Skip to main content

Gateway Config (`.config.yaml`)

tl;dr Configurations for Gateway operation & services support.

Example Configuration

All configuration for the PATH gateway are defined in a single YAML file named .config.yaml.

Exactly one shannon_config MUST be provided. This field determines the protocol that the gateway will use.

Example Shannon Config (click to expand)
# (Required) Shannon Protocol Configuration
shannon_config:
full_node_config:
rpc_url: https://shannon-grove-rpc.mainnet.poktroll.com
grpc_config:
host_port: shannon-grove-grpc.mainnet.poktroll.com:443
lazy_mode: false

gateway_config:
gateway_mode: "centralized"
gateway_address: pokt1up7zlytnmvlsuxzpzvlrta95347w322adsxslw
gateway_private_key_hex: 40af4e7e1b311c76a573610fe115cd2adf1eeade709cd77ca31ad4472509d388
owned_apps_private_keys_hex:
- 40af4e7e1b311c76a573610fe115cd2adf1eeade709cd77ca31ad4472509d388
service_fallback:
- service_id: eth
send_all_traffic: false
fallback_urls:
- "https://eth.rpc.grove.city/v1/1a2b3c4d"
- "https://eth.rpc.grove.city/v1/5e6f7a8b"
# (Optional) Endpoint reputation system
reputation_config:
enabled: true
storage_type: "memory"
initial_score: 80
min_threshold: 30
recovery_timeout: "5m"

# (Optional) Logger Configuration
logger_config:
level: "info" # Valid values: debug, info, warn, error

Config File Location (Local Development)

In local development mode, the config file must be located at:

./local/path/.config.yaml

Config File Validation

VSCode Validation

If you are using VSCode, we recommend using the YAML Language Support extension for in-editor validation of the .config.yaml file. Enable it by ensuring the following annotation is present at the top of your config file:

# yaml-language-server: $schema=https://raw.githubusercontent.com/pokt-network/path/refs/heads/main/config/config.schema.yaml

Protocol Configuration

The config file MUST contain EXACTLY one top-level shannon_config section.

shannon_config (required)

Configuration for the Shannon protocol gateway.

shannon_config:
full_node_config:
lazy_mode: false
rpc_url: "https://shannon-grove-rpc.mainnet.poktroll.com"
grpc_config: # Required
host_port: "shannon-grove-grpc.mainnet.poktroll.com:443" # Required: gRPC host and port

# Optional backoff and keepalive configs...
insecure: false # Optional: whether to use insecure connection
backoff_base_delay: "1s" # Optional: initial backoff delay duration
backoff_max_delay: "120s" # Optional: maximum backoff delay duration
min_connect_timeout: "20s" # Optional: minimum timeout for connection attempts
keep_alive_time: "20s" # Optional: frequency of keepalive pings
keep_alive_timeout: "20s" # Optional: timeout for keepalive pings

gateway_config: # Required
gateway_mode: "centralized" # Required: centralized, delegated, or permissionless
gateway_address: "pokt1up7zlytnmvlsuxzpzvlrta95347w322adsxslw" # Required: Bech32 address
gateway_private_key_hex: "<64-char-hex>" # Required: Gateway private key
owned_apps_private_keys_hex: # Required for centralized mode only
- "<64-char-hex>" # Application private key
- "<64-char-hex>" # Additional application private keys...
service_fallback: # Optional: Fallback endpoints
- service_id: eth
send_all_traffic: false
fallback_urls:
- "https://eth.rpc.grove.city/v1/1a2b3c4d"
- "https://eth.rpc.grove.city/v1/5e6f7a8b"
- service_id: polygon
send_all_traffic: false
fallback_urls:
- "https://polygon.rpc.grove.city/v1/9x8y7z6w"

full_node_config

FieldTypeRequiredDefaultDescription
rpc_urlstringYes-URL of the Shannon RPC endpoint
grpc_configobjectYes-gRPC connection configuration
lazy_modebooleanNofalseIf true, disables caching of onchain data (e.g. apps, sessions)

full_node_config.grpc_config

FieldTypeRequiredDefaultDescription
host_portstringYes-Host and port for gRPC connections
insecurebooleanNofalseWhether to use insecure connection
backoff_base_delaystringNo"1s"Initial backoff delay duration
backoff_max_delaystringNo"120s"Maximum backoff delay duration
min_connect_timeoutstringNo"20s"Minimum timeout for connection attempts
keep_alive_timestringNo"20s"Frequency of keepalive pings
keep_alive_timeoutstringNo"20s"Timeout for keepalive pings

