various enhancements (#428)

Signed-off-by: Angelo De Caro <adc@zurich.ibm.com>

Author: adecaro

docs/core-token.md

@@ -0,0 +1,79 @@
+# Example core.yaml section
+
+The following example provides descriptions for the various keys required for a Fabric Smart Client node that uses the Token SDK.
+
+```yaml
+# ------------------- Token SDK Configuration -------------------------
+token:
+  # Is the token-sdk enabled
+  enabled: true
+  tms:
+    mytms: # unique name of this token management system
+      network: default # the name of the network this TMS refers to (Fabric, Orion, etc)
+      channel: testchannel # the name of the network's channel this TMS refers to, if applicable
+      namespace: tns # the name of the channel's namespace this TMS refers to, if applicable
+      # sections dedicated to the definition of the wallets 
+      wallets: 
+        # owner wallets
+        owners:
+        - id: alice # the unique identifier of this wallet. Here is an example of use: `ttx.GetWallet(context, "alice")` 
+          default: true # is this the default owner wallet
+          # path to the folder containing the cryptographic material associated to wallet.
+          # The content of the folder is driver dependent
+          path:  /path/to/alice-wallet
+        - id: alice.id1
+          path: /path/to/alice.id1-wallet
+        # issuer wallets
+        issuers:
+          - id: issuer # the unique identifier of this wallet. Here is an example of use: `ttx.GetIssuerWallet(context, "issuer)`
+            default: true # is this the default issuer wallet
+            # path to the folder containing the cryptographic material associated to wallet.
+            # The content of the folder is driver dependent
+            path: /path/to/issuer-wallet
+            # additional options that can be used to instantiated the wallet.
+            # options are driver dependent. With `fabtoken` and `dlog` drivers,
+            # the following options apply
+            opts:
+              BCCSP:
+                Default: SW
+                PKCS11:
+                  Hash: SHA2
+                  Label: null
+                  Library: null
+                  Pin: null
+                  Security: 256
+                SW:
+                  Hash: SHA2
+                  Security: 256
+        # auditor wallets
+        auditors:
+          - id: auditor # the unique identifier of this wallet. Here is an example of use: `ttx.GetAuditorWallet(context, "auditor)`
+            default: true # is this the default auditor wallet  
+            # path to the folder containing the cryptographic material associated to wallet.
+            # The content of the folder is driver dependent
+            path: /path/to/auditor-wallet
+            # additional options that can be used to instantiated the wallet.
+            # options are driver dependent. With `fabtoken` and `dlog` drivers,
+            # the following options apply
+            opts:
+              BCCSP:
+                Default: SW
+                PKCS11:
+                  Hash: SHA2
+                  Label: null
+                  Library: null
+                  Pin: null
+                  Security: 256
+                SW:
+                  Hash: SHA2
+                  Security: 256
+  # Internal database to keep track of token transactions. 
+  # It is used by auditors and token owners to track history
+  ttxdb:
+    persistence:
+      # type can be badger (disk) or memory
+      type: badger
+      opts:
+        # persistence location
+        path: /some/path
+```

docs/design.md

@@ -36,3 +36,7 @@ The `Smart Client` allows the `Token SDK` to:
 - Orchestrate very complex token-dependent business processes via [`views`](https://github.com/hyperledger-labs/fabric-smart-client/blob/main/docs/view/api.md);
 - Store the tokens inside the Vault for easy lookup and manipulation;
 - To listen to events from the backends related to token transaction, and more.
+
+## Configuration
+
+You can find an example of the configuration required for the Token SDK in [Example Core File Section](./core-token.md)

