Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
After doing this Lesson you will be able to
Download IPFS and install it on your operating system
Display which version of IPFS you're using
Get a list of commands the ipfs binary supports
Visit the IPFS installation page at https://docs.ipfs.io/guides/guides/install/ and download the prebuilt ipfs binaries for your operating system.
Why does the installation page talk about "Go IPFS"? There are multiple implementations of the IPFS protocol. The core IPFS team maintain implementations in Golang and Javascript. Those are commonly referred to as go-ipfs and js-ipfs. The official binaries are built from the Go implementation.
The binaries for Mac OSX and Linux are in a gzipped tar format (.tar.gz). The binaries for Windows are in a zip file. Use the appropriate tool to unzip the file. There are some hints on https://docs.ipfs.io/guides/guides/install/ under the heading Installing from a Prebuilt Package
This will create a directory called go-ipfs.
The file named ipfs is your executable ipfs binary.
To install the binary, all you need to do is put the ipfs binary file somewhere on your executable PATH.
Note about permissions: Whichever approach you use to install the binary, make sure you have the necessary permissions. On Mac OSX or Linux, you probably want to use sudo, which is already installed on most systems.
If you're on Mac OSX or Linux, you can use the provided install script by running
Read the output from running this. If it complains about being unable to write the file, you need to deal with permissions (see the note above about permissions)
When you're troubleshooting, it's important to know which version of ipfs you're using. To find out the current version, run
If you need help remembering how to use any ipfs commands, run
This should display information beginning with
For a complete list of commands that the ipfs executable supports, run
These Lessons are tested with go-ipfs versions: 0.5.0, 0.9.0
Please update this file on github to reflect any other versions that have been tested.
You should have some familiarity with the command line.
You should have ipfs installed - the previous tutorial has instructions for that
These Lessons will teach you how to
Add files to your local IPFS node
Read files out of your local IPFS node
List the files in your IPFS node
Tell IPFS to hold onto files by pinning them
Distinction between IPFS and your regular Filesystem
Identifying files by their Hashes
IPFS Garbage Collection
Pinning files on an IPFS Node
Once you know how to add files to IPFS and retrieve them, you will be ready to share those files on the P2P network following the Tutorial: Going Online - Joining the Distributed Web
If you're wondering how to update those files after you've shared them, see the Tutorial: Publishing Changes on the Permanent Web
If you want to see how to access those files from the conventional HTTP web, go to the Tutorial: Interacting with the Classical (HTTP) Web
If you want to know more about how IPFS stores this content internally using Merkle DAGs, go to the Tutorial: Merkle Trees and the IPFS DAG
These Lessons are tested with go-ipfs version 0.5.0. Please update this file on github to reflect any other versions that have been tested.
You should have some familiarity with the commandline
These Lessons will teach you how to
Install IPFS
Initialize an IPFS repository
Locate where IPFS stores the contents of your local IPFS repository
IPFS Repositories
Once you know how to add files to IPFS and retrieve them, you will be ready to share those files on the P2P network following the Tutorial: Going Online - Joining the Distributed Web
If you're wondering how to update those files after you've shared them, see the Tutorial: Publishing Changes on the Permanent Web
If you want to see how to access those files from the conventional HTTP web, go to the Tutorial: Interacting with the Classical (HTTP) Web
After doing this Lesson you will be able to
Initialize a local ipfs repository
Locate where IPFS stores the contents of your local IPFS repository
Open the IPFS Configuration file
Use the ipfs init command to initialize the repository. This will generate a local ipfs repository for the current user account on your machine. It also generates a cryptographic keypair that allows your ipfs node to cryptographically sign the content and messages that you create.
Note: If you have already initialized ipfs on your machine, you will get an error message like:
This is ok. It means you've already done this step. You can safely proceed to Step 2.
If you installed a different version of ipfs, you may have gotten a slightly different path to use here. Either path will work for this tutorial. The path you got from the ipfs init command will give you documentation that's accurate for the version of ipfs you're using.
When you ran ipfs init, it provided a hint for how you can get started. It said:
This ipfs cat command tells ipfs to read the content matching the path you provided. If the content isn't available locally, ipfs will attempt to find it on the peer-to-peer network.
In order to run the following command, the ipfs daemon must be running. In order to run the ipfs daemon, type ipfs daemon &. This will start the ipfs daemon and place it into the background of your current console.
