When you create a Fission Account, whether signing up on the web or using the command line as a developer, it creates a username and email address in our service database, and also a private / public key pair representing that account.

We also create a Fission Web Native File System (WNFS) attached to your account, and given you access to Fission Drive, which lets you browse all your files, access them from any browser, and see which apps are attached to your file system.

We verify your email address, and can use that to help manage aspects of your service with us. You hold access to the keys connected to your account, and sign in happens automatically.

We encourage you to "link" your account to multiple devices -- your desktop and your phone, your home and your work computers, and so on. These devices can then be used to login, or link more accounts. You can read more about Account Linking »

Signing out of Fission Apps

There is no "sign out" for a Fission-powered app. You use your key to do a passwordless login, stored in your local desktop browser, mobile web browser, or your local desktop file system with the command line developer tool.

While your device is linked with a key, Fission apps will check that you have a key with the proper permission, and will just let you right in, without having to remember a password or even a username.

This is like your smartphone: only a single user is "logged in" to their personal phone, and they aren't shared.

We don't delete the data that the app stored for you, since it's stored in your own Fission File System -- just like data is stored on your phone.

App Permissions

As part of signing into an app, an app will ask for certain permissions. Right now, these are mostly related to access to your file system.

By default, every app needs access to an App Folder. You'll need to at least grant access to an App Folder for the app to function correctly.

Revoking App Access

Instead of signing out, you may want to revoke -- or delete -- an app's access to your account.

Shared Devices

Browsers and desktop computers aren't smartphones, and they do get shared. You can unlink a device -- remove your key -- by visiting the Fission Auth page.

Multiple Accounts per Device

You may create multiple Fission accounts, but you'll need a unique email address and username for each one. You'll also need to use Browser Profiles to be able to access them at the same time on the same machine, as the keys that grant access are stored in the browser.

Fission will occasionally change how your file system is stored to enable new features, improve performance, and improve security. Some of these changes require a file system migration.

Because Fission has no control over your file system, we cannot migrate your file system for you. To help you with migrations, we've developed a command-line tool that upgrades your file system to the latest version.

When to migrate your file system

If your file system is outdated, you will see a message like this in the Auth Lobby (https://auth.fission.codes):

If you decide that your username and data are not worth keeping, go to https://auth.fission.codes and click the text "remove this device" on the bottom of the page. Keep in mind that you will not be able to access data associated with the account afterward.

After removing a device, you will be able to create a new account. New accounts are always created at the latest file system version.

Running a migration

At the moment, running a migration requires familiarity working with the command line on your machine.

Step 1: Install the Fission CLI

Step 2: Link your web account to your command line

The Webnative File System (WNFS) migration tool will use your linked credentials when migrating your file system.

Step 3: Install NPM following the instructions for your operating system

Step 4: Install wnfs-migration

You can now install the migration CLI tool with npm:

npm install --global wnfs-migration

Step 5: Run wnfs-migration

$ wnfs-migration
Looking up data root for [...]
Data root is bafybei[...]
Loading IPFS...
Connected to local ipfs node, version 0.9.0
Connected to the Fission IPFS Cluster
Looking up your filesystem version (https://[...].files.fission.name/version)
Your filesystem currently is at version 1.0.0
Processing public/.well-known
Processing public/.well-known/exchange
[...]
Processing private/Documents
Finished migration: bafybei[...]
? Are you sure you want to overwrite your filesystem with a migrated version? (Y/n)

At this point, wnfs-migration has migrated a local copy of your WNFS. It will then ask you to confirm that you want to overwrite the synced version of your file system on the Fission servers.

Enter Y to confirm or n to decline and abort the migration process. If you confirm, wnfs-migration will sync your migrated file system:

Created authorization UCAN. Updating data root... # this will take some time
Migration done!
Shutting down IPFS...

What is Fission?

Fission powers next generation app publishing.

For developers, they can design a user app using only front end and design skills. The web native app can be installed by 10 or 10,000 users, just like mobile or desktop software. Because the app is running on the user's computer, you can focus on finding new users and adding new features, rather than having to learn DevOps or server scaling.

People using apps create a secure identity in their browsers. Every Fission account is linked to a file system, available in any browser. Much like an open source iCloud, users give permissions to apps, and can access their files from anywhere. Users can browse their file system, both public and private, and mix and match which apps they use, just like they're used to with mobile and desktop apps.

Developers

Get started by

Users

Learn more about , and try one out by

Fission Drive is currently a preview release of our upcoming file storage and identity system that lets you take your files anywhere, encrypted end-to-end as well as for public hosting of files, websites, and apps.

The Preview release is an exploration of the interface, and currently supports only public files.

Enter any IPFS Hash

You can browse any IPFS directory, not just those hosted on Fission, by entering in the hash, or Content ID (CID), of a directory.

Features

Dark & Light Mode

Preview supports system wide / browser settings for dark vs. light mode and will switch automatically when you change those settings.

File Previews

Clicking on an image will give you a file preview.

Click on the double arrows in the top right hand corner to embiggen the preview to full screen. Hit the X to close the preview.

The "Open in new tab" link will give you a permanent link for sharing the current file, using the Fission IPFS gateway.

Mobile Support

Yes, this works on mobile!

Keyboard Shortcuts

Use arrow keys to navigate, enter to open preview.

All of the apps that you have published with your account are listed on the Apps page.

Create a new app from the Dashboard

Manage apps you've created

shows the verification status of your account. You can resend your verification email if it ended up in your spam.

Like all Fission apps -- including the ones made by Fission directly -- you need to give permission to the Dashboard app to access your account info.

Installing the Fission CLI

The Fission command line interface (CLI) is the most common way for developers to interact with Fission services.

macOS with Homebrew

Use the Homebrew recipe to install the CLI on macOS. This taps and installs in one command:

If you have any issues, check that libcrypto1.1 installed and linked on your system.

You can also follow the next section for a manual install on macOS.

Linux and Manual Installation

Head over to our page on Github and download the latest release for your operating system.

Grant execute permissions and move the binary onto to your PATH. For example, on Ubuntu 20.04:

Check that the CLI was installed correctly.

If you have any issues, check that you have libssl1.1 (installed with OpenSSL) and libtinfo5 (or libtinfo6). Most recent Linux distributions will already have these libraries installed.

Clock Configuration

Check that your clock is accurate. Account linking depends on an accurate clock and may fail due to clock drift.

Mismatched clocks between a host system and container or VM may also cause issues.

Upgrading the CLI

Run fission --version to check if you are using an old version of the CLI.

To upgrade the CLI on macOS, brew uninstall and brew untap to reset brew.

Reinstall with brew tap and brew install.

Fission users can recover a lost account with a Recovery Kit. You can create a Recovery Kit in the Fission Dashboard to ensure you will always have access to your account.

Make a Recovery Kit

Sign in to the and select Recovery Kit.

To create a Recovery Kit, you need to grant the Fission Dashboard access to your private files. This step is necessary for the Dashboard to recover your private files.

