FULL OC-DISCOVERY LOGIC

daemons/node/common/common_pubsub.go

@@ -0,0 +1,148 @@
+package common
+
+import (
+	"context"
+	"encoding/json"
+	"errors"
+	"sync"
+	"time"
+
+	"cloud.o-forge.io/core/oc-lib/models/peer"
+	"cloud.o-forge.io/core/oc-lib/tools"
+	pubsub "github.com/libp2p/go-libp2p-pubsub"
+	"github.com/libp2p/go-libp2p/core/host"
+	pp "github.com/libp2p/go-libp2p/core/peer"
+)
+
+type Event struct {
+	Type string `json:"type"`
+	From string `json:"from"` // peerID
+
+	User string
+
+	DataType  int64  `json:"datatype"`
+	Timestamp int64  `json:"ts"`
+	Payload   []byte `json:"payload"`
+	Signature []byte `json:"sig"`
+}
+
+func NewEvent(name string, from string, dt *tools.DataType, user string, payload []byte) *Event {
+	priv, err := LoadKeyFromFile(false) // your node private key
+	if err != nil {
+		return nil
+	}
+	evt := &Event{
+		Type:      name,
+		From:      from,
+		User:      user,
+		Timestamp: time.Now().Unix(),
+		Payload:   payload,
+	}
+	if dt != nil {
+		evt.DataType = int64(dt.EnumIndex())
+	} else {
+		evt.DataType = -1
+	}
+
+	body, _ := json.Marshal(evt)
+	sig, _ := priv.Sign(body)
+	evt.Signature = sig
+	return evt
+}
+
+func (e *Event) RawEvent() *Event {
+	return &Event{
+		Type:      e.Type,
+		From:      e.From,
+		User:      e.User,
+		DataType:  e.DataType,
+		Timestamp: e.Timestamp,
+		Payload:   e.Payload,
+	}
+}
+
+func (e *Event) toRawByte() ([]byte, error) {
+	return json.Marshal(e.RawEvent())
+}
+
+func (event *Event) Verify(p *peer.Peer) error {
+	if p == nil {
+		return errors.New("no peer found")
+	}
+	if p.Relation == peer.BLACKLIST { // if peer is blacklisted... quit...
+		return errors.New("peer is blacklisted")
+	}
+	pubKey, err := PubKeyFromString(p.PublicKey) // extract pubkey from pubkey str
+	if err != nil {
+		return errors.New("pubkey is malformed")
+	}
+	data, err := event.toRawByte()
+	if err != nil {
+		return err
+	} // extract byte from raw event excluding signature.
+	if ok, _ := pubKey.Verify(data, event.Signature); !ok { // then verify if pubkey sign this message...
+		return errors.New("check signature failed")
+	}
+	return nil
+}
+
+type TopicNodeActivityPub struct {
+	DID          string
+	PeerID       string
+	NodeActivity peer.PeerState
+}
+
+type LongLivedPubSubService struct {
+	Host             host.Host
+	LongLivedPubSubs map[string]*pubsub.Topic
+	PubsubMu         sync.RWMutex
+}
+
+func NewLongLivedPubSubService(h host.Host) *LongLivedPubSubService {
+	return &LongLivedPubSubService{
+		Host:             h,
+		LongLivedPubSubs: map[string]*pubsub.Topic{},
+	}
+}
+
+func (s *LongLivedPubSubService) processEvent(
+	ctx context.Context,
+	p *peer.Peer,
+	event *Event,
+	topicName string, handler func(context.Context, string, *Event) error) error {
+	if err := event.Verify(p); err != nil {
+		return err
+	}
+	return handler(ctx, topicName, event)
+}
+
+const TopicPubSubNodeActivity = "oc-node-activity"
+const TopicPubSubSearch = "oc-node-search"
+
+func (s *LongLivedPubSubService) SubscribeToNodeActivity(ps *pubsub.PubSub) error {
+	ps.RegisterTopicValidator(TopicPubSubNodeActivity, func(ctx context.Context, p pp.ID, m *pubsub.Message) bool {
+		return true
+	})
+	if topic, err := ps.Join(TopicPubSubNodeActivity); err != nil {
+		return err
+	} else {
+		s.PubsubMu.Lock()
+		defer s.PubsubMu.Unlock()
+		s.LongLivedPubSubs[TopicPubSubNodeActivity] = topic
+	}
+	return nil
+}
+
+func (s *LongLivedPubSubService) SubscribeToSearch(ps *pubsub.PubSub) error {
+	ps.RegisterTopicValidator(TopicPubSubSearch, func(ctx context.Context, p pp.ID, m *pubsub.Message) bool {
+		return true
+	})
+	if topic, err := ps.Join(TopicPubSubSearch); err != nil {
+		return err
+	} else {
+		s.PubsubMu.Lock()
+		defer s.PubsubMu.Unlock()
+		s.LongLivedPubSubs[TopicPubSubSearch] = topic
+	}
+	return nil
+}