Run the ipfs cat command with the path you got from the init message:
You should see something like this:
You can explore other objects in there. For example, check out security-notes:
ipfs stores its local object repository in ~/.ipfs
The contents of that directory look like this:
All of the contents of your IPFS repository are stored within this directory. For example, the readme file from above is stored in here, along with the other files it links to. You can run a grep to find out the exact location.
The configuration for your ipfs repository is in a json file that's usually stored at ~/.ipfs/config. To view the current config, run:
One of the useful details in this config file is at Datastore.Path. This tells you where the ipfs repository's contents are being stored. As we saw in Step 3, this is usually ~/.ipfs
Next, proceed to the Files on IPFS tutorial.
After doing this Lesson you will be able to
Add a file's content to IPFS
Read content out of IPFS using its hash
Explain the relationship between IPFS hashes and the content you've added
You can add any type of content to IPFS. For this lesson we will put some text content into a `.txt` file, but you can do this same process with any content or any file.
It would be a good idea to make a new directory for this example. Navigate to somewhere you are comfortable putting a new folder (such as ~/Desktop), and then create a new directory and go into it. Here is an example command:
Now, create a file called mytextfile.txt and put the text "version 1 of my text" in it. One easy way to do this on the command line is with this command:
You can read the file's contents using the cat command:
Save the hash QmZtmD2qt... that ipfs returned. This is the content's cryptographic hash. If the file's content changes, the hash will change, but if the file's content remains the same, the hash will always be the same.
Bear in mind that if you're not running the daemon, it will just add locally. If you start the daemon later, the blocks will be advertised after a few seconds when the reprovider runs.
Just like the regular cat command lets you read the contents of a file, the ipfs cat command lets you read the contents of a file that has been added to ipfs.
Use the ipfs cat command to read the content by passing it the content's cryptographic hash -- this is the hash that ipfs returned when you ran ipfs add mytextfile.txt.
Notice that this returned the content of the file, not the text file itself. That's because QmZtmD2qt... is the hash of the content, not the file itself. We'll test that in the next step.
When you used ipfs cat to read the file's contents it returned the content of the file, not the text file itself. That's because the hash QmZtmD2qt... is the hash of the content. You can test that by adding the text content directly to IPFS without ever putting it in a file.
The hash should be exactly the same as the hash you got when you added mytextfile.txt. If you want to triple-check, you can run each of these commands as many times as you want. The hash should always be the same.
As long as the content remains the same, you will always get the same hash. As far as IPFS is concerned, it is the same content.
Now change the text content to "version 2 of my text" and add it to ipfs. You will get a different hash.
As you confirmed in the previous step, you can add the new text directly to IPFS or you can modify mytextfile.txt and add it to IPFS. You will get the same hash either way.
You can read this content (any version) out of ipfs and write it into a file. For example, you can toggle the contents of mytextfile.txt from "version 1" to "version 2" and back as many times as you want:
You can also write the content from ipfs into a completely new file.
IPFS tracks content based on its cryptographic hash. This hash uniquely identifies exactly that content. As long as the content stays the same, the hash stays the same. If the content changes at all you will get a different hash.
If you have two different files that contain identical content, IPFS will track that content with one hash. The filenames are different, but the content is the same, so the hash of the content will be identical.
This leads to the question: how does IPFS track file names? That's the topic of the next lesson.
Proceed to the next lesson to learn how to Wrap Filenames and Directory Info around Content in IPFS
After doing this Lesson you will be able to
Add a file to IPFS, including its filename, permissions, etc.
Add directories to IPFS
Explain how IPFS represents two files that have identical content
Read content out of IPFS using the hash of a directory that contains the file
You may already have this file from the previous lesson. If you do, make sure the content of the file matches. Otherwise the hashes you get won't match the examples in this lesson.
Create a file called mytextfile.txt and put the text "version 1 of my text" in it. Here is an easy way to do this on the command line:
In the previous lesson, when you ran ipfs add mytextfile.txt without the -w flag, ipfs only returned one hash. This time it returned two hashes. The first hash QmZtmD2... is the same as before — it's the hash of the content inside the file. The second hash QmPvaEQF... is the hash of the directory and filename information that ipfs "wrapped" around our content.
In the next steps, you will use ipfs commands to see what that directory and filename information looks like and how you can use it.
The -w flag tells ipfs to include the directory and filename information along with the content — it "wraps the file in a directory". For more info about this, run ipfs add --help and read the description there.
