Skip to main content

Solana Dynamic Route Provisioner

Minimal external service for dynamic bridge-token -> Solana route provisioning.

This service is designed for VM/container runtimes where the bridge CLI is available on disk.

Why this exists

/api/deploy/registerSolanaBridgeToken in the app can auto-register Solana bridge tokens, but on serverless runtimes it cannot execute local bridge CLI paths.

Point SOLANA_DYNAMIC_ROUTE_PROVISIONER_URL to this service's /provision endpoint. For Meteora auto-deposit payloads, point METEORA_IX_PROVISIONER_URL to /meteora-ixs (or rely on automatic /meteora-ixs derivation from the dynamic-route URL).

This service provisions bridge routes and Meteora ix payloads; it does not by itself guarantee wallet/aggregator icon display for the resulting mint.

Default 4626 Solana stack is Meteora DLMM + Alpha Vault.

Endpoints

  • GET /healthz
    • Bearer-authenticated
    • Returns coarse runtime readiness (cliExists, secretSet, payer readiness, RPC configuration)
    • Detailed payer/source diagnostics are returned only when PROVISIONER_HEALTH_DEBUG=1
  • POST /provision
    • Bearer-authenticated
    • Runs cli sol bridge wrap-token
    • Verifies route scalar on Base
    • Returns mintBytes32 (both top-level and inside data)
  • POST /meteora-ixs
    • Bearer-authenticated
    • Builds Base bridge Ix[] payload for Meteora Alpha Vault deposit(max_amount)
    • Returns meteoraAlphaVault (bytes32) + serialized solanaIxs

Request contract (POST /provision)

{
  "bridgeToken": "0x...",
  "deployEnv": "mainnet",
  "solanaDecimals": 9,
  "tokenName": "CreatorShare-1234",
  "tokenSymbol": "CS1234",
  "tokenSymbolFallback": "CS1234",
  "tokenMetadataUri": "https://api.4626.fun/v1/token/0x.../metadata?chain=8453",
  "scalerExponent": 9,
  "payerKp": "config",
  "payForRelay": true
}

Response contract (success)

{
  "success": true,
  "mintBytes32": "0x...",
  "data": {
    "bridgeToken": "0x...",
    "mintPubkey": "...",
    "mintBytes32": "0x...",
    "routeScalar": "1"
  }
}

/provision may also return additional fields in data, including:

  • runner (which CLI runner executed)
  • tokenSymbol (resolved symbol used for wrap-token)
  • mintCompatibilityHints (mint-compatibility diagnostics)
  • pool / alphaVault (when SOLANA_AUTO_POOL=1)

Request contract (POST /meteora-ixs)

{
  "creatorToken": "0x...",
  "bridgeToken": "0x...",
  "meteoraAlphaVault": "<base58 pubkey>",
  "alphaVaultProgramId": "<base58 pubkey>",
  "expectedRemoteAmount": "1000000000",
  "depositAccounts": [
    { "pubkey": "<base58 pubkey>", "isSigner": false, "isWritable": true }
  ]
}

Response contract (POST /meteora-ixs, success)

{
  "success": true,
  "data": {
    "creatorToken": "0x...",
    "bridgeToken": "0x...",
    "meteoraAlphaVault": "0x...",
    "expectedRemoteAmount": "1000000000",
    "solanaIxs": [
      {
        "programId": "0x...",
        "serializedAccounts": ["0x..."],
        "data": "0x..."
      }
    ]
  }
}

Run locally

From frontend/:

  1. Copy env:
    • cp server/solana-provisioner/.env.example server/solana-provisioner/.env
  2. Update values (especially PROVISIONER_BEARER_TOKEN and SOLANA_BRIDGE_CLI_DIR)
  3. Start:
    • pnpm solana-provisioner:start

Run from your workstation + Cloudflare Tunnel

Use this flow when the bridge CLI only exists on your own machine (for example /home/<you>/projects/tools/base-bridge/scripts) and not in a cloud VM.