Allow creating a recovery kit and grant permission in the Fission Auth Lobby.

After granting permission, you can create a Recovery Kit.

The recovery kit should be stored somewhere safe. Anyone with access to your Recovery Kit can access your private files. If you lose your Recovery Kit, you will not be able to recover your account.

Download your Recovery Kit and save it somewhere safe.

We recommend you store it on a device or storage medium that you will not easily lose.

Recover your Account

If you have lost access to your account, you can recover it with a Recovery Kit from the Fission Dashboard.

Select the Recover your account option below the sign in button.

You will need your Recovery Kit and access to the email you used to create the account.

Drag your recovery kit onto the upload box or click the box to select it from your file system. Fission Dashboard will import your recovery kit.

After Fission Dashboard imports your Recovery Kit, select send email.

Fission will send you verification email. Click on the link in the email and the recovery page will give you an option to recover your account.

Select recover account and re-link your account by signing into the Fission Auth Lobby.

Make sure to keep the recovery page open while you re-link your account.

The Fission Auth Lobby and account recovery page will show you confirmation codes.

When you are satisfied that the codes match, confirm in the account recovery page.

After confirming, Fission will recover your account, and you can access your files again.

Your Recovery Kit will work again if you need to recover your account in the future.

The Fission CLI is a developer tool for working with apps and managing your account on the Fission platform.

Structure

The Fission CLI uses multipart commands with the structure:

fission <command> <subcommand> [options]

Commands group related subcommands into operations on apps or accounts. Options extend functionality or display help information.

Shortcuts combine a command and subcommand into a shortcut command:

fission <shortcut> [options]

The options that would apply to the multipart command also apply to the shortcut.

Help

The --help option displays a quick reference at any command level.

At the top level, fission --help displays a high-level summary of all commands and shortcuts.

$ fission --help
Fission makes developing, deploying, updating, and iterating on web apps quick
and easy.

Usage: fission (SHORTCUT | COMMAND | --version)
  CLI to interact with Fission services

Available options:
  --version                Print version
  -h,--help                Show this help text

Shortcuts
  setup                    Initial Fission setup
  up                       Upload the working directory

Command Groups
  app                      User application management
  user                     Fission account & auth management

Visit https://fission.codes for more information and support

Setup

With fission installed, we are ready to set it up on your local machine. If this is your first time using fission, you will be prompted for a username and an email to confirm your new account.

$ fission setup
🌱 Setting up environment
🪐 Downloading managed IPFS for Linux
🎛️  Configuring managed IPFS
generating ED25519 keypair...done
peer identity: 12D3KooWHZ3C1tDmzUhgi3A6LYmgBxvv1E1obtG7S2ZkYM1MN83
initializing IPFS node at /home/yourname/.config/fission/ipfs
🔑 Creating keys
🏠 Do you have an existing account? [Y/n] n
Username: YOURNAME
Email: yourname@example.com
✅ Registration successful! Head over to your email to confirm your account.
🎛️  Initializing user config file
✅ Done! Welcome to Fission, YOURNAME ✨.                                                                                             

A private key has been generated for your machine and saved in the ~/.config/fission/key/ directory. This key secures your communication with Fission services and works like using an SSH key to connect to GitHub.

Account Linking

If you already have an account created in a web browser, you can link it on your local machine. See the Fission CLI linking guide to link your account.

Create a simple webpage

Let's publish a simple webpage with Fission! We will write a simple webpage, register it as a Fission app, and publish it to the web.

Create a project directory and an index.html file.

mkdir hello-universe
cd hello-universe
touch index.html

Add some content to index.html:

<html>
  <head>
    <title>Hello Universe!</title>
  </head>
  <body>
    <h1>Hello Universe!</h1>
    <p>This is a Fission powered page.</p>
    <p>Assisted by <a href="https://fission.codes">Fission</a>.</p>
  </body>
</html>

Run fission app register command to initialize the webpage as a Fission app. You will be prompted for a build directory.

$ fission app register
👷 Build directory (.):

Press enter to set hello-universe as your build directory, and fission will initialize your app.

✅ App initialized as big-narrow-fuchsia-elf.fission.app
⏯️  Next run fission app publish or fission app publish --watch to sync data
💁 It may take DNS time to propagate this initial setup globally. 
In this case, you can always view your app at 
https://ipfs.runfission.com/ipns/big-narrow-fuchsia-elf.fission.app

Fission will create a fission.yaml file with your app configuration.

ignore: []
url: big-narrow-fuchsia-elf.fission.app
build: .

The url is where your webpage will be on the web after it has been published, build tells the fission which directory to publish, and ignore is a list of files and directories to ignore. See the Fission YAML guide for more details.

Run fission app publish to publish the webpage.

$ fission app publish
🕚🛫 App publish local preflight
✈️  Pushing to remote
🚀 Now live on the network
📝 DNS updated! Check out your site at:
🔗 big-narrow-fuchsia-elf.fission.app

Copy the URL from the last line and paste it into your web browser to view the webpage live on the web. Nice and simple!

Use fission generate credentials to generate key pairs and DIDs.

Generate Credentials

The fission generate credentials command generates a new Ed25519 key pair and an associated DID.

$ fission generate credentials
✅ Generated an Ed25519 key pair and associated DID
🗝️  Private key: <private-key>
🔑 Public key: <public-key>
🆔 DID: <DID>

See the W3C did:key Method specification for details on the derivation of DIDs from public keys.

You can add the webnative SDK to a project by loading it from a CDN or installing it with a package manager.

CDN

For prototyping or experimentation, you can use the latest version of the SDK.

<script src="https://unpkg.com/webnative@latest/dist/index.umd.min.js"></script>

We recommend linking to a specific version in production to avoid unexpected changes.

Package Manager

We recommend installing with a package manager for larger projects that use build tools or bundlers.

Install the SDK with npm or your preferred package manager.

npm install webnative

Import the SDK in your application.

// ES6
import * as wn from 'webnative'

// Browser/UMD build
const wn = self.webnative

Use the fission app command and its subcommands to work with apps. The main operations are registering an app, publishing an app, and displaying information about an app.

Register an app

The fission app register command initializes a new app and links it to your Fission account.

$ fission app register
👷 Build directory (.): 
✅ App initialized as big-narrow-fuchsia-elf.fission.app
⏯️  Next run fission app publish or fission app publish --watch to sync data
💁 It may take DNS time to propagate this initial setup globally. In this case, 
you can always view your app at 
https://ipfs.runfission.com/ipns/big-narrow-fuchsia-elf.fission.app

You will be prompted for a build directory. The Fission CLI will publish your app from the build directory you select.

If you are using a common build directory, the Fission CLI will detect it when you run fission app register and suggest it. You accept the suggestion or enter another build directory as a relative path from the fission.yaml file.

The Fission CLI will create a fission.yaml configuration file with a list of files to ignore, a URL where your app will be viewable after it is published, and a build directory. See the Fission YAML guide for more information about the fission.yaml file.