To list this directory and filename information, use ipfs ls. You will use the -v flag to include header information. To learn more about this command, run ipfs ls --help
This command ipfs ls QmPvaEQFVvuiaYzkSVUp23iHTQeEUpDaJnP8U7C3PqE57w translates to "list the files referenced by the directory whose hash is QmPvaEQFVvuiaYzkSVUp23iHTQeEUpDaJnP8U7C3PqE57w".
The response shows that the directory contains one file — "mytextfile.txt" — and the hash of that file's content is QmZtmD2q...
Note that you had to use ipfs ls instead of ipfs cat to read this info because it's a directory. If you try to read the directory using ipfs cat you will get an error:
You can use the directory's hash to read the file's content like this:
This command translates to "return the content that's referred to as mytextfile.txt within the directory whose hash is QmPvaEQFVvuiaYzkSVUp23iHTQeEUpDaJnP8U7C3PqE57w"
Some things to try:
Create a directory with multiple files. Tell ipfs to recursively add the directory and all of its files.
Create two different files with the same content. Add them both to ipfs with ipfs add -w and confirm that ipfs is re-using the hash of that content when it builds the directory and filename information.
When you add a file to your ipfs repository, ipfs calculates the cryptographic hash of the file's contents and returns that hash to you. You can then use the hash to reference the file's contents and read them back out of the ipfs repository.
In order to keep track of information like filenames and paths, ipfs lets you "wrap" directory and filename information around the file contents you've added. The directory and filename information has its own hashes. This makes it possible to retrieve content from the ipfs repository using "ipfs paths" that are a combination of hashes, filenames and directory names.
Next, learn how to Tell IPFS to Keep a File
This lesson shows how to connect the IPFS node on your local computer to the IPFS network, or “the swarm”. Everything that you have done so far has been done locally. Now it gets a lot more interesting!
To do the steps in this lesson you must:
Be familiar with using the command line
Install and Initialize IPFS on your local machine
After doing this Lesson you will be able to
Start the IPFS daemon to connect your local node to the IPFS network
Start the IPFS daemon by running
You will see output from the daemon like the following:
Notice that if you added files before running the daemon, the blocks will be advertised after a few seconds when the reprovider runs.
Let's look at the details of your connections made by the daemon with ipfs id. Open up another command line and run:
Note: The hashes above have been shortened for readability.
The "ID" field is your Peer ID, used to uniquely identify your node on the IPFS network. The "PublicKey" field goes along with your Peer ID, used under-the-hood by IPFS for public key cryptography. The "Addresses" shown are an array of IP addresses used for IPFS network traffic. Addresses using TCP port 4001 are known as "swarm addresses" that your local daemon will listen on for connections from other IPFS peers.
You may shut down the daemon by typing Ctrl-C in the command line that you started with:
Note: You may run the IPFS daemon as a background process using the command ipfs daemon &. If you want to stop the background process just type fg (foreground) to bring that process to the foreground and stop it with Ctrl-C.
You run the IPFS daemon in order to have your local IPFS node become part of the IPFS network and listen to other IPFS peers.
Proceed to the next lesson to learn how to Find Peers on the Network
To do the lessons in this tutorial you must:
Be familiar with using the command line
Install and Initialize IPFS on your local machine
These Lessons will teach you how to
Connect your local IPFS node to the IPFS network
Find/examine Peers on the IPFS network
Retrieve content from a Peer on the IPFS network
Connecting and interacting with the IPFS network
This lesson shows how to find and examine the peers you connect to on the IPFS network. You will use the ipfs swarm and ipfs id tools for this purpose. The swarm is the component that opens, listens for, and maintains connections to other IPFS peers. You can also examine connected peers and the network using the Web UI.
To do the steps in this lesson you must:
Be running the ipfs daemon
After doing this Lesson you will be able to
Find and examine peers on the IPFS network
Start the IPFS daemon by running
You can use the command ipfs swarm peers to examine for connected peers:
You will use the ipfs id <hash> command to examine a connected peer:
Note: The "ID" field shown above is the Peer's ID, and this was also the hash that was shown when you ran ipfs swarm peers. Peers are identified on the network directly by their Peer ID.
The IPFS daemon also serves up a modern Web UI that you are able to open in a browser. Did you notice when you started the daemon that there was the following?
WebUI: http://127.0.0.1:5001/webui
Open the link above in your browser. You will see the Web UI displayed with sections on Status, Files, Explore, Peers, and Settings. Click on the Peers section and you will see a world map indicating the location of connected peers. Scroll down the page to see information on each of the peers, their country/city location, network latency, Peer ID, etc. Spend some time looking at the other different sections of the Web UI.
