network.debros.io
Readme AGPL-3.0 56 MiB
Languages
Go 90%
Shell 5.9%
Makefile 2.2%
PLpgSQL 1.9%