The fission app register command has advanced options:

$ fission app register --help
Usage: fission app register [--ipfs-bin BIN_PATH] [--ipfs-timeout SECONDS] 
                            [-v|--verbose] [-a|--app-dir PATH] 
                            [-b|--build-dir PATH] [-n|--name NAME]
  Initialize an existing app

Available options:
  --ipfs-bin BIN_PATH      Path to IPFS binary (default: `which ipfs`)
  --ipfs-timeout SECONDS   IPFS timeout (default: 300)
  -v,--verbose             Detailed output
  -a,--app-dir PATH        The file path to initialize the app in (app config,
                           etc) (default: ".")
  -b,--build-dir PATH      The file path of the assets or directory to sync
  -n,--name NAME           Optional app name
  -h,--help                Show this help text

Publish an app

Use the fission app publish command to publish your app to the web. Run this command from the directory that contains your app's fission.yaml configuration file.

The fission app publish command publishes your app and associates it with the URL in the fission.yaml file. After your app is published, the Fission CLI will output a success message and the URL for your app.

$ fission app publish
🕚🛫 App publish local preflight
✈️  Pushing to remote
🚀 Now live on the network
📝 DNS updated! Check out your site at:
🔗 big-narrow-fuchsia-elf.fission.app

The fission app publish command has advanced options:

$ fission app publish --help
Usage: fission app publish [--ipfs-bin BIN_PATH] [--ipfs-timeout SECONDS] 
                           [-v|--verbose] [--update-data ARG] [--update-dns ARG]
                           [-w|--watch] [PATH]
  Upload the working directory

Available options:
  --ipfs-bin BIN_PATH      Path to IPFS binary (default: `which ipfs`)
  --ipfs-timeout SECONDS   IPFS timeout (default: 300)
  -v,--verbose             Detailed output
  --update-data ARG        Upload the data (default: True)
  --update-dns ARG         Update DNS (default: True)
  -w,--watch               Watch for changes & automatically trigger upload
  PATH                     The file path of the assets or directory to
                           sync (default: "./")
  -h,--help                Show this help text

Continuously Update an App with Watch

You can continuously publish your app by adding the --watch option. The Fission CLI will watch your build directory and publish whenever it detects a change.

$ fission app publish --watch
🕚🛫 App publish local preflight
✈️  Pushing to remote
🚀 Now live on the network
📝 DNS updated! Check out your site at: 
🔗 big-narrow-fuchsia-elf.fission.app

This means that as you work in your local development environment, changes are continuously streamed online as you save. Note that some development environments have different code and output options than "production", but this will allow you to quickly and easily share a live online version with other people.

Display information about an app

Use fission app info to display the URL where your app is viewable.

$ fission app info
✅ App available at big-narrow-fuchsia-elf.fission.app

Delegation

The fission app delegate command delegates the capability to work with apps to a DID:

$ fission app delegate --app-name ancient-round-crab --did did:key:z6Mkfr7dWuKb2muJRLiqd7mNZ61iBQD9btiPHemdcHaXcF47
✅ Delegated a UCAN for ancient-round-crab to did:key:z6Mkfr7dWuKb2muJRLiqd7mNZ61iBQD9btiPHemdcHaXcF47
🎫 UCAN: eyJ1YXYiOiIxLjAuMCIsImFsZyI6IkVkRFNBIiwiY3R5IjpudWxsLCJ0eXAiOiJKV1QifQ.eyJuYmYiOjE2NTczMDM4NzMsImlzcyI6ImRp
ZDprZXk6ejZNa2tYYkxrYjFqaGNhdkNBeW1aa3pKcnY4eWNZVHRzVmU4QndycTlaZFpHbjRLIiwicHJmIjpudWxsLCJhdWQiOiJkaWQ6a2V5Ono2TWtm
cjdkV3VLYjJtdUpSTGlxZDdtTlo2MWlCUUQ5YnRpUEhlbWRjSGFYY0Y0NyIsImZjdCI6W10sInB0YyI6IkFQUEVORCIsInJzYyI6eyJhcHAiOiJhbmNp
ZW50LXJvdW5kLWNyYWIucnVuZmlzc2lvbi5jb20ifSwiZXhwIjoxNjU3MzA0MjAzfQ.lgMvPwJS3aGmLZp5j-dftuUaVktx6EOc4RkL5rATXjrDdqgs-
4CrIxmdq_JzWF1oEkiYYSjspfL9RQl95emFAQ

You can delegate apps you have registered on your machine or delegate from environment variables by setting FISSION_MACHINE_KEY and FISSION_APP_UCAN to an Ed25519 private key and a UCAN whose audience is associated with the key. Both environment variables must be set.

The command assumes least privilege by defaulting to Append potency and limiting the UCAN lifetime to five minutes. Both potency and lifetime can be set when more potency or a longer lifetime are desired.

The fission app delegate command has advanced options:

fission app delegate --help
Usage: fission app delegate (-a|--app-name NAME) (-d|--did DID) 
                            [-p|--potency POTENCY] [-l|--lifetime LIFETIME] 
                            [-q|--quiet]
  Delegate capability to an audience DID

Available options:
  -a,--app-name NAME       The target app
  -d,--did DID             An audience DID
  -p,--potency POTENCY     The potency to delegate. Options include Append,
                           Destroy, or Super_User. (default: "Append")
  -l,--lifetime LIFETIME   Lifetime in seconds before UCAN expires
                           (default: 300)
  -q,--quiet               Only output the UCAN on success
  -h,--help                Show this help text

Authentication

Users authenticate once per browser in the Fission Auth Lobby. If the user is new to Fission, they are prompted to sign up. They may also link an existing account from another browser.

Apps redirect users to the Auth Lobby to sign up and request authorization to use resources. Sign-up only happens once, and each subsequent visit from any app is for authorization only.

Authorization

The Auth Lobby grants apps authorization to access WNFS. Apps request permission to use app-specific storage and additional public and private directories. The Auth Lobby creates a User Controlled Authorization Networks (UCAN) token that reflects the requested permissions.

Webnative checks the UCAN at initialization and returns an auth scenario.

• AuthSucceded. The user has just returned from the Auth Lobby, and they granted the requested permissions.

• Continuation. The user has already granted permission, and the UCAN has not expired.

• AuthCancelled. The user denied the requested permissions.

• NotAuthorised. The user has not granted permission yet or the UCAN has expired.

UCANs expire and users must periodically re-authorize apps through the Auth Lobby. All user data is preserved in WNFS across authorizations, including the data stored in App Storage.