Once you have connected to the IPFS network by running the daemon, other IPFS nodes (peers) will begin to connect and communicate with your node. Using the commands ipfs swarm and ipfs id allows you to examine the connected nodes. The Web UI also shows in-depth information about peers.
Proceed to the next lesson to learn how to Retrieve content from a Peer
This lesson shows how to use an IPFS node on your computer to request content from other peers on the network. Some of the underlying topics are covered in greater depth in the tutorials about Files on IPFS.
To do the steps in this lesson you must:
Be familiar with using the command line
Install and Initialize IPFS on your local machine
After doing this Lesson you will be able to
Access any content through your local IPFS node using its command line interface
Start the IPFS daemon by running
If the daemon is not running, your IPFS node won't be able to retrieve content from other nodes on the network.
You can use the command line to request content from your IPFS node. If the node does not have a copy of that content, it will attempt to find another peer node that does have the content. For example, the IPFS team have published a snapshot of the turkish version of wikipedia. The hash of that snapshot, which contains about 15GB of Turkish-language wikipedia pages, is Qme2sLfe9ZMdiuWsEtajWMDzx6B7VbjzpSC2VWhtB6GoB1. We can use the command line to have your IPFS node read pages from that snapshot.
If you're not familiar with the ipfs cat and ipfs ls commands they are explained in the Tutorial about Files on IPFS
You can use a local IPFS node to read content from the worldwide IPFS network. One way to do this is through the command line using commands like ipfs cat and ipfs ls. When you pass the content-addressed (hash) identifiers of the content you want into these commands, your IPFS node will check to see if it has a local copy of the content you're requesting. If your node has a local copy, it will return that content to you immediately. If your node does not have a local copy, it will attempt to find a peer on the IPFS network that does have the content. As long as at least one peer has the content you want, your IPFS node will be able to find that peer, retrieve the content from the peer, and return that content to you.
This is the essential function of an IPFS node. It uses content-addressed (hash) identifiers to find content on the peer to peer network. It also provides that content to other peers who want it.
This lesson covered how to use the command line to request content from your IPFS node, but there are many other ways to interact with IPFS nodes. If you want to learn about the many other ways you can use IPFS to access the same content using the same content-addressed link, go to the Tutorial on The Myriad Ways to Access and Distribute IPFS Content.
Otherwise, proceed to the next lesson Interacting with the Classical (HTTP) Web
This lesson covers the topic of "pinning" files in your IPFS repository and removing files with the ipfs garbage collector. Pinning is a very important concept in IPFS. Pinning is the mechanism that allows you to tell IPFS to always keep a given object local.
After doing this Lesson you will be able to
Tell IPFS to hold onto specific files in your local IPFS repository
Tell IPFS to clean up unwanted files from your local IPS repository
Create a file called foo.txt and put the text "ipfs rocks" in it. Here is an easy way to do this on the command line:
The first object listed above is the foo.txt file. Objects added through ipfs add are pinned recursively by default.
There are three types of pins in the ipfs world:
a) direct pins, which pin just a single block, and no others in relation to it;
b) recursive pins, which pin a given block and all of its children;
c) indirect pins, which are the result of a given block's parent being pinned recursively.
You can unpin foo.txt like this:
Ok, now verify that it no longer exists:
Wait, it still appears to be there! Ok, you must run the garbage collector and then verify again:
IPFS has a fairly aggressive caching mechanism that will keep an object local for a short time after you perform any ipfs operation on it, but these objects may get garbage collected fairly regularly.
A pinned object cannot be garbage collected, if you don't believe me try this:
IPFS nodes treat the data they store like a cache, meaning that there is no guarantee that the data will continue to be stored. Pinning a CID (hash) tells an IPFS node that the data is important and mustn’t be thrown away. You should pin any content you consider important, to ensure that content is retained long-term. Since data important to someone else may not be important to you, pinning lets you have control over the disk space and data retention you need.
Next, proceed to the Going Online tutorial.
To do the lessons in this tutorial you must:
Be familiar with using the command line
Install and Initialize IPFS on your local machine
These Lessons will teach you how to
Use your browser to retrieve content through different IPFS gateways
Flexibly downloading content from the IPFS network
This lesson shows some of the different ways to access content through an IPFS node that you have installed locally on your computer. Some of the underlying topics are covered in greater depth in the tutorials about Files on IPFS and Going Online - Joining the Distributed Web.
