A blockchain network using Hyperledger Fabric v1.0 and Hyperledger Composer. The network consists of an Orderer, a CA authority, a peer and a CouchDB database for queries. Additional organizations, peers and orderers will be added in a future version, along with the ability to deploy this to a Docker Swarm or Kubernetes infrastructure.
The following list of steps is required to download, configure, initialize, start and test the blockchain network. After all the steps are completed, you can start the composer-rest-server to interact with the network.
To run Hyperledger Composer and Hyperledger Fabric, we recommend you have at least 4Gb of memory. The following are prerequisites for installing the required development tools:
- Operating Systems: Ubuntu Linux 16.04 LTS (64-bit). Other distributions will probably work as well, but weren't tested
- Docker Engine: Version 17.03 or higher
- Docker-Compose: Version 1.8 or higher
- Node: 8.9 or higher (version 9 is not supported)
- npm: v5.x
- git: 2.9.x or higher
- Python: 2.7.x
Clone this repository along with the business network submodule:
git clone --recurse-submodules git://github.com/aegisbigdata/aegis-blockchain.git
Create a directory and download Hyperledger Fabric (docker images and command-line tools) in it:
mkdir fabric && cd fabric
curl -sSL https://raw.githubusercontent.com/hyperledger/fabric/v1.0.6/scripts/bootstrap.sh | bash -s 1.0.6
Change PATH variable to include the fabric/bin directory:
export PATH=$PATH:[path-to-fabric/bin-directory]
Install Hyperledger Composer using npm (using yarn won't work):
cd aegis-blockchain
npm install
Note: Where aegis-blockchain the directory you cloned this repository into.
We need to create MSP for all participants in our network. This is done by running:
cd bin
./generateCertificates.sh
Note: All commands from now on, should be executed from within aegis-blockchain/bin directory
The configuration file for the participants can be found in config/crypto-config.yaml
We run
./initFabric.sh
to generate the genesis block and a transaction creating a consortium channel (both stored in the artifact/ directory). To change the configuration of genesis and/or consortium channel, edit config/configtx.yaml.
We start the orderer and then the peer:
./startOrderer.sh --tls
./startPeer.sh bbc6.sics.se --tls
bbc6.sics.seis the name of the peer we want to start (as used in steps 3 and 4),--tlscan be ommited, but is highly recommended to be used- after the first execution, data for each peer are stored in
data/directory, and are loaded again when the peer restarts.
Initialize the peer (join the network and the consortium channel):
./initPeer.sh bbc6.sics.se
- Only needed to be executed once (the first time),
--tlsis not needed here, it detects how the peer was started, and adjusts automatically
We enter the business-network/ directory and build the business network archive:
npm install
../node_modules/composer-cli/cli.js archive create -t dir -n .
- filename should be
[email protected], - this step is only needed once,
We move back to bin/ directory to initialize and install composer network files.
Now that we have the Fabric Network ready, it's time to install the Composer and our chaincode to it. Running:
./initComposer.sh bbc6.sics.se --tls
does the following:
- creates and imports a card for the peer administrator (
[email protected]saved incards/directory), - installs the runtime of Hyperledger Composer to the peer,
- loads the business network built in (7) to the peer (if the name is different than
[email protected]adjustinitComposer.shaccordingly), - creates and imports a card for the business network (
[email protected]saved incards/directory), - pings the network using the card to see that everything is OK
- Only needed to be executed the first time,
- If you changed any of the configuration files in steps 3 and 4, you need to change
scripts/connection-tls.json(orscripts/connection.jsonin case you are not using TLS) accordingly, otherwise composer won't be able to be initialized - If not using
--tlsoption as instructed, the card will be namedadmin@aegis-business-networkinstead ofadministrator@.... - From now on, any interaction with the business network will be signed with
administrator@aegis-business-networkcard (oradmin@aegis-business-networkin case of not using TLS).
To start the REST server, you only need to run:
npx composer-rest-server -c administrator@aegis-business-network -n required -w true -t true -e ../node_modules/composer-rest-server/cert.pem -k ../node_modules/composer-rest-server/key.pem
- The command starts the rest server, using the default certificate/key for use with TLS. This should only be used for development/testing purposes only. For production, you need to generate and provide the server with proper certificates.
- Change to
composer-rest-server -c admin@aegis-business-network -n never -w trueif not using TLS - The rest server is started using the administrator card created in step 8, thus has full access to the network. It should be firewalled to only allow requests from the AEGIS platform, otherwise data can be tampered by anyone.
If we want to stop the network, we execute:
./stopPeer.sh bbc6.sics.se
./stopOrderer.sh
If we want to remove everything from our machine, we run:
docker kill $(docker ps -q)
docker rm $(docker ps -aq)
docker rmi $(docker images dev-* -q)
to stop and remove all images and containers. In order to remove created cards, peer data and installed cards, we execute:
rm ../cards/*
rm ../crypto-config/*
rm ../artifacts/*
rm -rf ../data
rm -rf ~/.composer