go.mod

@@ -9,7 +9,7 @@ require (
 	github.com/dgraph-io/ristretto v0.1.0
 	github.com/golang/protobuf v1.5.2
 	github.com/hashicorp/go-uuid v1.0.2
-	github.com/hyperledger-labs/fabric-smart-client v0.1.0
+	github.com/hyperledger-labs/fabric-smart-client v0.1.1-0.20221130141649-2080c0c69de1
 	github.com/hyperledger-labs/orion-sdk-go v0.2.5
 	github.com/hyperledger-labs/orion-server v0.2.5
 	github.com/hyperledger/fabric v1.4.0-rc1.0.20220808214918-83596078d0c3

go.sum

@@ -805,8 +805,8 @@ github.com/hudl/fargo v1.3.0/go.mod h1:y3CKSmjA+wD2gak7sUSXTAoopbhU08POFhmITJgmK
 github.com/huin/goupnp v1.0.0 h1:wg75sLpL6DZqwHQN6E1Cfk6mtfzS45z8OV+ic+DtHRo=
 github.com/huin/goupnp v1.0.0/go.mod h1:n9v9KO1tAxYH82qOn+UTIFQDmx5n1Zxd/ClZDMX7Bnc=
 github.com/huin/goutil v0.0.0-20170803182201-1ca381bf3150/go.mod h1:PpLOETDnJ0o3iZrZfqZzyLl6l7F3c6L1oWn7OICBi6o=
-github.com/hyperledger-labs/fabric-smart-client v0.1.0 h1:Co7vzD037WscPxQrjv2TGiONX+FAocXxBwwcTg414dA=
-github.com/hyperledger-labs/fabric-smart-client v0.1.0/go.mod h1:WtNWdKVbF9R1/2hIBVQUlR9Zl3T0TdkzUcCQTc2Eqk4=
+github.com/hyperledger-labs/fabric-smart-client v0.1.1-0.20221130141649-2080c0c69de1 h1:F5/QSzgJsQS0rFsO8YK2mAQ0VU8ZclQrprzt82Z0PeU=
+github.com/hyperledger-labs/fabric-smart-client v0.1.1-0.20221130141649-2080c0c69de1/go.mod h1:WtNWdKVbF9R1/2hIBVQUlR9Zl3T0TdkzUcCQTc2Eqk4=
 github.com/hyperledger-labs/orion-sdk-go v0.2.5 h1:HFGRTuMZgzo9EtyJeFAhVSlbrj6x3jtY0aDcghdjzRE=
 github.com/hyperledger-labs/orion-sdk-go v0.2.5/go.mod h1:At8hiFATfkDXQ4AFLVbaTiC9GDhVDo8aN/supb1KBb4=
 github.com/hyperledger-labs/orion-server v0.2.5 h1:aFudmB9SAnsT5v8jhazkuszEu0pdJNFqaYZF2GpvAuI=

integration/nwo/token/fabric/fabric.go

@@ -157,6 +157,7 @@ func (p *NetworkHandler) GenerateArtifacts(tms *topology2.TMS) {
 
 func (p *NetworkHandler) GenerateExtension(tms *topology2.TMS, node *sfcnode.Node) string {
 	t, err := template.New("peer").Funcs(template.FuncMap{
+		"TMSID":   func() string { return tms.ID() },
 		"TMS":     func() *topology2.TMS { return tms },
 		"Wallets": func() *generators.Wallets { return p.GetEntry(tms).Wallets[node.Name] },
 	}).Parse(Extension)