  1. Install cloudflared:

    curl -L https://github.com/cloudflare/cloudflared/releases/latest/download/cloudflared-linux-amd64 \
      -o /usr/local/bin/cloudflared && chmod +x /usr/local/bin/cloudflared

  2. Authenticate your Cloudflare account (opens browser):

    cloudflared tunnel login

  3. Create the tunnel and DNS route:

    cloudflared tunnel create provisioner
    cloudflared tunnel route dns provisioner provisioner.4626.fun

  4. Start provisioner on your workstation (terminal 1):

    cd ~/projects/4626/frontend
    PROVISIONER_BEARER_TOKEN=<set-long-random-token> \
    SOLANA_BRIDGE_CLI_DIR=/home/<you>/projects/tools/base-bridge/scripts \
    BASE_RPC_URL=https://mainnet.base.org \
    npx tsx server/solana-provisioner/index.ts

  5. Start the tunnel (terminal 2):

    cloudflared tunnel --url http://localhost:8788 run provisioner

Then set app runtime envs to your tunnel hostname:

  • SOLANA_DYNAMIC_ROUTE_PROVISIONER_URL=https://provisioner.4626.fun/provision
  • SOLANA_DYNAMIC_ROUTE_PROVISIONER_SECRET=<same PROVISIONER_BEARER_TOKEN>
  • METEORA_IX_PROVISIONER_URL=https://provisioner.4626.fun/meteora-ixs (optional)
  • METEORA_IX_PROVISIONER_SECRET=<same PROVISIONER_BEARER_TOKEN> (optional)

Deploy on VM (systemd)

Pre-reqs:

  • pnpm + Node installed on host
  • bridge CLI repo available on disk
  • this repo checked out on host (example: /opt/4626)

Deploy assets are under:

  • server/solana-provisioner/deploy/solana-route-provisioner.service
  • server/solana-provisioner/deploy/solana-provisioner.env.example
  • server/solana-provisioner/deploy/install-systemd.sh

Install:

cd /opt/4626/frontend/server/solana-provisioner/deploy
sudo bash ./install-systemd.sh --repo-root /opt/4626 --service-user <repo-access-user> --env-dir /etc/4626
sudo editor /etc/4626/solana-provisioner.env
sudo systemctl restart solana-route-provisioner
sudo systemctl status solana-route-provisioner --no-pager
curl -fsS -H "Authorization: Bearer $PROVISIONER_BEARER_TOKEN" http://127.0.0.1:8788/healthz

Important:

  • --service-user must be able to traverse/read your repo path.
  • If repo is under /home/<you>/... and home perms are 750, use your own user (for example --service-user <you>) unless you changed ACLs.

Reverse proxy examples

  • Caddy template: server/solana-provisioner/deploy/Caddyfile.example
  • Nginx template: server/solana-provisioner/deploy/nginx.provisioner.conf.example

Route only:

  • GET /healthz
  • POST /provision
  • POST /meteora-ixs

Extended mutation endpoints stay disabled by default:

  • POST /setup-creator
  • POST /create-pool

Only enable those with PROVISIONER_EXTENDED_ENDPOINTS=1 on a trusted private runtime.

Wire app runtime

In the app server env (Vercel or otherwise):

  • SOLANA_DYNAMIC_ROUTE_ENABLED=1
  • SOLANA_DYNAMIC_ROUTE_PROVISIONER_URL=https://<host>/provision
  • SOLANA_DYNAMIC_ROUTE_PROVISIONER_URLS=https://<host-a>/provision,https://<host-b>/provision (optional failover list; tried in order)
  • SOLANA_DYNAMIC_ROUTE_PROVISIONER_SECRET=<same as PROVISIONER_BEARER_TOKEN>
  • METEORA_IX_PROVISIONER_URL=https://<host>/meteora-ixs (optional; defaults from dynamic route URL)
  • METEORA_IX_PROVISIONER_URLS=https://<host-a>/meteora-ixs,https://<host-b>/meteora-ixs (optional failover list; tried in order)
  • METEORA_IX_PROVISIONER_SECRET=<same as PROVISIONER_BEARER_TOKEN> (optional)
  • DEPLOY_SOLANA_REGISTRATION_ORIGINS=https://4626.fun,https://<host-origin> (optional for mixed Vercel + VM)
  • DEPLOY_SOLANA_REGISTRATION_SECRET=<shared-internal-secret> (required machine-to-machine auth for app -> /api/deploy/registerSolanaBridgeToken)

