This repository is archived, for further development and usage please refer to the Core-Java-Spring repository!
Arrowhead (and its continuation, Productive4.0) is an ambitious holistic innovation project, meant to open the doors to the potentials of Digital Industry and to maintain a leadership position of the industries in Europe. All partners involved will work on creating the capability to efficiently design and integrate hardware and software of Internet of Things (IoT) devices. Linking the real with the digital world takes more than just adding software to the hardware.
The project has the following dependencies:
- JRE/JDK 8+
- Maven 3.5+
- MySQL server 5.7+ (other SQL databases can work with Hibernate ORM, but the
common module pom.xmlhas to include the appropriate connector dependency to use them)
Each core system module has a config folder, and inside this folder a default.conf file, containing default values for the environment
variables needed to run the core system, such as database username/password, web-server address, logging settings and much more.
Config files are processed the following way:
- The active working directory is searched for
default.conf- If found, the key-value pairs are loaded in from the file.
- If not found, the program looks for
config/default.confand load those values. - If this is also not found, the program throws an error, and the core system wil fail to start.
- The active working directory is searched for
app.conf- If found, the key-value pairs inside this file override the values from
default.conf(if the default value for a key is fine, theapp.confdoes not need to contain it) - If not found, the program looks for
config/app.confand use those values. - If this is also not found, then all the
default.confvalues will remain.
- If found, the key-value pairs inside this file override the values from
All the app.conf files are in .gitignore, so local environment variables do not get pushed to the Github repository. The recommended way to
configure a local installation is to create app.conf files with the values that need to change for each core system.
After the config files are inline with the local environment, use mvn install inside the root folder of the repository, to build all the core
system JARs. The build will create a target folder inside every module, where there will be the copied config folder, a lib folder containing
all the dependencies, and the actual core system JAR.
Each core system looks for the following 3 command line argument (others are ignored):
-d: stands for debug mode. When this is passed at startup, the core system will print every incoming HTTP request (with the payload, if there is any), and the corresponding HTTP response to the console. If the console output is forwarded to a file at startup, this is additional logging, that can be useful to follow operation.-daemon: this argument starts the core system as a daemon (background) process on UNIX systems. This means it will listen to kill signals, and can shutdown gracefully (for example deregister its service from the Service Registry).-tls: starts the core system in "secure" mode. Certificate file related configs are used to start a HTTPS web-server with a proper SSL context in this mode (and to provide system identity), and core systems use the TLS protocol to communicate with each other. A secure and insecure version of the same core system can run at the same time on different ports, but an insecure core system can not communicate with a secure core system.
The Orchestrator core system also has a -nogk argument. When used, the Orchestrator will start in "no Gatekeeper" mode, where it won't look
for the Gatekeeper services in the Service Registry, but can only do intra-cloud orchestration (with the help of the Authorization and Service
Registry core systems).
Startup bash scripts (Linux & iOS) and batch files (Windows) are provided in the scripts folder:
start_insecure_coresystems.sh: starts the core systems without using certificates, with plain HTTPstart_secure_coresystems.sh: starts the core systems using certificates, with HTTPSstop_coresystems.sh: stops all running core systems
When the core systems are running, they will log to 2 different places, if the default logging configuration is unchanged:
- All core systems will log to the same
logstable inside alogdatabase. This log source will contain log messages from all the core systems in one place. - Each core system will log to a file in its active working directory called
log4j_log.txt. These text files are separate for each core system, meaning one text file only contains the log messages of one core system.
The databases schema have to be created before starting the core systems. The SQL script at scripts/create_empty_arrowhead_db.sql creates a database schema callel arrowhead, and also generates all the database tables used by the Core Systems.
The logs table also has to be manually created, because that is
only used by the logging library, and the ORM library does not know about it. The ORM library can create all the other arrowhead tables, if they do
not exist yet. An SQL script can be found at common/config/create_arrowhead_logs.sql to create the logs table.
The project can also be run from an IDE for testing purposes. Just import the multi-module project as a maven project, and the IDE should find all
the pom.xml files necessary to download the dependencies and start the core systems. IntelliJ IDEA specific run configurations (for insecure and secure mode separately) are also provided, including compound configurations, which can start all the core systems together.
An alternative method for installing a local Arrowhead Cloud on a Debian based Linux is to use your package manager.
Currently the following core systems have this option: Authorization, Certificate Authority, Event Handler, Gatekeeper, Gateway, Orchestrator and Service Registry.
