Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/kjpou1/frostfire-iot-hub

Frostfire IoT Hub is an advanced and scalable IoT hub designed to facilitate reliable communication and data management for IoT devices
https://github.com/kjpou1/frostfire-iot-hub

Last synced: 11 days ago
JSON representation

Frostfire IoT Hub is an advanced and scalable IoT hub designed to facilitate reliable communication and data management for IoT devices

Awesome Lists containing this project

README 

        
# Frostfire IoT Hub



Frostfire IoT Hub is an advanced and scalable IoT hub designed to facilitate reliable communication and data management for IoT devices. Utilizing MQTT protocol, it provides efficient messaging capabilities suitable for various IoT applications.



- [Frostfire IoT Hub](#frostfire-iot-hub)

  - [Features](#features)

  - [Getting Started](#getting-started)

    - [Prerequisites](#prerequisites)

    - [Installation](#installation)

    - [Configuration](#configuration)

      - [**API Key Authentication**:](#api-key-authentication)

      - [**Bearer Token Authentication**:](#bearer-token-authentication)

      - [**Amazon Request Validation**:](#amazon-request-validation)

    - [Setting Up the MQTT Hub](#setting-up-the-mqtt-hub)

      - [Install Mosquitto MQTT Broker](#install-mosquitto-mqtt-broker)

      - [Configure Mosquitto](#configure-mosquitto)

      - [Configure Mosquitto (Example on Raspberry Pi 5)](#configure-mosquitto-example-on-raspberry-pi-5)

    - [Usage](#usage)

  - [Sample `publisher.py`](#sample-publisherpy)

  - [Sample `subscriber.py`](#sample-subscriberpy)

  - [Plugin Architecture](#plugin-architecture)

  - [Testing API with API Key and Authorization](#testing-api-with-api-key-and-authorization)

    - [**API Key Authentication Example**](#api-key-authentication-example)

      - [Example POST Request:](#example-post-request)

    - [**Bearer Token Authorization Example**](#bearer-token-authorization-example)

      - [Example POST Request:](#example-post-request-1)

    - [**Testing with Postman**](#testing-with-postman)

      - [**API Key Authentication with Postman**](#api-key-authentication-with-postman)

      - [**Bearer Token Authorization with Postman**](#bearer-token-authorization-with-postman)

  - [Topic Explanation: `iot/devices`](#topic-explanation-iotdevices)

    - [Example Usage of the `iot/devices` Topic](#example-usage-of-the-iotdevices-topic)

      - [Publisher](#publisher)

      - [Subscriber](#subscriber)

    - [Use Cases for `iot/devices`](#use-cases-for-iotdevices)

    - [Hierarchical Topics](#hierarchical-topics)

  - [Running with Docker Compose](#running-with-docker-compose)

    - [Docker Troubleshooting](#docker-troubleshooting)

    - [Address Already in Use](#address-already-in-use)

      - [Steps to Resolve:](#steps-to-resolve)

      - [On Raspberry Pi (Linux-based system):](#on-raspberry-pi-linux-based-system)

      - [On macOS (using Homebrew):](#on-macos-using-homebrew)

      - [Allowing Remote Connections](#allowing-remote-connections)

    - [Configuration](#configuration-1)

  - [Troubleshooting](#troubleshooting)

    - [Connection Refused When Connecting to MQTT Broker](#connection-refused-when-connecting-to-mqtt-broker)

    - [Address Already in Use](#address-already-in-use-1)

    - [Mosquitto Fails to Start](#mosquitto-fails-to-start)

    - [Docker Issues](#docker-issues)

    - [Unable to Publish or Subscribe to Topics](#unable-to-publish-or-subscribe-to-topics)

  - [Contributing](#contributing)

  - [License](#license)



## Features



- **Efficient Data Handling**: Optimized for resource-constrained environments.

- **Reliable Messaging**: Uses MQTT protocol for reliable and efficient communication.

- **Scalable Architecture**: Supports multiple devices and scalable message handling.

- **Configurable**: Easy to configure via environment variables.

