autonomys
diff --git a/‎.gitignore‎
Lines changed: 7 additions & 0 deletions b/‎.gitignore‎
Lines changed: 7 additions & 0 deletions
diff --git a/‎templates/terraform/network-primitives/ami.tf‎ renamed to ‎modules/network-primitives/ami.tf‎ b/‎templates/terraform/network-primitives/ami.tf‎ renamed to ‎modules/network-primitives/ami.tf‎
diff --git a/‎modules/network-primitives/bare_domain_operator_node_provisioner.tf‎
Lines changed: 94 additions & 0 deletions b/‎modules/network-primitives/bare_domain_operator_node_provisioner.tf‎
Lines changed: 94 additions & 0 deletions
diff --git a/‎modules/network-primitives/bootstrap_domain_node_provisioner.tf‎
Lines changed: 92 additions & 0 deletions b/‎modules/network-primitives/bootstrap_domain_node_provisioner.tf‎
Lines changed: 92 additions & 0 deletions
diff --git a/‎modules/network-primitives/bootstrap_node_provisioner.tf‎
Lines changed: 90 additions & 0 deletions b/‎modules/network-primitives/bootstrap_node_provisioner.tf‎
Lines changed: 90 additions & 0 deletions
diff --git a/‎modules/network-primitives/dns.tf‎
Lines changed: 89 additions & 0 deletions b/‎modules/network-primitives/dns.tf‎
Lines changed: 89 additions & 0 deletions
@@ -16,3 +16,10 @@ resources/taurus/*_node_keys.txt
 resources/taurus/keystore/*
 resources/mainnet/*_node_keys.txt
 resources/mainnet/keystore/*
+/.idea
+/modules/node-utils/target
+/modules/node-utils/data
+/resources/terraform/devnet/config.toml
+/resources/terraform/mainnet-domains/config.toml
+/resources/terraform/dns/proxied.json
+/resources/terraform/chronos/config.toml
@@ -0,0 +1,94 @@
+resource "null_resource" "setup_bare_domain_operator_nodes" {
+  count = length(var.bare-domain-operator-node-config.operator-nodes)
+
+  connection {
+    host           = var.bare-domain-operator-node-config.operator-nodes[count.index].ipv4
+    user           = var.ssh_user
+    type           = "ssh"
+    agent          = true
+    agent_identity = var.ssh_agent_identity
+    timeout        = "300s"
+  }
+
+  # create subspace dir
+  provisioner "remote-exec" {
+    inline = [
+      <<-EOT
+      sudo apt update -y
+      sudo mkdir -p /home/${var.ssh_user}/subspace/
+      sudo chown -R ${var.ssh_user}:${var.ssh_user} /home/${var.ssh_user}/subspace/ && sudo chmod -R 750 /home/${var.ssh_user}/subspace/
+      EOT
+    ]
+  }
+
+  # copy install file
+  provisioner "file" {
+    source      = "${var.path_to_scripts}/installer.sh"
+    destination = "/home/${var.ssh_user}/subspace/installer.sh"
+  }
+
+  # install docker and docker compose and LE script
+  provisioner "remote-exec" {
+    inline = [
+      "sudo bash /home/${var.ssh_user}/subspace/installer.sh",
+    ]
+  }
+
+}
+
+resource "null_resource" "start_bare_domain_operator_nodes" {
+  count      = length(var.bare-domain-operator-node-config.operator-nodes)
+  depends_on = [null_resource.setup_bare_domain_operator_nodes]
+
+  # trigger node deployment on node object change
+  triggers = var.bare-domain-operator-node-config.operator-nodes[count.index]
+
+  connection {
+    host           = var.bare-domain-operator-node-config.operator-nodes[count.index].ipv4
+    user           = var.ssh_user
+    type           = "ssh"
+    agent          = true
+    agent_identity = var.ssh_agent_identity
+    timeout        = "300s"
+  }
+
+  # copy config file
+  provisioner "file" {
+    source      = "./config.toml"
+    destination = "/home/${var.ssh_user}/subspace/config.toml"
+  }
+
+  # start docker containers
+  # TODO: use autonomys ghcr
+  provisioner "remote-exec" {
+    inline = [
+      <<-EOT
+      # stop any running service
+      sudo docker compose -f /home/${var.ssh_user}/subspace/docker-compose.yml down
+
+      # set hostname
+      sudo hostnamectl set-hostname ${var.network_name}-domain-${var.bare-domain-operator-node-config.operator-nodes[count.index].domain-id}-operator-node-${var.bare-domain-operator-node-config.operator-nodes[count.index].index}
+
+      # create docker compose