gateway_config

FieldTypeRequiredDefaultDescription
gateway_modestringYes-Mode of operation: centralized, delegated, or permissionless
gateway_addressstringYes-Bech32-formatted gateway address (starts with pokt1)
gateway_private_key_hexstringYes-64-character hex-encoded secp256k1 gateway private key
owned_apps_private_keys_hexstring[]Only in centralized mode-List of 64-character hex-encoded secp256k1 application private keys
service_fallbackarrayNo-Array of service fallback configurations (see below for details)
sanction_configobjectNo-Configuration for endpoint sanction system (see below for details)
reputation_configobjectNo-Configuration for endpoint reputation system (see below for details)

service_fallback (optional)

Configures fallback endpoints that the gateway will use when all protocol endpoints for a service become unavailable (e.g., sanctioned or offline). This provides resilience by allowing the gateway to continue serving requests even when protocol endpoints are temporarily unavailable.

service_fallback:
- service_id: eth
send_all_traffic: false
fallback_urls:
- "https://eth.rpc.grove.city/v1/1a2b3c4d"
- "https://eth.rpc.grove.city/v1/5e6f7a8b"
- service_id: poly
send_all_traffic: false
fallback_urls:
- "https://poly.rpc.grove.city/v1/9x8y7z6w"
FieldTypeRequiredDefaultDescription
service_idstringYes-The service ID for this fallback configuration. Must be a valid onchain Shannon service ID. Each service_id must be unique within the service_fallback array.
fallback_urlsstring[]Yes-Array of fallback endpoint URLs for the specified service ID. Each URL must be a valid HTTP/HTTPS endpoint.
send_all_trafficbooleanNofalseWhether to send all traffic to fallback endpoints for this service, regardless of protocol endpoint health. When true, bypasses protocol endpoints entirely for this service.

Key Features:

  • Automatic failover: Gateway automatically switches to fallback endpoints when protocol endpoints are unavailable
  • **Send All
  • Protocol bypass: Fallback endpoints bypass protocol-level validation and are sent directly to the configured URLs
  • Service-specific: Each service ID can have its own set of fallback endpoints

sanction_config (optional)

Configures the endpoint sanction system parameters. The sanction system temporarily excludes misbehaving endpoints from selection. When an endpoint returns errors or behaves poorly, it receives a "session sanction" that prevents it from being selected for requests until the sanction expires.

gateway_config:
# ... other fields ...
sanction_config:
session_sanction_duration: "30m" # How long session sanctions last
cache_cleanup_interval: "5m" # How often to purge expired sanctions
FieldTypeRequiredDefaultDescription
session_sanction_durationstringNo"1h"Duration that session-based sanctions remain active. Format: Go duration string (e.g., "30m", "1h", "2h")
cache_cleanup_intervalstringNo"10m"Interval for purging expired sanction entries from the cache. Format: Go duration string

Key Features:

  • Automatic expiration: Session sanctions automatically expire after the configured duration
  • Configurable timing: Operators can tune sanction duration based on their network conditions
  • Memory efficient: Expired sanctions are periodically cleaned up to prevent memory bloat

Use Cases:

  • Shorter durations (e.g., 15m): Use when endpoints frequently have temporary issues and you want faster recovery
  • Longer durations (e.g., 2h): Use when you want to more aggressively exclude problematic endpoints
  • Default (1h): Balanced approach suitable for most deployments

reputation_config (optional)

Configures the endpoint reputation system. Unlike binary sanctions that simply exclude or include endpoints, the reputation system provides gradual scoring based on endpoint reliability patterns over time. This allows for more nuanced endpoint selection and softer handling of temporarily degraded endpoints.

gateway_config:
# ... other fields ...
reputation_config:
enabled: true # Enable the reputation system
storage_type: "memory" # Storage backend (currently only "memory" supported)
initial_score: 80 # Starting score for new endpoints
min_threshold: 30 # Score below which endpoints are filtered out
recovery_timeout: "5m" # Time after which inactive endpoints can be re-evaluated
FieldTypeRequiredDefaultDescription
enabledbooleanNofalseWhether to enable the reputation system. When false, only binary sanctions are used.
storage_typestringNo"memory"Storage backend for reputation data. Currently only "memory" is supported.
initial_scorefloat64No80Starting reputation score for new endpoints (0-100 scale).
min_thresholdfloat64No30Minimum score required for an endpoint to be considered for selection.
recovery_timeoutstringNo"5m"Duration after which inactive endpoint scores can be re-evaluated. Format: Go duration string.

