first pass at example oracle implementation based on one of our internal robust solutions

Author: JamesReate

.github/dependabot.yml

@@ -0,0 +1,7 @@
+version: 2
+updates:
+  # Maintain dependencies for GitHub Actions
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "daily"

.github/pull_request_template.md

@@ -0,0 +1,7 @@
+# Proposed Changes
+
+### Impacted Events
+<!-- Will this pull request change or implement any events? -->
+
+### Caveats
+<!-- If there is anything hacky or unique being added in your code please define it.-->

.github/workflows/buildpushdev.yml

@@ -0,0 +1,42 @@
+name: buildpushdev
+on:
+  push:
+    branches:
+      - main
+# A workflow run is made up of one or more jobs that can run sequentially or in parallel
+jobs:
+  build_test:
+    # The type of runner that the job will run on
+    name: buildpushdev
+    runs-on: [self-hosted, linux]
+    steps:
+      # Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it
+      - uses: actions/checkout@v4
+
+      - name: Login to DockerHub
+        uses: docker/login-action@v3
+        with:
+          username: ${{ secrets.DOCKERHUB_USERNAME }}
+          password: ${{ secrets.DOCKERHUB_TOKEN }}
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+      - name: Get short SHA
+        id: slug
+        run: echo "::set-output name=sha7::$(echo ${GITHUB_SHA} | cut -c1-7)"
+
+      - name: Build and push
+        uses: docker/build-push-action@v6
+        with:
+          context: .
+          file: ./resources/docker/Dockerfile
+          push: true
+          tags: dimozone/oracle-example:${{ steps.slug.outputs.sha7 }}, dimozone/oracle-example:latest
+
+      - name: Update Image Version in the related HelmChart values.yaml
+        uses: fjogeleit/yaml-update-action@master
+        with:
+          valueFile: 'charts/oracle-example/values.yaml'
+          propertyPath: 'image.tag'
+          value: ${{ steps.slug.outputs.sha7 }}
+          branch: main
+          message: 'Update Image Version to ${{ steps.slug.outputs.sha7 }}'

.github/workflows/buildpushtagged.yml

@@ -0,0 +1,47 @@
+name: buildpushprod
+on:
+  push:
+    tags:
+      - v*
+
+jobs:
+  build_test:
+    # The type of runner that the job will run on
+    name: buildpush
+    runs-on: [self-hosted, linux]
+    steps:
+      # Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it
+      - uses: actions/checkout@v4
+
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+
+      - name: Login to DockerHub
+        uses: docker/login-action@v3
+        with:
+          username: ${{ secrets.DOCKERHUB_USERNAME }}
+          password: ${{ secrets.DOCKERHUB_TOKEN }}
+
+      - name: Get tag
+        id: tag
+        uses: dawidd6/action-get-tag@v1
+        with:
+          strip_v: true
+
+      - name: Build and push
+        uses: docker/build-push-action@v6
+        with:
+          context: .
+          file: ./resources/docker/Dockerfile
+          push: true
+          platforms: linux/amd64
+          tags: dimozone/oracle-example:${{steps.tag.outputs.tag}}
+
+      - name: Update Image Version in the related HelmChart values.yaml
+        uses: fjogeleit/yaml-update-action@master
+        with:
+          valueFile: 'charts/oracle-example/values-prod.yaml'
+          propertyPath: 'image.tag'
+          value: ${{steps.tag.outputs.tag}}
+          branch: main
+          message: 'Update Image Version to ${{steps.tag.outputs.tag}}'

.github/workflows/lint.yml

@@ -0,0 +1,26 @@
+name: golangci-lint
+on:
+  pull_request:
+    branches: [ '**' ]
+env:
+  GOPRIVATE: github.com/DIMO-Network
+  GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+jobs:
+  golangci:
+    runs-on: [self-hosted, linux]
+
+    name: lint
+    steps:
+      - name: Install Go
+        uses: actions/setup-go@v5
+        with:
+          go-version: 1.24.x
+
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: golangci-lint
+        uses: golangci/golangci-lint-action@v7
+        with:
+          version: latest
+          only-new-issues: false

