The goal of this issue is to discuss and come to a consensus of how to architect Webmonetization within Rafiki. I want us to first begin by determining and agreeing what the end user (operator) will want and then based on that we can delve into how best to implement this.

As a starting point I propose a few User Stories

1. I as an End User want to be able to see my webmonetization earnings segmented by time.
2. I as an End User want to be able to see my webmonetization earnings per session.
3. I as an End User want to be able to see every single packet for webmonetization

Public SPSP Endpoint

GET /pay/:id

This endpoint is described in the SPSP-STREAM project but should be upgraded in the following way:

• Instead of using the user's root ILP account for the connection tag, check its postgres DB to see if there is a currently active WM invoice
  • Invoices should be stored with metadata, expiry (optional), and a reference to the account service item representing the resource
• If there is no currently active WM invoice, make a call to the account service and a call to postgres to create one
  • If the current WM invoice is expired, it should be disabled via the account service
• Use the ILP account ID of the active invoice as the connection tag when generating SPSP credentials
• Return the destinationAccount and sharedSecret

Balance & Transaction History

This should be implemented as part of a graphQL API on the API backend. For now we should make it accessible to the wallet operator, and in future we will make it available to the user and to authorized third parties

query {
	user: User
}

type Account {
	id: string!
	balance: Amount!
}

type User {
	balance: Amount

	# in the future it should be possible to fetch a transaction list. for now we'll start with just a list of invoices
	invoices(count: number, skip: number): [Invoice]
}

type Amount {
	amount: string!
	currency: string!
	scale: number
}

type Invoice {
	receivedAmount: Amount!
	maximumAmount: Amount
	active: boolean!
	createdAt: Date!
	expiresAt: Date
	description: string
}

• Send an amount in sender's units to a payment pointer
• We'd also add functionality to allow 1 API Key per account. A wallet can generate this key and give it to the user, allowing the user to initiate payments programmatically

TODO

• Scaffold resolver to match generated types
• Implement resolver
• Test resolver

TODO

• Implement resolver
• Test resolver

• Move the contribution guidelines out of the readme.
• Clean up the readme.

On the Rafiki call today, @matdehaast brought up questions around the higher-layer account abstraction, which at the moment is very ambiguous. At various times, we've referred to these as "entities," "users," and "identities." Here, I'll just refer to them as "application accounts."

I'd like to clarify the functionality of this abstraction, how it's distinct from Interledger accounts, and thoughts on naming.

Interledger accounts track a financial accounting balance with a counterparty affected by ILP packets. (I use "counterparty" to include end users whose funds are custodied at the provider and ILP peers.) Interledger accounts expose routing and peering functionality, and permissioning features to delegate their balance to Interledger sub-accounts.

Application accounts initiate, request, execute, and track payments sent or received via one or more Interledger accounts. To support this, application accounts expose an Open Payments account, invoices and mandates; STREAM functionality such as sender and receiver; and various payment aggregation features. If in the future we support identity attestations, for verification of recipient for payments initiated by third parties, they may also represent some kind of identity (or multiple identities).

To summarize, I see the distinction as: Interledger accounts deal in packets; application accounts deal in payments.

The challenge is, these application accounts may be held by end users, merchants, businesses, or other entities. We don't want to put too many constraints on how the operator of Rafiki models these account holders in their own system, or how they're permissioned.

For these reasons, I don't think we should use "user," "identity," or "entity." So, spitballing a few ideas on what we could call these application accounts for common terminology:

• Bearer -- I like this because it both represents a holder of funds, and an entity that invoices or receives payment. But, this could be confusing or not necessarily map to its existing financial meaning.
• PaymentAccount -- simple and descriptive. Will it apply to future use cases?
• PaymentParty -- too vague? too fun?

