Pico Agents

Indy Agency based on the Pico-Engine

Important Notice (time-sensitive as of September 30, 2020)

Anyone already using Pico Agents: You SHOULD update your org.sovrin.agent_message ruleset. Please complete before October 15, 2020.

New adopters may ignore this section.

How to do update

In every pico-engine you control which hosts Pico Agents, visit the ruleset.html page, select org.sovrin.agent_message in the left side, and click the "flush" button in the right side. You sould notice no change in the behavior of your Pico Agents.

Rationale

A technical change in the Aries protocol described here

Installing a pico engine

To support a Pico Agent, you will need the latest version of the pico engine.

git clone https://github.com/Picolab/pico-engine.git
cd pico-engine/
npm run setup
PICO_ENGINE_HOST=http://localhost:8080 PORT=8080 npm start

This will start your pico engine at http://localhost:8080

Registering agent rulesets with your pico engine

Using the ruleset editor built-in to your pico engine, register these rulesets:

https://raw.githubusercontent.com/Picolab/G2S/master/krl/html.krl
https://raw.githubusercontent.com/Picolab/G2S/master/krl/webfinger.krl
https://raw.githubusercontent.com/Picolab/G2S/master/krl/org.sovrin.agent.ui.krl
https://raw.githubusercontent.com/Picolab/G2S/master/krl/org.sovrin.agent_message.krl
https://raw.githubusercontent.com/Picolab/G2S/master/krl/org.sovrin.agent.krl
https://raw.githubusercontent.com/Picolab/G2S/master/krl/org.sovrin.didcomm_plugins.krl

The ruleset editor is at http://localhost:8080/ruleset.html and look for a box labelled "raw source URL" into which you will paste each of the above URLs, then click the button labelled "register url" to perform the registration.

You might wish to use this page and click on the links in order from top to bottom to register these rulesets.

Creating a Pico Agent

Once you have the five Sovrin agent rulesets registered, you create a pico, go to it, and click on its Agent tab. There you will see "To be an agent, install the org.sovrin.agent rulesets". Click on the "install" link. Your new pico is now a Pico Agent.

Pico Agent with ngrok

After installing ngrok, start ngrok with http requests being directed to port 8080.

./ngrok http 8080 

In a different terminal start the pico-engine with the host pointed to the domain provided from starting ngrok. For example.

PICO_ENGINE_HOST=https://e28640da.ngrok.io npm start

Running a Pico Agency

Start with a fresh pico engine (as above).

You will need to register these additional rulesets for agencies:

https://raw.githubusercontent.com/Picolab/G2S/master/krl/colors.krl
https://raw.githubusercontent.com/Picolab/G2S/master/krl/org.sovrin.agency.ui.krl
https://raw.githubusercontent.com/Picolab/G2S/master/krl/org.sovrin.agency.krl
https://raw.githubusercontent.com/Picolab/G2S/master/krl/org.sovrin.agency_agent.krl
https://raw.githubusercontent.com/Picolab/G2S/master/krl/org.sovrin.agents.krl

In the Root Pico install the io.picolabs.account_management ruleset.

Click on the link "Need an owner pico?" to create a pico named "Agency" with a password you will need to remember briefly. Click "Submit".

Login with the owner id "Agency" and the password.

Visit the About tab of your Agency pico. You may change its name and color (for Sovrin, use #f6a12b).

Install the org.sovrin.agency ruleset. This makes your pico be an Agency Pico.

In the Channels tab, create a new channel, say ui/application and remember the ECI.

Instructing clients to obtain agents from your Agency

In a browser, visit a URL like this one, using the ECI from your Agency pico.

localhost:8080/sky/cloud/<ECI>/org.sovrin.agency/html.html

Use the UI it presents to create new Agent Picos.

Each one will be named with an email addresses (actually an account), and also can be given a color, and a label for its invitations/connections. Having provided these, a button "agency/new_agent" will appear, which your client will click.

The owner (your client) will follow the resulting HATEOAS link to login as the owner of a new Agent Pico. They can then use the pico-engine UI to control it.

Install a standalone Pico Agent UI

In the public folder of your pico-engine, drop in the agent.html file from the pico-agent-ui repo.

This is necessary for agencies which don't allow direct access to the pico-engine UI.

Retiring a Pico Agency

1. Ensure that none of the agents are in use, and delete each such pico
2. In the Agents pico, visit the Testing tab, open the io.picolabs.collection box, and click on "wrangler/deletion_imminent"
3. Visit the About tab, click on the Parent ID, then the "del" link beside the name of the agency pico
4. In the Root pico, visit the About tab and delete all its child picos
5. Visit the Rulesets tab and delete the rulesets io.picolabs.account_management and io.picolabs.owner_authentication
6. Click on the "Engine Rulesets" link and select each of the "additional rulesets for agencies" and delete them
7. Click the "logout" button in the upper-right corner of the UI

Agent intermediaries

Agents have a built-in ability to forward messages along an in-bound route.

So that an agent can be used as an intermediary, you will need to register this additional ruleset, and install it in that Agent Pico.

https://raw.githubusercontent.com/Picolab/G2S/master/krl/org.sovrin.router.krl

You will need to register this additional ruleset for edge agents.

https://raw.githubusercontent.com/Picolab/G2S/master/krl/org.sovrin.edge.krl

When you install this ruleset in a Pico Agent, it will be able to set up an inbound route involving one intermediary.

Deprecation notice

These rulesets continue to function but our intention is to only apply bug fixes going forward.

New development has moved to ACA-pico