A full setup guide can be read here: DEBIAN-INSTALL.md
A guide on how to add new core systems to the package generation: DEBIAN-DEV.md
Install Java JDK 8+ Download from here
Install Maven 3.5+ Download from here | Install guide
Install MySQL Server 5.7+ (other SQL databases can work with Hibernate ORM, but the common module pom.xml has to include the appropriate connector
dependency to use them)
Verify that you have Java (java -version), Maven (mvn -version), MySQL installed properly!
Install git (see git-scm.com/download/win)
(Use recommended settings, except for terminal emulator use windows default)
Create System variables for MAVEN_HOME and M2_HOME pointing to the unzipped binaries e.g. C:\ProgramFiles\apache-maven-3.0.6) Search for “env” and use the edit environmental variables button.
Set path to include Maven (Click Path and edit. Then add %MAVEN_HOME\bin% and %M2_HOME\bin%.
Add MySQL to the path.
Now checkout this repository, don't forget to select the correct branch!
Edit the config files (the database connection, NOTE also the logging has database connections that need to be entered. Check the WHOLE config files).
Initialize the database by running the db scripts found in the /scripts folder
Run mvn install in the core-java folder. Then execute the created jar file. Wait a few minutes and test that the system is up: http://localhost:8440/orchestrator/orchestration This should reply “Orchestrator got it!”
Each core system offers Swagger UI to discover its REST interfaces. This UI is available at the /api/
root path. So for example the REST interfaces of the Service Registry is available at http://localhost:8442/api/ by default. In insecure mode, all
the requests can be tested by clicking on the "Try it out" button.
The OPC UA interfaces allow to use an OPC UA interface for the Service Registry, Orchestration and EventHandler from the Arrowhead Framework. Also the Authorization is enabled with OPC UA just for adding new rules. The following OPC UA servers and methods are available:
- Service Registry: opc.tcp://localhost:62551/serviceregistry
- /Objects/ServiceRegistry/register
- /Objects/ServiceRegistry/remove
- /Objects/ServiceRegistry/query
- Orchestrator: opc.tcp://localhost:62548/orchestrator
- /Objects/Orchestrator/orchestration
- /Objects/Orchestrator/store (*)
- EventHandler: opc.tcp://localhost:62544/eventhandler
- /Objects/EventHandler/publish
- /Objects/EventHandler/subscribe
- /Objects/EventHandler/unsubscribe
- Authorization: opc.tcp://localhost:62541/authorization
- /Objects/Authorization/addSystemToAuthorized (*)
The input and output parameters for these methods are JSON strings according to the SD. So for example the "register" method of the Service Registry receives a ServiceRegistryEntry as JSON string as input and it has no output. The methods marked with an asterisk are not defined in any SD, but their interface is taken from the HTTP implementation and help manage orchestration rules.
This implementation allows a producer or consumer to use exclusively OPC UA and not HTTP to connect to the Arrowhead Framework. An special case is the EventHandler. The publish method allows to publish a method by telling the EventHandler core system to do it, but it will still use HTTP to send the actual message, meaning that any subscriber should implement HTTP.
To start the core system with OPC UA, use the "start_insecure_coresystems_opcua.{bat|sh}" script. The OPC UA interface is started in paralallel meaning that the HTTP one is still there and can be used as always.
To extend this work, here are some details about the code:
- OPC UA milo 0.3.3 is used
- In the core-common project, the base for the OPC UA server and the namespace is implemented and for further implementations, these files are (most probably) not the place to change
- For the server of each core system, there's a file called {CORE_SYSTEM}OpcUa.java which just creates the OPC UA server and adds the folders and methods nodes
- In the main function of each core systems there's a check for a "-opcua" flag that will start the OPC UA server
- The methods for each core systems are in their own packages with a class for each method which defines the input and output arguments as strings, and overrides the "invoke" function which is the one called when the method is called in the OPC UA server. The invoke function just calls the API of the core system (for example, for registering a service, the registerService() which receives a ServiceRegistryEntry transformed from the JSON string)
- The OPC UA server for the other core systems are not implemented, but in the file common/misc/CoreSystem.java the port for each of them is prepared and they are as follow:
- CertificateAuthority: 62542
- Choreographer: 62543
- GatekeeperInternal: 62545
- GatekeeperExternal: 62546
- Gateway: 62547
- QoS: 62549
- ServiceRegistryDNS: 62550
- SystemRegistry: 62552
- DeviceRegistry: 62553
- Onboarding: 62554