Deploy WebSocket sink on Railway using Replicas

Scope

• Deploy 2x Webhook containers to push to WebSocket service (ex: bsc & polygon)
• Deploy Websockets container using multiple Replicas (ex: 3)
• Connect multiple users to Websocket endpoint
  • monitor if connection is dropped or not
  • monitor if duplicate messages are received
• Mount db.sqlite to be shared between all replicas
• Read Prometheus metrics via SQLite database (in memory might not work with replicas)

• HTTP Errors responses (ex: BadRequest, NotFound, Unauthorized)
• Send response as toText, toJSON, toFile
• Test with

https://www.test-cors.org/
or view Headers in Swagger response headers

Code examples

• https://github.com/pinax-network/substreams-sink-clickhouse/blob/main/src/fetch/cors.ts
• https://github.com/pinax-network/substreams-sink-clickhouse/blob/main/src/fetch/hash.ts#L7

• implement Commander to include arguments via CLI

example

$ bun index.ts --port 8888

Request format

https://developers.binance.com/docs/binance-trading-api/websocket_api#request-format

• Requests must be sent as JSON in text frames, one request per frame.
• All timestamps are in milliseconds in UTC, unless noted otherwise.
• All field names and values are case-sensitive, unless noted otherwise.

Example

{
  "id": "5494febb-d167-46a2-996d-70533eb4d976",
  "method": "exchangeInfo",
  "params": {
    "symbols": ["BNBBTC"]
  }
}

Code example for ID

import { randomUUID } from "crypto";

const id = randomUUID()
// => "f25c1ccc-3ed9-4cfb-9f71-555df546d7fe"

Can't deploy Websockets when using volume mounts (SQLite requires volume mount)

#3 (comment)

Scope

• Replace all SQLite database operations to Redis inserts
• Deploy Redis instance on Railway (would also require Redis for local testing)
• Use @vercel/kv SDK
  • https://vercel.com/docs/storage/vercel-kv/kv-reference

https://github.com/pinax-network/substreams-sink-websockets/blob/main/src/parseMessage.spec.ts

Implement new Sqlite methods:

• increment
• decrement

SQL Examples

UPDATE product SET price = price + 50 WHERE id = 1
UPDATE {table} SET {column} = {column} + {value} WHERE {condition}

Scope

• investigate if including id is possible in Bun (we don't seem to have a way to inject user specific data to ws.send())
• Response message with the following:
  • replace result: {} => data: {}

{
  id,
  status,
  data
}

Example

{
  "id": "187d3cb2-942d-484c-8271-4e2141bbadb1",
  "status": 200,
  "data": {
    "serverTime": 1656400526260
  }
}

• Include Unpckg HTML file in swagger/index.html

  https://github.com/pinax-network/substreams-clock-api/tree/main/swagger

  • update GET, default Swagger as / route

    https://github.com/pinax-network/substreams-clock-api/blob/main/src/fetch/GET.ts#L15-L16

• Implement OpenAPI

  https://github.com/pinax-network/substreams-clock-api/blob/main/src/fetch/openapi.ts

Send Text Message with the following JSON payloads

subscribe Request

{
    "method": "subscribe",
    "params": {
        "chain": "bsc",
        "moduleHash": "0a363b2a63aadb76a525208f1973531d3616fbae"
    }
}

When a user connects for the first time, they do not have any context of any previous messages

The goal would be to store the latest X (as .env) amount of messages in SQLite DB

Expose a GET endpoint for the user to fetch recent messages

• Store messages in SQLite by:
  • module hash
  • module hash + chain
• Prune older messages by (X timestamp or X block number)
• Expose GET endpoint /messages to return all recent messages with params:
  • filter by chain
  • filter by module hash
  • LIMIT
  • DISTINCT by chain (only show 1 message per chain)
  • SORT BY DESC as default (recent messages first)

Allow user to subscribe to Websockets using the following parameters:

