Intro | Developer Guide | Technical Overview
Information Sharing Networks (ISNs) give organisations a way to start sharing data with each other without having to build bespoke technology from scratch every time.
Members of a network exchange information through 'signals' — lightweight messages that pass information between participants.
A signal is essentially a notification: something happened in your business and the relevant parties need to know about it. When an order ships, a decision gets made or a review completes a signal goes out to whoever's been given access.
Each signal type carries only what's needed — there are no complex payloads carrrying data that might never be used. Signals can be chained together to build up a timeline of related events and - if more detail becomes available later - you can add it to a signal that's already been sent.
Organisations can use signals to share things like:
- Events — order confirmations, delivery notifications, status updates
- Decisions — approvals, rejections, policy changes
- Analysis — audit results, risk assessments, compliance findings
- Verification — confirming that data from another organisation is accurate
The service handles all the ISN management — it's straightforward to deploy on public cloud infrastructure and doesn't require a dedicated technical team to keep running.
One of the reasons data sharing projects stall is that they try to solve everything at once - teams can spend months mapping out every conceivable use case across multiple organisations, negotiating complex agreements and building data models for scenarios that never actually happen.
ISNs take a different approach: you set up a network for one specific purpose — tracking shipments, sharing compliance data, coordinating approvals — and define only the signals you need. When new requirements arise, you add signal types as you go without breaking anything that's already in place.
The result is something you can get running quickly and that can grow as business relationships evolve,
The service supports logged-in web users and system-to-system access via service accounts. Authentication follows Oauth 2.0 standards and data is submitted and received as JSON over simple REST APIs.
Signal types are defined as JSON schemas and the service can (optionally) validate data against a registered schema prior to loading.
The initial implementation was a proof of concept used as part of the UK government's Border Trade Demonstrator (BTD) initiative. The BTDs established ISNs that were used by several government agencies and industry groups to improve processes at the border by sharing supply chain information.
This repo contains the second version of the service, which develops the ISN administration facilities and is designed to scale to higher volumes of data.
There are three components:
- an API used to configure ISNs, register participants and deploy the data sharing infrastructure
- a demonstration UI
- an associated framework agreement that establishes the responsibilities of the participants in an ISN
Many thanks to Ross McDonald who came up with the concept and created the initial reference implementation.
Prerequisites:
to run the service you need Docker Desktop
If you are planning to change the software you will also need to install Go
Running the app:
# Clone the repo
git clone https://github.com/information-sharing-networks/signalsd.git
# Start the service and database
cd signalsd
make docker-upThe service starts on http://localhost:8080 by default.
The docker compose file in the root of the repo (docker-compose.yml) starts the service and a PostgreSQL database (the containers are called app and db respectively).
The docker compose file mounts the local repo directory into the app container, so you can edit code locally and see the changes in the container. The app container has all the tools you need to test and run the service.
the make commands below are a shortcut for the corresponding docker compose commands. They are defined in the Makefile in the root of the repo. If you prefer you can use docker compose directly.
# you can override default environment variables by setting them in your shell before running the command, for example:
PORT=8081 make docker-up
# start the database container only
make docker-up-db
# start the app container only
make docker-up-app
# Rebuild the image when there is a change to:
# - Dockerfile
# - go.mod/go.sum (new dependencies)
make docker-build
# Stop the service and database
make docker-down
# see all available make targets
make helpThe API documentation is hosted as part of the service or you can refer to the docs for the current release.
The service has sensible defaults for all configuration values when running locally. You only need to set environment variables to override the defaults. A sample config is below:
# **Required in production**
#
# Database URL - note production urls must use ssl.
DATABASE_URL=postgres://user:password@host:port/database?sslmode=require
# Secret key used by the server to sign JWT tokens
SECRET_KEY=your-random-secret-key
# Base URL for user facing links, e.g one-time password links (default: http://localhost:8080)
PUBLIC_BASE_URL=https://your-server-domain.com
# CORS origins - list sites that are allowed to use the API
ALLOWED_ORIGINS=https://your-ui-domain.com # use a pipe seperated list for multiple sites
# **Optional configuration - defaults shown**
#
# Server Configuration
HOST=0.0.0.0 # Bind address (default: 0.0.0.0)
PORT=8080 # Server port (default: 8080)
ENVIRONMENT=dev # Options: dev, prod, test, perf, staging (default: dev)
LOG_LEVEL=debug # Options: debug, info, warn, error (default: debug)
# Performance Tuning
READ_TIMEOUT=15s # HTTP read timeout
WRITE_TIMEOUT=15s # HTTP write timeout
IDLE_TIMEOUT=60s # HTTP idle timeout
RATE_LIMIT_RPS=2500 # Requests per second (set to 0 to disable)
RATE_LIMIT_BURST=5000 # Burst allowance
MAX_SIGNAL_PAYLOAD_SIZE=5242880 # Max payload size (default: 5MB)
MAX_API_REQUEST_SIZE=65536 # Max API request size (default: 64KB)
# Database Connection Pool (the default used are the same as those used by pgx )
DB_MAX_CONNECTIONS=4
DB_MIN_CONNECTIONS=0 # Allow scaling to zero (Cloud Run)
DB_MAX_CONN_LIFETIME=60m
DB_MAX_CONN_IDLE_TIME=30m
DB_CONNECT_TIMEOUT=5sNote
DATABASE_URL and SECRET_KEY contain sensitive information - production versions should be managed via a secrets management system (for local docker environments these values are set in docker-compose.yml)
The app uses the following go tools:
- goose - database migrations
- sqlc - type safe SQL queries
- swag - OpenAPI from go comments
- staticcheck - linter
- gosec - security analysis
- templ - ui templates
- govulncheck - vulnerability scanner
- Air - live reload
These tools are defined in the tools section of mod.go and installed as part of the docker image.
The Docker app is started with Air which will restart the service whenever you save changes to the code.
Air is configured to automatically run code generation (templ, sqlc and swag) and applies any pending database migrations before restarting the signalsd server.
You can customise the air config by editing .air.toml (see the air docs for more information).
If you need to run these tools individually, you can use the Makefile for common tasks:
# Start containers first
make docker-up
# Then...
make check # Run all pre-commit checks and generate sqlc code and api docs
make generate # Generate sqlc code and api docs
make migrate # Run database migrations
...database schema migration is managed using goose.
Schema changes are made by adding files to app/sql/schema:
001_foo.sql
002_bar.sql
...
For docker users the migration are applied automatically whenever you restart the app container (use make migrate to run mannually).
To generate the OpenAPI docs:
make docsFor docker users, the docs are automatically created when Air live reload restarts the app container.
SQL queries are kept in app/sql/queries.
Run make sqlc to regenerate the type safe Go code after adding or altering any queries (runs automatically for docker users)
make test will run the unit and integration tests.
make check will run all the security, linting, unit and integration tests.
For information about the testing strategy and how to run indvidual tests, see the Integration Testing Documentation.
By default the signalsd service starts with a basic web interface. If you want to modify, replace or disable the UI see the UI Documentation.
- Check the API documentation
- Review logs:
make logs - Open an issue on GitHub
The service includes a shared rate limiter for all traffic regardless of source IP or user identity and protects all endpoints including auth, API, and admin routes.
This just provides basic protection against abuse - in a production environment you should configure your CDN/load balancer/reverse proxy with per-IP rate limiting.
Github actions are used to automate checks and deployments.
CI checks are run whenever there is a push to main.
The service is deployed to staging whenever there is a push to main and depolyed to production whenever a new version tag (e.g v1.0.0) is pushed.
See GitHub Actions workflows in .github/workflows/
This service is deployed to Google Cloud Run. Google handles HTTPS, firewall, load balancing and autoscaling. The service will scale to zero when not in use.
Note: This is pre-production software and the cloud deployment should only be used with data that you don't mind being deleted or seen by other people.
You can run multiple instances of the signalsd service, each in a different mode. This enables you to, for example, run a separate service for admin and signal processing workloads.
The service mode is specified using the run command with one of the following arguments:
all: Serves all API endpoints + UIapi: Serves all API endpointsadmin: Serves only admin API endpoints (excludes signal exchange)signals: Serves signal exchange endpoints (both read and write operations)signals-read: Serves only signal read operationssignals-write: Serves only signal write operations
PORT=8080 go run cmd/signalsd/main.go run all
PORT=8081 go run cmd/signalsd/main.go run signals-read
PORT=8082 go run cmd/signalsd/main.go run signals-writeThe simplest configuration is to run containers that serve all endpoints. This is the configuration used by the github actions CD pipeline but - although fine for testing - it is not recommended for production use.