integration/nwo/token/fabric/template.go

@@ -12,81 +12,82 @@ token:
   # namespace identifiers. The network identifier should refer to a configure network (Fabric, Orion, and so on).
   # The meaning of channel and namespace are network dependant. For Fabric, the meaning is clear.
   # For Orion, channel is empty and namespace is the DB name to use.
-  tms: 
-  - # Network identifier this TMS refers to
-    network: {{ TMS.Network }}
-    # Channel identifier within the specified network
-    channel: {{ TMS.Channel }}
-    # Namespace identifier within the specified channel
-    namespace: {{ TMS.Namespace }}
-    certification: 
-      {{ if TMS.Certifiers }} interactive:
-        ids: {{ range TMS.Certifiers }}
-        - {{ . }}{{ end }}{{ end }}
-    {{ if Wallets }}
-    # Wallets associated with this TMS
-    wallets:{{ if Wallets.Certifiers }}
-      # Certifiers wallets are used to certify tokens
-      certifiers: {{ range Wallets.Certifiers }}
-      - id: {{ .ID }}
-        default: {{ .Default }}
-        path: {{ .Path }}
+  tms:
+    {{ TMSID }}:
+      # Network identifier this TMS refers to
+      network: {{ TMS.Network }}
+      # Channel identifier within the specified network
+      channel: {{ TMS.Channel }}
+      # Namespace identifier within the specified channel
+      namespace: {{ TMS.Namespace }}
+      certification: 
+        {{ if TMS.Certifiers }} interactive:
+          ids: {{ range TMS.Certifiers }}
+          - {{ . }}{{ end }}{{ end }}
+      {{ if Wallets }}
+      # Wallets associated with this TMS
+      wallets:{{ if Wallets.Certifiers }}
+        # Certifiers wallets are used to certify tokens
+        certifiers: {{ range Wallets.Certifiers }}
+        - id: {{ .ID }}
+          default: {{ .Default }}
+          path: {{ .Path }}
+        {{ end }}
+      {{ end }}{{ if Wallets.Issuers }}
+        # Issuers wallets are used to issue tokens
+        issuers: {{ range Wallets.Issuers }}
+        - id: {{ .ID }}
+          default: {{ .Default }}
+          path: {{ .Path }}
+          opts:
+            BCCSP:
+              Default: {{ .Opts.Default }}
+              # Settings for the SW crypto provider (i.e. when DEFAULT: SW)
+              SW:
+                 Hash: {{ .Opts.SW.Hash }}
+                 Security: {{ .Opts.SW.Security }}
+              # Settings for the PKCS#11 crypto provider (i.e. when DEFAULT: PKCS11)
+              PKCS11:
+                 # Location of the PKCS11 module library
+                 Library: {{ .Opts.PKCS11.Library }}
+                 # Token Label
+                 Label: {{ .Opts.PKCS11.Label }}
+                 # User PIN
+                 Pin: {{ .Opts.PKCS11.Pin }}
+                 Hash: {{ .Opts.PKCS11.Hash }}
+                 Security: {{ .Opts.PKCS11.Security }}
+        {{ end }}
+      {{ end }}{{ if Wallets.Owners }}
+        # Owners wallets are used to own tokens
+        owners: {{ range Wallets.Owners }}
+        - id: {{ .ID }}
+          default: {{ .Default }}
+          path: {{ .Path }}
+        {{ end }}
+      {{ end }}{{ if Wallets.Auditors }}