daemons/node/common/common_stream.go

@@ -0,0 +1,385 @@
+package common
+
+import (
+	"context"
+	"encoding/json"
+	"errors"
+	"fmt"
+	"oc-discovery/conf"
+	"strings"
+	"sync"
+	"time"
+
+	oclib "cloud.o-forge.io/core/oc-lib"
+	peer "cloud.o-forge.io/core/oc-lib/models/peer"
+	"github.com/libp2p/go-libp2p/core/host"
+	"github.com/libp2p/go-libp2p/core/network"
+	pp "github.com/libp2p/go-libp2p/core/peer"
+	"github.com/libp2p/go-libp2p/core/protocol"
+)
+
+type LongLivedStreamRecordedService[T interface{}] struct {
+	*LongLivedPubSubService
+	StreamRecords    map[protocol.ID]map[pp.ID]*StreamRecord[T]
+	StreamMU         sync.RWMutex
+	maxNodesConn     int
+	isBidirectionnal bool
+}
+
+func NewStreamRecordedService[T interface{}](h host.Host, maxNodesConn int, isBidirectionnal bool) *LongLivedStreamRecordedService[T] {
+	service := &LongLivedStreamRecordedService[T]{
+		LongLivedPubSubService: NewLongLivedPubSubService(h),
+		StreamRecords:          map[protocol.ID]map[pp.ID]*StreamRecord[T]{},
+		maxNodesConn:           maxNodesConn,
+		isBidirectionnal:       isBidirectionnal,
+	}
+	go service.StartGC(30 * time.Second)
+	// Garbage collection is needed on every Map of Long-Lived Stream... it may be a top level redesigned
+	go service.Snapshot(1 * time.Hour)
+	return service
+}
+
+func (ix *LongLivedStreamRecordedService[T]) StartGC(interval time.Duration) {
+	go func() {
+		t := time.NewTicker(interval)
+		defer t.Stop()
+		for range t.C {
+			ix.gc()
+		}
+	}()
+}
+
+func (ix *LongLivedStreamRecordedService[T]) gc() {
+	ix.StreamMU.Lock()
+	defer ix.StreamMU.Unlock()
+	now := time.Now()
+	streams := ix.StreamRecords[ProtocolHeartbeat]
+	if streams == nil {
+		ix.StreamRecords[ProtocolHeartbeat] = map[pp.ID]*StreamRecord[T]{}
+		return
+	}
+	for pid, rec := range streams {
+		if now.After(rec.HeartbeatStream.Expiry) || now.Sub(rec.LastSeen) > 2*rec.HeartbeatStream.Expiry.Sub(now) {
+			for _, sstreams := range ix.StreamRecords {
+				if sstreams[pid] != nil {
+					sstreams[pid].Stream.Close()
+					delete(sstreams, pid)
+				}
+			}
+			ix.PubsubMu.Lock()
+			if ix.LongLivedPubSubs[TopicPubSubNodeActivity] != nil {
+				if b, err := json.Marshal(TopicNodeActivityPub{
+					DID:          rec.HeartbeatStream.DID,
+					PeerID:       pid.String(),
+					NodeActivity: peer.OFFLINE,
+				}); err == nil {
+					ix.LongLivedPubSubs[TopicPubSubNodeActivity].Publish(context.Background(), b)
+				}
+			}
+			ix.PubsubMu.Unlock()
+		}
+	}
+
+}
+
+func (ix *LongLivedStreamRecordedService[T]) Snapshot(interval time.Duration) {
+	go func() {
+		logger := oclib.GetLogger()
+		t := time.NewTicker(interval)
+		defer t.Stop()
+		for range t.C {
+			infos := ix.snapshot()
+			for _, inf := range infos {
+				logger.Info().Msg(" -> " + inf.DID)
+			}
+		}
+	}()
+}
+
+// -------- Snapshot / Query --------
+func (ix *LongLivedStreamRecordedService[T]) snapshot() []*StreamRecord[T] {
+	ix.StreamMU.Lock()
+	defer ix.StreamMU.Unlock()
+
+	out := make([]*StreamRecord[T], 0, len(ix.StreamRecords))
+	for _, streams := range ix.StreamRecords {
+		for _, stream := range streams {
+			out = append(out, stream)
+		}
+	}
+	return out
+}
+
+func (ix *LongLivedStreamRecordedService[T]) HandleNodeHeartbeat(s network.Stream) {
+	streams := ix.StreamRecords[ProtocolHeartbeat]
+	pid, hb, err := CheckHeartbeat(ix.Host, s, ix.maxNodesConn)
+	if err != nil {
+		return
+	}
+	ix.StreamMU.Lock()
+	defer ix.StreamMU.Unlock()
+	if streams == nil {
+		ix.StreamRecords[ProtocolHeartbeat] = map[pp.ID]*StreamRecord[T]{}
+		return
+	}
+	// if record already seen update last seen
+	if rec, ok := streams[*pid]; ok {
+		rec.DID = hb.DID
+		rec.Stream = s
+		rec.HeartbeatStream = hb.Stream
+		rec.LastSeen = time.Unix(hb.Timestamp, 0)
+	}
+
+	// si je l'handle et que je ne suis pas dans une
+}
+
+func CheckHeartbeat(h host.Host, s network.Stream, maxNodes int) (*pp.ID, *Heartbeat, error) {
+	if len(h.Network().Peers()) >= maxNodes {
+		return nil, nil, fmt.Errorf("too many connections, try another indexer")
+	}
+	defer s.Close()
+
+	var hb Heartbeat
+	if err := json.NewDecoder(s).Decode(&hb); err != nil {
+		return nil, nil, err
+	}
+	pid, err := pp.Decode(hb.PeerID)
+	hb.Stream.Stream = s // here is the long-lived bidirectionnal heart bit.
+	return &pid, &hb, err
+}
+
+type StreamRecord[T interface{}] struct {
+	DID             string
+	HeartbeatStream *Stream
+	Stream          network.Stream
+	Record          T
+	LastSeen        time.Time // to check expiry
+}
+
+type Stream struct {
+	DID    string `json:"did"`
+	Stream network.Stream
+	Expiry time.Time `json:"expiry"`
+}
+
+func NewStream[T interface{}](s network.Stream, did string, record T) *Stream {
+	return &Stream{
+		DID:    did,
+		Stream: s,
+		Expiry: time.Now().UTC().Add(2 * time.Minute),
+	}
+}
+
+type ProtocolStream map[protocol.ID]map[pp.ID]*Stream
+
+func (ps ProtocolStream) Get(protocol protocol.ID) map[pp.ID]*Stream {
+	if ps[protocol] == nil {
+		ps[protocol] = map[pp.ID]*Stream{}
+	}
+
+	return ps[protocol]
+}
+
+func (ps ProtocolStream) Add(protocol protocol.ID, peerID *pp.ID, s *Stream) error {
+	if ps[protocol] == nil {
+		ps[protocol] = map[pp.ID]*Stream{}
+	}
+	if peerID != nil {
+		if s != nil {
+			ps[protocol][*peerID] = s
+		} else {
+			return errors.New("unable to add stream : stream missing")
+		}
+	}
+	return nil
+}
+
+func (ps ProtocolStream) Delete(protocol protocol.ID, peerID *pp.ID) {
+	if streams, ok := ps[protocol]; ok {
+		if peerID != nil && streams[*peerID] != nil {
+			streams[*peerID].Stream.Close()
+			delete(streams, *peerID)
+		} else {
+			for _, s := range ps {
+				for _, v := range s {
+					v.Stream.Close()
+				}
+			}
+			delete(ps, protocol)
+		}
+	}
+}
+
+const (
+	ProtocolPublish = "/opencloud/record/publish/1.0"
+	ProtocolGet     = "/opencloud/record/get/1.0"
+)
+
+var StaticIndexers []*pp.AddrInfo = []*pp.AddrInfo{}
+var StreamIndexers ProtocolStream = ProtocolStream{}
+
+func ConnectToIndexers(h host.Host, minIndexer int, maxIndexer int, myPID pp.ID) {
+	logger := oclib.GetLogger()
+	ctx := context.Background()
+	addresses := strings.Split(conf.GetConfig().IndexerAddresses, ",")
+
+	if len(addresses) > maxIndexer {
+		addresses = addresses[0:maxIndexer]
+	}
+
+	for _, indexerAddr := range addresses {
+		ad, err := pp.AddrInfoFromString(indexerAddr)
+		if err != nil {
+			logger.Err(err)
+			continue
+		}
+		if h.Network().Connectedness(ad.ID) != network.Connected {
+			if err := h.Connect(ctx, *ad); err != nil {
+				logger.Err(err)
+				continue
+			}
+		}
+		StaticIndexers = append(StaticIndexers, ad)
+		// make a privilege streams with indexer.
+		for _, proto := range []protocol.ID{ProtocolPublish, ProtocolGet, ProtocolHeartbeat} {
+			AddStreamProtocol(nil, StreamIndexers, h, proto, ad.ID, myPID, nil)
+		}
+	}
+	if len(StaticIndexers) == 0 {
+		panic("can't run a node with no indexers")
+	}
+
+	if len(StaticIndexers) < minIndexer {
+		// TODO : ask for unknown indexer.
+	}
+	SendHeartbeat(ctx, ProtocolHeartbeat, h, StreamIndexers, StaticIndexers, 20) // your indexer is just like a node for the next indexer.
+}
+
+func AddStreamProtocol(ctx *context.Context, protoS ProtocolStream, h host.Host, proto protocol.ID, id pp.ID, mypid pp.ID, onStreamCreated *func(network.Stream)) ProtocolStream {
+	if onStreamCreated == nil {
+		f := func(s network.Stream) {
+			protoS[proto][id] = &Stream{
+				Stream: s,
+				Expiry: time.Now().Add(2 * time.Minute),
+			}
+		}
+		onStreamCreated = &f
+	}
+	f := *onStreamCreated
+	if mypid > id {
+		if ctx == nil {
+			c := context.Background()
+			ctx = &c
+		}
+		if protoS[proto] == nil {
+			protoS[proto] = map[pp.ID]*Stream{}
+		}
+
+		if protoS[proto][id] != nil {
+			protoS[proto][id].Expiry = time.Now().Add(2 * time.Minute)
+		} else {
+			s, err := h.NewStream(*ctx, id, proto)
+			if err != nil {
+				panic(err.Error())
+			}
+			f(s)
+		}
+	} else {
+		h.SetStreamHandler(proto, f)
+	}
+
+	return protoS
+}
+
+type Heartbeat struct {
+	Stream    *Stream `json:"stream"`
+	DID       string  `json:"did"`
+	PeerID    string  `json:"peer_id"`
+	Timestamp int64   `json:"timestamp"`
+}
+
+type HeartbeatInfo []struct {
+	Info []byte `json:"info"`
+}
+
+const ProtocolHeartbeat = "/opencloud/heartbeat/1.0"
+
+func SendHeartbeat(ctx context.Context, proto protocol.ID, h host.Host, ps ProtocolStream, peers []*pp.AddrInfo, interval time.Duration) {
+	peerID, err := oclib.GenerateNodeID()
+	if err == nil {
+		panic("can't heartbeat daemon failed to start")
+	}
+	go func() {
+		t := time.NewTicker(interval)
+		defer t.Stop()
+		for {
+			select {
+			case <-t.C:
+				hb := Heartbeat{
+					DID:       peerID,
+					PeerID:    h.ID().String(),
+					Timestamp: time.Now().Unix(),
+				}
+				for _, ix := range peers {
+					_ = sendHeartbeat(ctx, h, proto, ix, hb, ps, interval*time.Second)
+				}
+			case <-ctx.Done():
+				return
+			}
+		}
+	}()
+}
+
+func sendHeartbeat(ctx context.Context, h host.Host, proto protocol.ID, p *pp.AddrInfo, hb Heartbeat, ps ProtocolStream, interval time.Duration) error {
+	streams := ps.Get(proto)
+	if len(streams) == 0 {
+		return errors.New("no stream for protocol heartbeat founded")
+	}
+	pss, exists := streams[p.ID]
+
+	ctxTTL, _ := context.WithTimeout(ctx, 3*interval)
+	// Connect si nécessaire
+	if h.Network().Connectedness(p.ID) != network.Connected {
+		_ = h.Connect(ctxTTL, *p)
+		exists = false // on devra recréer le stream
+	}
+
+	// Crée le stream si inexistant ou fermé
+	if !exists || pss.Stream == nil {
+		s, err := h.NewStream(ctx, p.ID, proto)
+		if err != nil {
+			return err
+		}
+		pss = &Stream{
+			Stream: s,
+			Expiry: time.Now().UTC().Add(2 * time.Minute),
+		}
+		streams[p.ID] = pss
+	}
+
+	// Envoie le heartbeat
+	ss := json.NewEncoder(pss.Stream)
+	err := ss.Encode(&hb)
+	if err != nil {
+		pss.Stream.Close()
+		pss.Stream = nil // recréera au prochain tick
+		return err
+	}
+	pss.Expiry = time.Now().UTC().Add(2 * time.Minute)
+	return nil
+}
+
+/*
+func SearchPeer(search string) ([]*peer.Peer, error) {
+	ps := []*peer.Peer{}
+	access := oclib.NewRequestAdmin(oclib.LibDataEnum(oclib.PEER), nil)
+	peers := access.Search(nil, search, false)
+	if len(peers.Data) == 0 {
+		return ps, errors.New("no self available")
+	}
+	for _, p := range peers.Data {
+		ps = append(ps, p.(*peer.Peer))
+	}
+	return ps, nil
+}
+*/