Initialization

Apps intialize webnative with file system and platform API permissions. The redirectToLobby method redirects users to the Auth Lobby, where users grant or deny permission to use their resources. redirectToLobby takes an optional parameter, a URL that the lobby should redirect back to (the default is location.href).

import * as wn from 'webnative'

const state = await wn.initialise({
  permissions: {
    // Will ask the user permission to store
    // your apps data in `private/Apps/Nullsoft/Winamp`
    app: {
      name: "Winamp",
      creator: "Nullsoft"
    },

    // Ask the user permission to additional filesystem paths
    fs: {
      private: [ wn.path.directory("Audio", "Music") ],
      public: [ wn.path.directory("Audio", "Mixtapes") ]
    }
  }

}).catch(err => {
  switch (err) {
    case wn.InitialisationError.InsecureContext:
      // We need a secure context to do cryptography
      // Usually this means we need HTTPS or localhost

    case wn.InitialisationError.UnsupportedBrowser:
      // Browser not supported.
      // Example: Firefox private mode can't use indexedDB.
  }

})


switch (state.scenario) {

  case wn.Scenario.AuthCancelled:
    // User was redirected to lobby,
    // but cancelled the authorisation
    break;

  case wn.Scenario.AuthSucceeded:
  case wn.Scenario.Continuation:
    // State:
    // state.authenticated    -  Will always be `true` in these scenarios
    // state.newUser          -  If the user is new to Fission
    // state.throughLobby     -  If the user authenticated through the lobby, or just came back.
    // state.username         -  The user's username.
    //
    // ☞ We can now interact with our file system (more on that later)
    state.fs
    break;

  case wn.Scenario.NotAuthorised:
    wn.redirectToLobby(state.permissions)
    break;

}

Shared Devices

In most cases, users will not need to log out of an app or a device. Read more about this part of our vision for Fission-enabled apps in the What does “log in” or “log out” mean for the Fission SDK and apps? forum post.

One case where logging out is desirable is on a shared device. Logging out on a shared device can be accomplished in two steps:

• Remove the UCAN token from apps that were granted permissions with the webnativewn.leave function

• Log out from the Auth Lobby on the reset page (https://auth.fission.codes/reset/)

The Fission CLI and Webnative SDK are developer tools for interacting with Fission services. This section will introduce the technologies used in these tools and describe how they work on your machine and in the broader network.

Network

The Fission CLI and Webnative SDK use the InterPlanetary File System (IPFS) for networking and data transfer. IPFS uses peer-to-peer communication to exchange data between peers.

In the browser, the Webnative SDK connects with Fission peers to access and update user data. Likewise, the Fission CLI connects with Fission peers to publish websites. In both cases, you can substitute your own peers by running your own Fission server.

Apps that use Webnative communicate with Fission peers through a shared worker provided by the Fission Auth Lobby. You can pass an instance of js-ipfs to Webnative to bring your own peers.

Web Linking

To have access to your account across multiple devices, you need to link them.

When you visit an app on a new device and Sign in with Fission, or if you go directly to the Fission Auth page, you'll be prompted to either create a new account or link an existing one:

If you have an account already, click the sign in button:

The only thing you need to know is your username. Enter it, and hit the link account button:

As you can see, you are now being asked to open the Fission Auth page on your other device. This might be your other computer or perhaps your phone. There is also a short message telling us that this is for the boris0902 username.

Once you open the Fission Auth page on your other device, it will detect the linking request and display a page like this.

The new device you are linking should show the same numbers:

Since we can see the numbers are the same, we can go ahead and hit the "Approve" button, and you'll see this success message.

Switching to the new device you were linking, you'll see this message:

Now you can use either device with full authorization

And yes, this works on mobile too:

Command Line Linking

The Linking an existing user guide has details on linking accounts used at the command line.

Use fission setup, fission user whoami, and fission login to set up your account, display your username, and link your account in web browser.

Setup a new user

The fission setup command registers your account with Fission or links to your existing Fission account.

When you register a new account, you will be prompted for a username and an email. Fission will send you an email to confirm your account and complete your registration.

The fission setup command will create a global config.yaml file in your ~/.config/fission directory. See the guide for more information about the config.yaml file.

Display user information

Use fission user whoami to display your username.

Linking a web browser

You can link your Fission account in a web browser to interact with Fission-enabled apps. The fission login command sets up the CLI to listen for requests to link your account.

The browser window and command line will display confirmation codes. Verify that the confirmation codes match and grant access at the command line.

The browser window will update to show that you have successfully linked your account.

Linking from a web account

If you are signed into a Fission account in a web browser, you can link your account and use it at the command line.

Use fission setup to create and link a CLI user at your command line.

When prompted, enter Y to confirm you have an account and enter your username from the browser window. The auth lobby and CLI will display a confirmation code.

When you have confirmed that the codes match, approve in the browser, and the CLI will complete the setup process and link your account.

Setup with an existing key

You can set up your machine with an existing account if you have the machine_id.ed25519 key. Use --with-key argument and the path to your key.

The webnative software development kit offers tools for:

• Auth. Users make an account and link their account across devices in the .

• Storage. The webnative file system (WNFS) stores user data for apps.

• UCAN and DID tools for working with UCANs and distributed identities

• Platform APIs for interacting with user apps

Debugging

Version

Check the webnative version.

Debug Logs

Add the following to your code to enable webnative debug logging.

When webnative makes a change to the user's filesystem, it logs:

Next, webnative links the change to make it available across the web.

When linking completes, the change is published and available to other browsers.

Forcing a Logout

While you are testing an app, you may want to force a logout to check the NotAuthorised authentication state. The wn.leave() method will log out and completely remove a user from your app. The user will still be authenticated with Fission, and they can sign back into your app to re-authorize.

WNFS File System Roots

WNFS comes with three separate top-level file systems "roots": public, pretty, and private.

Public

Not encrypted. Full metadata support. Starts with /public.

Pretty

Not encrypted. No metadata. Represented simply as /p to be nice and short when creating public URLs like /p/path/to/file.img. It does not support versioning, use the Public or Private trees for that.

Private

Encrypted. Structured so that file metadata as well as contents are obscured. Starts with /private.

Default folders

We initialize WNFS with a set of default private folders, which should be familiar to people from working with desktop operating systems.

Additionally, in apps like Drive or in file pickers, the user sees a top level Public folder, which maps to the Public system root

Web Worker

Can I use my file system in a web worker? Yes, this only requires a slightly different setup.

Versions

Since the file system may evolve over time, a "version" is associated with each node in the file system (tracked with semver).

Currently two versions exist:

• 1.0.0: file tree with metadata. Nodes in the file tree are structured as 2 layers where one layer contains "header" information (metadata, cache, etc), and the second layer contains data or links. This is the default version, use this unless you have a good reason not to.

• 0.0.0: legacy bare file tree of an early version.

Customization

Customization can be done using the setup module. Run these before anything else you do with the SDK.

Building Blocks

Warning: Here be 🐉! Only use lower level utilities if you know what you're doing.

You can use one instance for your whole application by doing the following:

Webnative uses directory and file paths built from path segments by path functions.

All webnative SDK methods expect paths created by path functions. See the for more path utility functions.

