Skip to content

Latest commit

 

History

History
184 lines (128 loc) · 5.37 KB

README.md

File metadata and controls

184 lines (128 loc) · 5.37 KB
Raw

Example idOS node with VPC peering

This example is meant to be a bare-bones version of what's necessary to participate in an idOS network.

  1. You'll need to ask the idOS association for a few values to use in the next steps:

    • Access to the idos-kgw repository
    • Terraform variables
      • remote_account_id
      • remote_peer_region
      • remote_vpc_id
      • remote_cidr_block
      • cidr_block
    • Node files
      • config.toml
      • genesis.json

  2. Fill in this module's variables.

    💡 Tip

    Use a terraform.tfvars file for them to be picked up automatically

  3. Generate a ssh keypair

    ssh-keygen -f id_example

  4. Apply this config by running

    terraform init
terraform apply

  5. Tell idOS what's your vpc_peering_connection_id, and wait for the peering request to be accepted

    You can get the vpc_peering_connection_id with terraform output -raw vpc_peering_connection_id ; echo

    Here's how you can expect to see on AWS's console.

    Before acceptance: After acceptance:

  6. Configure the VM to run the node

    1. Connect to the VM

      ssh -i id_example ec2-user@`terraform output -raw instance_public_ip`

    2. Install docker and log out

      If you don't log out after running usermod, the addition to the docker group won't be picked up.

      sudo dnf install -y docker
sudo usermod -a -G docker ec2-user
sudo systemctl enable --now docker.service
exit

    3. Copy over the genesis.json file

      ssh -i id_example ec2-user@`terraform output -raw instance_public_ip` mkdir -p kwil-home-dir
scp -i id_example genesis.json ec2-user@`terraform output -raw instance_public_ip`:kwil-home-dir/

    4. Connect to the VM again

      Note that we'll be using ssh agent forwarding (-A) to facilitate authentication with GitHub.

      ssh -A -i id_example ec2-user@`terraform output -raw instance_public_ip`

    5. Do the rest of the ambient setup

      sudo dnf install -y git git-lfs vim
sudo curl -SL https://github.com/docker/compose/releases/download/v2.27.0/docker-compose-linux-x86_64 -o /usr/local/bin/docker-compose
sudo chmod 755 /usr/local/bin/docker-compose
ssh-keyscan github.com >> .ssh/known_hosts

    6. Clone idos-kgw

      git clone [email protected]:idos-network/idos-kgw.git
cd idos-kgw
git lfs pull

    7. Create initial configuration

      docker network create kwil-dev
sed -i 's/^ARCH=arm64/ARCH=amd64/' .env
docker-compose -f compose.peer.yaml run --rm node /app/bin/kwil-admin setup peer --root-dir /app/home_dir/ --genesis /app/home_dir/genesis.json
exit

    8. Copy config.toml into kwil-home-dir folder (overwrite existing file in this folder)

      The previous command creates config.toml file in the kwil-home-dir folder. But we need to replace it with the file provided by idOS.

      scp -i id_example config.toml ec2-user@`terraform output -raw instance_public_ip`:.
ssh -i id_example ec2-user@`terraform output -raw instance_public_ip` mv config.toml kwil-home-dir/

  7. Run the node in peer mode

    1. Connect to the VM again

      ssh -i id_example ec2-user@`terraform output -raw instance_public_ip`

    2. Run the node

      cd idos-kgw
docker-compose -f compose.peer.yaml up -d --build --force-recreate

    3. Wait until the node catches up the network. It may take a few minutes.

      Watch the node logs

      docker-compose logs -f

      Look for obvious golang crash reports. Let us know if you need help fixing those.

      The node will take some time to catch-up with the rest of the network. Let it run for a while. Eventually, you should start observing line logs with "msg":"finalizing commit of block".

    4. Get back when you done

      exit

  8. How to make the node a validator

    1. Connect to the VM

      ssh -i id_example ec2-user@`terraform output -raw instance_public_ip`

    2. Request the network to become a validator

      cd idos-kgw
docker-compose -f compose.peer.yaml run --rm node /app/bin/kwil-admin validators join --rpcserver /sockets/node.admin-sock

    3. Ask idOS to approve your request to join as a validator.

    4. Wait until majority nodes of the network vote on this request. To observe the status:

      1. Get the node's validator public key

        docker-compose -f compose.peer.yaml run --rm -T node /app/bin/kwil-admin node status --rpcserver /sockets/node.admin-sock | jq -r .validator.pubkey

      2. Look if the key is in validators list

        docker-compose -f compose.peer.yaml run --rm node /app/bin/kwil-admin validators list --rpcserver /sockets/node.admin-sock

      3. Get back

        exit

  9. Provide the instance_private_ip output to idOS to be included in the load balancer.