.github/workflows/rules.yml

@@ -0,0 +1,32 @@
+name: rulestest
+
+on:
+  pull_request:
+    branches: [ '**' ]
+
+jobs:
+  rules-test:
+    runs-on: [self-hosted, linux]
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      # we need to install promtool to run the tests
+      - name: Install promtool
+        run: sudo wget https://github.com/prometheus/prometheus/releases/download/v2.47.0/prometheus-2.47.0.linux-amd64.tar.gz && sudo tar -xvf prometheus-2.47.0.linux-amd64.tar.gz && sudo cp prometheus-2.47.0.linux-amd64/promtool /usr/local/bin/
+
+      - name: Sed helm chart placeholders
+        run: sed "s/{{ .Release.Namespace }}/dev/g"  ./charts/oracle-example/templates/alerts.yaml |  sed 's/{{.*}}//g' > ./charts/oracle-example/alert_tests/alerts-modified.yaml
+
+      # this action only can execute check and config promtool commands
+      - name: Check Prometheus alert rules
+        uses: peimanja/promtool-github-actions@master
+        with:
+          promtool_actions_subcommand: 'rules'
+          promtool_actions_files: './charts/oracle-example/alert_tests/alerts-modified.yaml'
+          promtool_actions_version: '2.14.0'
+          promtool_actions_comment: true
+
+      - name: Exec promtool tests on alerts
+        run: promtool test rules ./charts/oracle-example/alert_tests/rules-tests.yaml

.github/workflows/test.yml

@@ -0,0 +1,38 @@
+name: gotest
+
+on:
+  pull_request:
+    branches: [ '**' ]
+
+jobs:
+  tests:
+    runs-on: [self-hosted, linux]
+
+    steps:
+      - name: Install Go
+        uses: actions/setup-go@v5
+        with:
+          go-version: 1.21.x
+
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Get dependencies
+        run: |
+          go get -v -t ./...
+          go install gotest.tools/gotestsum@latest
+
+      - name: modVerify
+        run: go mod verify
+
+      - name: modTidy
+        run: go mod tidy
+
+      - name: Run Tests with go testsum
+        run: gotestsum --format pkgname --jsonfile test.json
+
+      - name: Annotate tests
+        if: always()
+        uses: guyarb/golang-test-annotations@v0.8.0
+        with:
+          test-results: test.json

.gitignore

@@ -1,25 +1,28 @@
-# If you prefer the allow list template instead of the deny list, see community template:
-# https://github.com/github/gitignore/blob/main/community/Golang/Go.AllowList.gitignore
-#
 # Binaries for programs and plugins
 *.exe
 *.exe~
 *.dll
 *.so
 *.dylib
+.DS_Store
 
 # Test binary, built with `go test -c`
 *.test
 
 # Output of the go coverage tool, specifically when used with LiteIDE
 *.out
-
+target/
+bin/
 # Dependency directories (remove the comment below to include it)
-# vendor/
+vendor/
+.vscode/
+.vscode
+
+dist/
+.idea/
+# ignore settings file as it could contain secrets
+settings.yaml
 
