This is a stand alone server written in go. It is designed to make Compliance protocol requests to other organizations. You can connect to it from the bridge server or any other server that can talk to it (check API section).
Prebuilt binaries of the bridge-server server are available on the releases page.
| Platform | Binary file name |
|---|---|
| Mac OSX 64 bit | bridge-darwin-amd64 |
| Linux 64 bit | bridge-linux-amd64 |
| Windows 64 bit | bridge-windows-amd64.exe |
Alternatively, you can build the binary yourself.
The config_compliance.toml file must be present in a working directory. Config file should contain following values:
external_port- external server listening port (should be accessible from public)internal_port- internal server listening port (should be accessible from your internal network only!)needs_auth- set totrueif you need to do sanctions check for payment receivernetwork_passphrase- passphrase of the network that will be used with this bridge server:- test network:
Test SDF Network ; September 2015 - public network:
Public Global Stellar Network ; September 2015
- test network:
database- This database is used internally to store memo information and to keep track of what FIs have been authorized to receive customer info.type- database type (mysql, postgres)url- url to database connection
keyssigning_seed- The secret seed that will be used to sign messages. Public key derived from this secret key should be in yourstellar.tomlfile.encryption_key- The secret key used to decrypt messages. Not working yet.
callbackstls(only when running HTTPS external server)certificate_file- a file containing a certificateprivate_key_file- a file containing a matching private key
log_format- set tojsonfor JSON logs
Check config_compliance_example.toml.
After creating config_compliance.toml file, you need to run DB migrations:
./compliance --migrate-db
Then you can start the server:
./compliance
Content-Type of requests data should be application/x-www-form-urlencoded.
Process auth request from external organization sent before sending a payment. Check Compliance protocol for more info. It also saves memo preimage to the database.
| name | description | |
|---|---|---|
data |
required | Auth data. |
sig |
required | Signature. |
Read more in Compliance protocol doc.
Returns Auth response.
Sends Auth request to another organization.
| name | description | |
|---|---|---|
source |
required | Account ID of transaction source account. |
sender |
required | Stellar address (ex. bob*stellar.org) of payment sender account. |
destination |
required | Account ID or Stellar address (ex. bob*stellar.org) of payment destination account |
amount |
required | Amount that destination will receive |
extra_memo |
optional | Additional information attached to memo preimage. |
asset_code |
optional | Asset code (XLM when empty) destination will receive |
asset_issuer |
optional | Account ID of asset issuer (XLM when empty) destination will receive |
send_max |
optional | [path_payment] Maximum amount of send_asset to send |
send_asset_code |
optional | [path_payment] Sending asset code (XLM when empty) |
send_asset_issuer |
optional | [path_payment] Account ID of sending asset issuer (XLM when empty) |
path[n][asset_code] |
optional | [path_payment] If the path isn't specified the bridge server will find the path for you. Asset code of nth asset on the path (XLM when empty, but empty parameter must be sent!) |
path[n][asset_issuer] |
optional | [path_payment] Account ID of nth asset issuer (XLM when empty, but empty parameter must be sent!) |
path[n+1][asset_code] |
optional | [path_payment] Asset code of n+1th asset on the path (XLM when empty, but empty parameter must be sent!) |
path[n+1][asset_issuer] |
optional | [path_payment] Account ID of n+1th asset issuer (XLM when empty, but empty parameter must be sent!) |
| ... | ... | Up to 5 assets in the path... |
Returns SendResponse.
Returns memo preimage.
| name | description | |
|---|---|---|
memo |
required | Memo hash. |
Returns ReceiveResponse.
Allows access to users data for external user or FI.
| name | description | |
|---|---|---|
name |
required | Name of the external FI. |
domain |
required | Domain of the external FI. |
public_key |
required | Public key of the external FI. |
user_id |
optional | If set, only this user will be allowed. |
Will response with 200 OK if saved. Any other status is an error.
Allows access to users data for external user or FI.
| name | description | |
|---|---|---|
domain |
required | Domain of the external FI. |
user_id |
optional | If set, only this user entry will be removed. |
Will response with 200 OK if removed. Any other status is an error.
The Compliance server will send callback POST request to URLs you define in the config file. Content-Type of requests data will be application/x-www-form-urlencoded.
If set in the config file, this callback will be called when sanctions checks need to be performed. If not set the compliance server will act as if the sanction check passes.
| name | description |
|---|---|
sender |
Sender info JSON |
The customer information that is exchanged between FIs is flexible but the typical fields are:
- Full Name
- Date of birth
- Physical address
Respond with one of the following status codes:
200 OKwhen sender/receiver is allowed and the payment should be processed,202 Acceptedwhen your callback needs some time for processing,403 Forbiddenwhen sender/receiver is denied.
Any other status code will be considered an error.
When 202 Accepted is returned the response body should contain JSON object with a pending field which represents the estimated number of seconds needed for processing. For example, the following response means to try the payment again in an hour.
{"pending": 3600}If set in the config file, this callback will be called when the sender needs your customer KYC info to send a payment. If not set then the customer information won't be given to the other FI.
| name | description |
|---|---|
amount |
Payment amount |
asset_code |
Payment asset code |
asset_issuer |
Payment asset issuer |
sender |
Sender info JSON |
note |
Note attached to the payment |
The customer information (sender) that is exchanged between FIs is flexible but the typical fields are:
- Full Name
- Date of birth
- Physical address
Respond with one of the following status codes:
200 OKwhen your customer has allowed sharing his/her compliance information with the requesting FI.202 Acceptedwhen your callback needs some time for processing, ie to ask the customer.403 Forbiddenwhen your customer has denied sharing his/her compliance information with the requesting FI.
Any other status code will be considered an error.
When 202 Accepted is returned the response body should contain JSON object with pending field which represents estimated number of seconds needed for processing. For example, the following response means to try the payment again in an hour:
{"pending": 3600}This callback should return the compliance information of your customer identified by address.
| name | description |
|---|---|
address |
Stellar address (ex. alice*acme.com) of the user. |
This callback should return 200 OK status code and JSON object with the customer compliance info:
{
"name": "John Doe",
"address": "User physical address",
"date_of_birth": "1990-01-01"
}Any other status code will be considered an error.
gb is used for building and testing.
Given you have a running golang installation, you can build the server with:
gb build
After a successful build, you should find bin/bridge in the project directory.
gb test
godoc -goroot=. -http=:6060
Then simply open:
http://localhost:6060/pkg/github.com/stellar/gateway/
in a browser.