daemons/node/common/crypto.go

@@ -0,0 +1,100 @@
+package common
+
+import (
+	"bytes"
+	"encoding/base64"
+	"errors"
+	"fmt"
+	"oc-discovery/conf"
+	"oc-discovery/models"
+	"os"
+
+	"cloud.o-forge.io/core/oc-lib/models/peer"
+	"github.com/libp2p/go-libp2p/core/crypto"
+	"github.com/libp2p/go-libp2p/core/pnet"
+)
+
+func VerifyPeer(peers []*peer.Peer, event models.Event) error {
+	if len(peers) == 0 {
+		return errors.New("no peer found")
+	}
+	p := peers[0]
+	if p.Relation == peer.BLACKLIST { // if peer is blacklisted... quit...
+		return errors.New("peer is blacklisted")
+	}
+	pubKey, err := PubKeyFromString(p.PublicKey) // extract pubkey from pubkey str
+	if err != nil {
+		return errors.New("pubkey is malformed")
+	}
+	data, err := event.ToRawByte()
+	if err != nil {
+		return err
+	} // extract byte from raw event excluding signature.
+	if ok, _ := pubKey.Verify(data, event.Signature); !ok { // then verify if pubkey sign this message...
+		return errors.New("check signature failed")
+	}
+	return nil
+}
+
+func Sign(priv crypto.PrivKey, data []byte) ([]byte, error) {
+	return priv.Sign(data)
+}
+
+func Verify(pub crypto.PubKey, data, sig []byte) (bool, error) {
+	return pub.Verify(data, sig)
+}
+
+func LoadKeyFromFile(isPublic bool) (crypto.PrivKey, error) {
+	path := conf.GetConfig().PrivateKeyPath
+	if isPublic {
+		path = conf.GetConfig().PublicKeyPath
+	}
+	data, err := os.ReadFile(path)
+	if err != nil {
+		return nil, err
+	}
+
+	// Try to unmarshal as libp2p private key (supports ed25519, rsa, etc.)
+	priv, err := crypto.UnmarshalPrivateKey(data)
+	if err != nil {
+		return nil, err
+	}
+	return priv, nil
+}
+
+func VerifyPubWithPriv() bool {
+	priv, err := LoadKeyFromFile(false)
+	if err != nil {
+		fmt.Println(err)
+		return false
+	}
+	pub, err := LoadKeyFromFile(true)
+	if err != nil {
+		fmt.Println(err)
+		return false
+	}
+	return priv.GetPublic().Equals(pub)
+}
+
+func LoadPSKFromFile() (pnet.PSK, error) {
+	path := conf.GetConfig().PSKPath
+	data, err := os.ReadFile(path)
+	if err != nil {
+		return nil, err
+	}
+	// Try to unmarshal as libp2p private key (supports ed25519, rsa, etc.)
+	psk, err := pnet.DecodeV1PSK(bytes.NewReader(data))
+	if err != nil {
+		return nil, err
+	}
+	return psk, nil
+}
+
+func PubKeyFromString(s string) (crypto.PubKey, error) {
+	data, err := base64.StdEncoding.DecodeString(s)
+	if err != nil {
+		return nil, err
+	}
+
+	return crypto.UnmarshalPublicKey(data)
+}

daemons/node/common/interface.go

@@ -0,0 +1,11 @@
+package common
+
+import (
+	"context"
+
+	"cloud.o-forge.io/core/oc-lib/models/peer"
+)
+
+type DiscoveryPeer interface {
+	GetPeerRecord(ctx context.Context, key string) (*peer.Peer, error)
+}

daemons/node/indexer/handler.go

@@ -0,0 +1,189 @@
+package indexer
+
+import (
+	"encoding/base64"
+	"encoding/json"
+	"errors"
+	"oc-discovery/daemons/node/common"
+	"time"
+
+	pp "cloud.o-forge.io/core/oc-lib/models/peer"
+	"cloud.o-forge.io/core/oc-lib/models/utils"
+	"cloud.o-forge.io/core/oc-lib/tools"
+	"github.com/libp2p/go-libp2p/core/crypto"
+	"github.com/libp2p/go-libp2p/core/network"
+	"github.com/libp2p/go-libp2p/core/peer"
+)
+
+type PeerRecord struct {
+	Name          string    `json:"name"`
+	DID           string    `json:"did"` // real PEER ID
+	PeerID        string    `json:"peer_id"`
+	PubKey        []byte    `json:"pub_key"`
+	APIUrl        string    `json:"api_url"`
+	StreamAddress string    `json:"stream_address"`
+	NATSAddress   string    `json:"nats_address"`
+	WalletAddress string    `json:"wallet_address"`
+	Signature     []byte    `json:"signature"`
+	ExpiryDate    time.Time `json:"expiry_date"`
+}
+
+func (p *PeerRecord) Sign() error {
+	priv, err := common.LoadKeyFromFile(false)
+	if err != nil {
+		return err
+	}
+	dht := PeerRecord{
+		Name:       p.Name,
+		DID:        p.DID,
+		PubKey:     p.PubKey,
+		ExpiryDate: p.ExpiryDate,
+	}
+	payload, _ := json.Marshal(dht)
+	b, err := common.Sign(priv, payload)
+	p.Signature = b
+	return err
+}
+
+func (p *PeerRecord) Verify() (crypto.PubKey, error) {
+	pubKey, err := crypto.UnmarshalPublicKey(p.PubKey) // retrieve pub key in message
+	if err != nil {
+		return pubKey, err
+	}
+	dht := PeerRecord{
+		Name:       p.Name,
+		DID:        p.DID,
+		PubKey:     p.PubKey,
+		ExpiryDate: p.ExpiryDate,
+	}
+	payload, _ := json.Marshal(dht)
+
+	if ok, _ := common.Verify(pubKey, payload, p.Signature); !ok { // verify minimal message was sign per pubKey
+		return pubKey, errors.New("invalid signature")
+	}
+	return pubKey, nil
+}
+
+func (pr *PeerRecord) ExtractPeer(ourkey string, key string, pubKey crypto.PubKey) (bool, *pp.Peer, error) {
+	pubBytes, _ := pubKey.Raw()
+
+	rel := pp.NONE
+	if ourkey == key { // at this point is PeerID is same as our... we are... thats our peer INFO
+		rel = pp.SELF
+	}
+
+	p := &pp.Peer{
+		AbstractObject: utils.AbstractObject{
+			UUID: pr.DID,
+			Name: pr.Name,
+		},
+		State:         pp.ONLINE,
+		Relation:      rel, // VERIFY.... it crush nothing
+		PeerID:        pr.PeerID,
+		PublicKey:     base64.StdEncoding.EncodeToString(pubBytes),
+		APIUrl:        pr.APIUrl,
+		StreamAddress: pr.StreamAddress,
+		NATSAddress:   pr.NATSAddress,
+		WalletAddress: pr.WalletAddress,
+	}
+	if time.Now().After(pr.ExpiryDate) { // is expired
+		p.State = pp.OFFLINE // then is considers OFFLINE
+	}
+	b, err := json.Marshal(p)
+	if err != nil {
+		return pp.SELF == p.Relation, nil, err
+	}
+	tools.NewNATSCaller().SetNATSPub(tools.CREATE_RESOURCE, tools.NATSResponse{
+		FromApp:  "oc-discovery",
+		Datatype: tools.PEER,
+		Method:   int(tools.CREATE_PEER),
+		Payload:  b,
+	})
+	if p.State == pp.OFFLINE {
+		return pp.SELF == p.Relation, nil, errors.New("peer " + key + " is offline")
+	}
+	return pp.SELF == p.Relation, p, nil
+}
+
+type GetValue struct {
+	Key string `json:"key"`
+}
+
+type GetResponse struct {
+	Found  bool       `json:"found"`
+	Record PeerRecord `json:"record,omitempty"`
+}
+
+func (ix *IndexerService) initNodeHandler() {
+	ix.Host.SetStreamHandler(common.ProtocolHeartbeat, ix.HandleNodeHeartbeat)
+	ix.Host.SetStreamHandler(common.ProtocolPublish, ix.handleNodePublish)
+	ix.Host.SetStreamHandler(common.ProtocolGet, ix.handleNodeGet)
+}
+
+func (ix *IndexerService) handleNodePublish(s network.Stream) {
+	defer s.Close()
+
+	var rec PeerRecord
+	if err := json.NewDecoder(s).Decode(&rec); err != nil {
+		return
+	}
+	if rec.PeerID == "" || rec.ExpiryDate.Before(time.Now()) { // already expired
+		return
+	}
+	pid, err := peer.Decode(rec.PeerID)
+	if err != nil {
+		return
+	}
+
+	ix.StreamMU.Lock()
+	defer ix.StreamMU.Unlock()
+
+	streams := ix.StreamRecords[common.ProtocolPublish]
+	if streams == nil {
+		ix.StreamRecords[common.ProtocolPublish] = map[peer.ID]*common.StreamRecord[PeerRecord]{}
+		return
+	}
+
+	if srec, ok := streams[pid]; ok {
+		srec.DID = rec.DID
+		srec.Record = rec
+		srec.LastSeen = time.Now()
+	} else {
+		streams[pid] = &common.StreamRecord[PeerRecord]{ // HeartBeat wil
+			DID:      rec.DID,
+			Record:   rec,
+			LastSeen: time.Now(),
+		}
+	}
+}
+
+func (ix *IndexerService) handleNodeGet(s network.Stream) {
+	defer s.Close()
+
+	var req GetValue
+	if err := json.NewDecoder(s).Decode(&req); err != nil {
+		return
+	}
+	ix.StreamMU.Lock()
+	defer ix.StreamMU.Unlock()
+
+	streams := ix.StreamRecords[common.ProtocolGet]
+	if streams == nil {
+		ix.StreamRecords[common.ProtocolGet] = map[peer.ID]*common.StreamRecord[PeerRecord]{}
+		return
+	}
+
+	// simple lookup by PeerID (or DID)
+	for _, rec := range streams {
+		if rec.Record.DID == req.Key || rec.Record.PeerID == req.Key { // OK
+			resp := GetResponse{
+				Found:  true,
+				Record: rec.Record,
+			}
+			_ = json.NewEncoder(s).Encode(resp)
+			return
+		}
+	}
+	// Not found
+	_ = json.NewEncoder(s).Encode(GetResponse{Found: false})
+}

