CARS Node is the backend runtime system for deploying and managing BSV Blockchain-based Overlay Services at scale in a cloud environment. It orchestrates Kubernetes clusters, billing, domain setup, SSL issuance, and application lifecycle management for your projects. Together with the CARS CLI and the LARS (Local Automated Runtime System) toolkit, CARS Node provides a seamless path from local development to production cloud deployment.
If you’re familiar with the CARS CLI, which developers use to build and deploy artifacts from their machines, then think of the CARS Node as its cloud counterpart—a dynamic environment that receives your deployments, provisions infrastructure, handles scaling, billing, and secure access to your running BSV Overlay Services.
Deploy Me! After you check out this README, head on over to GETTING_STARTED.md to follow along for a complete, zero-to-hero deployment exercise!
- What is CARS Node?
- Key Features and Responsibilities
- System Architecture
- Prerequisites
- Setup and Configuration
- How CARS Node Works
- Integration with the CARS CLI
- Admin and Developer Guides
- Security Considerations
- Tips and Best Practices
- License
CARS Node is the “cloud runtime” counterpart to LARS (Local Automated Runtime System). While LARS helps you develop your BSV Overlay Services locally, CARS Node runs them in a Kubernetes-based cloud environment. It’s responsible for:
- Receiving deployment artifacts built with the CARS CLI.
- Provisioning Kubernetes resources (deployments, services, ingress) on-the-fly.
- Managing domain names, SSL certificates, and secure endpoints.
- Tracking resource usage and billing customers accordingly.
- Providing logs, visibility, and lifecycle management for your BSV Overlay Services.
In short, CARS Node takes your deployment-info.json and packaged artifacts and turns them into running, fully managed, and billed cloud services.
- Automated Kubernetes Provisioning: CARS Node interacts with a Kubernetes cluster to schedule workloads, manage pods and services, and ensure high availability.
- Dynamic Ingress and SSL: Uses
ingress-nginx,cert-manager, and Let’s Encrypt to automatically provision custom domains and HTTPS certificates. - Billing and Resource Usage Tracking: Integrates with Prometheus to gather CPU, memory, disk, and network usage over time, billing projects automatically.
- Multiple Environment Support: Supports mainnet and testnet keys, separate private keys, and network-specific TAAL API keys for transaction broadcast, merkle proof acquisition, and double spend detection.
- Identity and Project Management: Integrates with the standard BSV identity system, ensuring only authorized admins can create or manage projects.
- Logging and Observability: Centralized logs in MySQL, plus direct access to cluster-level logs (frontend/backend/mongo/mysql) via
kubectland API endpoints. - Extensible Setup: Designed for both small-scale Docker Compose-based setups and large-scale, production-grade environments.
At a high level, CARS Node is an Express.js server that:
- Connects to a MySQL database to store project metadata, deployments, logs, and accounting records.
- Uses Kubernetes (k3s or a full upstream cluster) to run workloads.
- Integrates with
prometheus-based monitoring for billing and metrics. - Uses
helmto manage deployments andcert-managerfor SSL certificates. - Stores artifacts locally before building Docker images and pushing them to a registry.
- Issues new releases by applying Helm charts dynamically constructed at runtime.
- BSV Project Structure: Your deployed projects follow a known structure (BRC-102) with
deployment-info.json, abackend/,frontend/, and integrated sCrypt contracts (optional). - CARS CLI Installed Locally (for developer workflows): Use it on your dev machine to upload built artifacts.
- Docker & Docker Registry: Needed for building/pushing images. Use the integrated
registryanddindin the localdocker-compose.yml, or configure externally. - Kubernetes Cluster and kubectl Access: CARS Node expects access to a k3s or Kubernetes cluster. Again, you can use the pre-configured Rancher k3s in the Compose file, or configure your own for larger scale. The Dockerfile bundled with the code installs
kubectl, or you can run CARS directly on machine(s) that already have it. - Helm: For deploying workloads as Helm releases. Again, present in the integrated
Dockerfile, or you can install it yourself. - MySQL Database: Persistent storage of project state. Use the integrated Compose file, or configure your own with ENV variables.
- SendGrid API Key: For sending email notifications about billing, deployments, and admin changes. Provide it as an environmental variable or add it to a local
.envfor use with Compose.
CARS Node is configured via a .env file. Run:
npm run setupThis interactive script asks for all required environment variables, including CARS_NODE_PORT, MYSQL_USER, MYSQL_PASSWORD, MAINNET_PRIVATE_KEY, TESTNET_PRIVATE_KEY, TAAL_API_KEY_MAIN, TAAL_API_KEY_TEST, K3S_TOKEN, DOCKER_HOST, DOCKER_REGISTRY, PROJECT_DEPLOYMENT_DNS_NAME, SENDGRID_API_KEY, and more.
These variables control your server base URL, database credentials, private keys for blockchain operations, Docker registry configurations, and more. An example .env is provided for reference.
- Database (MySQL): Set up a MySQL 8.0 instance. Provide credentials in
.env. - Kubernetes Cluster: CARS Node needs a cluster. For local testing, you can run
rancher/k3sinside Docker Compose. In production, you might connect to an existing cluster via a KUBECONFIG file.