To do the steps in this lesson you must:
Install and Initialize IPFS on your local machine
After doing this Lesson you will be able to
Access any content through your local IPFS node's HTTP gateway
Start the IPFS daemon by running
If the daemon is not running, your IPFS node won't be able to retrieve content from other nodes on the network. It also won't start the HTTP gateway that you're going to use in Step 2.
You must tell the gateway whether you're requesting content with an IPFS hash or an IPNS hash. If you're using the hash of a specific snapshot of content -- for example a file that someone added to IPFS, use a path that starts with /ipfs/. If you're using an IPNS hash to get the latest version of some content that gets updated over time, for example a website that gets fresh content every day, use a path that starts with /ipns/.
To view the wikipedia page we're using as an example in all of the lessons in the Tutorial on The Myriad Ways to Access and Distribute IPFS Content, use these links:
latest (IPNS): http://localhost:8080/ipns/QmQP99yW82xNKPxXLroxj1rMYMGF6Grwjj2o4svsdmGh7S/wiki/Anasayfa.html [correct example though this link may be stale]
latest (DNS): http://localhost:8080/ipns/ipfs.io
You can use a local IPFS node to read content from the worldwide IPFS network. The two ways of interacting with your local node are 1) through the command line and 2) through the HTTP gateway. You can use either of those interfaces to pass IPFS the content-addressed (hash) identifiers of the content you want. The IPFS node will use those identifiers to find that content on the network and retrieve it for you.
If you want to learn about the many other ways you can use IPFS to access the same content using the same content-addressed link, go to the Tutorial on The Myriad Ways to Access and Distribute IPFS Content.
Otherwise proceed to the next lesson to learn how to Get content through the public ipfs.io gateway
This lesson explains how to retrieve IPFS content from the public IPFS gateways at ipfs.io. This topic is covered in greater depth in the tutorial on Interacting with the Classical (HTTP) Web.
After doing this Lesson you will be able to
Use the public gateway at ipfs.io to access IPFS content
This process is the same as using any other IPFS gateway -- only the address of the gateway is different: If you're using the hash of a specific snapshot of content, use the path https://ipfs.io/ipfs/<your-ipfs-hash>. If you're using an IPNS hash to get the latest version of some content, use the path https://ipfs.io/ipns/<your-ipns-hash>
To view the wikipedia page we're using as an example in all of the lessons in the Tutorial on The Myriad Ways to Access and Distribute IPFS Content, use these links:
latest (IPNS): http://ipfs.io/ipns/QmQP99yW82xNKPxXLroxj1rMYMGF6Grwjj2o4svsdmGh7S/wiki/Anasayfa.html [correct example though this link may be stale]
latest (DNS): http://ipfs.io/ipns/ipfs.io
The IPFS project maintains public IPFS gateways that you can use to access any content from the IPFS network. When sharing HTTP links to IPFS content, people often use ipfs.io addresses but you can use the address of any gateway.
If you want to learn about the many other ways you can use IPFS to access the same content using the same content-addressed link, go to the Tutorial on The Myriad Ways to Access and Distribute IPFS Content.
Otherwise proceed to the next lesson to learn how to Access IPFS content through any IPFS gateway
This primer contains a series of tutorials explaining IPFS, Merkle Trees and the Decentralized Web. It's written and maintained as a gitbook so people can read it in many formats.
The GitHub repository for this book is at https://github.com/ipfs-shipyard/ipfs-primer.
During these tutorials, if you have any questions feel free to ask them in the IPFS forums or in the #ipfs channel on chat.freenode.net. We have a large, active community who use these venues as our main places to seek support and to provide it.
The primer contains tutorials about
For a full list of tutorials, look at the Table of Contents.
Cryptographic Hashes and Content Addressability
Authenticated Graphs
Turning Files into Trees
Turning any Data into Trees
Publishing hashes on the DHT
Getting data from the Peer to Peer Network
Immutability: "Changes" as additions to the tree
CRDTs
Pubsub
Authenticated Streams (with pubsub)
Each tutorial is a set of lessons that all use a format inspired by the Railsbridge Curriculum. Each lesson declares a set of Goals, or learning objectives, then lists the Steps, or activities, and finally provides an Explanation that reviews what you've done and connects those activities to the lesson's stated Goals. The format for each lesson looks like this:
For a concise explanation of Learning Objectives (which we're calling Goals in this book), read UC Denver's Assessment & Instructional Alignment Tutorial. Try to make your learning objectives Specific, observable and measurable and heed their tip to use the list of verbs in the taxonomy table worksheet to help you choose observable behaviors for your course learning objectives.
