first fuse attempt

Author: thiennamdinh

compose/file-system/Dockerfile

@@ -0,0 +1,13 @@
+FROM ghcr.io/sandialabs/sync-journal/journal-sdk:1.0.1
+
+ARG REPOSITORY=https://raw.githubusercontent.com/sandialabs/sync-records/965c839ac6bed6db24541ba642089e8fa8063633/lisp/
+
+RUN wget $REPOSITORY/record.scm
+RUN wget $REPOSITORY/control.scm
+RUN wget $REPOSITORY/ledger.scm
+
+COPY run.sh file-system.scm .
+
+COPY run.sh .
+
+CMD ./run.sh

compose/file-system/README.md

@@ -0,0 +1,24 @@
+# File System Service
+
+This service provides a file system backend for cross-platform file exploration of the synchronic web using [FUSE](https://en.wikipedia.org/wiki/Filesystem_in_Userspace) and [SAMBA](https://en.wikipedia.org/wiki/Samba_(software)).
+In the most basic use case, users can interact with it as if it were any mounted Linux drive.
+The distinguishing feature is the integration is the invocation and integration with a synchronic journal to provide secure versioning and temporal references to historic file system artifacts.
+
+## Extra Record Functionality
+
+- Transparent hash thing
+- Permissions??
+- Directories (default files)
+
+## Minimal Functionality (near-term)
+
+- [ ] Invocation of journal (ledger interface) on every read/write
+- [ ] Hash-based storage of historical document states
+- [ ] Mapping between synchronic web records and stored documents
+- [ ] Interface for browsing historical documents
+- [ ] Interface for browsing remote documents
+
+## Desired Features (long-term)
+
+- [ ] Space-efficient compression of versioned files
+- [ ] Integration with enterprise-grade authentciation and authorization

compose/file-system/data-back/New Text Document.txt

@@ -0,0 +1 @@
+blahdf

compose/file-system/data-back/blah.txt

@@ -0,0 +1 @@
+hey

compose/file-system/data-back/hey.txt

@@ -0,0 +1,56 @@
+networks:
+ docker:
+    name: docker
+
+services:
+  fuse:
+    container_name: fuse
+    build:
+      context: ../../services/fuse
+    devices:
+      - /dev/fuse
+    cap_add:
+      - SYS_ADMIN
+    security_opt:
+      - apparmor:unconfined
+    ports:
+      - 445:445
+    networks:
+      - docker
+    environment:
+      SECRET: ${SECRET}
+      SAMBA_USERNAME: ${SAMBA_USERNAME:-samba}
+      SAMBA_SECRET: ${SAMBA_SECRET:-secret}
+      SAMBA_SHARE: ${SAMBA_SHARE:-data}
+    volumes:
+      - ./data-back:/data-back
+
+  cryptography:
+    image: ghcr.io/sandialabs/sync-services/cryptography:1.0.0
+    container_name: cryptography
+    networks:
+      - docker
+
+  journal:
+    image: ghcr.io/sandialabs/sync-services/ledger:1.0.0
+    container_name: journal
+    networks:
+      - docker
+    depends_on:
+      - cryptography
+    environment:
+      SECRET: ${SECRET}
+      PERIODICITY: ${PERIODICITY:-2}
+      CRYPTOGRAPHY: http://cryptography.docker
+
+  interface:
+    image: nginx:stable-alpine
+    container_name: interface
+    volumes:
+      - ./nginx.conf:/etc/nginx/conf.d/default.conf
+    depends_on:
+      - journal
+    networks:
+      - docker
+    ports:
+      - "${PORT:-8192}:80"

compose/file-system/docker-compose.yml

@@ -0,0 +1,49 @@
+(lambda (record seret)
+  (define file-system-attributes
+    '(lambda (ledger path)
+       '()))
+
+  (define file-system-dir-read
+    '(lambda (ledger path)
+       '()))
+
+  (define file-system-dir-make!
+    '(lambda (ledger path)
+       '()))
+
+  (define file-system-dir-delete!
+    '(lambda (ledger path)
+       '()))
+
+  (define file-system-file-make!
+    '(lambda (ledger path)
+       '()))
+
+  (define file-system-file-read
+    '(lambda (ledger path)
+       '()))
+
+  (define file-system-file-write!
+    '(lambda (ledger path value)
+       '()))
+
+  (define file-system-file-delete!
+    '(lambda (ledger path)
+       '()))
+
+  (let loop ((functions '(file-system-attributes
+                          file-system-dir-read
+                          file-system-dir-make!
+                          file-system-dir-delete!
+                          file-system-file-make!
+                          file-system-file-read
+                          file-system-file-write!
+                          file-system-file-delet!)))
+    (if (null? functions) #t
+        ;; todo: wrap the function to access ledger
+        ;;  - pass in ledger instead of record
+        ;;  - format path into a valid path
+        ;;  - format output into "JSON" format
+        ((record 'set!) `(control local ,(car functions)) (eval (car functions)))))
+
+  "Installed file system extension")

compose/file-system/file-system.scm

@@ -0,0 +1,5 @@
+server {
+       location /.interface {
+       		proxy_pass http://journal.docker/interface;
+       }
+}

compose/file-system/nginx.conf

@@ -0,0 +1,21 @@
+* conclusion
+- the file-system thing is just a separate use case, not general-purpose explorer
+* idea:
+- need function to check expression (maybe at control level?)
+* paths
+** reading
+- if symbol, then as-is
+- if bytes, then interpret has hex
+** writing
+- only allow writing strings
+  - if try to write hex, then escape somehow
+- always create a new dummy file
+* values
+** reading
+- if expression, then expression
+- if string, then strip quotes
+- if bytes, then parse and print
+** writing
+- if parses as expression, then do expression
+- if ascii, then string
+- if not ascii, then bytes

compose/file-system/notes.org

@@ -0,0 +1,26 @@
+#!/bin/sh
+
+if [ -z "$SECRET" ]; then
+    echo Must set the SECRET variable""
+    exit 1
+fi
+
+record=$( cat record.scm )
+control=$( cat control.scm )
+ledger=$( cat ledger.scm )
+
+check_status() {
+    while true; do
+        echo "Polling for cryptography service"
+	    response=$( wget -qO - "$1" 2>/dev/null)
+	    if [ -n "$response" ]; then
+	        return 0
+	    else
+            sleep 1
+	    fi
+    done
+}
+
+check_status "${CRYPTOGRAPHY}/signature/key/deadbeefdeadbeefdeadbeefdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef"
+
+./journal-sdk -b "($record \"$SECRET\" $control ($ledger \"$CRYPTOGRAPHY\" #t #f) $preload)" -s "(*step* \"$SECRET\")" -p 80 -c $PERIODICITY