Fission stores global and app configuration options in YAML files. The global configuration is stored in a config.yaml file and app configurations are stored in fission.yaml files.

Global Fission YAML

After you run fission user setup, you will have a global config.yaml in your ~/.config/fission/ folder. You can open config.yaml in a text editor or display it at the command line.

The default global config.yaml will looks something like this:

ignore

Ignore is a list of files you don't want fission app publish to publish. For example, you might add commonly ignored files and secrets.

Ignore follows the same conventions used in a .gitignore file.

username

Username is a name you select for yourself during fission setup.

root_proof

The UCAN that was used to link from another device or browser. null if the account was created on this device.

server_did

Server DID is the identity of the Fission server that authenticates your requests when using the Fission CLI.

peers

We configure your machine to directly connect to our servers. The peers are the IP addresses and fingerprints of our servers.

update_checked

Timestamp of the last check for an updated version of the CLI.

signing_key_path

The path to the key used to sign requests made when using the Fission CLI.

Fission YAML for Apps

When you create a new app with fission app register, a fission.yaml file is created in the directory where you ran the command. The default fission.yaml file looks something like:

ignore

Ignore works the same as the ignore in the global configuration. You can use it to list files that you do not want to publish.

You might use it to ignore a directory like node_modules or all files with an extension like Photoshop .psd files.

url

The URL where your app is viewable after it has been published.

build

The build directory is the directory the Fission CLI will publish. Use this when you have a build step that produces a production-ready version of your application.

The build directory is set as a relative path from the location of the fission.yaml file.

The webnative platform API provides methods to work with the apps associated with users.

The platform API makes it possible to manage user apps and, combined with the webnative filesystem methods, create and manage apps entirely from the browser.

The API methods are prefixed with apps.

• apps.index: A list of all of your apps and their associated domain names

• apps.create: Creates a new app, assigns an initial subdomain, and sets an asset placeholder

• apps.publish: Publish a new app version

• apps.deleteByDomain: Destroy an app identified by domain

Permissions

Apps that use the platform API must request permission to work with a user's apps. Permissions are requested when a user signs in through the Fission Auth Lobby. See the for more on the webnative authentication flow.

Platform API permissions are requested at permissions.platform.apps in the initialization object.

The value at permissions.platform.apps can be

• "*": Grant complete app management access for all of the user's apps

• An array of domain names, e.g. [ "an-app.fission.app", "another-app.fission.app" ]: Grant permission to manage specific apps. Those apps can be published or deleted.

API

apps.index

Lists all user apps and their associated domain names.

Required permissions: { platform: { apps: "*" } } full app management permissions

Params: No parameters

Returns: App[] with the domain names, creation and modification times for each app

Example:

apps.create

Creates a new app, assigns an initial subdomain, and publishes a placeholder site.

Required permissions: { platform: { apps: "*" } } full app management permissions

Params:

• subdomain: string optional

Returns: { domain: string } the subdomain of the newly created app

Example:

apps.publish

Publishes a new app version by IPFS CID. If the app does not exist yet, create the app first with apps.create.

Params:

• domain: string required

• cid: string required

Returns: Nothing returned

Example:

Retrieving the CID depends on where you have staged the app code. One convenient way to do this is to publish the app's HTML, CSS, JavaScript, and assets to a public directory in WNFS and retrieve the CID of that directory.

apps.deleteByDomain

Delete an app by domain.

Params:

• url: string required

Returns: Nothing returned

Example:

The Web Native File System (WNFS) is a file system built on top of the InterPlanetary File System (IPFS). Each Fission user has their own WNFS, and apps store user files and data in it when granted permission.

Each file system has a public tree and a private tree, much like your macOS, Windows, or Linux desktop file system. The public tree is "live" and publicly accessible on the Internet. The private tree is encrypted so that only the owner can see the contents.

All information (links, data, metadata, etc.) in the private tree is encrypted. Decryption keys are stored so that access to a given directory grants access to all of its subdirectories.

WNFS is structured and functions similarly to a Unix-style file system, with one notable exception: it's a Directed Acyclic Graph (DAG), meaning that a given child can have more than one parent (think symlinks but without the "sym").

Permissions

Every file system action checks if an app has received sufficient permissions from the user. Apps request permissions when they initialize webnative. The .

Apps request permission for app storage, additional private and public directories, and user apps published with the Platform APIs. For example, a notes app might request these permissions.

The app would have access to its dedicated app storage and public and private Notes directories.

Apps request permissions.app to store user data in a default app storage directory and other public and private directories. Webnative creates these directories for your app if they do not already exist.

The initialize function will return a NotAuthorised scenario if one of the UCAN will expire in one day to minimize the likelihood of receiving an expired permissions error. But to be safe, apps should also account for this error.

WNFS

WNFS exposes a POSIX-style interface:

• add: add a file

• cat: retrieve a file

• exists: check if a file or directory exists

• ls: list a directory

• mkdir: create a directory

• mv: move a file or directory

• read: alias for cat

• rm: remove a file or directory

• write: alias for add

Publish

The publish function synchronizes your file system with the Fission API and IPFS. WNFS does not publish changes automatically because it is more practical to batch changes in some cases. For example, a large data set is better published once than over multiple calls to publish.

Returns: CID the updated root CID for the file system.

API Summary

Methods

Methods for interacting with the filesystem all use absolute paths.

The FileContentthat WNFS can store includes FileContentRaw, Blob, string, number, and boolean. FileContentRaw is Uint8Array. In addition, the private file system can store Objects.

add

Adds file content at a given path.

Params:

• path: FilePath required

• content: FileContentrequired

Returns: CID the updated root CID for the file system

Example:

cat

Retrieves some file content at a given path.

Params:

• path: FilePath required

Returns: FileContent

Example:

exists

Checks if there is anything located at a given path.

Params:

• path: DistinctivePath required

Returns: boolean

Example:

get

Retrieves the node at the given path, either a File or Tree object

Params:

• path: DistinctivePath required

Returns: Tree | File | null

Example:

ls

Returns a list of links at a given directory path

Params:

• path: DirectoryPath required

Returns: { [name: string]: Link } Object with the file name as the key and its Link as the value.

Example:

mkdir

Creates a directory at the given path

Params:

• path: DirectoryPath required

Returns: CID the updated root CID for the file system

Example:

mv

Move a directory or file from one path to another.

Params:

• from: DistinctivePath required

• to: DistinctivePath required

Returns: CID the updated root CID for the file system

Example:

rm

Removes a file or directory at a given path.

Params:

• path: DistinctivePath required

Returns: CID the updated root CID for the file system

Example:

write

Alias for add.

Params:

• path: FilePath required

• content: FileContent required

Returns: CID the updated root CID for the file system

Example:

Versioning

Each file and directory has a history property, which you can use to get an earlier version of that item. We use the delta variable as the order index, primarily because the timestamps can be slightly out of sequence due to device inconsistencies.

Every Fission App gets a free subdomain.