To build the HTML, PDF, epub and mobi versions of the book with one command, run ./build-book.sh
This primer was created by @flyingzumwalt. The contents of these tutorials were initially pulled from documentation in the first-generation documentation homed on the IPFS website and the (now-inactive) IPFS examples git repository. (Find them in their new homes on docs.ipfs.io, particularly the "Usage ideas and examples" section.)
Contributors to those original docs included
@whyrusleeping
@jbenet
@lgierth
@lynnandtonic
@wraithgar
@adambrault
@donothesitate
@djdv
plus a long list of contributors to the original examples repository
These Lessons are tested with go-ipfs version 0.5.0. Please update this file on github to reflect any other versions that have been tested.
IPFS hashes are permanent, content-addressed identifiers for your content. This means that you can use many different ways to access, replicate, and/or redistribute the same content using the same link/identifier. The lessons in this tutorial explore many of the ways that you can do this. If you want to learn about why it is valuable to have all of these options, read the lesson on the power of content-addressing
(based on https://en.wikipedia.org/wiki/Content_addressable_network)
All of the lessons use the same content: a snapshot of the Turkish version of Wikipedia.
These Lessons will teach you how to
Define content addressing and compare it with location-addressing
Use IPFS content hashes to access the same content in many ways with the same link
Access content through the public IPFS gateways at ipfs.io
Access content through any IPFS node's http gateway
Access content using the IPFS browser extension
Access IPFS content through Tor
Use a sneakernet to move and redistribute IPFS content
Explain the implications of being able to access IPFS content through so many different paths
Read about The Power of Content-addressing
Review the lesson on Retrieving content from a peer
Review these lessons from the Tutorial on Interacting with the Classical (HTTP) Web
Review: Lesson: Using an HTTP browser to retrieve files from local IPFS gateway
Review: Lesson: Using the public IPFS gateways at ipfs.io
If you're wondering how to update content after you've shared it, see the Tutorial: Publishing Changes on the Permanent Web
If you want to know more about how IPFS stores this content intrernally using Merkle DAGs, go to the Tutorial: Merkle Trees and the IPFS DAG
To do the steps in this lesson you must:
Be familiar with using the command line
After doing this Lesson you will be able to
Access any content through your local IPFS node using its command line interface
Start the IPFS daemon by running
If the daemon is not running, your IPFS node won't be able to retrieve content from other nodes on the network.
You can use a local IPFS node to read content from the worldwide IPFS network. One way to do this is through the command line using commands like ipfs cat and ipfs ls. When you pass the content-addressed (hash) identifiers of the content you want into these commands, your IPFS node will check to see if it has a local copy of the content you're requesting. If your node has a local copy, it will return that content to you immediately. If your node does not have a local copy, it will attempt to find a peer on the IPFS network that does have the content. As long as at least one peer has the content you want, your IPFS node will be able to find that peer, retrieve the content from the peer, and return that content to you.
This is the essential function of an IPFS node. It uses content-addressed (hash) identifiers to find content on the peer to peer network. It also provides that content to other peers who want it.
This lesson shows how to use an IPFS node on your computer to request content from other peers on the network. Some of the underlying topics are covered in greater depth in the tutorials about .
on your local machine
You can use the command line to request content from your IPFS node. If the node does not have a copy of that content, it will attempt to find another peer node that does have the content. For example, the IPFS team have . The hash of that snapshot, which contains about 15GB of Turkish-language wikipedia pages, is Qme2sLfe9ZMdiuWsEtajWMDzx6B7VbjzpSC2VWhtB6GoB1. We can use the command line to have your IPFS node read pages from that snapshot.
If you're not familiar with the ipfs cat and ipfs ls commands they are explained in the
This lesson covered how to use the command line to request content from your IPFS node, but there are many other ways to interact with IPFS nodes. If you want to learn about the many other ways you can use IPFS to access the same content using the same content-addressed link, go to the .