How Reputation Scoring Works:

The reputation system records signals for each endpoint interaction:

Signal TypeImpactDescription
Success+1Successful request/response
Minor Error-3Client errors, unknown errors (not endpoint's fault)
Major Error-10Timeouts, connection issues (recoverable)
Critical Error-25HTTP 5xx, validation errors (service degradation)
Fatal Error-50Service misconfiguration (previously "permanent sanction")

Key Features:

  • Gradual scoring: Endpoints build or lose reputation over time based on actual performance
  • Soft degradation: Instead of immediately excluding endpoints, scores gradually decrease
  • Recovery path: Endpoints can recover reputation through consistent successful responses
  • Works with sanctions: Reputation filtering is applied in addition to binary sanctions, not as a replacement

Prometheus Metrics:

When reputation is enabled, the following metrics are exported:

Metric NameTypeDescription
path_shannon_reputation_signals_totalCounterTotal signals by service_id, signal_type, endpoint_domain
path_shannon_reputation_endpoints_filtered_totalCounterEndpoints filtered vs allowed by service_id, action, domain
path_shannon_reputation_score_distributionHistogramDistribution of endpoint scores by service_id
path_shannon_reputation_errors_totalCounterErrors in the reputation system by operation, error_type

Use Cases:

  • Production deployments: Enable to get gradual endpoint scoring and better resilience
  • Debugging: Use metrics to identify consistently problematic endpoints or domains
  • Tuning: Adjust min_threshold based on your network's reliability patterns
E2E Testing

When running E2E tests with reputation enabled, ensure reputation_config.enabled: true is set in your test configuration (e.g., e2e/config/.shannon.config.yaml). Without this, E2E tests will not exercise the reputation code path.


hydrator_config (optional)

info

For a full list of supported QoS service implementations, refer to the QoS Documentation.

Configures the QoS hydrator. By default, all services configured in the shannon_config sections will have QoS checks run against them.

FieldTypeRequiredDefaultDescription
run_interval_msstringNo"10000ms"Interval at which the hydrator will run QoS checks
max_endpoint_check_workersintegerNo100Maximum number of workers to run concurrent QoS checks against a service's endpoints
qos_disabled_service_idsarray[string]No-List of service IDs to exclude from QoS checks. Will throw an error on startup if a service ID is provided that the PATH instance is not configured to use.

Manually Disable QoS Checks for a Service

To manually disable QoS checks for a specific service, the qos_disabled_service_ids field may be specified in the .config.yaml file.

For example, to disable QoS checks for the Ethereum service on a Shannon PATH instance, the following configuration would be added to the .config.yaml file:

hydrator_config:
qos_disabled_service_ids:
- "eth"

router_config (optional)

Enables configuring how incoming requests are handled.

In particular, allows specifying server parameters for how the gateway handles incoming requests.

FieldTypeRequiredDefaultDescription
portintegerNo3069Port number on which the gateway server listens
max_request_header_bytesintegerNo1MBMaximum request header size in bytes
read_timeoutstringNo"5000ms" (5s)Time limit for reading request data
write_timeoutstringNo"10000ms" (10s)Time limit for writing response data
idle_timeoutstringNo"120000ms" (120s)Time limit for closing idle connections

logger_config (optional)

Controls the logging behavior of the PATH gateway.

logger_config:
level: "warn"
FieldTypeRequiredDefaultDescription
levelstringNo"info"Minimum log level. Valid values are: "debug", "info", "warn", "error"

data_reporter_config (optional)

Configures HTTP-based data reporting to external services like BigQuery via data pipelines (e.g., Fluentd with HTTP input and BigQuery output plugins).

data_reporter_config:
target_url: "https://fluentd-service.example.com/http-input"
post_timeout_ms: 5000
FieldTypeRequiredDefaultDescription
target_urlstringYes-HTTP endpoint URL where data will be reported (must start with http:// or https://)
post_timeout_msintegerNo10000Timeout in milliseconds for HTTP POST operations. If zero or negative, default of 10000ms is used
info

Currently, only JSON-accepting data pipelines are supported as of PR #215.