Implement the IlpAccount resolvers for the following admin-api endpoints:

• #92
• #93
• #94
• #95
• #96

TODO

• Scaffold resolver to match generated types
• Implement resolver
• Test resolver

Implement balance management APIs, including deposit/withdraw functionality:

TODO

• Scaffold resolver to match generated types
• Implement resolver
• Test resolver

Blockers

• No corresponding service implementation

TODO

• Scaffold resolver to match generated types
• Implement resolver
• Test resolver

TODO

• Scaffold resolver to match generated types
• Implement resolver
• Test resolver

Blockers

• No corresponding service implementation

Should we include links to the Interledger docs or something that introduces people to the different features of Interledger that Rafiki will expose? I like what they did here https://github.com/mozilla/glean.js

TODO

• Scaffold resolver to match generated types
• Implement resolver
• Test resolver

Blockers

• No corresponding service implementation

TODO

• Scaffold resolver to match generated types
• Implement resolver
• Test resolver

Implement the Mutation resolvers for the following admin-api endpoints:

• #97
• #98
• #99
• #100
• #77
• #78
• #79
• #80
• #81
• #82
• #83
• #84
• #85
• #86
• #87
• #88
• #126
• #127

TODO

• Scaffold resolver to match generated types
• Implement resolver
• Test resolver

Blockers

• No corresponding service implementation

currently this lives in notion; it would be nice to have it publicly available

Instead of using REST, we can expose the account service API to consumers (the API backend and the operator) using graphQL. This has the advantage of only fetching necessary data, especially in situations where data comes only from one of postgres or tigerbeetle

TODO

• Scaffold resolver to match generated types
• Implement resolver
• Test resolver

Blockers

• No corresponding service implementation

TODO

• Scaffold resolver to match generated types
• Implement resolver
• Test resolver

Blockers

• No corresponding service implementation

Problem

The current implementation of the accounts and connector packages is conflicted. They are implemented as separate packages. However, the accounts package is being imported into the connector package as if it were a module, when it is implemented as a standalone service.

Constraints

• The connector logic and the ilp accounts logic should be separate.
  • They should be isolated services.
• The connector service imports types from the accounts service.
• The connector and accounts service should communicate in-process for performance.

Proposal

This proposal follows from #52, to be implemented alongside/after.

The connector package should be renamed the interledger package, and the accounts logic (currently in the accounts package) should be implemented as a service within the new interledger package.

TODO

• Scaffold resolver to match generated types
• Implement resolver
• Test resolver

Blockers

• No corresponding service implementation

TODO

• Scaffold resolver to match generated types
• Implement resolver
• Test resolver

Blockers

• No corresponding service implementation

TODO

• Scaffold resolver to match generated types
• Implement resolver
• Test resolver

Blockers

• No corresponding service implementation

The responsibility of the account service is to manage interledger accounts configuration/balances.

It's the only service that speaks to tigerbeetle directly.

• It's used by the application-layer API in order to implement open payments APIs
• It's accessed by the administrator to manage liquidity and deposits/withdrawals
• The connector relies on its ILP config & balances to process packets.

• The basic version of this should be baked into the connector, but we should expose a configurable option where the wallet can specify an endpoint with a well-defined interface to retrieve rates from
  • We should respect cache control headers on the information returned so that the wallet can configure how long their rates are good for.

Re: Redis restart

If Redis restarts, shouldn't the old rates still be usable when it comes back up? Any downtime less than a few minutes (or less than whatever the invalidation period is) shouldn't cause additional downtime in the push model.

Re: latency

I don't think it's acceptable for polling for rates to delay packet processing. In the pull model, rates should be polled more frequently than they're invalidated. (The poll interval could also be configurable).

Re: authentication

I think we're in agreement? I see the interaction as:

RAIO ←→ Rate microservice ←→ Existing rate service

RAIO and the rate microservice would be in the same cluster and not require auth.

The existing rate service could be anything: ECB, CoinMarketCap, Uphold's internal rate service, etc., and may have its own auth.

I was just noting as long as the intermediary rate microservice needs to exist and is in the same cluster, if the cluster restarts, it restarts.

TODO

• Scaffold resolver to match generated types
• Implement resolver
• Test resolver

Blockers

• No corresponding service implementation

TODO

• Scaffold resolver to match generated types
• Implement resolver
• Test resolver

Blockers

• No corresponding service implementation

• Complete implementation by ensuring all the defined data is returned, not just the account id.
• Complete tests

Implement the Query resolvers for the following admin-api endpoints:

• #89
• #90
• #73
• #74
• #75

I get the following when running yarn test or yarn workspace backend test locally on main:

Determining test suites to run...migration file "20210422134422_create_events_table.js" failed
migration failed with error: create table "events" ("id" uuid not null, "name" varchar(255) not null, "type" varchar(255) not null, "typeId" varchar(255) not null, "payload" jsonb not null, "createdAt" timestamptz default CURRENT_TIMESTAMP, "updatedAt" timestamptz default CURRENT_TIMESTAMP) - relation "events" already exists
error: create table "events" ("id" uuid not null, "name" varchar(255) not null, "type" varchar(255) not null, "typeId" varchar(255) not null, "payload" jsonb not null, "createdAt" timestamptz default CURRENT_TIMESTAMP, "updatedAt" timestamptz default CURRENT_TIMESTAMP) - relation "events" already exists
    at Parser.parseErrorMessage (/home/brandon/raio/.yarn/cache/pg-protocol-npm-1.5.0-390f8d9ed8-270e72d38a.zip/node_modules/pg-protocol/dist/parser.js:287:98)
    at Parser.handlePacket (/home/brandon/raio/.yarn/cache/pg-protocol-npm-1.5.0-390f8d9ed8-270e72d38a.zip/node_modules/pg-protocol/dist/parser.js:126:29)
    at Parser.parse (/home/brandon/raio/.yarn/cache/pg-protocol-npm-1.5.0-390f8d9ed8-270e72d38a.zip/node_modules/pg-protocol/dist/parser.js:39:38)
    at Socket.<anonymous> (/home/brandon/raio/.yarn/cache/pg-protocol-npm-1.5.0-390f8d9ed8-270e72d38a.zip/node_modules/pg-protocol/dist/index.js:11:42)
    at Socket.emit (node:events:376:20)
    at addChunk (node:internal/streams/readable:304:12)
    at readableAddChunk (node:internal/streams/readable:279:9)
    at Socket.Readable.push (node:internal/streams/readable:218:10)
    at TCP.onStreamRead (node:internal/stream_base_commons:192:23)

knex rollback says Already at the base migration

TODO

• Scaffold resolver to match generated types
• Implement resolver
• Test resolver

Blockers

• No corresponding service implementation

Currently the assumption has been made that there is a 1-1 mapping between an ILPAccount and a Payment Pointer. This issue is to determine if this is what we want.

The accounts service tests are occasionally failing in Github Actions with Error: Process completed with exit code 129.

This has happened in a number of pull requests, in which cases re-running succeeded:

• https://github.com/coilhq/rafiki/runs/2954837414?check_suite_focus=true
• https://github.com/coilhq/rafiki/runs/3008628506

This appears to happen with yarn workspace accounts test, but not yarn test.

The error will occur after Jest globalSetup completes but before beforeAll in the account service's lone test file starts (there appears to regularly be a ~10 second delay between the two. 😕 )

syslog shows

kernel: [  110.144682] traps: node[1827] trap invalid opcode ip:7f5448bc12fd sp:7ffd26aafb60 error:0 in client.node[7f5448bc0000+98000]

Core file (uploaded as artifact)

Allows us to proceed with #57 . This can just be a scaffolding of the graphQL server, so that the resolvers can be implemented later

• Complete implementation by ensuring all the defined data is returned, not just the account id.
• Complete tests

TODO

• Scaffold resolver to match generated types
• Implement resolver
• Test resolver

Blockers

• No corresponding service implementation

TODO

• Implement resolver
• Test resolver

• Send a payment in destination units to a payment pointer
• This will require a quoting step so that the sender can figure out how much this will cost in their units and establish a maximum

• These APIs would be exposed to the user of an account, but not baked into the standard of what could be delegated to third parties yet. This allows us to stay flexible and alter the APIs while Rafiki is still new.

In order to support getDeposit and getWithdrawal graphql queries, the accounts service needs to be able to look up deposits and withdrawals by id.
Currently the id is the tigerbeetle transfer id.
Lookup would require either:

• adding a transaction and/or deposit and/or withdrawal postgres tables
• tigerbeetle transfer lookup + postgres account table index by balance id

There is currently quite a large difference in implementations of the services in the backend and connector packages.

The accounts package is not mentioned here because #53 , but would need to conform to this too.

We need to:

• Highlight and discuss the differences in implementations.
• Decide on a single structure all packages should conform to.
• Migrate packages that don't conform.
• Document the structure for future collaborators.

TODO

• Scaffold resolver to match generated types
• Implement resolver
• Test resolver

Blockers

• No corresponding service implementation

Tigerbeetle does not currently support resetting or rolling back state: #6 (comment)

Accounts services tests currently use random/unique assets per test for idempotency.

An alternative (until the functionality is supported by tigerbeetle) would be to have testcontainers start a new tigerbeetle container per test.