daemons/node/indexer/service.go

@@ -0,0 +1,49 @@
+package indexer
+
+import (
+	"context"
+	"oc-discovery/daemons/node/common"
+
+	pubsub "github.com/libp2p/go-libp2p-pubsub"
+	"github.com/libp2p/go-libp2p/core/host"
+)
+
+// Index Record is the model for the specialized registry of node connected to Indexer
+type IndexerService struct {
+	*common.LongLivedStreamRecordedService[PeerRecord]
+	PS              *pubsub.PubSub
+	isStrictIndexer bool
+}
+
+// if a pubsub is given... indexer is also an active oc-node. If not... your a strict indexer
+func NewIndexerService(h host.Host, ps *pubsub.PubSub, maxNode int) *IndexerService {
+	var err error
+	ix := &IndexerService{
+		LongLivedStreamRecordedService: common.NewStreamRecordedService[PeerRecord](h, maxNode, false),
+		isStrictIndexer:                ps == nil,
+	}
+	if ps == nil { // generate your fresh gossip for the flow of killed node... EVERYBODY should know !
+		ps, err = pubsub.NewGossipSub(context.Background(), ix.Host)
+		if err != nil {
+			panic(err) // can't run your indexer without a propalgation pubsub, of state of node.
+		}
+	}
+	ix.PS = ps
+	// later TODO : all indexer laucnh a private replica of them self. DEV OPS
+	if ix.isStrictIndexer {
+		common.ConnectToIndexers(h, 0, 5, ix.Host.ID()) // TODO : make var to change how many indexers are allowed.
+		ix.SubscribeToNodeActivity(ix.PS)               // now we subscribe to a long run topic named node-activity, to relay message.
+		ix.SubscribeToSearch(ix.PS)
+	}
+	ix.initNodeHandler() // then listen up on every protocol expected
+	return ix
+}
+
+func (ix *IndexerService) Close() {
+	for _, s := range ix.StreamRecords {
+		for _, ss := range s {
+			ss.Stream.Close()
+			ss.HeartbeatStream.Stream.Close()
+		}
+	}
+}