+        # Auditors wallets are used to audit tokens
+        auditors: {{ range Wallets.Auditors }}
+        - id: {{ .ID }}
+          default: {{ .Default }}
+          path: {{ .Path }}
+          opts:
+            BCCSP:
+              Default: {{ .Opts.Default }}
+              # Settings for the SW crypto provider (i.e. when DEFAULT: SW)
+              SW:
+                 Hash: {{ .Opts.SW.Hash }}
+                 Security: {{ .Opts.SW.Security }}
+              # Settings for the PKCS#11 crypto provider (i.e. when DEFAULT: PKCS11)
+              PKCS11:
+                 # Location of the PKCS11 module library
+                 Library: {{ .Opts.PKCS11.Library }}
+                 # Token Label
+                 Label: {{ .Opts.PKCS11.Label }}
+                 # User PIN
+                 Pin: {{ .Opts.PKCS11.Pin }}
+                 Hash: {{ .Opts.PKCS11.Hash }}
+                 Security: {{ .Opts.PKCS11.Security }}
+        {{ end }}
       {{ end }}
-    {{ end }}{{ if Wallets.Issuers }}
-      # Issuers wallets are used to issue tokens
-      issuers: {{ range Wallets.Issuers }}
-      - id: {{ .ID }}
-        default: {{ .Default }}
-        path: {{ .Path }}
-        opts:
-          BCCSP:
-            Default: {{ .Opts.Default }}
-            # Settings for the SW crypto provider (i.e. when DEFAULT: SW)
-            SW:
-               Hash: {{ .Opts.SW.Hash }}
-               Security: {{ .Opts.SW.Security }}
-            # Settings for the PKCS#11 crypto provider (i.e. when DEFAULT: PKCS11)
-            PKCS11:
-               # Location of the PKCS11 module library
-               Library: {{ .Opts.PKCS11.Library }}
-               # Token Label
-               Label: {{ .Opts.PKCS11.Label }}
-               # User PIN
-               Pin: {{ .Opts.PKCS11.Pin }}
-               Hash: {{ .Opts.PKCS11.Hash }}
-               Security: {{ .Opts.PKCS11.Security }}
       {{ end }}
-    {{ end }}{{ if Wallets.Owners }}
-      # Owners wallets are used to own tokens
-      owners: {{ range Wallets.Owners }}
-      - id: {{ .ID }}
-        default: {{ .Default }}
-        path: {{ .Path }}
-      {{ end }}
-    {{ end }}{{ if Wallets.Auditors }}
-      # Auditors wallets are used to audit tokens
-      auditors: {{ range Wallets.Auditors }}
-      - id: {{ .ID }}
-        default: {{ .Default }}
-        path: {{ .Path }}
-        opts:
-          BCCSP:
-            Default: {{ .Opts.Default }}
-            # Settings for the SW crypto provider (i.e. when DEFAULT: SW)
-            SW:
-               Hash: {{ .Opts.SW.Hash }}
-               Security: {{ .Opts.SW.Security }}
-            # Settings for the PKCS#11 crypto provider (i.e. when DEFAULT: PKCS11)
-            PKCS11:
-               # Location of the PKCS11 module library
-               Library: {{ .Opts.PKCS11.Library }}
-               # Token Label
-               Label: {{ .Opts.PKCS11.Label }}
-               # User PIN
-               Pin: {{ .Opts.PKCS11.Pin }}
-               Hash: {{ .Opts.PKCS11.Hash }}
-               Security: {{ .Opts.PKCS11.Security }}
-      {{ end }}
-    {{ end }}
-    {{ end }}
-`
+  `

