This is a fork of the Challenge Bypass Server, that implements the HTTP REST interface, persistence in Postgresql, multiple issuers, etc.
It also uses cgo bindings to a rust library to implement the cryptographic protocol.
Install Docker.
docker-compose up
This project uses golangci-lint for linting, this is run by CI and should be run before raising a PR.
To run locally use make lint which runs linting using docker however if you want to run it locally using a binary release (which can be faster) follow the installation instructions for your platform and then run golangci-lint run -v ./...
Run the below command in order to test changes, if you have an M1 / M2 Mac (or ARM based processor) follow the steps below to setup docker to be able to run the tests
make docker-test
The project includes comprehensive integration tests that verify the entire system working together with all dependencies.
The integration tests:
- Spin up a complete environment with PostgreSQL, Kafka, Zookeeper, LocalStack (for DynamoDB), and the application
- Test end-to-end flows including:
- Token redemption flows through Kafka
- Token signing flows through Kafka
- Database persistence and retrieval
- DynamoDB operations
- Verify the application correctly processes messages between Kafka topics
- Ensure proper communication between all services
To run the integration tests, simply use:
# run all integration tests
make integration-test
# or run a specific integration test
make integration-test TEST_NAME=TestTokenIssuanceViaKafkaAndRedeemViaHTTPFlowThis command will:
- Clean up any existing test containers
- Build all required services
- Start the test environment (PostgreSQL, Kafka, Zookeeper, LocalStack)
- Wait for all services to be healthy and ready (~30 seconds)
- Build and run the test suite
- Automatically clean up all containers and volumes after completion
If the tests are interrupted or you need to manually clean up the test environment:
make integration-test-cleanThis will remove all test containers, networks, and volumes created by the integration tests.
To debug issues or view what's happening during the tests:
make integration-test-logsThis will tail the logs from all services in the integration test environment.
The integration tests use a separate docker-compose.integration.yml file which:
- Creates isolated test topics in Kafka
- Uses a dedicated test database
- Runs LocalStack for DynamoDB emulation
- Configures all services with test-specific settings
1.) In Docker Desktop, go to: Settings -> Docker Engine
"runtimes": {
"linux": {
"path": "linux"
}
}
2.) Modify Docker File
FROM arm64v8/rust:1.69 as rust_builder
RUN rustup target add aarch64-unknown-linux-musl
RUN apt-get update && apt-get install -y musl-tools:arm64
RUN git clone https://github.com/brave-intl/challenge-bypass-ristretto-ffi /src
WORKDIR /src
RUN git checkout 1.0.1
RUN CARGO_PROFILE_RELEASE_LTO=true cargo rustc --target=aarch64-unknown-linux-musl --release --crate-type staticlib
FROM arm64v8/golang:1.18 as go_builder
RUN apt-get update && apt-get install -y ca-certificates postgresql-client python3-pip
RUN pip install awscli --upgrade
RUN curl -sfL https://install.goreleaser.com/github.com/golangci/golangci-lint.sh | sh -s -- -b $(go env GOPATH)/bin latest
RUN mkdir /src
WORKDIR /src
COPY . .
RUN go mod download
COPY --from=rust_builder /src/target/aarch64-unknown-linux-musl/release/libchallenge_bypass_ristretto_ffi.a /usr/lib/libchallenge_bypass_ristretto_ffi.a
ENV GOARCH=arm64
RUN go build -ldflags '-linkmode external -extldflags "-static"' -tags 'osusergo netgo static_build' -o challenge-bypass-server main.go
CMD ["/src/challenge-bypass-server"]
For testing purposes this repo can be deployed to Heroku. The settings set in environment variables DBCONFIG and DATABASE_URL override other options.