daemons/node/node.go

@@ -0,0 +1,235 @@
+package node
+
+import (
+	"context"
+	"crypto/sha256"
+	"encoding/json"
+	"errors"
+	"fmt"
+	"oc-discovery/conf"
+	"oc-discovery/daemons/node/common"
+	"oc-discovery/daemons/node/indexer"
+	"oc-discovery/daemons/node/pubsub"
+	"oc-discovery/daemons/node/stream"
+	"time"
+
+	oclib "cloud.o-forge.io/core/oc-lib"
+	"cloud.o-forge.io/core/oc-lib/models/peer"
+	"github.com/libp2p/go-libp2p"
+	pubsubs "github.com/libp2p/go-libp2p-pubsub"
+	pp "github.com/libp2p/go-libp2p/core/peer"
+)
+
+type Node struct {
+	*common.LongLivedStreamRecordedService[interface{}] // change type of stream
+	PS                                                  *pubsubs.PubSub
+	IndexerService                                      *indexer.IndexerService
+	PubSubService                                       *pubsub.PubSubService
+	StreamService                                       *stream.StreamService
+	PeerID                                              pp.ID
+}
+
+func InitNode(isNode bool, isIndexer bool) (*Node, error) {
+	if !isNode && !isIndexer {
+		return nil, errors.New("wait... what ? your node need to  at least something. Retry we can't be friend in that case")
+	}
+	logger := oclib.GetLogger()
+	logger.Info().Msg("retrieving private key...")
+	priv, err := common.LoadKeyFromFile(false) // your node private key
+	if err != nil {
+		return nil, err
+	}
+	logger.Info().Msg("retrieving psk file...")
+	psk, err := common.LoadPSKFromFile() // network common private Network. Public OC PSK is Public Network
+	if err != nil {
+		return nil, nil
+	}
+	logger.Info().Msg("open a host...")
+	h, err := libp2p.New(
+		libp2p.PrivateNetwork(psk),
+		libp2p.Identity(priv),
+		libp2p.ListenAddrStrings(
+			fmt.Sprintf("/ip4/0.0.0.0/tcp/%d", conf.GetConfig().NodeEndpointPort),
+		),
+	)
+	if err != nil {
+		return nil, errors.New("no host no node")
+	}
+	node := &Node{
+		PeerID:                         h.ID(),
+		LongLivedStreamRecordedService: common.NewStreamRecordedService[interface{}](h, 1000, false),
+	}
+	var ps *pubsubs.PubSub
+	if isNode {
+		logger.Info().Msg("generate opencloud node...")
+		ps, err = pubsubs.NewGossipSub(context.Background(), node.Host)
+		if err != nil {
+			panic(err) // can't run your node without a propalgation pubsub, of state of node.
+		}
+		node.PS = ps
+		common.ConnectToIndexers(node.Host, 0, 5, node.PeerID) // TODO : make var to change how many indexers are allowed.
+		node.claimInfo(conf.GetConfig().Name, conf.GetConfig().Hostname)
+		node.SubscribeToNodeActivity(node.PS) // now we subscribe to a long run topic named node-activity, to relay message.
+		node.SubscribeToSearch(node.PS)
+		node.StartGC(30 * time.Second)
+
+		if node.StreamService, err = stream.InitStream(context.Background(), node.Host, node.PeerID, 1000, node); err != nil {
+			panic(err)
+		}
+
+		if node.PubSubService, err = pubsub.InitPubSub(context.Background(), node.Host, node.PS, node, node.StreamService); err != nil {
+			panic(err)
+		}
+	}
+	if isIndexer {
+		logger.Info().Msg("generate opencloud indexer...")
+		node.IndexerService = indexer.NewIndexerService(node.Host, ps, 5)
+	}
+	return node, nil
+}
+
+func (d *Node) Close() {
+	d.IndexerService.Close()
+	d.PubSubService.Close()
+	d.StreamService.Close()
+	d.Host.Close()
+}
+
+func (d *Node) publishPeerRecord(
+	rec *indexer.PeerRecord,
+) error {
+	priv, err := common.LoadKeyFromFile(false) // your node private key
+	if err != nil {
+		return err
+	}
+	if common.StreamIndexers[common.ProtocolPublish] == nil {
+		return errors.New("no protocol Publish is set up on the node")
+	}
+	for _, ad := range common.StaticIndexers {
+		if common.StreamIndexers[common.ProtocolPublish][ad.ID] == nil {
+			return errors.New("no protocol Publish for peer " + ad.ID.String() + " is set up on the node")
+		}
+		stream := common.StreamIndexers[common.ProtocolPublish][ad.ID]
+		base := indexer.PeerRecord{
+			Name:       rec.Name,
+			DID:        rec.DID,
+			PubKey:     rec.PubKey,
+			ExpiryDate: time.Now().UTC().Add(2 * time.Minute),
+		}
+		payload, _ := json.Marshal(base)
+		hash := sha256.Sum256(payload)
+
+		rec.ExpiryDate = base.ExpiryDate
+		rec.Signature, err = priv.Sign(hash[:])
+
+		if err := json.NewEncoder(stream.Stream).Encode(&rec); err != nil { // then publish on stream
+			return err
+		}
+	}
+	return nil
+}
+
+func (d *Node) GetPeerRecord(
+	ctx context.Context,
+	key string,
+) (*peer.Peer, error) {
+	var err error
+	var info *indexer.PeerRecord
+	if common.StreamIndexers[common.ProtocolPublish] == nil {
+		return nil, errors.New("no protocol Publish is set up on the node")
+	}
+	for _, ad := range common.StaticIndexers {
+		if common.StreamIndexers[common.ProtocolPublish][ad.ID] == nil {
+			return nil, errors.New("no protocol Publish for peer " + ad.ID.String() + " is set up on the node")
+		}
+		stream := common.StreamIndexers[common.ProtocolPublish][ad.ID]
+		if err := json.NewEncoder(stream.Stream).Encode(indexer.GetValue{Key: key}); err != nil {
+			return nil, err
+		}
+
+		var resp indexer.GetResponse
+		if err := json.NewDecoder(stream.Stream).Decode(&resp); err != nil {
+			return nil, err
+		}
+		if resp.Found {
+			info = &resp.Record
+			break
+		}
+	}
+	var p *peer.Peer
+	if info != nil {
+		if pk, err := info.Verify(); err != nil {
+			return nil, err
+		} else if ok, p, err := info.ExtractPeer(d.PeerID.String(), key, pk); err != nil {
+			return nil, err
+		} else {
+			if ok {
+				d.publishPeerRecord(info)
+			}
+			return p, nil
+		}
+	}
+	return p, err
+}
+
+func (d *Node) claimInfo(
+	name string,
+	endPoint string, // TODO : endpoint is not necesserry StreamAddress
+) (*peer.Peer, error) {
+	if endPoint == "" {
+		return nil, errors.New("no endpoint found for peer")
+	}
+
+	peerID, err := oclib.GenerateNodeID()
+	if err != nil {
+		return nil, err
+	}
+
+	priv, err := common.LoadKeyFromFile(false)
+	if err != nil {
+		return nil, err
+	}
+
+	pub, err := common.LoadKeyFromFile(true)
+	if err != nil {
+		return nil, err
+	}
+
+	pubBytes, _ := pub.Raw()
+
+	now := time.Now()
+	expiry := now.Add(150 * time.Second)
+
+	rec := &indexer.PeerRecord{
+		Name:   name,
+		DID:    peerID, // REAL PEER ID
+		PubKey: pubBytes,
+	}
+
+	rec.PeerID = d.Host.ID().String()
+	d.PeerID = d.Host.ID()
+
+	payload, _ := json.Marshal(rec)
+	hash := sha256.Sum256(payload)
+
+	rec.Signature, err = priv.Sign(hash[:])
+	if err != nil {
+		return nil, err
+	}
+
+	rec.APIUrl = endPoint
+	rec.StreamAddress = "/ip4/" + conf.GetConfig().Hostname + " /tcp/" + fmt.Sprintf("%v", conf.GetConfig().NodeEndpointPort) + " /p2p/" + rec.PeerID
+	rec.NATSAddress = oclib.GetConfig().NATSUrl
+	rec.WalletAddress = "my-wallet"
+	rec.ExpiryDate = expiry
+
+	if err := d.publishPeerRecord(rec); err != nil {
+		return nil, err
+	}
+	if pk, err := rec.Verify(); err != nil {
+		return nil, err
+	} else {
+		_, p, err := rec.ExtractPeer(peerID, peerID, pk)
+		return p, err
+	}
+}

daemons/node/pubsub/handler.go

@@ -0,0 +1,42 @@
+package pubsub
+
+import (
+	"context"
+	"oc-discovery/daemons/node/common"
+
+	"cloud.o-forge.io/core/oc-lib/tools"
+)
+
+func (ps *PubSubService) handleEvent(ctx context.Context, topicName string, evt *common.Event) error {
+	action := ps.getTopicName(topicName)
+	if err := ps.handleEventSearch(ctx, evt, action); err != nil {
+		return err
+	}
+	return nil
+}
+
+func (ps *PubSubService) handleEventSearch( // only : on partner followings. 3 canals for every partner.
+	ctx context.Context,
+	evt *common.Event,
+	action tools.PubSubAction,
+) error {
+	if !(action == tools.PB_SEARCH_RESPONSE || action == tools.PB_SEARCH) {
+		return nil
+	}
+	// TODO VERIFY: FROM SHOULD BE A PEER ID OR A  DID
+	if p, err := ps.Node.GetPeerRecord(ctx, evt.From); err == nil {
+		if err := evt.Verify(p); err != nil {
+			return err
+		}
+		switch action {
+		case tools.PB_SEARCH: // when someone ask for search.
+			if err := ps.StreamService.SendResponse(p, evt); err != nil {
+				return err
+			}
+
+		default:
+			return nil
+		}
+	}
+	return nil
+}

daemons/node/pubsub/publish.go

@@ -0,0 +1,82 @@
+package pubsub
+
+import (
+	"context"
+	"encoding/json"
+	"errors"
+	"oc-discovery/daemons/node/common"
+	"oc-discovery/models"
+
+	oclib "cloud.o-forge.io/core/oc-lib"
+	"cloud.o-forge.io/core/oc-lib/dbs"
+	"cloud.o-forge.io/core/oc-lib/tools"
+)
+
+func (ps *PubSubService) SearchPublishEvent(
+	ctx context.Context, dt *tools.DataType, typ string, user string, search string) error {
+	switch typ {
+	case "known": // define Search Strategy
+		return ps.StreamService.SearchKnownPublishEvent(dt, user, search) //if partners focus only them*/
+	case "partner": // define Search Strategy
+		return ps.StreamService.SearchPartnersPublishEvent(dt, user, search) //if partners focus only them*/
+	case "all": // Gossip PubSub
+		b, err := json.Marshal(map[string]string{"search": search})
+		if err != nil {
+			return err
+		}
+		return ps.searchPublishEvent(ctx, dt, user, b)
+	default:
+		return errors.New("no type of research found")
+	}
+}
+
+func (ps *PubSubService) searchPublishEvent(
+	ctx context.Context, dt *tools.DataType, user string, payload []byte) error {
+	id, err := oclib.GenerateNodeID()
+	if err != nil {
+		return err
+	}
+	if err := ps.subscribeEvents(ctx, dt, tools.PB_SEARCH_RESPONSE, id, 60); err != nil { // TODO Catpure Event !
+		return err
+	}
+	return ps.publishEvent(ctx, dt, tools.PB_SEARCH, user, "", payload, false)
+}
+
+func (ps *PubSubService) publishEvent(
+	ctx context.Context, dt *tools.DataType, action tools.PubSubAction, user string,
+	peerID string, payload []byte, chanNamedByDt bool,
+) error {
+	name := action.String() + "#" + peerID
+	if chanNamedByDt && dt != nil { // if a datatype is precised then : app.action.datatype#peerID
+		name = action.String() + "." + (*dt).String() + "#" + peerID
+	}
+
+	from, err := oclib.GenerateNodeID()
+	if err != nil {
+		return err
+	}
+	priv, err := common.LoadKeyFromFile(false)
+	if err != nil {
+		return err
+	}
+	msg, _ := json.Marshal(models.NewEvent(name, from, dt, user, payload, priv))
+	topic, err := ps.PS.Join(name)
+	if err != nil {
+		return err
+	}
+	return topic.Publish(ctx, msg)
+}
+
+func (pc *PubSubService) getDefaultFilter(search string) map[string][]dbs.Filter {
+	return map[string][]dbs.Filter{ // filter by like name, short_description, description, owner, url if no filters are provided
+		"abstractintanciatedresource.abstractresource.abstractobject.name":       {{Operator: dbs.LIKE.String(), Value: search}},
+		"abstractintanciatedresource.abstractresource.type":                      {{Operator: dbs.LIKE.String(), Value: search}},
+		"abstractintanciatedresource.abstractresource.short_description":         {{Operator: dbs.LIKE.String(), Value: search}},
+		"abstractintanciatedresource.abstractresource.description":               {{Operator: dbs.LIKE.String(), Value: search}},
+		"abstractintanciatedresource.abstractresource.owners.name":               {{Operator: dbs.LIKE.String(), Value: search}},
+		"abstractintanciatedresource.abstractresource.abstractobject.creator_id": {{Operator: dbs.EQUAL.String(), Value: search}},
+	}
+}
+
+// TODO REVIEW PUBLISHING + ADD SEARCH ON PUBLIC : YES
+// TODO : Search should verify DataType