Otherwise, proceed to the next lesson
This lesson covers using any IPFS gateway to access IPFS content. It's a condensed review of the Lesson on Using an HTTP browser to retrieve files from a local IPFS gateway
After doing this Lesson you will be able to
Use the HTTP address of any IPFS gateway to access IPFS content
As we covered in Tutorial: Going Online - Joining the Distributed Web, when you run an IPFS daemon, it exposes an HTTP endpoint that acts as a gateway between HTTP and the IPFS network. This means that you can, in theory, point your web browser at any IPFS node's HTTP endpoint and use it as a gateway. In reality, the person operating that node usually needs to take extra steps to make their gateway available over HTTP (NAT traversal, etc).
For these examples we will use the gateway at http://dweb.link
As described in the Lesson on Using an HTTP browser to retrieve files from local IPFS gateway, you must tell the gateway whether you're requesting content with an IPFS hash or an IPNS hash. If you're using the hash of a specific snapshot of content -- for example a file that someone added to IPFS, use the path /ipfs/<your-ipfs-hash>. If you're using an IPNS hash to get the latest version of some content that gets updated over time, for example a website that gets fresh content every day, use the path /ipns/<your-ipns-hash>
Combine the gateway's address (ie. http://dweb.link) with the path to your content (ie. /ipfs/<your-ipfs-hash>). Use that to request the content.
To view the wikipedia page we're using as an example in all of the lessons in the Tutorial on The Myriad Ways to Access and Distribute IPFS Content, use these links:
latest (IPNS): http://dweb.link/ipns/QmQP99yW82xNKPxXLroxj1rMYMGF6Grwjj2o4svsdmGh7S/wiki/Anasayfa.html [correct example though this link may be stale]
latest (DNS): http://dweb.link/ipns/ipfs.io
With the above examples, we are using an HTTP connection over the internet to someone (http://dweb.link) providing a gateway onto the IPFS network. In this way you can access information in the IPFS network at large, and you do not need to run your own IPFS gateway.
TODO
Restricting the content that your gateway will serve
Security concerns -- the gateway can see all the things that an HTTP server can see.
If you want to learn about the many other ways you can use IPFS to access the same content using the same content-addressed link, go to the Tutorial on The Myriad Ways to Access and Distribute IPFS Content.
Otherwise return to the tutorial on Interacting with the Classical (HTTP) web
This lesson shows some of the different ways to access content through an IPFS node that you have installed locally on your computer. Some of the underlying topics are covered in greater depth in the tutorials about Files on IPFS and Going Online - Joining the Distributed Web.
To do the steps in this lesson you must:
Install and Initialize IPFS on your local machine
After doing this Lesson you will be able to
Access any content through your local IPFS node's HTTP gateway
Start the IPFS daemon by running
If the daemon is not running, your IPFS node won't be able to retrieve content from other nodes on the network. It also won't start the HTTP gateway that you're going to use in Step 2.
You must tell the gateway whether you're requesting content with an IPFS hash or an IPNS hash. If you're using the hash of a specific snapshot of content -- for example a file that someone added to IPFS, use a path that starts with /ipfs/. If you're using an IPNS hash to get the latest version of some content that gets updated over time, for example a website that gets fresh content every day, use a path that starts with /ipns/.
To view the wikipedia page we're using as an example in all of the lessons in the Tutorial on The Myriad Ways to Access and Distribute IPFS Content, use these links:
latest (IPNS): http://localhost:8080/ipns/QmQP99yW82xNKPxXLroxj1rMYMGF6Grwjj2o4svsdmGh7S/wiki/Anasayfa.html [correct example though this link may be stale]
latest (DNS): http://localhost:8080/ipns/ipfs.io
You can use a local IPFS node to read content from the worldwide IPFS network. The two ways of interacting with your local node are 1) through the command line and 2) through the HTTP gateway. You can use either of those interfaces to pass IPFS the content-addressed (hash) identifiers of the content you want. The IPFS node will use those identifiers to find that content on the network and retrieve it for you.
If you want to learn about the many other ways you can use IPFS to access the same content using the same content-addressed link, go to the Tutorial on The Myriad Ways to Access and Distribute IPFS Content.
Otherwise proceed to the next lesson to learn how to Get content through the public ipfs.io gateway
This lesson shows you how to create a simple webpage and add it to IPFS. Once you are able to do this you can make your webpages as beautiful or complex as you would like, and add them to IPFS using the same basic commands.
To do the steps in this lesson you must:
After doing this Lesson you will be able to
Create a simple webpage and add it to IPFS
If the IPFS daemon is not running already, then start the daemon now
Create a new webpage directory in your user's home directory.