- **Plugin-Based Extensibility**: The Frostfire IoT Hub is built with a flexible **plugin architecture**, allowing users to define and load plugins dynamically. This modular structure ensures that new device types and behaviors can be added without altering the core functionality of the hub. For more details, refer to the [Plugin Architecture Documentation](app/plugins/readme.md).

- **Message Security**: The hub supports **secure message handling** using API key and token-based authentication mechanisms. API keys and bearer tokens can be used for authentication via headers (`x-api-key`, `Authorization`), as well as Amazon-specific requests (`x_amz_mqtt5_user_properties`). These security measures ensure that only authorized clients can publish or subscribe to topics, protecting your IoT communication from unauthorized access.



## Getting Started



### Prerequisites



- Python 3.7+

- MQTT broker (e.g., Mosquitto)

- pip (Python package installer)

- Docker (Optional)

- Docker Compose (Optional)



### Installation



1. Clone the repository:

   ```sh

   git clone https://github.com/kjpou1/frostfire-iot-hub.git

   cd frostfire-iot-hub

   ```



2. Install the required dependencies:

   ```sh

   pip install -r requirements.txt

   ```



3. Configure environment variables by copying `example_env` to `.env` and updating the values:

   ```sh

   cp example_env .env

   ```



### Configuration



All configuration settings are managed through environment variables. You will also need to store valid API keys in the `app/resources/api_keys.txt` file. These keys are used for **API key authentication**, **Bearer token validation**, and **Amazon request validation** via the `x_amz_mqtt5_user_properties` header.



#### **API Key Authentication**:

- Requests must include an `x-api-key` header with one of the valid API keys from the `api_keys.txt` file.



#### **Bearer Token Authentication**:

- Requests can alternatively authenticate using a **Bearer token** by including it in the `Authorization` header. The token is checked against the same set of API keys stored in the `api_keys.txt` file.



#### **Amazon Request Validation**:

- For Amazon-related requests, the `x_amz_mqtt5_user_properties` header may be included. This header should be base64-encoded, and once decoded, the API key in the user properties is validated against the keys in the `api_keys.txt` file.



Example `.env` file:

```ini

MQTT_BROKER=mqtt.example.com

MQTT_PORT=1883

MQTT_TOPIC=iot/devices

```



- `MQTT_BROKER`: The address of your MQTT broker.

- `MQTT_PORT`: The port your MQTT broker is listening on.

- `MQTT_TOPIC`: The topic to which the hub subscribes and publishes.



Refer to `app/config/config.py` for more configuration details.



### Setting Up the MQTT Hub



#### Install Mosquitto MQTT Broker



Mosquitto is a popular MQTT broker. Below are the installation steps for various operating systems, including Raspberry Pi:



**For Ubuntu/Debian/Raspberry Pi:**

```sh

sudo apt update

sudo apt install mosquitto mosquitto-clients

sudo systemctl enable mosquitto

sudo systemctl start mosquitto

```



**For macOS (using Homebrew):**

```sh

brew update

brew install mosquitto

brew services start mosquitto

```



**For Windows:**

1. Download the Mosquitto installer from the [Mosquitto website](https://mosquitto.org/download/).

2. Run the installer and follow the instructions.

3. Start the Mosquitto service from the command prompt:

   ```sh

   net start mosquitto

   ```



#### Configure Mosquitto



Edit the Mosquitto configuration file (usually located at `/etc/mosquitto/mosquitto.conf` on Linux/Raspberry Pi) to set your desired configurations. Below is a basic configuration example:



```conf

listener 1883

allow_anonymous true

```



After editing the configuration file, restart Mosquitto:



**For Ubuntu/Debian/Raspberry Pi:**

```sh

sudo systemctl restart mosquitto

```



**For macOS:**

```sh

brew services restart mosquitto

```



**For Windows:**

```sh

net stop mosquitto

net start mosquitto

```



#### Configure Mosquitto (Example on Raspberry Pi 5)



1. Edit the main configuration file (`/etc/mosquitto/mosquitto.conf`) to ensure it includes the following settings:



   ```conf

   pid_file /run/mosquitto/mosquitto.pid



   persistence true

   persistence_location /var/lib/mosquitto/



   log_dest file /var/log/mosquitto/mosquitto.log



   include_dir /etc/mosquitto/conf.d

   ```