+      sudo docker run --rm --pull always -v /home/${var.ssh_user}/subspace:/data vedhavyas/node-utils:latest domain-operator \
+          --node-id ${var.bare-domain-operator-node-config.operator-nodes[count.index].index} \
+          --docker-tag ${var.bare-domain-operator-node-config.operator-nodes[count.index].docker-tag} \
+          --external-ip-v4 ${var.bare-domain-operator-node-config.operator-nodes[count.index].ipv4} \
+          --node-prefix ${var.bare-domain-operator-node-config.operator-nodes[count.index].domain-name} \
+          --domain-id ${var.bare-domain-operator-node-config.operator-nodes[count.index].domain-id} \
+          --operator-id ${var.bare-domain-operator-node-config.operator-nodes[count.index].operator-id} \
+          --sync-mode ${var.bare-domain-operator-node-config.operator-nodes[count.index].sync-mode} \
+          --is-reserved ${var.bare-domain-operator-node-config.operator-nodes[count.index].reserved-only}
+
+      # start subspace node
+      sudo docker compose -f /home/${var.ssh_user}/subspace/docker-compose.yml up -d
+
+      # wait until container is created
+      sudo sh -c 'until docker ps -f "name=node" --format "{{.ID}}" | grep -q .; do sleep 1; done'
+
+      # insert domain operator key
+      sudo docker exec node /subspace-node domain key insert --base-path=/var/subspace --domain-id ${var.bare-domain-operator-node-config.operator-nodes[count.index].domain-id} --keystore-suri "$(cat /home/${var.ssh_user}/subspace/node.key)"
+      EOT
+    ]
+  }
+}
@@ -0,0 +1,92 @@
+resource "null_resource" "setup-domain-bootstrap-nodes" {
+  count      = length(aws_instance.domain_bootstrap_nodes)
+  depends_on = [aws_instance.domain_bootstrap_nodes]
+
+  connection {
+    host           = aws_instance.domain_bootstrap_nodes[count.index].public_ip
+    user           = var.ssh_user
+    type           = "ssh"
+    agent          = true
+    agent_identity = var.ssh_agent_identity
+    timeout        = "300s"
+  }
+
+  # create subspace dir
+  provisioner "remote-exec" {
+    inline = [
+      <<-EOT
+      cloud-init status --wait
+      sudo apt update -y
+      sudo mkdir -p /home/${var.ssh_user}/subspace/
+      sudo chown -R ${var.ssh_user}:${var.ssh_user} /home/${var.ssh_user}/subspace/ && sudo chmod -R 750 /home/${var.ssh_user}/subspace/
+      EOT
+    ]
+  }
+
+  # copy install file
+  provisioner "file" {
+    source      = "${var.path_to_scripts}/installer.sh"
+    destination = "/home/${var.ssh_user}/subspace/installer.sh"
+  }
+
+  # install docker and docker compose
+  provisioner "remote-exec" {
+    inline = [
+      <<-EOT
+      sudo bash /home/${var.ssh_user}/subspace/installer.sh
+      EOT
+    ]
+  }
+
+}
+
+resource "null_resource" "start-domain-bootstrap-nodes" {
+  count      = length(aws_instance.domain_bootstrap_nodes)
+  depends_on = [null_resource.setup-domain-bootstrap-nodes]
+
+  # trigger node deployment of the node object changes
+  triggers = var.domain-bootstrap-node-config.bootstrap-nodes[count.index]
+
+  connection {
+    host           = aws_instance.domain_bootstrap_nodes[count.index].public_ip
+    user           = var.ssh_user
+    type           = "ssh"
+    agent          = true
+    agent_identity = var.ssh_agent_identity
+    timeout        = "300s"
+  }
+
+  # copy config file
+  provisioner "file" {
+    source      = "./config.toml"
+    destination = "/home/${var.ssh_user}/subspace/config.toml"
+  }
+
+  # start docker containers
+  # TODO: use autonomys ghcr
+  provisioner "remote-exec" {
+    inline = [
+      <<-EOT
+      # stop any running service
+      sudo docker compose -f /home/${var.ssh_user}/subspace/docker-compose.yml down
+
+      # set hostname
+      sudo hostnamectl set-hostname ${var.network_name}-domain-${var.domain-bootstrap-node-config.bootstrap-nodes[count.index].domain-id}-bootstrap-node-${var.domain-bootstrap-node-config.bootstrap-nodes[count.index].index}
+
+      # create docker compose
