This repository provides Infrastructure-As-Code (IAC) for installing Gasolina on AWS via CDK.

• Bootstraps CDK
• Creates a VPC
• Uploads providers to S3
• Setup a CloudWatch log group
• Deploys the Gasolina API app on ECS
• Sets up load balancer on Fargate in the VPC private subnet
• Sets up API Gateway to route to the Gasolina API (we don't expose the load balancer directly, API Gateway offers TLS without the need for a certificate)

• Authenticate with AWS CLI with a valid method: https://docs.aws.amazon.com/cli/latest/userguide/cli-chap-authentication.html

• If you want to use your own mnemonics you can configure a mnemonic per signer in the Gasolina API. Go to Secret Manager in AWS store and create a new secret for mnemonics and path.

  • You want to store the secret as key-value pair. For a single secret:
  • For the mnemonic use the key: LAYERZERO_WALLET_MNEMONIC
  • For the PATH use the key: LAYERZERO_WALLET_PATH

• If you want to use AWS KMS (backed by HSM), you can set this in your config and all key creation and registration into the application is done for you.

• In the root directory of the project, run yarn to install all dependencies.

• Bootstrap CDK if this is your first time using CDK in the AWS account. In cdk/gasolina/ run:

cdk bootstrap

• In cdk/gasolina/config/index.ts in the CONFIG object:
  • Configure the AWS account number for the key of the object.
  • projectName: Your unique project name (this is used for your s3 bucket which needs to be globally unique on AWS)
  • environment: The environment your API will be pointing to on layerzero (mainnet/testnet)
  • availableChainNames: The chains your Gasolina app supports in comma seperated format e.g. ethereum,bsc,avalanche
  • signerType: Either MNEMONIC if you are using mnemonics stored in secret manager or KMS if you want CDK to set up asymmetric keys backed by HSM for you and register these keys into the Gasolina app.
    • If MNEMONIC, the number of signers registered will be based on your wallet definitions in walletConfig/<environment>.json
    • If KMS, you can optionally set kmsNumOfSigners in CONFIG. This value will create and register multiple keys into the same api
• In cdk/gasolina/config/providers/<environment>/providers.json
  • Configure all the RPC providers that you listed for the availableChainNames in the previous step.
• In cdk/gasolina/config/walletConfig/<environment>.json
  • Under definitions, add a Wallet Definition per Signer in Gasolina API that you registered in Secret Manager in the pre-requisites step.
    • Configure the address of the signer
    • Configure the secretName of that signer. This is used by the application to fetch the mnemonics when it needs to sign the payload

Setup infrastructure and deploy the Gasolina application. In cdk/gasolina/ run:

cdk deploy

After the deployment is done, in the stdout you will see Oracle.ApiGatewayUrl = <URL>. Send this URL over to LayerZeroLabs.

Make an HTTP GET request to the ApiGatewayUrl at the following endpoint:

curl https://<ApiGatewayUrl>/signer-info?chainName=ethereum

If successful, you should see the signers registered on Gasolina API.

To test the API against a sample message, in the root directory run:

ts-node scripts/testDeployment -u <ApiGatewayUrl> -e <environment>

• A successful response will look like:

--- [200] Successful request ---
Response: {
  signatures: [
    {
      signature: '<signature>',
      address: '<address>'
    },
    {
      signature: '<signature>',
      address: '<address>'
    }
  ]
}

• Some resources have deletion projection policies. You will need to delete these resources before you can redeploy:
  • the CloudWatch log group: GasolinaMetricLogGroup
  • the S3 bucket: providerconfigs-<projectName>-<environment>-gasolina