Currently, these look like YOURUSERNAME.fission.name, but we're migrating to user accounts and attached apps, where every app has YOURAPPNAME.fission.app.

To use a custom domain of your own, like YOURAPPDOMAIN.com, you need to make some changes to DNS. There are two methods detailed in the following pages:

1. Fission Hosted DNS - move your nameservers to Fission, we automate everything

2. Control your own DNS - create a CNAME and TXT record and point them at Fission services

By adding a TXT record for your app and a CNAME pointing at our gateway, you can run your DNS elsewhere but still have a custom domain for your Fission app.

Add a CNAME pointing to ipfs.runfission.com

For your domain, YOURAPPDOMAIN.com, go into your DNS provider control panel and add a CNAME pointing to ipfs.runfission.com.

The process for a subdomain is the same SUB.YOURAPPDOMAIN.com, but looks a little different. Go into your DNS provider control panel and add a CNAME pointing to ipfs.runfission.com.

Add a TXT record with dnslink

Next, add a TXT record pointing to your app subdomain. Your APPNAME is created when you run fission app register, and will look something like junior-angular-tulip . We're creating a link to say that the content from your app should be served up your domain with a special dnslink record:

Subdomains function the same way, with the _dnslink subdomain, where you're adding the TXT record being "above" the SUB.YOURDOMAIN.com record, which looks like this:

Get in touch to complete the process

This process is not fully automated right now, so you'll need to send us an email support@fission.codes or drop by our support page to send us a chat, and we can get things setup on our end.

Webnative

Version 0.24

The way paths are used throughout the webnative and filesystem APIs has changed.

In earlier versions of webnative, API calls expected UNIX style paths.

const bool = await fs.exists("private/some/file")
const updatedCID = await fs.mkdir("public/some/directory")

In webnative 0.24, paths are created by path helper functions for files and directories.

const bool = await fs.exists(wn.path.file("private", "some", "file"))
const updatedCID = await fs.mkdir(wn.path.directory("public", "some", "directory"))

The docs for the previous API remain available for reference.

Version 0.26.0

The URL for loading webnative from UNPKG has changed. In previous versions, webnative was available as index.umd.js.

<script src="https://unpkg.com/webnative@latest/dist/index.umd.js"></script>

In webnative 0.26, webnative is available as index.min.js.

<script src="https://unpkg.com/webnative@0.26.0/dist/index.min.js"></script>

Version 0.26.1

The URL for loading webnative from UNPKG has changed. In webnative 0.26.0, webnative was available as index.min.js.

<script src="https://unpkg.com/webnative@0.26.0/dist/index.min.js"></script>

We found that some projects needed the UMD build and brought it back in webnative 0.26.1. We have replaced index.min.js with index.umd.min.js.

<script src="https://unpkg.com/webnative@0.26.1/dist/index.umd.min.js"></script>

Version 0.27.0

The type of App returned app.index has changed. Previously, the return type was

export type App = {
  domain: string
}

In webnative 0.27.0, the the return type is

export type App = {
  domains: string[]
  insertedAt: string
  modifiedAt: string
}

The domain for the app is now in the domains array.

Version 0.28.0

The publicReadKey function in keystore-idb was renamed topublicExchangeKey.

Most users will not need to change anything for webnative 0.28.0, unless they are interacting directly with keystore-idb.

Version 0.29.0

No migrations are needed for this version of webnative.

We're developing a series of example apps, base templates, and code examples to help you get up to speed in building Fission-powered apps. The forum's app ideas section is also a great place to look for inspiration.

Elm

The Quotes app is a simple app written in Elm. It features Fission login, and stores quotes data in your personal storage.

• Try it live at quotes.fission.app

• Browse the source on Github icidasset/quotes

Fission Drive is maintained by the Fission team and included with every Fission account. It lets you work with all of the files in your account's file system.

• Read more about Drive in the Guide »

• Login at drive.fission.codes

• Browse the source on Github fission-suite/drive

WebAssembly

An example that uses "plain" JavaScript without a framework, and also teaches you about using WebAssembly.

React

Photo Gallery https://github.com/fission-suite/ipfs-photo-gallery

Storing WebAssembly Modules

In this guide, we will show how to store WebAssembly modules in Fission web native storage. Our goal will be to store a WASM module and execute it at a later time.

The code in this guide is available in the stored-wasm-example repository and the example is published at quick-enormous-silicon-dinosaur.fission.app.

We have compiled an add function from C to a WASM module.

  int add(int x, int y)
  {
    return x + y;
  }

Our example app will make a GET request for add.wasm and store it in web native storage. We will list the contents of the directory where the module is stored to confirm it is there. Finally, we will load the module from storage and add some numbers!

Authenticate the user

Before we can store a WASM module, we need to initialize webnative and ask the user for permission to use their web native file system. This example asks for permission to use app storage and uses fs as an alias for the file system after we initialize.

let fs;

const fissionInit = {
  permissions: {
    app: {
      name: 'fission-wasm-example',
      creator: 'bgins'
    }
  }
};

We pass fissionInit to webnative and get back a state that tells us if the user has authenticated or not.

webnative.initialize(fissionInit).then(async state => {
  switch (state.scenario) {
    case webnative.Scenario.AuthSucceeded:
    case webnative.Scenario.Continuation:
      fs = state.fs;

      // Show the previous result if we have one
      const resultPath = fs.appPath(webnative.path.file('results', 'add'));
      if (await fs.exists(resultPath)) {
        const stored = JSON.parse(await fs.read(resultPath));
        revealStoredResult(stored);
      }

      dom.hide('loading-animation');
      dom.reveal('store');
      break;

    case webnative.Scenario.NotAuthorised:
    case webnative.Scenario.AuthCancelled:
      dom.hide('loading-animation');
      dom.reveal('auth');
      break;
  }

In the AuthSucceeded and Continuation cases, the user gave our app permission to use their file system. Otherwise, they have not been asked or they declined.

The user may have already stored add.wasm and used it to add numbers on a previous visit, so we check and display a stored result if we have one.

If the user has not authenticated, we show them a Sign In button that will redirect them to the Fission auth lobby.

    webnative.redirectToLobby(state.permissions);

Request and store the module

After authentication, we are ready to request add.wasm and store it in web native storage.

  const store = async () => {
    dom.reveal('loading-animation');

    fetch('add.wasm').then(response =>
      response.arrayBuffer().then(async buffer => {
        if (fs) {
          const path = fs.appPath(webnative.path.file('wasm', 'math', 'add.wasm'));
          const blob = new Blob([buffer], { type: 'application/wasm' });
          await fs.write(path, blob);
          await fs.publish();

          dom.hide('store-button-row', 'loading-animation');
          dom.reveal('list');
        }
      })
    );
  };

We fetch add.wasm and stream the Response into an ArrayBuffer. It will be stored as a Blob in app storage at the path wasm/math/add.wasm.

We prepare a path and blob, write the blob to the local file system, and publish it to the user's wider file system across the web. After we publish, the module is available on any device where the user has set up web native storage.