• moduleHash
• chain

Example payload

{
    "method": "subscribe",
    "params": {
        "moduleHash": "0a363b2a63aadb76a525208f1973531d3616fbae",
        "chain": "polygon"
    }
}

Send message Topic

• <chain>:<moduleHash>
• <moduleHash>

Scope

• include server.publish for additional parameters
  • moduleHash
  • chain
• Add new Prometheus Metrics to track total messages published for:
  • moduleHash
  • chain
• GET API to know which params are supported:
  • /moduleHash
  • /chain

• Reject requests without Origin Header

All browsers send an Origin header. You can use this header for security (checking for same origin, automatically allowing or denying, etc.) and send a 403 Forbidden if you don't like what you see. However, be warned that non-browser agents can send a faked Origin. Most applications reject requests without this header.

https://developers.binance.com/docs/binance-trading-api/websocket_api#check-server-time

Request

{
  "id": "187d3cb2-942d-484c-8271-4e2141bbadb1",
  "method": "time"
}

Response

{
  "id": "187d3cb2-942d-484c-8271-4e2141bbadb1",
  "status": 200,
  "result": {
    "serverTime": 1656400526260
  }
}

Request

{
  "id": "922bcc6e-9de8-440d-9e84-7c80933a8d0d",
  "method": "ping"
}

Response

{
  "id": "922bcc6e-9de8-440d-9e84-7c80933a8d0d",
  "status": 200,
  "result": {}
}

https://developers.binance.com/docs/binance-trading-api/websocket_api#connection-limits

• There is a limit of 300 connections per attempt every 5 minutes.
• The connection is per IP address.

Rate limits are accounted by intervals.

For example, a 1 MINUTE interval starts every minute. Request submitted at 00:01:23.456 counts towards the 00:01:00 minute's limit. Once the 00:02:00 minute starts, the count will reset to zero again.

Feature

• store IP address in SQLite by incrementing each connection attempt, with the following fields:
  • IP address
  • connection attempts
  • last timestamp

Will need to extend SQLite data format to include 3 fields key/value/timestamp

Having the user provide all the subscribe payload in the URL, allows the user to do both:

• Connect to WebSockets
• Subscribe based on params

Example:

ws://localhost:3000/subscribe?chain={CHAIN}&moduleHash={MODULE_HASH}

ws://localhost:3000/subscribe?chain=polygon&moduleHash=0a363b2a63aadb76a525208f1973531d3616fbae

• Add Basic Authorization when connecting to API & WebSocket
• Use Bun.password to encrypt password locally in .env (use Argon2 encryption)

Reference

• https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Authorization

HTTP

Authorization: Basic <credentials>

Code Examples

• https://github.com/pinax-network/substreams-sink-clickhouse/blob/main/src/auth/bearer.ts
• https://github.com/pinax-network/substreams-sink-clickhouse/blob/main/src/auth/argon2.ts
• https://github.com/pinax-network/substreams-sink-clickhouse/blob/main/src/fetch/PUT.ts#L9-L10

Scope

• build for npm pacakge
• add GitHub actions to auto-deploy to npm

Will now allow to run via without any additional install required

$ bunx pinax-network/substreams-sink-websockets

Since a lot of our API's are being built with Hono

We should be able to integrate Hono + Bun WebSockets

import { Hono } from 'hono'

const app = new Hono()
app.get('/', (c) => c.text('Hello Bun!'))

export default {
  port: 3000,
  fetch: app.fetch,
  websocket: {
    open: websocket.open,
    close: websocket.close,
    message: websocket.message,
  },
}

• Implement Zod OpenAI

Reference

• https://github.com/honojs/middleware/tree/main/packages/zod-openapi

The message is redundant since the WebSocket connection already has a ws.onopen method

Reference: https://github.com/pinax-network/substreams-sink/blob/main/src/health.ts#L12-L14

• /health OK should only return if at least one Trace ID exists (can use Prometheus Metrics of SQLite to fetch information)
• Save incoming unique TraceID from Webhooks to SQLite
• Add Prometheus Metrics to know how many new WebHook Trace IDs have been initialized total_trace_ids
• Add HTTP GET API to know which Webhook Trace IDs have previously connected /trace_ids
  • Returns Array of String [Trace ID, Epoch timestamp]

