The Contract Management Service uses events defined by the TM Forum API to reflect the state of a contract in a data space. Depending on the provided data, permission to grant specified VerifiableCredentials is set at a Trusted Issuers List API service implementation.
The Contract Management Service is provided as a container at quay.io.
The container can be started with
docker run --network host quay.io/fiware/contract-management:0.0.1Configurations can be provided with the standard mechanisms of the Micronaut-Framework, e.g. environment variables or appliction.yaml file. The following table concentrates on the most important configuration parameters:
| Property | Env-Var | Description | Default |
|---|---|---|---|
micronaut.server.port |
MICRONAUT_SERVER_PORT |
Server port to be used for the listener endpoint. | 8080 |
micronaut.metrics.enabled |
MICRONAUT_METRICS_ENABLED |
Enable the metrics gathering | true |
micronaut.http.services.til.url |
MICRONAUT_HTTP_SERVICES_TIL_URL |
URL of the Trusted Issuers List Endpoint | http://trusted-issuers-list:8080 |
micronaut.http.services.til.path |
MICRONAUT_HTTP_SERVICES_TIL_PATH |
Subpath of the Trusted Issuers List Endpoint | "" |
micronaut.http.services.product.url |
MICRONAUT_HTTP_SERVICES_PRODUCT_URL |
URL of the TM Forum Product Order Endpoint | http://tmforum:8080 |
micronaut.http.services.product.path |
MICRONAUT_HTTP_SERVICES_PRODUCT_PATH |
Subpath of the TM Forum Product Order Endpoint | "productordering" |
micronaut.http.services.party.url |
MICRONAUT_HTTP_SERVICES_PARTY_URL |
URL of the TM Forum Party Endpoint | http://tmforum:8080 |
micronaut.http.services.party.path |
MICRONAUT_HTTP_SERVICES_PARTY_PATH |
Subpath of the TM Forum Party Endpoint | "party" |
general.name |
GENERAL_NAME |
Name of the service, used for the callback/listener subscription | contract-management |
general.basepath |
GENERAL_BASEPATH |
Basepath used for the provided listener endpoint | "" |
In order to support the development, a local environment can be started via mvn clean install -Pdev.
Contract Management supports events from different parts of the TMForum API.
In order to provide integration with the IDSA Protocols Catalog API, Catalog objects from TMForum are translated and pushed to Rainbow.
When receiving a "CatalogCreateEvent", it tries to translate a TMForum Catalog into an IDSA Catalog. The Catalog tilte dctColonTitle is taken from
the name property of the TMForum object.
When receiving a "CatalogStateChangeEvent" the changes from the TMForum Catalog Object are updated within the IDSA Catalog Object.
The Catalog with the same id as the contained Catalog-Object will be deleted.
In order to provide integration with the IDSA Protocols Catalog API, Product Offering objects from TMForum are translated to Data Services in Rainbow.
The "ProductOfferingCreateEvent" will be translated to Data Services and pushed to the Rainbow API. Only Offerings that are connected to an existing Catalog
will be pushed.
The offering requires a connected ProductSpecification, that contains productSpecCharacteristic if type:
endpointUrl: Will be used as "dcat:endpointURL" in the Data Service
endpointDescription: Will be used as "dcat:endpointDescription" in the Data Service
When receiving a "CatalogStateChangeEvent" the changes from the TMForum ProductOffering Object are updated within the IDSA Data Service Object.
The Data Service with the same id as the contained ProductOffering-Object will be deleted.
In order to support the IDSA Contract Negotiation the Contract Management integrates the TMForum Quote-API. See Dataspace Connector DSP Integration for more details.
The Product Order Object is used to integrate the TMForum with the authentication and authorization components of the Dataspace Connector.
A Product Order event will update the contract negotiation in TMForum when a Quote-Object is connected. Beside that, only Product Orders in state "completed" will be handled.
In case of a "completed" Product Order, the Product Specification linked in either the specification or the connected Quote will be taken and any Specification Characteristic
of type credentialsConfiguration will be inserted to the connected TrustedIssuers-List. Value can contain a list of Claim-Objects, as defined by the Trusted Issuers List API.
An example specification would look like:
{
"brand": "M&P Operations",
"version": "1.0.0",
"lifecycleStatus": "ACTIVE",
"name": "M&P K8S",
"productSpecCharacteristic": [
{
"id": "credentialsConfig",
"name": "Credentials Config",
"valueType": "credentialsConfiguration",
"productSpecCharacteristicValue": [
{
"isDefault": true,
"value": {
"credentialsType": "OperatorCredential",
"claims": [
{
"name": "roles",
"path": "$.roles[?(@.target==\\\"my-target-service\\\")].names[*]",
"allowedValues": [
"OPERATOR"
]
}
]
}
}
]
}
]
}Trusted-Issuers-List is licensed under the MIT License. See LICENSE for the full license text.
© 2023 FIWARE Foundation e.V.