2. Create a custom configuration file in `/etc/mosquitto/conf.d/local.conf`:



   ```sh

   sudo nano /etc/mosquitto/conf.d/local.conf

   ```



   Add the following configuration:



   ```conf

   listener 1883

   allow_anonymous true



   # Optional: Set logging verbosity for development

   log_type error

   log_type warning

   log_type notice

   log_type information

   ```



3. Restart Mosquitto to apply the changes:



   ```sh

   sudo systemctl restart mosquitto

   ```



### Usage



1. Run the IoT Hub:

   ```sh

   python run.py

   ```



## Sample `publisher.py`



```python

import logging



import paho.mqtt.client as mqtt



# Configure logging

logging.basicConfig(

    level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s"

)

logger = logging.getLogger(__name__)



# MQTT settings

MQTT_BROKER = (

    "localhost"  # Change this to the IP address or hostname of your Raspberry Pi

)

MQTT_PORT = 1883

MQTT_TOPIC = "iot/devices"



def main():

    # Create an MQTT client instance

    client = mqtt.Client()



    # Connect to the MQTT broker

    client.connect(MQTT_BROKER, MQTT_PORT, 60)



    # Publish a test message

    message = "Hello from the publisher!"

    client.publish(MQTT_TOPIC, message)

    logger.info(f"Published message: {message} to topic: {MQTT_TOPIC}")



    # Disconnect from the broker

    client.disconnect()



if __name__ == "__main__":

    main()



```



## Sample `subscriber.py`



```python

import logging



import paho.mqtt.client as mqtt



# Configure logging

logging.basicConfig(

    level=logging.INFO, format="%(asctime)s - %(name)s - %(levelname)s - %(message)s"

)

logger = logging.getLogger(__name__)



# MQTT settings

MQTT_BROKER = (

    "localhost"  # Change this to the IP address or hostname of your Raspberry Pi

)

MQTT_PORT = 1883

MQTT_TOPIC = "iot/devices"



def on_connect(client, userdata, flags, rc):

    """

    Callback for when the client receives a CONNACK response from the server.

    """

    if rc == 0:

        logger.info("Connected to MQTT broker.")

        client.subscribe(MQTT_TOPIC)

    else:

        logger.error("Failed to connect, return code %d\n", rc)



def on_message(client, userdata, msg):

    """

    Callback for when a PUBLISH message is received from the server.

    """

    logger.info(f"Received message: {msg.payload.decode()} on topic {msg.topic}")



def main():

    # Create an MQTT client instance

    client = mqtt.Client()

    client.on_connect = on_connect

    client.on_message = on_message



    # Connect to the MQTT broker

    client.connect(MQTT_BROKER, MQTT_PORT, 60)



    # Start the MQTT client loop

    client.loop_forever()



if __name__ == "__main__":

    main()



```



## Plugin Architecture



The **Frostfire IoT Hub** is designed to be modular and extensible, enabling dynamic loading of plugins to handle various IoT device interactions. The plugin system allows users to define device-specific behaviors in separate modules that adhere to a common interface. This architecture ensures that the IoT Hub can be easily extended and adapted without changing its core functionality.



- **Modular Structure**: Plugins are stored in the `/plugins` directory and can either be standalone Python files or submodules with additional services.

- **Dynamic Loading**: Plugins are loaded at runtime, allowing them to subscribe to MQTT topics and process messages.

- **Interface-Based**: Each plugin implements the `IotPlugin` interface, ensuring consistency in how plugins initialize, handle topics, and process messages.



For detailed information on how to create, structure, and load plugins, please refer to the [Plugin Architecture Documentation](app/plugins/readme.md).



## Testing API with API Key and Authorization



Once the IoT Hub is running, you can interact with it by publishing messages to the defined MQTT topics via HTTP requests. Below are examples for how to publish a message using either an API key or a Bearer token for authorization.



### **API Key Authentication Example**

To authenticate with the Frostfire IoT Hub using an API key, include the `x-api-key` header in your request.