+      sudo docker run --rm --pull always -v /home/${var.ssh_user}/subspace:/data vedhavyas/node-utils:latest domain-bootstrap \
+          --node-id ${var.domain-bootstrap-node-config.bootstrap-nodes[count.index].index} \
+          --docker-tag ${var.domain-bootstrap-node-config.bootstrap-nodes[count.index].docker-tag} \
+          --external-ip-v4 ${aws_instance.domain_bootstrap_nodes[count.index].public_ip} \
+          --external-ip-v6 ${aws_instance.domain_bootstrap_nodes[count.index].ipv6_addresses[0]} \
+          --node-prefix ${var.domain-bootstrap-node-config.bootstrap-nodes[count.index].domain-name} \
+          --domain-id ${var.domain-bootstrap-node-config.bootstrap-nodes[count.index].domain-id} \
+          --sync-mode ${var.domain-bootstrap-node-config.bootstrap-nodes[count.index].sync-mode} \
+          --is-reserved ${var.domain-bootstrap-node-config.bootstrap-nodes[count.index].reserved-only}
+
+      # start subspace node
+      sudo docker compose -f /home/${var.ssh_user}/subspace/docker-compose.yml up -d
+      EOT
+    ]
+  }
+}
@@ -0,0 +1,90 @@
+resource "null_resource" "setup-consensus-bootstrap-nodes" {
+  count      = length(aws_instance.consensus_bootstrap_nodes)
+  depends_on = [aws_instance.consensus_bootstrap_nodes]
+
+  connection {
+    host           = aws_instance.consensus_bootstrap_nodes[count.index].public_ip
+    user           = var.ssh_user
+    type           = "ssh"
+    agent          = true
+    agent_identity = var.ssh_agent_identity
+    timeout        = "300s"
+  }
+
+  # init node
+  provisioner "remote-exec" {
+    inline = [
+      <<-EOT
+      cloud-init status --wait
+      sudo apt update -y
+      sudo mkdir -p /home/${var.ssh_user}/subspace/
+      sudo chown -R ${var.ssh_user}:${var.ssh_user} /home/${var.ssh_user}/subspace/ && sudo chmod -R 750 /home/${var.ssh_user}/subspace/
+      EOT
+    ]
+  }
+
+  # copy install file
+  provisioner "file" {
+    source      = "${var.path_to_scripts}/installer.sh"
+    destination = "/home/${var.ssh_user}/subspace/installer.sh"
+  }
+
+  # install docker and docker compose
+  provisioner "remote-exec" {
+    inline = [
+      <<-EOT
+      sudo bash /home/${var.ssh_user}/subspace/installer.sh
+      EOT
+    ]
+  }
+
+}
+
+resource "null_resource" "start-consensus-boostrap-nodes" {
+  count      = length(aws_instance.consensus_bootstrap_nodes)
+  depends_on = [null_resource.setup-consensus-bootstrap-nodes]
+
+  # trigger node re-deployment if anything changes in the node config
+  triggers = var.consensus-bootstrap-node-config.bootstrap-nodes[count.index]
+
+  connection {
+    host           = aws_instance.consensus_bootstrap_nodes[count.index].public_ip
+    user           = var.ssh_user
+    type           = "ssh"
+    agent          = true
+    agent_identity = var.ssh_agent_identity
+    timeout        = "300s"
+  }
+
+  # copy config file
+  provisioner "file" {
+    source      = "./config.toml"
+    destination = "/home/${var.ssh_user}/subspace/config.toml"
+  }
+
+  # start docker containers
+  # TODO: use autonomys ghcr
+  provisioner "remote-exec" {
+    inline = [
+      <<-EOT
+      # stop any running service
+      sudo docker compose -f /home/${var.ssh_user}/subspace/docker-compose.yml down
+
+      # set hostname
+      sudo hostnamectl set-hostname ${var.network_name}-bootstrap-node-${var.consensus-bootstrap-node-config.bootstrap-nodes[count.index].index}
+
+      # create docker compose
+      sudo docker run --rm --pull always -v /home/${var.ssh_user}/subspace:/data vedhavyas/node-utils:latest bootstrap \
+            --node-id ${var.consensus-bootstrap-node-config.bootstrap-nodes[count.index].index} \
+            --docker-tag ${var.consensus-bootstrap-node-config.bootstrap-nodes[count.index].docker-tag} \
+            --external-ip-v4 ${aws_instance.consensus_bootstrap_nodes[count.index].public_ip} \
+            --external-ip-v6 ${aws_instance.consensus_bootstrap_nodes[count.index].ipv6_addresses[0]} \