HTTP GET /trace_ids

[
  ["654b2e1fd43e8468863595baaad68627", 1696005169]
]

• Add bun SQLite in-memory tests for /messages

Update error messages to the following format:

{
  id,
  status,
  error: {
    code,
    msg,
    data: {},
}

Features

To update

• Already subscribed to
• ModuleHash not found

Example

{
  "id": "fc93a61a-a192-4cf4-bb2a-a8f0f0c51e06",
  "status": 418,
  "error": {
    "code": -1003,
    "msg": "Way too much request weight used; IP banned until 1659146400000. Please use WebSocket Streams for live updates to avoid bans.",
    "data": {
      "serverTime": 1659142907531,
      "retryAfter": 1659146400000
    }
  }
}

• improve logging by adding tslog

Output

$ bun start
$ bun run index.ts
2023-10-07 20:32:28.565 INFO            substreams-sink-websockets      Server listening on http://0.0.0.0:3000
2023-10-07 20:32:28.566 INFO            substreams-sink-websockets      Verifying with PUBLIC_KEY a3cb7366ee8ca77225b4d41772e270e4e831d171d1de71d91707c42e7ba82cc9
2023-10-07 20:32:28.566 INFO            substreams-sink-websockets      Reading SQLITE_FILENAME db.sqlite

• add unsubscribe method
  • by ModuleHash
  • by ModuleHash from chain

subscribe Request

{
    "method": "unsubscribe",
    "params": {
        "chain": "bsc",
        "moduleHash": "0a363b2a63aadb76a525208f1973531d3616fbae"
    }
}

Should only need to replace this line

https://github.com/pinax-network/substreams-sink-websockets/blob/3141631738bfc135262ed8c066efd8d30c5bef94/src/fetch/POST.ts#L29C22-L30C1

Before

const msg = Buffer.from(timestamp + body);

After

const expiry = req.headers.get("x-signature-expiry");
const msg = Buffer.from(expiry);

All ping implementations are different

• Discord: https://discord.com/developers/docs/interactions/receiving-and-responding#security-and-authorization

{"type": 1}

• Binance: https://developers.binance.com/docs/binance-trading-api/websocket_api#test-connectivity

{"id": 123, "method": "ping"}

• Substreams Sink Webhook

{"message": "PING"}

• Substreams Sink WebSockets

{"method": "ping"}

Use case

Allows Webhook sinks to connect directly to WebSocket sink's latest cursor endpoint

Params

• chain
• module_hash

SQL Statement

SELECT latest_cursor
FROM module_hashes
WHERE chain = '${chain}' AND module_hash = '${moduleHash}'
LIMIT 1

Endpoint /cursor/latest

• status 200: returns cursor as plain/text
• status 400: bad request

Reference

https://github.com/pinax-network/substreams-sink/releases/tag/v0.13.4

Simple HTTP text response

n-5SB30M-16YouthlRFszqWwLpcyB1JpXQPsLRNL1...

Reference

• https://github.com/pinax-network/substreams-sink-clickhouse/blob/main/src/fetch/cursor.ts#L7-L34

• add Open API docs to /messages

Scope

• add --env-file .env flag

Reference:

To match NodeJS's latest update

https://dev.to/cjreads665/nodejs-2060-say-goodbye-to-dotenv-2ijl

Will be required for:

• #8
• #20

In case the user does not know the module hash and only needs to subscribe to "block" payload only

• allow blocks to be subscribed
• new method: blocks
  • params: chain
• new topic pushing payload block (clock)data
• deduplicate clock subscribe from other webhooks using the same chain (don't allow pushing the same clock twice)
  • create a unique Set of block_id
  • only subscribe if block_id is new

Subscribe by blocks only by chain

{
    "method": "blocks",
    "params": {
        "chain": "bsc"
    }
}