For development or small-scale demos:
- Ensure Docker and Docker Compose installed.
- Run
docker-compose upfrom the provideddocker-compose.yml.
This sets up:cars-mysql(MySQL database)cars-k3s(K3s Kubernetes server)cars-registry(local Docker registry)cars-dind(Docker-in-Docker for building images)cars-node(The CARS Node itself)
Once running, CARS Node listens on CARS_NODE_PORT (default: 7777). You can now deploy projects using the CARS CLI from your development machine.
For larger scale or production:
- External Kubernetes: Point
KUBECONFIG_FILE_PATHto a production kubeconfig. - External Registry: Use a secure Docker registry, configure
DOCKER_REGISTRY. - Custom Domains & SSL: Ensure that
PROJECT_DEPLOYMENT_DNS_NAMEis a domain you control. CARS Node uses Let’s Encrypt viacert-manager. - Prometheus & Observability: Make sure your Prometheus endpoint is stable and reachable.
- High Availability: Scale MySQL externally, run multiple CARS Node instances behind a load balancer, ensure persistent volumes for registry, etc.
- Projects: Each BSV Overlay Services deployment managed by CARS Node is a “project.” A project has admins, a unique UUID, a private key, and a balance.
- Deployments (Releases): Each time you run
cars release nowor create a release manually, you upload an artifact (tarball) to CARS Node. It extracts the artifact, builds Docker images (backend and/or frontend), and then deploys them to Kubernetes using Helm.
CARS Node periodically queries Prometheus for CPU, memory, disk, and network usage of each project’s namespace. It calculates costs based on configured rates and debits the project’s balance. Projects must maintain a positive balance to ensure uninterrupted service. Thresholds trigger email alerts as balances drop.
CARS Node uses Kubernetes ingress with ingress-nginx and cert-manager:
- Each project gets subdomains of
PROJECT_DEPLOYMENT_DNS_NAMEby default:
frontend.<project-id>.<project-deployment-dns>,
backend.<project-id>.<project-deployment-dns>. - You can also set custom domains by adding TXT verification records. Once verified, CARS Node updates ingress and triggers SSL certificate issuance. Be sure to point any custom domains to the cluster's ingress IP for reachability.
- Let’s Encrypt SSL certificates are managed automatically.
- Project Logs: Stored in MySQL’s
logstable. View them via API or CARS CLI. - Release (Deployment) Logs: Logs related to a specific deployment stored similarly.
- Resource-Level Logs: Direct from
kubectl logs. CARS Node provides endpoints to fetch logs forfrontend,backend,mongo,mysqlpods. - Global Info and Metrics: Query
cars global-infoto see public keys and pricing.
By default, CARS Node runs a single replica of backend/frontend services. For greater scale, you can customize Helm templates to increase replicas. In production, you’ll run CARS Node in a stable environment, possibly with Horizontal Pod Autoscalers and more complex ingress rules.
The CARS CLI is the frontend to CARS Node. Developers run cars locally to:
- Build Artifacts:
cars build - Create Releases:
cars release get-upload-url - Upload Artifacts:
cars release upload-files - Configure Domains and Admins:
cars project domain:frontend,cars project add-admin
The CLI talks to CARS Node’s APIs. Everything you can do interactively (cars with no args) you can also do non-interactively with subcommands.
- Create a Project: The CLI or direct API calls can create a project. Projects start with one admin.
- Add/Remove Admins: Add project admins by identity key or email. Admins can manage billing, deployments, and domains.
- Top Up Balance: Use
cars project topupor the API to add funds in satoshis.
- Upload Artifacts: Once you run
cars build, you get a.tgzartifact.cars release noworcars release upload-filessends this artifact to CARS Node. - Deploying to Kubernetes: CARS Node handles the Kubernetes deployments automatically, running
helm upgrade --installbehind the scenes.
Set rates for CPU, memory, disk, network usage in .env. CARS Node reads these and applies them to calculate periodic charges.
- Prometheus Setup: CARS Node expects a working Prometheus endpoint.
- Logs and Metrics: You can add additional dashboards or integrate with Grafana for advanced observability.
Integrate cars build and cars release now into CI pipelines. After pushing code, CI can run these commands to automatically deploy new versions to CARS Node.
- Private Keys: Keep
MAINNET_PRIVATE_KEYandTESTNET_PRIVATE_KEYsecure. These keys are used for blockchain operations. - Admin Access: Only authenticated, registered identities can manage projects. Carefully control who can become a project admin.
- HTTPS and Domain Verification: Let’s Encrypt automation ensures end-to-end encryption for public endpoints.
- Start Small, Scale Later: Begin with a local
docker-compose upenvironment, then move to production clusters as you grow. - Regular Billing Checks: Watch your project balances. Negative balances may lead to restricted ingress (in production scenarios). Emails are sent to project admins when balances get low.
- Use Multiple CARS Configs: In
deployment-info.json, define multiple CARS configs for staging, production, or different cloud providers. - Continuous Deployment: Combine
cars buildandcars release nowin CI/CD to achieve fully automated deployment pipelines.
CARS Node is licensed under the open BSV license. See LICENSE.txt for more details.