This repo will contain a docker-compose config linking together the components developed for the DECODE IoT pilot, demonstrating how they can work together in order to provide the proposed functionality.
- Docker (with compose) - recent build
- make (not required, but convenient at least on Linux/OSX)
To run the components you should just be able to run:
$ make startThis should pull and start all components running, with some logic to ensure all required databases within Postgres are created, and that services wait for Postgres to be ready before they try and run.
Note this is just a convenience helper for docker-compose up here.
Or to clean everything:
$ make teardownThis final command should remove all components including volumes and networks.
If you do not have make available, you can run all services directly provided
you have docker-compose available.
To start manually:
$ docker-compose upOnce everything has started you should have the following components running:
- The IoT datastore (listening on http://localhost:8080)
- The IoT encoder (listening on http://localhost:8081)
- The IoT policystore (listening on http://localhost:8082)
- Prometheus (listening on http://localhost:9090)
- Grafana (listening on http://localhost:3000)
- Web demo service (listening on https://localhost:4000) - note this service runs over TLS with a self signed certificate which will case alarming browser warnings. This is to support a library which captures the webcam for QR code scanning.
For sensitive configuration values, you can add a .env file based on the
template file included here.
The binary generated for this application is called iotstore. It has the following four subcommands:
delete- can be used to delete old data from the databasehelp- displays help informmationmigrate- allows database migrations to be created and appliedserver- the primary command that starts up the server.
For operational use the server command is the only one that is generally
required.
Configuration for server command
| Flag | Environment Variable | Description | Default value | Required |
|---|---|---|---|---|
| --addr or -a | IOTSTORE_ADDR | The address to which the server binds | :8080 | No |
| --domains | IOTSTORE_DOMAINS | Comma separated list of domains to obtain TLS certs | No | |
| --verbose | IOTSTORE_VERBOSE | Flag that if set enables verbose mode | False | No |
| --database-url or -d | IOTSTORE_DATABASE_URL | Connection string for Postgres database | Yes | |
| SENTRY_DSN | Optional DSN string for Sentry error reporting | No |
The binary generated for this application is called iotenc. It has the following four subcommands:
help- displays help informmationmigrate- allows database migrations to be created and appliedserver- the primary command that starts up the server.
For operational use the server command is the only one that is generally
required.
Configuration for server command
| Flag | Environment Variable | Description | Default value | Required |
|---|---|---|---|---|
| --addr or -a | IOTENCODER_ADDR | The address to which the server binds | :8081 | No |
| --broker-addr or -b | IOTENCODER_BROKER_ADDR | Address at which the MQTT broker is listening | tcps://mqtt.smartcitizen.me:8883 | No |
| --database-url | IOTENCODER_DATABASE_URL | Connection string for Postgres database | Yes | |
| --datastore or -d | IOTENCODER_DATASTORE | Address at which the datastore component is listening | Yes | |
| --domains | IOTENCODER_DOMAINS | Comma separated list of domains to obtain TLS certs | No | |
| --encryption-password | IOTENCODER_ENCRYPTION_PASSWORD | Password used to encrypt secret tokens we write to Postgres | Yes | |
| --hashid-length or -l | IOTENCODER_HASHID_LENGTH | Minimum length of generated ids for streams | 8 | No |
| --hashid-salt | IOTENCODER_HASHID_SALT | Salt value used for generating ids for streams | Yes | |
| --verbose | IOTENCODER_VERBOSE | Flag that if set enables verbose mode | False | No |
| SENTRY_DSN | Optional DSN string for Sentry error reporting | No |
The binary generated for this application is called policystore. It has the
following four subcommands:
help- displays help informmationmigrate- allows database migrations to be created and appliedserver- the primary command that starts up the server.
For operational use the server command is the only one that is generally
required.
Configuration for server command
| Flag | Environment Variable | Description | Default value | Required |
|---|---|---|---|---|
| --addr or -a | POLICYSTORE_ADDR | The address to which the server binds | 0.0.0.0:8082 | No |
| --database-url or -d | POLICYSTORE_DATABASE_URL | URL at which Postgres is listening | Yes | |
| --domains | POLICYSTORE_DOMAINS | Comma separated list of domains for TLS certs | No | |
| --encryption-password | POLICYSTORE_ENCRYPTION_PASSWORD | Password used to encrypt secrets in the DB | Yes | |
| --hashid-length or -l | POLICYSTORE_HASHID_LENGTH | Minimum length of generated IDs | 8 | No |
| --hashid-salt | POLICYSTORE_HASHID_SALT | Salt value used when generating IDs | Yes | |
| SENTRY_DSN | Optional DSN string for Sentry error reporting | No |