DeOSS ( Decentralized Object Storage Service ) is a decentralized object-based mass storage service that provides low-cost, secure and scalable distributed data storage services for the web3 domain.
If you find any system errors or you have better suggestions, please submit an issue or PR, or join the CESS discord to communicate with us.
wss://testnet-rpc0.cess.cloud/ws/
wss://testnet-rpc1.cess.cloud/ws/
wss://testnet-rpc2.cess.cloud/ws/
_dnsaddr.boot-bucket-testnet.cess.cloud
| Address | http://deoss-pub-gateway.cess.cloud/ |
|---|
| Account | cXhwBytXqrZLr1qM5NHJhCzEMckSTzNKw17ci2aHft6ETSQm9 |
|---|
https://testnet-faucet.cess.cloud/
The following commands are executed with root privileges, if the prompt Permission denied appears, you need to switch to root privileges, or add sudo at the top of these commands.
- Linux 64-bit Intel/AMD
For the Debian and ubuntu families of linux systems:
apt install git curl wget vim util-linux -yFor the Fedora, RedHat and CentOS families of linux systems:
yum install git curl wget vim util-linux -y
By default, DeOSS uses port 8080 to listen for incoming connections and internally uses port 4001 for p2p communication, if your platform blocks these two ports by default, you may need to enable access to these port.
For hosts with ufw enabled (Debian, Ubuntu, etc.), you can use the ufw command to allow traffic to flow to specific ports. Use the following command to allow access to a port:
ufw allow 8080
ufw allow 4001
For hosts with firewall-cmd enabled (CentOS), you can use the firewall-cmd command to allow traffic on specific ports. Use the following command to allow access to a port:
firewall-cmd --get-active-zones
This command gets the active zone(s). Now, apply port rules to the relevant zones returned above. For example if the zone is public, use
firewall-cmd --zone=public --add-port=4001/tcp --permanent
firewall-cmd --zone=public --add-port=8080/tcp --permanent
Note that permanent makes sure the rules are persistent across firewall start, restart or reload. Finally reload the firewall for changes to take effect.
firewall-cmd --reload
For hosts with iptables enabled (RHEL, CentOS, etc.), you can use the iptables command to enable all traffic to a specific port. Use the following command to allow access to a port:
iptables -A INPUT -p tcp --dport 4001 -j ACCEPT
iptables -A INPUT -p tcp --dport 8080 -j ACCEPT
service iptables restart
Download the latest release of the binary application directly at:
wget https://github.com/CESSProject/DeOSS/releases/download/v0.3.6/DeOSS0.3.6.linux-amd64.tar.gz
Compile the binary program from the DeOSS source code and follow the process as follows:
1) install go
DeOSS requires Go 1.20, See the official Golang installation instructions.
Open go mod mode:
go env -w GO111MODULE="on"
Users in China can add go proxy to speed up the download:
go env -w GOPROXY="https://goproxy.cn,direct"
2) clone code
git clone https://github.com/CESSProject/DeOSS.git
3) compile code
cd DeOSS/
go build -o deoss cmd/main.go
4) Grant execute permission
chmod +x deossThe wallet is your unique identity in the cess network, it allows you to do transactions with the cess chain, provided that you have some balance in your wallet.
Please refer to Create-CESS-Wallet to create your cess wallet.
If you are using the test network, Please join the CESS discord to get it for free. If you are using the official network, please buy CESS tokens.
Use deoss to generate configuration file templates directly in the current directory:
./deoss configThe contents of the configuration file template are as follows. The contents inside are the defaults and you will need to modify them as appropriate. By default, deoss uses conf.yaml in the current directory as the runtime configuration file. You can use -c or -config to specify the location of the configuration file.
# RPC endpoint of the chain node
Rpc:
# test network
- "wss://testnet-rpc0.cess.cloud/ws/"
- "wss://testnet-rpc1.cess.cloud/ws/"
- "wss://testnet-rpc2.cess.cloud/ws/"
# bootstrap nodes
Boot:
# test network
- "_dnsaddr.boot-bucket-testnet.cess.cloud"
# signature account mnemonic
Mnemonic: "xxx xxx ... xxx"
# service workspace
Workspace: /
# P2P communication port
P2P_Port: 4001
# service listening port
HTTP_Port: 8080
# Access mode: public / private
# In public mode, only users in Accounts can't access it.
# In private mode, only users in Accounts can access it.
Access: public
# Account black/white list
Accounts:
- cX...
- cX...