#### Example POST Request:

```bash

curl -X POST "http://localhost:8443/topics/iot/devices/temperature" \

     -H "x-api-key: your_api_key_here" \

     -H "Content-Type: application/json" \

     -d '{"temperature": 23.5}'

```



In this example:

- **`x-api-key`**: Replace `your_api_key_here` with your actual API key from the `api_keys.txt` file or configured elsewhere.

- **URL**: The endpoint corresponds to the topic `iot/devices/temperature`. You can adjust the URL depending on the topic you want to publish to.

- **Data**: This POST request publishes a temperature reading of 23.5.



---



### **Bearer Token Authorization Example**

Alternatively, you can authenticate using a Bearer token by including it in the `Authorization` header.



#### Example POST Request:

```bash

curl -X POST "http://localhost:8443/topics/iot/devices/temperature" \

     -H "Authorization: Bearer your_token_here" \

     -H "Content-Type: application/json" \

     -d '{"temperature": 23.5}'

```



In this example:

- **`Authorization`**: Replace `your_token_here` with your Bearer token.

- The rest of the request is similar to the API key example.



### **Testing with Postman**



If you prefer using a graphical tool like **Postman** to test the Frostfire IoT Hub, here’s how you can configure it:



#### **API Key Authentication with Postman**

1. Open **Postman** and select **POST** as the method.

2. Enter the URL: `http://localhost:8443/topics/iot/devices/temperature`.

3. In the **Headers** section, add:

   - `x-api-key: your_api_key_here`

   - `Content-Type: application/json`

4. In the **Body** tab, select **raw** and **JSON** format, then enter the following payload:

   ```json

   {

     "temperature": 23.5

   }

   ```

5. Click **Send**.



#### **Bearer Token Authorization with Postman**

1. Open **Postman** and select **POST** as the method.

2. Enter the URL: `http://localhost:8443/topics/iot/devices/temperature`.

3. In the **Headers** section, add:

   - `Authorization: Bearer your_token_here`

   - `Content-Type: application/json`

4. In the **Body** tab, select **raw** and **JSON** format, then enter the following payload:

   ```json

   {

     "temperature": 23.5

   }

   ```

5. Click **Send**.



Both methods should allow you to interact with the Frostfire IoT Hub and publish messages to the specified MQTT topic.



## Topic Explanation: `iot/devices`



In MQTT, topics are used to categorize messages and control who can see which messages. A topic is a hierarchical namespace that clients (both publishers and subscribers) use to exchange messages.



### Example Usage of the `iot/devices` Topic



#### Publisher



When a device or a service publishes a message to the `iot/devices` topic, it might be sending sensor data, status updates, commands, or any other relevant information. For example, an IoT temperature sensor could publish temperature readings to this topic.



#### Subscriber



A subscriber to the `iot/devices` topic might be a monitoring service, a logging service, or another device that needs to respond to the data being published. For example, an IoT application might subscribe to this topic to display real-time sensor data on a dashboard.



### Use Cases for `iot/devices`



1. **Sensor Data**: Devices like temperature sensors, humidity sensors, or motion detectors publish their readings to the `iot/devices` topic.

2. **Device Status**: Devices publish their status updates (e.g., online, offline, battery level).

3. **Control Commands**: Commands to control devices (e.g., turn on a light, adjust a thermostat) can be published to this topic.

4. **Alerts and Notifications**: Alerts from devices (e.g., threshold breaches) can be published to notify subscribers.



### Hierarchical Topics



The topic structure `iot/devices` can be further extended to create a hierarchical namespace. For example:

- `iot/devices/temperature`: For temperature sensor readings.

- `iot/devices/humidity`: For humidity sensor readings.

- `iot/devices/device1`: For messages from a specific device.



This hierarchical structuring allows more granular control and filtering of messages.