It is a good idea to separate the admin api container from the signals exchange containers: although they still share a common database, it will ensure that admin requests are not blocked when there are a large number of concurrent signal processing requests.
See .github/workflow/cd-multi.yml for the github actions pipeline that can be used to deploy this configuration.
To use this configuration, set up Google Cloud Load Balancer with path-based routing to direct traffic to the signals and admin instances:
- match:
path:
regex: "^/api/isn/.*/signal-types/.*/signals.*"
route:
cluster: signalsd-signals
- match:
prefix: "/"
route:
cluster: signalsd-adminA more advanced configuration is to separate read and write operations. This would be useful if using a read-only database replica for readers:
# load balance config:
# Write operations
- match:
path:
regex: "^/api/isn/.*/signal-types/.*/signals$"
method: "POST"
route:
cluster: signalsd-signals-write
# Read operations
- match:
path:
regex: "^/api/isn/.*/signal-types/.*/signals/.*"
method: "GET"
route:
cluster: signalsd-signals-read
# Admin operations
- match:
prefix: "/"
route:
cluster: signalsd-admin
The steps to set up this environment in Google Cloud are below. This is the configuration used by the github actions CD pipelines.
prerequisites: set up an empty prod and/or staging DB on your postgres provider - you will need the connection URLs and a random secret key for each environment.
- Create a project called
signalsd - Create an artifact registry called
signalsd
cloud-run-deploycloud-run-runtime
The cloud-run-deploy account will:
- Build an image each time there is a push on main
- Push the image to the artifact registry (the image is tagged with the commit id and 'latest')
- Create a container based on the latest image and deploy to Cloud Run (the container will run under the cloud-run-runtime account)
-
cloud-run-deployneeds the Artifact Registry Writer and Cloud Run Admin roles -
The
cloud-run-runtimeaccount does not need access to any of the Google APIs and therefore doesn't have any roles. You do however need to configure it to allow the cloud-run-deploy account to use it:IAM > Service Accounts > cloud-run-runtime account > manage details > Principals with access > grant access
Add the cloud-run-deploy account email address - give it the Service Account User role.
Download a JSON key for the cloud-run-deploy account: IAM > service accounts > cloud-run-deploy account > keys > add key > Create New
The deployment workflows (.github/workflows) are configured to use GitHub variables for non-sensitive configuration and GitHub secrets for sensitive configuration.
Set up GitHub secrets in your fork of the repo: repo > settings > secrets and variables > actions > secrets tab > new repository secret
You will need three secrets:
GCP_CREDENTIALS(upload the contents of the JSON key downloaded earlier)DATABASE_URL(URL of your postgres service - we are using Neon.tech, but any provider that supports current postgres versions should work)SECRET_KEY(random secret key for your app - used by the signalsd server to sign JWT tokens)
if you are deploying to a staging environment you need to create a separate database and two additional secrets:
STAGING_DATABASE_URLSTAGING_SECRET_KEY
You need to create two github environment variables:
PUBLIC_BASE_URL(e.g. https://yourdomain.com) to hold the public base url for your appALLOWED_ORIGINS(e.g. https://yourdomain.com) to hold a pipe-separated list of allowed CORS origins
If you are deploying to a staging environment you need to create separate variable to hold these values:
STAGING_PUBLIC_BASE_URL(e.g. https://staging.yourdomain.com)STAGING_ALLOWED_ORIGINS(e.g. https://staging.yourdomain.com)
The public base URL is used by the back-end server when generating password reset and service account setup links.
google will automatically assign a *.run.app domain name to your Gcloud run service(s) and these can be mapped to custom domains using Google Cloud run DNS (see https://cloud.google.com/run/docs/mapping-custom-domains)
For production tuning, you can set GitHub variables: repo > settings > secrets and variables > actions > variables tab > new repository variable
if you don't set these variables, app defautls are used.
Recommended production variables:
# Database Pool Configuration
DB_MAX_CONNECTIONS=25
DB_MIN_CONNECTIONS=0
DB_MAX_CONN_LIFETIME=120m
DB_MAX_CONN_IDLE_TIME=20m
DB_CONNECT_TIMEOUT=10s
# Performance Configuration
RATE_LIMIT_RPS=2000
RATE_LIMIT_BURST=5000
# Server Configuration
READ_TIMEOUT=30s
WRITE_TIMEOUT=30s
IDLE_TIMEOUT=120s