# If you want to expose your oss service, please configure its domain name
Domain: "http://deoss-pub-gateway.cess.cloud/"Backend operation mode (the default configuration file is in the current directory):
nohup ./deoss run 2>&1 &./deoss stat
+-------------------+------------------------------------------------------+
| role | deoss |
| peer id | 12D3KooWFAcDpT7vTtbsS361P14z8LpgxPMRywQr19sAdNfdDBYE |
| signature account | cXhwBytXqrZLr1qM5NHJhCzEMckSTzNKw17ci2aHft6ETSQm9 |
| domain name | http://deoss-pub-gateway.cess.cloud/ |
+-------------------+------------------------------------------------------+
It is generally not recommended to use this command:
./deoss exit
The public API endpoint URL of DeOSS is the server you deploy, All endpoints described in this document should be made relative to this root URL,The following example uses URL instead.
Before using DeOSS, you must authorize it as follows:
-
Create a wallet account and fund it, refer to Configure Wallet
-
Purchase cess storage space:BuySpace
-
(Optional operations) The default space purchased is valid for 1 month and can be increased by RenewalSpace.
-
Authorize the use right of the space to DeOSS:Authorize
If you feel that you do not have enough space, you can expand it by means of ExpansionSpace.
The public request header identifies you, all interfaces require you to provide identity information, the easiest way to do this is to sign with your account in the block browser and then fill in the information into the public request header as follows:
| key | value |
|---|---|
| Account | cX... |
| Message | ... |
| Signature | 0x... |
| PUT / |
|---|
The put bucket interface is used to create a bucket. When uploading files, the bucket must be specified for storage.
- Request Header
| key | value |
|---|---|
| Authorization | token |
| BucketName | created bucket name |
- Responses
Response schema: application/json
| HTTP Code | Message | Description |
|---|---|---|
| 200 | Block hash | create bucket block hash |
| 400 | InvalidHead.MissingToken | token is empty |
| 400 | InvalidHead.Token | token error |
| 400 | InvalidParameter.Name | wrong bucket name |
| 403 | NoPermission | token verification failed |
| 500 | InternalError | service internal error |
- Request example
# curl -X PUT URL/ -H "BucketName: bucketname" -H "Account: cX..." -H "Message: ..." -H "Signature: 0x..."| PUT / |
|---|
The put file interface is used to upload files to the cess system. You need to submit the file as form data and use provide the specific field.
If the upload is successful, you will get the fid of the file. If you want to encrypt your file, you can specify the cipher field in the header and enter your password (the length cannot exceed 32 characters), and the system will automatically encrypt it.
- Request Header
| key | description |
|---|---|
| BucketName | stored bucket name |
| cipher | your cipher |
- Request Body
| key | value |
|---|---|
| file | file[binary] |
- Responses
Response schema: application/json
| HTTP Code | Message | Description |
|---|---|---|
| 200 | fid | file id |
| 400 | InvalidHead.MissingToken | token is empty |
| 400 | InvalidHead.MissingBucketName | bucketname is empty |
| 400 | InvalidHead.BucketName | wrong bucket name |
| 400 | InvalidHead.Token | token error |
| 400 | Unauthorized | DeOSS is not authorized |
| 400 | InvalidParameter.EmptyFile | file is empty |
| 400 | InvalidParameter.FormFile | form File |
| 400 | InvalidParameter.File | error receiving file |
| 403 | NoPermission | token verification failed |
| 500 | InternalError | service internal error |
- Request example
# curl -X PUT URL/ -F 'file=@test.log;type=application/octet-stream' -H "BucketName: bucket1" -H "Account: cX..." -H "Message: ..." -H "Signature: 0x..."| PUT / |
|---|
Compared with uploading the entire file directly, resumable upload has some more parameter requirements, but has the same return result. At the same time, the uploaded file can also be encrypted.
- Request Header
| key | description |
|---|---|
| BucketName | stored bucket name |
| cipher | your cipher |
| Account | your CESS account |
| Message | your sgin message |
| Signature | sign of message by your account |
| FileName | file name or alias |
| BlockNumber | The number of chunks the file is to be divided into |
| BlockIndex | index of chunk to be uploaded, [0,BlockNumber) |
| TotalSize | the byte size of the file, the sum of the sizes of all chunks |
- Request Body
| key | value |
|---|---|
| file | file[binary] |
- Responses
Response schema: application/json
| HTTP Code | Message | Description |
|---|---|---|
| 200 | fid | file id |
| 200 | chunk index | chunk index |
| 400 | InvalidHead.MissingToken | token is empty |
| 400 | InvalidHead.MissingBucketName | bucketname is empty |
| 400 | InvalidHead.BucketName | wrong bucket name |
| 400 | InvalidHead.Token | token error |
| 400 | Unauthorized | DeOSS is not authorized |
| 400 | InvalidParameter.EmptyFile | file is empty |
| 400 | InvalidParameter.FormFile | form File |
| 400 | InvalidParameter.File | error receiving file |
| 400 | bad chunk size | Invalid chunk size |
| 400 | bad chunk index | Invalid chunk index |
| 400 | file size mismatch | file size does not match the TotalSize |
| 403 | NoPermission | token verification failed |
| 500 | InternalError | service internal error |
- Request example
# curl -X PUT URL/ -F 'file=@test-chunk0;type=application/octet-stream' -H "BucketName: bucket1" -H "Account: cX..." -H "Message: ..." -H "Signature: 0x... -H FileName: test.log -H BlockNumber: 5 -H BlockIndex: 0 -H TotalSize: 1000"| GET /{fid} |
|---|
The get file interface downloads the file in the CESS storage system according to the fid.