integration/nwo/token/orion/orion.go

@@ -117,6 +117,7 @@ func (p *NetworkHandler) GenerateArtifacts(tms *topology2.TMS) {
 
 func (p *NetworkHandler) GenerateExtension(tms *topology2.TMS, node *sfcnode.Node) string {
 	t, err := template.New("peer").Funcs(template.FuncMap{
+		"TMSID":   func() string { return tms.ID() },
 		"TMS":     func() *topology2.TMS { return tms },
 		"Wallets": func() *generators.Wallets { return p.GetEntry(tms).Wallets[node.Name] },
 		"IsCustodian": func() bool {

integration/nwo/token/orion/template.go

@@ -9,41 +9,42 @@ package orion
 const Extension = `
 token:
   tms: 
-  - network: {{ TMS.Network }}
-    channel: {{ TMS.Channel }}
-    namespace: {{ TMS.Namespace }}
-    orion:
-      custodian:
-        id: {{ CustodianID }}
-        enabled: {{ IsCustodian }}
-    certification: 
-      interactive:
-        ids: {{ range TMS.Certifiers }}
-        - {{ . }}{{ end }}
-    {{ if Wallets }}wallets:{{ if Wallets.Certifiers }}
-      certifiers: {{ range Wallets.Certifiers }}
-      - id: {{ .ID }}
-        default: {{ .Default }}
-        path: {{ .Path }}
+    {{ TMSID }}:
+      network: {{ TMS.Network }}
+      channel: {{ TMS.Channel }}
+      namespace: {{ TMS.Namespace }}
+      orion:
+        custodian:
+          id: {{ CustodianID }}
+          enabled: {{ IsCustodian }}
+      certification: 
+        interactive:
+          ids: {{ range TMS.Certifiers }}
+          - {{ . }}{{ end }}
+      {{ if Wallets }}wallets:{{ if Wallets.Certifiers }}
+        certifiers: {{ range Wallets.Certifiers }}
+        - id: {{ .ID }}
+          default: {{ .Default }}
+          path: {{ .Path }}
+        {{ end }}
+      {{ end }}{{ if Wallets.Issuers }}
+        issuers: {{ range Wallets.Issuers }}
+        - id: {{ .ID }}
+          default: {{ .Default }}
+          path: {{ .Path }}
+        {{ end }}
+      {{ end }}{{ if Wallets.Owners }}
+        owners: {{ range Wallets.Owners }}
+        - id: {{ .ID }}
+          default: {{ .Default }}
+          path: {{ .Path }}
+        {{ end }}
+      {{ end }}{{ if Wallets.Auditors }}
+        auditors: {{ range Wallets.Auditors }}
+        - id: {{ .ID }}
+          default: {{ .Default }}
+          path: {{ .Path }}
+        {{ end }}
       {{ end }}
-    {{ end }}{{ if Wallets.Issuers }}
-      issuers: {{ range Wallets.Issuers }}
-      - id: {{ .ID }}
-        default: {{ .Default }}
-        path: {{ .Path }}
       {{ end }}
-    {{ end }}{{ if Wallets.Owners }}
-      owners: {{ range Wallets.Owners }}
-      - id: {{ .ID }}
-        default: {{ .Default }}
-        path: {{ .Path }}
-      {{ end }}
-    {{ end }}{{ if Wallets.Auditors }}
-      auditors: {{ range Wallets.Auditors }}
-      - id: {{ .ID }}
-        default: {{ .Default }}
-        path: {{ .Path }}
-      {{ end }}
-    {{ end }}
-    {{ end }}
 `

integration/nwo/token/platform.go

@@ -35,6 +35,12 @@ const (
 	DefaultTokenGenPath = "github.com/hyperledger-labs/fabric-token-sdk/cmd/tokengen"
 )
 
+type PF interface {
+	GetTopology() *Topology
+	GenIssuerCryptoMaterial(tmsNetwork string, fscNode string, walletID string) string
+	GenOwnerCryptoMaterial(tmsNetwork string, fscNode string, walletID string) string
+}
+
 type NetworkHandler interface {
 	GenerateArtifacts(tms *topology2.TMS)
 	GenerateExtension(tms *topology2.TMS, node *sfcnode.Node) string
@@ -75,12 +81,12 @@ func NewPlatform(ctx api2.Context, t api2.Topology, builder api2.Builder) *Platf
 
 // GetPlatform returns the token platform from the passed context bound to the passed id.
 // It returns nil, if nothing is found
-func GetPlatform(ctx *context.Context, id string) *Platform {
+func GetPlatform(ctx *context.Context, id string) PF {
 	p := ctx.PlatformByName(id)
 	if p == nil {
 		return nil
 	}
-	fp, ok := p.(*Platform)
+	fp, ok := p.(PF)
 	if ok {
 		return fp
 	}
@@ -270,6 +276,10 @@ func (p *Platform) FSCNodeKVSDir(peer *sfcnode.Node) string {
 	return filepath.Join(p.Context.RootDir(), "fsc", "nodes", peer.ID(), "kvs")
 }
 
+func (p *Platform) GetTopology() *Topology {
+	return p.Topology
+}
+
 func (p *Platform) nextColor() string {
 	color := p.ColorIndex%14 + 31
 	if color > 37 {