daemons/node/pubsub/service.go

@@ -0,0 +1,45 @@
+package pubsub
+
+import (
+	"context"
+	"oc-discovery/daemons/node/common"
+	"oc-discovery/daemons/node/stream"
+	"strings"
+	"sync"
+
+	"cloud.o-forge.io/core/oc-lib/tools"
+	pubsub "github.com/libp2p/go-libp2p-pubsub"
+	"github.com/libp2p/go-libp2p/core/host"
+)
+
+type PubSubService struct {
+	Node          common.DiscoveryPeer
+	Host          host.Host
+	PS            *pubsub.PubSub
+	StreamService *stream.StreamService
+	Subscription  []string
+	mutex         sync.RWMutex
+}
+
+func InitPubSub(ctx context.Context, h host.Host, ps *pubsub.PubSub, node common.DiscoveryPeer, streamService *stream.StreamService) (*PubSubService, error) {
+	service := &PubSubService{
+		Node:          node,
+		Host:          h,
+		StreamService: streamService,
+		PS:            ps,
+	}
+
+	service.initSubscribeEvents(ctx)
+	return service, nil
+}
+
+func (ps *PubSubService) getTopicName(topicName string) tools.PubSubAction {
+	ns := strings.Split(topicName, ".")
+	if len(ns) > 0 {
+		return tools.GetActionString(ns[0])
+	}
+	return tools.NONE
+}
+
+func (ix *PubSubService) Close() {
+}

daemons/node/pubsub/subscribe.go

@@ -0,0 +1,102 @@
+package pubsub
+
+import (
+	"context"
+	"encoding/json"
+	"errors"
+	"oc-discovery/daemons/node/common"
+	"slices"
+	"time"
+
+	oclib "cloud.o-forge.io/core/oc-lib"
+	"cloud.o-forge.io/core/oc-lib/models/peer"
+	"cloud.o-forge.io/core/oc-lib/tools"
+	pubsub "github.com/libp2p/go-libp2p-pubsub"
+)
+
+func (ps *PubSubService) initSubscribeEvents(ctx context.Context) error {
+	if err := ps.subscribeEvents(ctx, nil, tools.PB_SEARCH, "", -1); err != nil {
+		return err
+	}
+	return nil
+}
+
+// generic function to subscribe to DHT flow of event
+func (ps *PubSubService) subscribeEvents(
+	ctx context.Context, dt *tools.DataType, action tools.PubSubAction, peerID string, timeout int,
+) error {
+	// define a name app.action#peerID
+	name := action.String() + "#" + peerID
+	if dt != nil { // if a datatype is precised then : app.action.datatype#peerID
+		name = action.String() + "." + (*dt).String() + "#" + peerID
+	}
+	topic, err := ps.PS.Join(name) // find out the topic
+	if err != nil {
+		return err
+	}
+
+	sub, err := topic.Subscribe() // then subscribe to it
+	if err != nil {
+		return err
+	}
+	ps.mutex.Lock() // add safely in cache your subscription.
+	ps.Subscription = append(ps.Subscription, name)
+	ps.mutex.Unlock()
+
+	// launch loop waiting for results.
+	go ps.waitResults(ctx, sub, name, timeout)
+
+	return nil
+}
+
+func (ps *PubSubService) waitResults(ctx context.Context, sub *pubsub.Subscription, topicName string, timeout int) {
+	logger := oclib.GetLogger()
+	defer ctx.Done()
+	for {
+		ps.mutex.Lock()                                   // check safely if cache is actually notified subscribed to topic
+		if !slices.Contains(ps.Subscription, topicName) { // if not kill the loop.
+			break
+		}
+		ps.mutex.Unlock()
+		// if still subscribed -> wait for new message
+		var cancel context.CancelFunc
+		if timeout != -1 {
+			ctx, cancel = context.WithTimeout(ctx, time.Duration(timeout)*time.Second)
+			defer cancel()
+		}
+		msg, err := sub.Next(ctx)
+		if err != nil {
+			if errors.Is(err, context.DeadlineExceeded) {
+				// timeout hit, no message before deadline kill subsciption.
+				ps.mutex.Lock()
+				subs := []string{}
+				for _, ss := range ps.Subscription {
+					if ss != topicName {
+						subs = append(subs, ss)
+					}
+				}
+				ps.Subscription = subs
+				ps.mutex.Unlock()
+				return
+			}
+			continue
+		}
+		var evt common.Event
+		if err := json.Unmarshal(msg.Data, &evt); err != nil { // map to event
+			continue
+		}
+		if p, err := ps.Node.GetPeerRecord(ctx, evt.From); err == nil {
+			if err := ps.processEvent(ctx, p, &evt, topicName); err != nil {
+				logger.Err(err)
+			}
+		}
+	}
+}
+
+func (ps *PubSubService) processEvent(
+	ctx context.Context, p *peer.Peer, event *common.Event, topicName string) error {
+	if err := event.Verify(p); err != nil {
+		return err
+	}
+	return ps.handleEvent(ctx, topicName, event)
+}