## Running with Docker Compose



You can set up and run the Frostfire IoT Hub with Mosquitto MQTT broker using Docker Compose. Follow these steps:



1. Ensure you have Docker and Docker Compose installed on your machine.



2. Create the necessary Docker files (`Dockerfile` and `Dockerfile.mosquitto`) as described in the repository.



3. The `docker-compose.yml` file is already included in the root of the project.



4. Run the following command to build and start the services:

   ```sh

   sudo docker compose up --build

   ```



5. The Mosquitto MQTT broker will be accessible on port 1883, and the Frostfire IoT Hub will run and connect to it automatically.



### Docker Troubleshooting



### Address Already in Use



If you encounter an error indicating that the address is already in use, it means that another process is currently using the port. A typical error message might look like this:



```

Error response from daemon: driver failed programming external connectivity on endpoint frostfire_mqtt-broker_container (dc0beae531f9cab78c037f10853d59ddebe63746bf7d61b35b6e26970b472b82): failed to bind port 0.0.0.0:1883/tcp: Error starting userland proxy: listen tcp4 0.0.0.0:1883: bind: address already in use

```



This typically happens when a service like Mosquitto or another MQTT broker is already running on the system and has bound to port `1883`. Follow the steps below to resolve the issue:



#### Steps to Resolve:



1. **Identify the Process Using the Port**:



   To identify which process is using port `1883`, run the following command:



   ```sh

   sudo lsof -i -P -n | grep LISTEN | grep 1883

   ```



   This will show the process ID (PID) of the service currently using that port.



2. **Stop the Conflicting MQTT Service (Mosquitto)**:



   If Mosquitto is running and you don't need it to auto-start at boot, follow these steps to stop the service on both macOS and Raspberry Pi.



   #### On Raspberry Pi (Linux-based system):



   - **Stop the Mosquitto service**:



     ```sh

     sudo systemctl stop mosquitto

     ```



   - **Disable the Mosquitto service from starting at boot**:



     ```sh

     sudo systemctl disable mosquitto

     ```



   - **Check the status** to ensure it is not running:



     ```sh

     sudo systemctl status mosquitto

     ```



   #### On macOS (using Homebrew):



   - **Stop the Mosquitto service**:



     ```sh

     brew services stop mosquitto

     ```



   - **Remove Mosquitto from auto-start on boot**:



     ```sh

     brew services remove mosquitto

     ```



   - **Check the status** to ensure it is not running:



     ```sh

     brew services list

     ```



3. **Restart the Docker Container**:



   After ensuring that Mosquitto is not running, retry running your Docker Compose setup:



   ```sh

   sudo docker-compose up --build

   ```



4. **Update Mosquitto Configuration (Optional)**:



   If you want to keep Mosquitto running on the system but not interfere with the Docker container, you can change the port Mosquitto listens on. Edit the Mosquitto configuration file (typically `/etc/mosquitto/mosquitto.conf`) and change the port:



   ```conf

   listener 1884

   ```



   After editing the configuration, restart Mosquitto:



   ```sh

   sudo systemctl restart mosquitto

   ```



5. **Run Docker Compose Again**:



   If stopping the existing process is not an option, you can run the MQTT broker in Docker on a different port. Update the `docker-compose.yml` to use a different external port:



   ```yaml

   services:

     mqtt-broker:

       ports:

         - "1884:1883"

   ```



   After modifying the `docker-compose.yml`, restart Docker Compose:



   ```sh

   sudo docker-compose up --build

   ```



By following these steps, you can avoid port conflicts and ensure that the Docker container can bind to port `1883` without interference from other services.



#### Allowing Remote Connections



If the MQTT broker is only allowing local connections, you need to update the Mosquitto configuration to allow remote connections:



1. **Create a Custom Configuration File**



   Create a file named `mosquitto.conf` in the `./mosquitto/config` directory:



   ```sh

   mkdir -p ./mosquitto/config

   nano ./mosquitto/config/mosquitto.conf

   ```



   Add the following content to allow remote connections:



   ```conf

   listener 1883

   allow_anonymous true

   ```



2. **Update `docker-compose.yml`**



   Update your `docker-compose.yml` file to mount the custom configuration:



   ```yaml

   version: '3.8'



   services:

     mqtt-broker:

       image: eclipse-mosquitto:latest

       ports:

         - "1883:1883"

       volumes:

         - ./mosquitto/config/mosquitto.conf:/mosquitto/config/mosquitto.conf



     frostfire-iot-hub:

       build:

         context: .

       environment:

         MQTT_BROKER: mqtt-broker

         MQTT_PORT: 1883

         MQTT_TOPIC: iot/devices

       depends_on:

         - mqtt-broker

       ports:

         - "5000:5000"  # Adjust if needed, though this is just for example

   ```



3. **Restart Docker Compose**



   Run the Docker Compose command again to rebuild and start the services:



   ```sh

   sudo docker compose up --build

   ```



### Configuration



All configuration settings are managed through environment variables. Refer to `app/config/config.py` for more details.



## Troubleshooting



In this section, we address common issues that users may encounter while setting up or running the Frostfire IoT Hub. If you face any issues not covered here, please refer to the [Contributing](#contributing) section for guidance on how to seek further assistance.



### Connection Refused When Connecting to MQTT Broker



If you encounter an error like `[Errno 111] Connection refused` when trying to connect to the MQTT broker, it could be due to the following reasons:



- **MQTT Broker Not Running**: Ensure that the Mosquitto MQTT broker is running. You can check the status of the Mosquitto service using:



  ```sh

  sudo systemctl status mosquitto

  ```



  If it is not running, start the service:



  ```sh

  sudo systemctl start mosquitto

  ```



- **Incorrect Broker Address or Port**: Double-check that the `MQTT_BROKER` and `MQTT_PORT` in your configuration file or environment variables are correct.



- **Network Issues**: Ensure that there is no firewall blocking the connection and that the broker is accessible from the device running the Frostfire IoT Hub.



### Address Already in Use



If you receive an "Address already in use" error, it indicates that the port (typically 1883 for MQTT) is already occupied by another process. Here's how to resolve it:



1. **Identify the Process Using the Port**:



   You can identify which process is using port `1883` with the following command:



   ```sh

   sudo lsof -i :1883

   ```



2. **Stop the Process**:



   If the process is Mosquitto or another service that you no longer need running on that port, stop it with:



   ```sh

   sudo systemctl stop mosquitto

   ```



   Or, if it is another process, use:



   ```sh

   sudo kill 

   ```



   Replace `` with the process ID obtained from the `lsof` command.



3. **Restart the IoT Hub**:



   After ensuring that the port is free, retry running your Frostfire IoT Hub or Docker Compose setup.



### Mosquitto Fails to Start



If the Mosquitto service fails to start or keeps stopping, this could be due to a configuration error or a permissions issue.



- **Check Logs for Errors**: Review the Mosquitto logs for any error messages that could indicate what is going wrong:



  ```sh

  sudo journalctl -u mosquitto

  ```



- **Configuration Issues**: Ensure that your Mosquitto configuration file (e.g., `/etc/mosquitto/mosquitto.conf`) is correctly set up. Common issues include incorrect paths for files, missing directories, or syntax errors in the configuration.



- **Permission Issues**: Ensure that the Mosquitto process has the necessary permissions to access the directories and files specified in the configuration.



### Docker Issues



For Docker-specific issues, please refer to the [Docker Troubleshooting](#docker-troubleshooting) section for guidance on common Docker-related problems.



### Unable to Publish or Subscribe to Topics



If you are unable to publish or subscribe to MQTT topics:



- **Broker Connectivity**: Ensure that the client can connect to the broker. Use a simple MQTT client like `mosquitto_pub` or `mosquitto_sub` to test connectivity.



- **Topic Configuration**: Verify that you are using the correct topic in your configuration. Ensure that both the publisher and subscriber are using the exact same topic name.



- **Firewall or Security Settings**: Check if there are any firewall rules or security settings that might be blocking MQTT traffic.



If these steps do not resolve your issue, please consult the [Contributing](#contributing) section for further assistance or consider filing an issue on the project's GitHub page.



## Contributing



We welcome contributions! Please read our [contributing guidelines](CONTRIBUTING.md) for more details.



## License



This project is licensed under the MIT License. See the [LICENSE](LICENSE) file for details.