+            --sync-mode ${var.consensus-bootstrap-node-config.bootstrap-nodes[count.index].sync-mode} \
+            --is-reserved ${var.consensus-bootstrap-node-config.bootstrap-nodes[count.index].reserved-only}
+
+      # start subspace node
+      sudo docker compose -f /home/${var.ssh_user}/subspace/docker-compose.yml up -d
+      EOT
+    ]
+  }
+}
@@ -0,0 +1,89 @@
+data "cloudflare_zone" "cloudflare_zone" {
+  filter = {
+    name = var.cloudflare_domain_fqdn
+  }
+}
+
+resource "cloudflare_dns_record" "consensus_bootstrap_ipv4" {
+  lifecycle {
+    ignore_changes = [name]
+  }
+  depends_on = [aws_instance.consensus_bootstrap_nodes]
+  count      = length(aws_instance.consensus_bootstrap_nodes)
+  zone_id    = data.cloudflare_zone.cloudflare_zone.zone_id
+  name       = "bootstrap-${count.index}.${var.network_name}"
+  content    = aws_instance.consensus_bootstrap_nodes[count.index].public_ip
+  type       = "A"
+  ttl        = 3600
+  proxied    = false
+}
+
+resource "cloudflare_dns_record" "consensus_bootstrap_ipv6" {
+  lifecycle {
+    ignore_changes = [name]
+  }
+  depends_on = [aws_instance.consensus_bootstrap_nodes]
+  count      = length(aws_instance.consensus_bootstrap_nodes)
+  zone_id    = data.cloudflare_zone.cloudflare_zone.zone_id
+  name       = "bootstrap-${count.index}.${var.network_name}"
+  content    = aws_instance.consensus_bootstrap_nodes[count.index].ipv6_addresses[0]
+  type       = "AAAA"
+  ttl        = 3600
+  proxied    = false
+}
+
+resource "cloudflare_dns_record" "consensus_rpc" {
+  lifecycle {
+    ignore_changes = [name]
+  }
+  depends_on = [aws_instance.consensus_rpc_nodes]
+  count      = var.consensus-rpc-node-config == null ? 0 : var.consensus-rpc-node-config.enable-reverse-proxy ? length(aws_instance.consensus_rpc_nodes) : 0
+  zone_id    = data.cloudflare_zone.cloudflare_zone.zone_id
+  name       = "${var.consensus-rpc-node-config.dns-prefix}-${count.index}.${var.network_name}"
+  content    = aws_instance.consensus_rpc_nodes[count.index].public_ip
+  type       = "A"
+  ttl        = 1
+  proxied    = true
+}
+
+resource "cloudflare_dns_record" "domain_bootstrap_ipv4" {
+  lifecycle {
+    ignore_changes = [name]
+  }
+  depends_on = [aws_instance.domain_bootstrap_nodes]
+  count      = length(aws_instance.domain_bootstrap_nodes)
+  zone_id    = data.cloudflare_zone.cloudflare_zone.zone_id
+  name       = "bootstrap-${var.domain-bootstrap-node-config.bootstrap-nodes[count.index].index}.${var.domain-bootstrap-node-config.bootstrap-nodes[count.index].domain-name}.${var.network_name}"
+  content    = aws_instance.domain_bootstrap_nodes[count.index].public_ip
+  type       = "A"
+  ttl        = 3600
+  proxied    = false
+}
+
+resource "cloudflare_dns_record" "domain_bootstrap_ipv6" {
+  lifecycle {
+    ignore_changes = [name]
+  }
+  depends_on = [aws_instance.domain_bootstrap_nodes]
+  count      = length(aws_instance.domain_bootstrap_nodes)
+  zone_id    = data.cloudflare_zone.cloudflare_zone.zone_id
+  name       = "bootstrap-${var.domain-bootstrap-node-config.bootstrap-nodes[count.index].index}.${var.domain-bootstrap-node-config.bootstrap-nodes[count.index].domain-name}.${var.network_name}"
+  content    = aws_instance.domain_bootstrap_nodes[count.index].ipv6_addresses[0]
+  type       = "AAAA"
+  ttl        = 3600
+  proxied    = false
+}
+
+resource "cloudflare_dns_record" "domain_rpc" {
+  lifecycle {
+    ignore_changes = [name]
+  }
+  depends_on = [aws_instance.domain_rpc_nodes]
+  count      = var.domain-rpc-node-config == null ? 0 : var.domain-rpc-node-config.enable-reverse-proxy ? length(aws_instance.domain_rpc_nodes) : 0
+  zone_id    = data.cloudflare_zone.cloudflare_zone.zone_id
+  name       = "${var.domain-rpc-node-config.rpc-nodes[count.index].domain-name}-${var.domain-rpc-node-config.rpc-nodes[count.index].index}.${var.network_name}"
+  content    = aws_instance.domain_rpc_nodes[count.index].public_ip
+  type       = "A"
+  ttl        = 1
+  proxied    = true
+}