daemons/node/stream/handler.go

@@ -0,0 +1,123 @@
+package stream
+
+import (
+	"context"
+	"encoding/json"
+	"errors"
+	"oc-discovery/daemons/node/common"
+	"strings"
+
+	oclib "cloud.o-forge.io/core/oc-lib"
+	"cloud.o-forge.io/core/oc-lib/models/peer"
+	"cloud.o-forge.io/core/oc-lib/models/resources"
+	"cloud.o-forge.io/core/oc-lib/tools"
+)
+
+func (ps *StreamService) getTopicName(topicName string) tools.PubSubAction {
+	ns := strings.Split(topicName, ".")
+	if len(ns) > 0 {
+		return tools.GetActionString(ns[0])
+	}
+	return tools.NONE
+}
+
+func (ps *StreamService) handleEvent(topicName string, evt *common.Event) error {
+	action := ps.getTopicName(topicName)
+	if err := ps.handleEventFromPartner(evt, action); err != nil {
+		return err
+	}
+	if action == tools.PB_SEARCH_RESPONSE {
+		if err := ps.retrieveResponse(evt); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+func (abs *StreamService) retrieveResponse(event *common.Event) error { //
+	res, err := resources.ToResource(int(event.DataType), event.Payload)
+	if err != nil || res == nil {
+		return nil
+	}
+	b, err := json.Marshal(res.Serialize(res))
+	tools.NewNATSCaller().SetNATSPub(tools.CATALOG_SEARCH_EVENT, tools.NATSResponse{
+		FromApp:  "oc-discovery",
+		Datatype: tools.DataType(event.DataType),
+		Method:   int(tools.CATALOG_SEARCH_EVENT),
+		Payload:  b,
+	})
+	return nil
+}
+
+func (ps *StreamService) handleEventFromPartner(evt *common.Event, action tools.PubSubAction) error {
+	if !(action == tools.PB_CREATE || action == tools.PB_UPDATE || action == tools.PB_DELETE) {
+		return nil
+	}
+	resource, err := resources.ToResource(int(evt.DataType), evt.Payload)
+	if err != nil {
+		return err
+	}
+	b, err := json.Marshal(resource)
+	if err != nil {
+		return err
+	}
+	switch action {
+	case tools.PB_SEARCH:
+		access := oclib.NewRequestAdmin(oclib.LibDataEnum(oclib.PEER), nil)
+		peers := access.Search(nil, evt.From, false)
+		if len(peers.Data) > 0 {
+			p := peers.Data[0].(*peer.Peer)
+			// TODO : something if peer is missing in our side !
+			ps.SendResponse(p, evt)
+		} else if p, err := ps.Node.GetPeerRecord(context.Background(), evt.From); err == nil {
+			ps.SendResponse(p, evt)
+		}
+	case tools.PB_CREATE:
+	case tools.PB_UPDATE:
+		tools.NewNATSCaller().SetNATSPub(tools.CREATE_RESOURCE, tools.NATSResponse{
+			FromApp:  "oc-discovery",
+			Datatype: tools.DataType(evt.DataType),
+			Method:   int(tools.CREATE_RESOURCE),
+			Payload:  b,
+		})
+	case tools.PB_DELETE:
+		tools.NewNATSCaller().SetNATSPub(tools.REMOVE_RESOURCE, tools.NATSResponse{
+			FromApp:  "oc-discovery",
+			Datatype: tools.DataType(evt.DataType),
+			Method:   int(tools.REMOVE_RESOURCE),
+			Payload:  b,
+		})
+	default:
+		return errors.New("no action authorized available : " + action.String())
+	}
+	return nil
+}
+
+func (abs *StreamService) SendResponse(p *peer.Peer, event *common.Event) error {
+	dts := []oclib.LibDataEnum{oclib.LibDataEnum(event.DataType)}
+	if event.DataType == -1 { // expect all resources
+		dts = []oclib.LibDataEnum{oclib.LibDataEnum(oclib.COMPUTE_RESOURCE), oclib.LibDataEnum(oclib.STORAGE_RESOURCE),
+			oclib.LibDataEnum(oclib.PROCESSING_RESOURCE), oclib.LibDataEnum(oclib.DATA_RESOURCE), oclib.LibDataEnum(oclib.WORKFLOW_RESOURCE)}
+	}
+	var m map[string]string
+	err := json.Unmarshal(event.Payload, &m)
+	if err != nil {
+		return err
+	}
+	for _, dt := range dts {
+		access := oclib.NewRequestAdmin(oclib.LibDataEnum(event.DataType), nil)
+		peerID := p.GetID()
+		searched := access.Search(abs.FilterPeer(peerID, m["search"]), "", false)
+		for _, ss := range searched.Data {
+			if j, err := json.Marshal(ss); err == nil {
+				if event.DataType != -1 {
+					ndt := tools.DataType(dt.EnumIndex())
+					abs.PublishResources(&ndt, event.User, peerID, j)
+				} else {
+					abs.PublishResources(nil, event.User, peerID, j)
+				} // TODO : TEMP STREAM !
+			}
+		}
+	}
+	return nil
+}

daemons/node/stream/publish.go

@@ -0,0 +1,150 @@
+package stream
+
+import (
+	"context"
+	"encoding/json"
+	"errors"
+	"fmt"
+	"oc-discovery/daemons/node/common"
+	"time"
+
+	oclib "cloud.o-forge.io/core/oc-lib"
+	"cloud.o-forge.io/core/oc-lib/models/peer"
+	"cloud.o-forge.io/core/oc-lib/tools"
+	"github.com/libp2p/go-libp2p/core/network"
+	pp "github.com/libp2p/go-libp2p/core/peer"
+	"github.com/libp2p/go-libp2p/core/protocol"
+)
+
+func (ps *StreamService) PublishResources(dt *tools.DataType, user string, toPeerID string, resource []byte) error {
+	access := oclib.NewRequestAdmin(oclib.LibDataEnum(oclib.PEER), nil)
+	p := access.LoadOne(toPeerID)
+	if p.Err != "" {
+		return errors.New(p.Err)
+	} else {
+		ad, err := pp.AddrInfoFromString(p.Data.(*peer.Peer).StreamAddress)
+		if err != nil {
+			return err
+		}
+		ps.write(tools.PB_SEARCH, toPeerID, ad, dt, user, resource, ProtocolSearchResource)
+	}
+	return nil
+}
+
+func (ps *StreamService) SearchKnownPublishEvent(dt *tools.DataType, user string, search string) error {
+	access := oclib.NewRequestAdmin(oclib.LibDataEnum(oclib.PEER), nil)
+	peers := access.Search(nil, search, false)
+	if peers.Err != "" {
+		return errors.New(peers.Err)
+	} else {
+		b, err := json.Marshal(map[string]string{"search": search})
+		if err != nil {
+			return err
+		}
+		for _, p := range peers.Data {
+			ad, err := pp.AddrInfoFromString(p.(*peer.Peer).StreamAddress)
+			if err != nil {
+				continue
+			}
+			ps.write(tools.PB_SEARCH, p.GetID(), ad, dt, user, b, ProtocolSearchResource)
+		}
+	}
+	return nil
+}
+
+func (ps *StreamService) SearchPartnersPublishEvent(dt *tools.DataType, user string, search string) error {
+	if peers, err := ps.searchPeer(fmt.Sprintf("%v", peer.PARTNER.EnumIndex())); err != nil {
+		return err
+	} else {
+		b, err := json.Marshal(map[string]string{"search": search})
+		if err != nil {
+			return err
+		}
+		for _, p := range peers {
+			ad, err := pp.AddrInfoFromString(p.StreamAddress)
+			if err != nil {
+				continue
+			}
+			ps.write(tools.PB_SEARCH, p.GetID(), ad, dt, user, b, ProtocolSearchResource)
+		}
+	}
+	return nil
+}
+
+func (ps *StreamService) ToPartnerPublishEvent(
+	ctx context.Context, action tools.PubSubAction, dt *tools.DataType, user string, payload []byte) error {
+	if peers, err := ps.searchPeer(fmt.Sprintf("%v", peer.PARTNER.EnumIndex())); err != nil {
+		return err
+	} else {
+		for _, p := range peers {
+			for _, protocol := range protocols {
+				ad, err := pp.AddrInfoFromString(p.StreamAddress)
+				if err != nil {
+					continue
+				}
+				ps.write(action, p.GetID(), ad, dt, user, payload, protocol)
+			}
+		}
+	}
+	return nil
+}
+
+func (s *StreamService) write(
+	action tools.PubSubAction,
+	did string,
+	peerID *pp.AddrInfo,
+	dt *tools.DataType,
+	user string,
+	payload []byte,
+	proto protocol.ID) error {
+	logger := oclib.GetLogger()
+
+	name := action.String() + "#" + peerID.ID.String()
+	if dt != nil {
+		name = action.String() + "." + (*dt).String() + "#" + peerID.ID.String()
+	}
+	s.mu.Lock()
+	defer s.mu.Unlock()
+	if s.Streams[proto] == nil {
+		s.Streams[proto] = map[pp.ID]*common.Stream{}
+	}
+
+	if s.Streams[proto][peerID.ID] == nil {
+		// should create a very temp stream
+		ctxTTL, err := context.WithTimeout(context.Background(), 10*time.Second)
+		if err == nil {
+			if s.Host.Network().Connectedness(peerID.ID) != network.Connected {
+				_ = s.Host.Connect(ctxTTL, *peerID)
+				str, err := s.Host.NewStream(ctxTTL, peerID.ID, ProtocolHeartbeatPartner)
+				if err == nil {
+					s.Streams[ProtocolHeartbeatPartner][peerID.ID] = &common.Stream{
+						DID:    did,
+						Stream: str,
+						Expiry: time.Now().UTC().Add(5 * time.Second),
+					}
+					str2, err := s.Host.NewStream(ctxTTL, peerID.ID, proto)
+					if err == nil {
+						s.Streams[proto][peerID.ID] = &common.Stream{
+							DID:    did,
+							Stream: str2,
+							Expiry: time.Now().UTC().Add(5 * time.Second),
+						}
+					}
+				}
+
+			}
+		}
+		return errors.New("no stream available for protocol " + fmt.Sprintf("%v", proto) + " from PID " + peerID.ID.String())
+	}
+	stream := s.Streams[proto][peerID.ID]
+
+	enc := json.NewEncoder(stream.Stream)
+
+	evt := common.NewEvent(name, peerID.ID.String(), dt, user, payload)
+	if err := enc.Encode(evt); err != nil {
+		stream.Stream.Close()
+		logger.Err(err)
+		return nil
+	}
+	return nil
+}