List directory contents

Next, we can check to make sure the module has been saved in storage.

    if (fs) {
      const directoryPath = fs.appPath(webnative.path.directory('wasm', 'math'));
      const directoryListing = await fs.ls(directoryPath);
      Object.keys(directoryListing).forEach(function (key) {
        appendRow(directoryListing[key]);
      });

      dom.hide('list-button-row');
      dom.reveal('contents');
    }

This time we prepare a wasm/math path for the directory and call fs.ls to list its contents. We take each entry in the directory listing and append its metadata to a table.

Each entry has a name, size (in bytes), last modified time, and a flag indicating whether it is a file or directory.

Load and use the module

The module is in storage and we are ready to use it! Each time a user submits lhs and rhs numbers, we load add.wasm and add their numbers.

    if (fs) {
      if (!Number.isNaN(lhs) && !Number.isNaN(rhs)) {
        const path = fs.appPath(webnative.path.file('wasm', 'math', 'add.wasm'));
        if (await fs.exists(path)) {
          const buffer = await fs.read(path);
          WebAssembly.instantiate(buffer).then(async wasmObject => {
            const result = wasmObject.instance.exports.add(lhs, rhs);
            dom.updateFirstChild('result', result);

            const resultPath = fs.appPath(webnative.path.file('results', 'add'));
            const computation = { lhs, rhs, result };
            await fs.write(resultPath, JSON.stringify(computation));
            await fs.publish();

            dom.reveal('everywhere');
          });
        }
      } else {
        dom.updateFirstChild('result', '🤖🤖💥');
      }

After some input validation, we prepare the wasm/math/add.wasm path, make sure a module exists at that path, and read it into a buffer. We instantiate the WASM module and call the add function off it.

Earlier we mentioned that storing the module makes it available across the web. Why not do the same for our result? We store the result at the path results/add, and now both the module and the last result are available on any device!

Deleting the module and result

We can delete the module and result from storage to reset our example.

    if (fs) {
      const funcPath = fs.appPath(webnative.path.file('wasm', 'math', 'add.wasm'));
      const resultPath = fs.appPath(webnative.path.file('results', 'add'));
      await fs.rm(funcPath);
      await fs.rm(resultPath);
      await fs.publish();

      dom.hide('loading-animation')
      dom.reveal(
        'store',
        'store-button-row',
        'list-button-row',
        'show-run-button-row'
      );
    }

We prepare paths for the module and result and use fs.rm to delete them. Lastly, we publish the deletion to remove them from the wider file system.

Store once, compute once

Storing WASM modules and results means you only need to request a module or perform a computation once. The web native file system will sync modules and results across user devices automatically. This opens up many opportunities to simplify your applications and sync app data across user devices.

Reading this guide gives you a taste of how this all works, but extending this example will take you much further! Here are a couple of suggested exercises that will help you to get started with web native.

• Add a subtraction operation. We have done addition, adding subtraction would be an easy first step. See Compiling C to WebAssembly without Emscripten for help with compiling WASM modules.

• Distributed addition. How about instead of overwriting the result of an addition, we keep a running total across devices?

• Build a calculator. A bit more ambitious, but a calculator app that stores state across devices would be so cool!

We can take care of this for you by hosting your DNS for you. This means changing your name servers to the Fission ones. Below are guides for some DNS providers.

Fission Nameservers

• ns1.fission.systems

• ns2.fission.systems

• ns3.fission.systems

• ns4.fission.systems

Once this is completed, we'll confirm it and handle any other updates needed automatically.

Changing Nameservers in Namecheap

Go to the domain you want to host on Fission in your Namecheap admin:

Where it says "Namecheap BasicDNS", select "Custom DNS" from the drop down:

Enter in ns1.fission.systems and ns2.fission.systems and click the green check mark to save.

You can share a private file or directory with another Fission user:

Here you see a photo being shared from Fission Drive and being accepted by another user in the auth lobby.

Exchange keys

Private shared data uses public keys, which we call exchange keys, that live in a user's public filesystem under .well-known/exchange/. Exchange keys are unique per domain because webnative generates a key-pair per domain, so we need to add an exchange key to each domain that will accept shares. We can add an exchange key to a filesystem using:

// given filesystem `fs`
if (fs.hasPublicExchangeKey() === false) {
  fs.addPublicExchangeKey()
}

The auth lobby automatically does this when we create our account, link a device, or authorise an application.

Creating a share

When the receiver of the share has their exchange key(s) set up, we're ready to create a share:

const shareDetails = fs.sharePrivate(
  [ webnative.path.file() ],
  { shareWith: "username" } // alternative: list of usernames, or exchange DID(s)
)

That will do an fs.publish() and consequently a data root update, so you'll want to wait until those are complete before accepting a share.

Resolving the share

The shareDetails contain a shareId used to accept or load a share.

fs.acceptShare({
  shareId: shareDetails.shareId,
  sharedBy: shareDetails.sharedBy.username
})

By accepting a share, you create a symbolic link (aka. soft link) to the shared data in the /private/Shared with me/SENDER_USERNAME/ directory. In other words, accepting a share is fs.loadShare() plus copying the soft link from the share:

const share = await fs.loadShare({ shareId, sharedBy })

// Add soft links to the directory
await fs.add(
  webnative.path.directory(
    webnative.path.Branch.Private,
    "Shared with me",
    sharedBy
  ),
  await share.ls([])
)

If you'd like to use the auth lobby to accept, for ease of use like Fission Drive does, then you can create a share link with the share details we got earlier:

const link = webnative.lobby.shareLink(shareDetails)
// "https://auth.fission.codes/#/share/sender-username/1/"

Soft links

When sharing a file or directory with someone, they will receive the updates to those items due to how soft links work. Most filesystem methods work out of the box with soft links, such as get and cat. But sometimes, you need to resolve them manually, which you can do with fs.resolveSymlink(). If you want to create a soft link manually, you can do that with:

await fs.symlink({
  at: webnative.path.directory("private", "Documents"),
  referringTo: webnative.path.directory("private", "Photos"),
  name: "Pictures",
  username: "test"
})

⚠️ For now soft links are read-only.

By using Cloudflare as your DNS provider and their IPFS gateway, you can deploy on Fission but have your content be served by Cloudflare. This will let you use custom domains with your Fission apps while we work to automate the process fully on the platform.

Add a CNAME pointing to Cloudflare's IPFS gateway

For your domain, YOURAPPDOMAIN.com, go into your DNS provider control panel and add a CNAME pointing to cloudflare-ipfs.com.

Since your domain is already hosted with Cloudflare, there's no step two: they'll add SSL support to it automatically, and turn off proxying.

Add a TXT record with dnslink

Now, add a TXT record pointing to your app subdomain. Your APPNAME is created when you run fission app register, and will look something like junior-angular-tulip . We're creating a link to say that the content from that app should be served up at your domain with a special dnslink record:

That's it, you're done!