-# Go workspace file
-go.work
-go.work.sum
+test.json
 
-# env file
-.env
+_playground

Makefile

@@ -0,0 +1,63 @@
+.PHONY: all deps clean docker test fmt lint install
+
+TAGS =
+
+INSTALL_DIR        = $(GOPATH)/bin
+DEST_DIR           = ./target
+PATHINSTBIN        = $(DEST_DIR)/bin
+PATHINSTDOCKER     = $(DEST_DIR)/docker
+
+VERSION   := $(shell git describe --tags || echo "v0.0.0")
+VER_CUT   := $(shell echo $(VERSION) | cut -c2-)
+VER_MAJOR := $(shell echo $(VER_CUT) | cut -f1 -d.)
+VER_MINOR := $(shell echo $(VER_CUT) | cut -f2 -d.)
+VER_PATCH := $(shell echo $(VER_CUT) | cut -f3 -d.)
+VER_RC    := $(shell echo $(VER_PATCH) | cut -f2 -d-)
+DATE      := $(shell date +"%Y-%m-%dT%H:%M:%SZ")
+
+LD_FLAGS   = -w -s
+GO_FLAGS   =
+DOCS_FLAGS =
+
+APPS = oracle-example
+all: $(APPS)
+
+oracle-example:
+	@go build -o $(PATHINSTBIN)/oracle-example ./cmd/oracle-example
+
+install: $(APPS)
+	@mkdir -p bin
+	@cp $(PATHINSTBIN)/oracle-example ./bin/
+
+deps:
+	@go mod tidy
+	@go mod vendor
+
+docker: deps
+	@docker build -f ./resources/docker/Dockerfile . -t dimozone/oracle-example:$(VER_CUT)
+	@docker tag dimozone/oracle-example:$(VER_CUT) dimozone/oracle-example:latest
+
+fmt:
+	@go list -f {{.Dir}} ./... | xargs -I{} gofmt -w -s {}
+	@go mod tidy
+
+lint:
+	@golangci-lint run ./...
+
+test: $(APPS)
+	@go test $(GO_FLAGS) -timeout 3m -race ./...
+
+migrate:
+	@go run ./cmd/oracle-example migrate
+
+sqlboiler:
+	@sqlboiler psql --no-tests --wipe
+
+addmigration:
+	@goose -dir internal/db/migrations create rename_me sql
+
+clean:
+	rm -rf $(PATHINSTBIN)
+	rm -rf $(DEST_DIR)/dist
+	rm -rf $(PATHINSTDOCKER)
+	rm -rf ./vendor

README.md

@@ -45,4 +45,28 @@ or require the user to input something specific to that vehicle or PIN code etc.
 2. Generate an API key and add your preferred redirect URI
 3. Create your Connection License. In the future this will be in the dev console but for now provide your ClientID to your developer relations person at DIMO.
 4. Obtain the required Synthetic Device Minting roles - engineers at DIMO will do this for you.
-5. 
+5. Create an Account Abstracted wallet with zerodev, we'll call this the Developer AA Wallet - engineers at DIMO can do this for you.
+6. Fund your Developer AA Wallet with some DCX. You can do this from the DIMO Dev Console. Required for the minting operations.
+
+## Onboarding
+
+If you look at the go package `internal/onboarding` you'll see an example we've built for this. 
+In general, onboarding in this example codebase happens through a couple API endpoints, and then all the operations are handled
+by a backend job (we use river for the jobs). Jobs are stored in the database. 
+
+THe REST endpoints that handle onboarding are in `internal/app/app.go`. The process of onboarding boils down to:
+- Decoding the vehicle's VIN or whatever identifier is used. The example code uses DIMO Protocol decoder. If your VINs are uncommon to decode, please reach out.
+- Enrolling the vehicle with your backend, whatever way makes sense to you. Basically it tells your external system it's ok for this Oracle app to connect to it. 
+- Minting the Vehicle NFT. This creates the on-chain representation of the vehicle, with the owner set to your logged in wallet 0x. 
+- Minting the Synthetic Device NFT. This represents the connection of the Vehicle NFT to your software connection. Contains your oracle's connection license 0x. 
+- Optionally Sharing & setting Permissions via DIMO SACD. If you know you'll be sharing vehicles you onboard immediately with a customer for example, you can include SACD permissions.
+
+Minting operations above require your Developer AA Wallet address to have DCX balance to pay for the operations. 
+
+### vendor.go file
+
+This implements the onboarding process with your external system. It has a common interface with 2 functions:
+- Validate: used to check if the VIN (or identifier) is compatible with your system. You could imagine this calling out to some endpoint in your system that checks.
+- Connect: actually onboards the VIN (or identifier) into your system so that it knows to allow connections however you with to implement it - Streaming, grpc, kafka, REST etc.
+
+There is an example struct implementation `ExternalOnboardingService` in this file, but feel free to change it up as needed.