Optional but recommended:

  • SOLANA_DYNAMIC_ROUTE_PROVISIONER_HEALTH_URL=https://<host>/healthz (for your external monitoring)
  • SOLANA_DYNAMIC_ROUTE_PROVISIONER_HEALTH_URLS=https://<host-a>/healthz,https://<host-b>/healthz (optional health URL list matching failover order)
  • SOLANA_DEFAULT_BRIDGE_TOKEN=0x... (enables scalar(route) validation in /api/deploy/solanaInfraStatus)
  • SOLANA_STRICT_SOL_PAIR=1 (enforce SOL-only quote mint; blocks helper-token pool paths)
  • SOLANA_DYNAMIC_ROUTE_PROVISIONER_RETRY_ATTEMPTS=3
  • SOLANA_DYNAMIC_ROUTE_PROVISIONER_RETRY_DELAY_MS=1200
  • SOLANA_DYNAMIC_ROUTE_PROVISIONER_TIMEOUT_MS=90000
  • SOLANA_BRIDGE_WRAP_SYMBOL_MODE=auto (auto | unicode | ascii)
  • SOLANA_BRIDGE_WRAP_METADATA_URI_ENABLED=0 (set to 1 only if your bridge CLI supports --metadata-uri)
  • PROVISIONER_MIN_PAYER_SOL=0.05 (health guardrail; /healthz reports payer readiness)
  • Provisioner requests are capped at 64 KB per request body
  • PROVISIONER_HEALTH_DEBUG=0 (set to 1 only for temporary diagnostics)
  • PROVISIONER_EXTENDED_ENDPOINTS=0 (leave disabled unless you intentionally need /setup-creator or /create-pool)

When SOLANA_STRICT_SOL_PAIR=1, SOLANA_POOL_QUOTE_MINT overrides are ignored and the provisioner always uses wrapped SOL (So11111111111111111111111111111111111111112) as quote mint.

In the provisioner runtime (server/solana-provisioner/.env), enable retry for transient Solana RPC simulation failures:

  • PROVISIONER_WRAP_RETRY_ATTEMPTS=3
  • PROVISIONER_WRAP_RETRY_DELAY_MS=1200

When metadata URI mode is enabled and your CLI rejects --metadata-uri, the provisioner automatically retries wrap-token without that flag for backward compatibility.

Wallet image/display caveat

Creating the route (wrap-token + scalar > 0) ensures bridge functionality, but wallet/aggregator icon visibility (Phantom/Backpack/Jupiter/Meteora) typically also depends on metadata indexing and/or token-list ingestion.

For reliable display, run a token badge/metadata workflow after provisioning (for example cre's solana:prepare-token-badge) and submit to the relevant ecosystem list/indexer as part of launch ops.

Security notes

  • Always set PROVISIONER_BEARER_TOKEN to a long random value.
  • Keep bearer secret values synchronized:
    • provisioner PROVISIONER_BEARER_TOKEN
    • app SOLANA_DYNAMIC_ROUTE_PROVISIONER_SECRET
    • app METEORA_IX_PROVISIONER_SECRET
  • Keep DEPLOY_SOLANA_REGISTRATION_SECRET separate from the provisioner bearer token.
  • Keep the provisioner bound to loopback unless you are intentionally placing it behind a reverse proxy.
  • Restrict inbound access at network layer (allowlist app egress IPs / private network).
  • Do not expose shell access; this service only executes fixed CLI command paths with validated arguments.