daemons/node/stream/service.go

@@ -0,0 +1,228 @@
+package stream
+
+import (
+	"context"
+	"encoding/json"
+	"errors"
+	"fmt"
+	"oc-discovery/daemons/node/common"
+	"sync"
+	"time"
+
+	oclib "cloud.o-forge.io/core/oc-lib"
+	"cloud.o-forge.io/core/oc-lib/dbs"
+	"cloud.o-forge.io/core/oc-lib/models/peer"
+	"github.com/libp2p/go-libp2p/core/host"
+	"github.com/libp2p/go-libp2p/core/network"
+	pp "github.com/libp2p/go-libp2p/core/peer"
+	"github.com/libp2p/go-libp2p/core/protocol"
+)
+
+const ProtocolSearchResource = "/opencloud/resource/search/1.0"
+const ProtocolCreateResource = "/opencloud/resource/create/1.0"
+const ProtocolUpdateResource = "/opencloud/resource/update/1.0"
+const ProtocolDeleteResource = "/opencloud/resource/delete/1.0"
+
+const ProtocolHeartbeatPartner = "/opencloud/resource/heartbeat/partner/1.0"
+
+var protocols = []protocol.ID{
+	ProtocolSearchResource,
+	ProtocolCreateResource,
+	ProtocolUpdateResource,
+	ProtocolDeleteResource,
+}
+
+type StreamService struct {
+	Key          pp.ID
+	Host         host.Host
+	Node         common.DiscoveryPeer
+	Streams      common.ProtocolStream
+	maxNodesConn int
+	mu           sync.Mutex
+	// Stream       map[protocol.ID]map[pp.ID]*daemons.Stream
+}
+
+func InitStream(ctx context.Context, h host.Host, key pp.ID, maxNode int, node common.DiscoveryPeer) (*StreamService, error) {
+	service := &StreamService{
+		Key:          key,
+		Node:         node,
+		Host:         h,
+		Streams:      common.ProtocolStream{},
+		maxNodesConn: maxNode,
+	}
+	service.Host.SetStreamHandler(ProtocolHeartbeatPartner, service.HandlePartnerHeartbeat)
+	service.connectToPartners() // we set up a stream
+	go service.StartGC(30 * time.Second)
+	return service, nil
+}
+
+func (s *StreamService) HandlePartnerHeartbeat(stream network.Stream) {
+	pid, hb, err := common.CheckHeartbeat(s.Host, stream, s.maxNodesConn)
+	if err != nil {
+		return
+	}
+	s.mu.Lock()
+	defer s.mu.Unlock()
+	streams := s.Streams[ProtocolHeartbeatPartner]
+	if streams == nil {
+		s.Streams[ProtocolHeartbeatPartner] = map[pp.ID]*common.Stream{}
+		return
+	}
+	// if record already seen update last seen
+	if rec, ok := streams[*pid]; ok {
+		rec.DID = hb.DID
+		rec.Expiry = time.Now().UTC().Add(2 * time.Minute)
+	} else { // if not in stream ?
+		pid := stream.Conn().RemotePeer()
+		ai, err := pp.AddrInfoFromP2pAddr(stream.Conn().RemoteMultiaddr())
+		if err == nil {
+			s.connectToPartner(pid, ai)
+		}
+	}
+	go s.StartGC(30 * time.Second)
+}
+
+func (s *StreamService) connectToPartners() error {
+	peers, err := s.searchPeer(fmt.Sprintf("%v", peer.PARTNER.EnumIndex()))
+	if err != nil {
+		return err
+	}
+	for _, p := range peers {
+		ad, err := pp.AddrInfoFromString(p.StreamAddress)
+		if err != nil {
+			return err
+		}
+		pid, err := pp.Decode(p.PeerID)
+		if err != nil {
+			continue
+		}
+		s.connectToPartner(pid, ad)
+		// heartbeat your partner.
+	}
+	// TODO if handle... from partner then HeartBeat back
+	return nil
+}
+
+func (s *StreamService) connectToPartner(pid pp.ID, ad *pp.AddrInfo) {
+	for _, proto := range protocols {
+		f := func(ss network.Stream) {
+			if s.Streams[proto] == nil {
+				s.Streams[proto] = map[pp.ID]*common.Stream{}
+			}
+			s.Streams[proto][pid] = &common.Stream{
+				Stream: ss,
+				Expiry: time.Now().Add(2 * time.Minute),
+			}
+			go s.readLoop(s.Streams[proto][pid])
+		}
+		s.Streams = common.AddStreamProtocol(nil, s.Streams, s.Host, proto, pid, s.Key, &f)
+		if s.Streams[proto][pid] != nil {
+			go s.readLoop(s.Streams[proto][pid]) // reaaaad...
+		}
+	}
+	common.SendHeartbeat(context.Background(), ProtocolHeartbeatPartner,
+		s.Host, s.Streams, []*pp.AddrInfo{ad}, time.Minute)
+}
+
+func (s *StreamService) searchPeer(search string) ([]*peer.Peer, error) {
+	ps := []*peer.Peer{}
+	access := oclib.NewRequestAdmin(oclib.LibDataEnum(oclib.PEER), nil)
+	peers := access.Search(nil, search, false)
+	if len(peers.Data) == 0 {
+		return ps, errors.New("no self available")
+	}
+	for _, p := range peers.Data {
+		ps = append(ps, p.(*peer.Peer))
+	}
+	return ps, nil
+}
+
+func (ix *StreamService) Close() {
+	for _, s := range ix.Streams {
+		for _, ss := range s {
+			ss.Stream.Close()
+		}
+	}
+}
+
+func (s *StreamService) StartGC(interval time.Duration) {
+	go func() {
+		t := time.NewTicker(interval)
+		defer t.Stop()
+		for range t.C {
+			s.gc()
+		}
+	}()
+}
+
+func (s *StreamService) gc() {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+	now := time.Now()
+	streams := s.Streams[ProtocolHeartbeatPartner]
+	if streams == nil {
+		s.Streams[ProtocolHeartbeatPartner] = map[pp.ID]*common.Stream{}
+		return
+	}
+	for pid, rec := range streams {
+		if now.After(rec.Expiry) {
+			for _, sstreams := range s.Streams {
+				if sstreams[pid] != nil {
+					sstreams[pid].Stream.Close()
+					delete(sstreams, pid)
+				}
+			}
+		}
+	}
+}
+
+func (ps *StreamService) readLoop(s *common.Stream) {
+	dec := json.NewDecoder(s.Stream)
+	for {
+		var evt common.Event
+		if err := dec.Decode(&evt); err != nil {
+			s.Stream.Close()
+			return
+		}
+		ps.handleEvent(evt.Type, &evt)
+	}
+}
+
+func (abs *StreamService) FilterPeer(peerID string, search string) *dbs.Filters {
+	id, err := oclib.GetMySelf()
+	if err != nil {
+		return nil
+	}
+	filter := map[string][]dbs.Filter{
+		"creator_id": {{Operator: dbs.EQUAL.String(), Value: id}}, // is my resource...
+		"": {{Operator: dbs.OR.String(), Value: &dbs.Filters{
+			Or: map[string][]dbs.Filter{
+				"abstractobject.access_mode": {{Operator: dbs.EQUAL.String(), Value: 1}}, // if public
+				"abstractinstanciatedresource.instances": {{Operator: dbs.ELEMMATCH.String(), Value: &dbs.Filters{ // or got a partners instances
+					And: map[string][]dbs.Filter{
+						"resourceinstance.partnerships": {{Operator: dbs.ELEMMATCH.String(), Value: &dbs.Filters{
+							And: map[string][]dbs.Filter{
+								"resourcepartnership.peer_groups." + peerID: {{Operator: dbs.EXISTS.String(), Value: true}},
+							},
+						}}},
+					},
+				}}},
+			},
+		}}},
+	}
+	if search != "" {
+		filter[" "] = []dbs.Filter{{Operator: dbs.OR.String(), Value: &dbs.Filters{
+			Or: map[string][]dbs.Filter{ // filter by like name, short_description, description, owner, url if no filters are provided
+				"abstractintanciatedresource.abstractresource.abstractobject.name":       {{Operator: dbs.LIKE.String(), Value: search}},
+				"abstractintanciatedresource.abstractresource.type":                      {{Operator: dbs.LIKE.String(), Value: search}},
+				"abstractintanciatedresource.abstractresource.short_description":         {{Operator: dbs.LIKE.String(), Value: search}},
+				"abstractintanciatedresource.abstractresource.description":               {{Operator: dbs.LIKE.String(), Value: search}},
+				"abstractintanciatedresource.abstractresource.owners.name":               {{Operator: dbs.LIKE.String(), Value: search}},
+				"abstractintanciatedresource.abstractresource.abstractobject.creator_id": {{Operator: dbs.EQUAL.String(), Value: search}},
+			},
+		}}}
+	}
+	return &dbs.Filters{
+		And: filter,
+	}
+}