- Request Header
| key | value |
|---|---|
| Operation | download |
- Responses
The response schema for the normal return status is: application/octet-stream
The response schema for the exception return status is: application/json, The message returned by the exception is as follows:
| HTTP Code | Message | Description |
|---|---|---|
| 400 | InvalidHead.Operation | operation error |
| 403 | BackingUp | file is being backed up |
| 404 | NotFound | file not found |
| 500 | InternalError | service internal error |
- Request example
# curl -X GET -o <savefilename> URL/fid -H "Operation: download" -H "Account: cX..." -H "Message: ..." -H "Signature: 0x..."The delete file interface is used for delete a put file.
| DELETE /{fid} |
|---|
- Responses
Response schema: application/json
| HTTP Code | Message | Description |
|---|---|---|
| 200 | Block hash | delete file block hash |
| 400 | InvalidHead.MissToken | token is empty |
| 400 | InvalidHead.Token | token error |
| 400 | InvalidParameter.Name | fid is error |
| 403 | NoPermission | token verification failed |
| 500 | InternalError | service internal error |
- Request example
# curl -X DELETE URL/fid -H "Account: cX..." -H "Message: ..." -H "Signature: 0x..."| DELETE / |
|---|
- Request Header
| key | value |
|---|---|
| Authorization | token |
| Content-Type | application/json |
- Request Body
{
"files": [
"filehash1",
"filehash2",
"filehash3"
]
}
- Responses
Response schema: application/json
| HTTP Code | Message | Description |
|---|---|---|
| 200 | Block hash | delete file block hash |
| 400 | InvalidHead.MissToken | token is empty |
| 400 | InvalidHead.Token | token error |
| 400 | ERR_ParseBody | unable to parse body |
| 400 | empty files | deleted files is empty |
| 403 | InvalidToken.NoPermission | token verification failed |
| 500 | InternalError | service internal error |
- Request example
# curl -X DELETE URL/ -d '{"files": ["filehash1", "filehash2"]}' -H "Content-Type: application/json" -H "Account: cX..." -H "Message: ..." -H "Signature: 0x..."The delete bucket interface is used for delete a bucket, all files in the bucket will also be deleted together.
| DELETE /{BucketName} |
|---|
- Responses
Response schema: application/json
| HTTP Code | Message | Description |
|---|---|---|
| 200 | Block hash | delete bucket block hash |
| 400 | InvalidHead.MissToken | token is empty |
| 400 | InvalidHead.Token | token error |
| 400 | InvalidParameter.Name | bucket name is error |
| 403 | NoPermission | token verification failed |
| 500 | InternalError | service internal error |
- Request example
# curl -X DELETE URL/BucketName -H "Account: cX..." -H "Message: ..." -H "Signature: 0x..."| GET /{BucketName} |
|---|
This interface is used to view bucket information, including the number of stored files and file IDs.
- Responses
Response schema: application/json
| HTTP Code | Message | Description |
|---|---|---|
| 200 | success | total number of files in bucket and file id |
| 400 | InvalidHead.MissingAccount | account is empty |
| 400 | InvalidHead.Account | account is error |
| 400 | InvalidParameter.Name | bucket name is error |
| 404 | NotFound | bucket not found |
| 500 | InternalError | service internal error |
- Request example
# curl -X GET URL/BucketName -H "Account: cX..." -H "Message: ..." -H "Signature: 0x..."| GET /* |
|---|
This interface is used to view all buckets.
- Responses
Response schema: application/json
| HTTP Code | Message | Description |
|---|---|---|
| 200 | success | all bucket names |
| 400 | InvalidHead.MissingAccount | account is empty |
| 400 | InvalidHead.Account | account is error |
| 400 | InvalidParameter.Name | * is error |
| 404 | NotFound | bucket not found |
| 500 | InternalError | service internal error |
- Request example
# curl -X GET URL/* -H "Account: cX..." -H "Message: ..." -H "Signature: 0x..."| GET /{fid} |
|---|
This interface is used to view the basic information of a file.
- Request Header
| key | value |
|---|---|
| Operation | view |
- Responses
Response schema: application/json
| HTTP Code | Message | Description |
|---|---|---|
| 200 | success | file information |
| 400 | InvalidParameter.Name | fid or operation is error |
| 404 | NotFound | file not found |
| 500 | InternalError | service internal error |
- Request example
# curl -X GET URL/fid -H "Operation: view" -H "Account: cX..." -H "Message: ..." -H "Signature: 0x..."Licensed under Apache 2.0