Whenever you publish a new version of your Fission app, we update the hash that this special record points to. When you go to YOURAPPDOMAIN.com, Cloudflare's gateway looks up this _dnslink record, checks the ipns record, gets the hash, and fetches the content from the global IPFS network. This might even be from your computer directly.

Fission logos and badges are copyrighted by our company, Fission Internet Software. Feel free to use them in apps that use our software or when linking to us.

Please do not modify these logos or brands. Let us know if you need another format for your use case.

Check your DNS

To check the setup of your DNS for Custom Domains, you can run this dig command:

dig -t txt short _dnslink.junior-angular-tulip.fission.app

The "short" option is still pretty long! We're just looking for the ANSWER section:

;; ANSWER SECTION:
_dnslink.junior-angular-tulip.fission.app. 9 IN	TXT "dnslink=/ipfs/QmafcCaym2UZ46oKDoSQs7UkHVPpeKTVTES2GN5icuvKQv"

You can also check records online using the very handy dnsrecords.io. See this example for _dnslink.bmannconsulting.com which just shows us the TXT record we're looking for:

Maximum Open Files on Ubuntu, Mac OS, ChromeOS

We've had a report with uploading large numbers of files using ipfs-deploy with Fission support that you may need to increase the number of open files that your operating system supports. This could also occur with fission watch.

For ubuntu, read underyx's article to increase the number of open files allowed.

For Mac OS, Wilson Mar has a one liner:

sudo launchctl limit maxfiles 65536 200000

As described in the article, you'll want to add it to your bash or other shell profile so this change is permanent.

On a Chromebook in the native ChromeOS shell? Yeah, Boris hit this issue too when running large jekyll or gatsby builds:

sudo sysctl fs.inotify.max_user_watches=1048576

Re-installing brew on Mac

We've had some hiccups with our brew formula recently. To re-install / reset brew, run the following:

brew uninstall
brew untap fission-suite/fission

Now re-run the installation instructions, copied here for convenience:

brew tap fission-codes/fission
brew install fission-cli

This is related to issue #37.

DEBUG mode for fission cli

If you want to see what the Fission CLI is doing under the covers, you can turn on DEBUG mode by calling commands like this:

DEBUG=true fission up .

You'll see that fission up calls your locally installed ipfs command to add files to IPFS. We can see that it's using the 0.4.22 version of ipfs, installed using Homebrew in the "Cellar" where brew keeps installed items.

Then, it sends the hash of the entire directory to our web API, which pins it and fetches the files directly from your laptop and any other IPFS nodes that already have copies of those files in the network.

In this case, we can see that after the "Remote pinning Qm…", there is a 504 Gateway Time-out error from our server. This is a known issue, which we're working on to support large files / large quantities of files.

Ports for Managed Fission IPFS Node

The fission CLI installs a managed IPFS node. It runs on port 10235.

The Fission Web API is available as a Heroku Add-on. . It is currently in a free beta mode with a "test" plan.

As with all Heroku add-ons, you can also create a new add-on locally using the Heroku CLI tool:

If you create the add-on through the Heroku dashboard, you can find your API credentials in the Settings section of your app, under the Config Vars heading:

These can also be used in your local environment by creating an .env file.

Deploy to Heroku

A particularly good use case for using our Fission IPFS add-on is to combine it with setting up your application in a "Deploy to Heroku" mode.

Example Deploy to Heroku Apps

Ghost Blogging on Heroku with IPFS

Basic example of how to make a UCAN. Note that the issuer always has to be your DID, because the UCAN will be signed with your private key.

We are committed to making Web Native and the Fission platform work on desktop and mobile browsers without plugins. This is the list of browsers we aim to support.

Alternative browsers (e.g. Brave, Microsoft Edge) are supported on a best effort basis.

Desktop

Windows

• Chrome

• Firefox

MacOS

• Safari

• Chrome

• Firefox

Linux

• Chrome

• Firefox

Mobile

Safari on iPhone iOS / iPad iPadOS

Embedded Webviews in apps may or may not work, as it does differ from Safari.

Chrome on Android

Firefox on Android

Browser APIs

Fission relies on modern browser API features

The foundation of powerful digital applications roughly include three primary building blocks: compute, storage, and identity. Fission's approach is to make use of these building blocks, make them easier to use for developers, and to develop strong default capabilities in each of these areas.

The can be read for a more technical, specification-style version of our vision and roadmap, including direct links to various sections:

Additional reading and presentations are also available:

• User Controlled Authorization Network (UCAN),

• Presentation to the Berlin Functional Programming Meetup June 2020,

• , Aug 2020 slide deck and recorded video presentation

Compute

Web browsers run on your local desktop, laptop, or mobile device, and use local computer processing unit (CPU) to do work -- to compute things. Your machine provides the work to run apps in your browser. Simple web pages use the browser's built in HTML and CSS capabilities. But many web pages are full blown "apps" that are highly interactive, with a rich user interface (UI). These are typically powered by JavaScript, a programming language that runs in your browser, and uses your local compute.

Web Assembly is a fourth compute environment has been standardized for browsers. It can compute apps that are originally written in many different programming languages, not just JavaScript. We are just starting to see powerful Web Assembly apps being built, like Figma, which provides a PhotoShop-like experience in your web browser.

Fission intends to support Web Assembly, and make it easier to build, host, and scale web native apps that include Web Assembly.

Storage

When people think about owning their data, this often reveals that they feel comfortable when they can see and browse the files that an app uses or creates, rather than having to request an export, or not even have access to their data at all.

At Fission, we started by designing a file system that is available to both developers who want to build and host apps, and the people who use these apps.

We have designed what we call Web Native File System, pronounced and written as WinFS. It is built on top of other open protocols, including the InterPlanetary File System (IPFS).

We intend to design and share the WinFS specification in the open, and contribute it as an open standard, with open source implementations that anyone can use.

WinFS is designed to provide an experience like an open source iCloud: available and synchronized across all devices and provide both public and private, encrypted files.

Identity

Implementing a login, authentication, and authorization system is challenging to do securely, especially while respecting user privacy, providing end to end encryption, and otherwise balancing ease of use for both developers and customers.

For developers, we wanted to provide a built in way to include logins and authentication without having to struggle to implement it.

For everyone, we wanted it to be easy to login securely, without having to remember passwords, and make that login available on all of their devices.

We then designed the User Controlled Authorization Network (UCAN): a way of doing authorization where users are fully in control.

With UCAN, we based it on top of the developer friendly JSON Web Tokens (JWTs) standard, plus Google's Macaroons research paper for more distributed systems.

We intend to work with existing and emerging authorization and identity standards bodies to contribute our work as open standards.

Further Reading

1. No spinners: your work at your fingertips

2. Your work is not trapped on one device

3. The network is optional

4. Seamless collaboration with your colleagues

5. The Long Now

6. Security and privacy by default

7. You retain ultimate ownership and control