Download this nice kitten image using ipfs:
Using a text editor, create a file called index.html and copy/paste the following content:
Save index.html in the simple-webpage directory and close the text editor. If you like, you may open index.html in the browser to see the webpage.
This simple webpage only has 2 files, index.html and cat.jpg. Now you will add the simple-webpage directory to IPFS:
You should see output like the following:
Notice that you used the command ipfs add with the -r option to tell IPFS to recursively add the contents of the directory.
You can work on a webpage locally and then add it to IPFS. When you add your webpage directory content to IPFS, you use ipfs add with the -r option to recursively add all of the files within the directory to IPFS.
This is a placeholder. There are currently four web browser extensions that help your retrieve content from IPFS. Each works in slightly different ways. We are in the process of consolidating that code and making it more secure before we encourage people to rely on it.
When the IPFS browser extension is complete, we will publish it on the app stores for all of the browsers that support it. When you download the extension, it will automatically recognize IPFS links and will use the IPFS peer-to-peer network to retrieve the content for you -- no HTTP gateway needed, nothing else to install on your computer, no need to use the command line. You will only have to install the browser extension and the whole IPFS network will become available to you.
2017-04-30 snapshot: dweb:/ipfs/Qme2sLfe9ZMdiuWsEtajWMDzx6B7VbjzpSC2VWhtB6GoB1/wiki/Anasayfa.html
latest (IPNS): dweb:/ipns/QmQP99yW82xNKPxXLroxj1rMYMGF6Grwjj2o4svsdmGh7S/wiki/Anasayfa.html
latest (DNS): dweb:/ipns/wikipedia-on-ipfs.io
These Lessons are tested with go-ipfs version 0.5.0. Please update this file on github to reflect any other versions that have been tested.
These Lessons will teach you how to
Update Files on IPFS using IPNS (InterPlanetary Name System)
Explain how version histories of files appear on IPFS
Explain why IPFS is called the Permanent Web
Track and Publish an entire website as it changes over time using IPFS and IPNS
IPNS
The Permanent Web
Using hashes to uniquely identify versions of content
Normally, updating content means replacing a file - for instance, if I update a blog post, then people will see the new edited file, and not the old one. However, with IPFS, both versions of the file will be accessible in the network. It's not a matter of replacing: you add the new one, too. This raises the question: how do we actually update our links, so that people will see the new version of a file? They can't go to the file's location, because IPFS locates files by looking for their hashes (that's what content-addressed means). So, you need to have a way of pointing people to the new hash easily.
The trick is to add new the content, and then update a pointer to that content. So, there needs to be a way of having a mutable pointer.
This is where IPNS comes in, the InterPlanetary Name System. IPNS is a simple service that uses your peer ID to point to a particular hash. This hash can change, but your peer ID doesn't. That means that you can point to content in IPFS that may also change, and people can still access it without needing to know the new hash before hand.
on your local machine
Proceed to the next lesson to learn how to
We consider this the next big step to getting IPFS natively supported in web browsers. You can track this work in the github repository at . describes the state of these efforts as of April 2017.
Among other things, this support for IPFS in browsers will make it possible to start using links that are truly content-addressed, without any reference to HTTP locations, even when you access content through a web browser. We are advocating for this to be done using a new dweb: address scheme. Using the dweb: scheme, the links to the wikipedia page we're using as an example in all of the lessons in the will look like this:
Return to the to learn about the many other ways you can use IPFS to access the same content using the same content-addressed link.
This lesson explains how to retrieve IPFS content from the public IPFS gateways at ipfs.io. This topic is covered in greater depth in the tutorial on Interacting with the Classical (HTTP) Web.
After doing this Lesson you will be able to
Use the public gateway at ipfs.io to access IPFS content
This process is the same as using any other IPFS gateway -- only the address of the gateway is different: If you're using the hash of a specific snapshot of content, use the path https://ipfs.io/ipfs/<your-ipfs-hash>. If you're using an IPNS hash to get the latest version of some content, use the path https://ipfs.io/ipns/<your-ipns-hash>
To view the wikipedia page we're using as an example in all of the lessons in the Tutorial on The Myriad Ways to Access and Distribute IPFS Content, use these links:
latest (IPNS): http://ipfs.io/ipns/QmQP99yW82xNKPxXLroxj1rMYMGF6Grwjj2o4svsdmGh7S/wiki/Anasayfa.html [correct example though this link may be stale]
latest (DNS): http://ipfs.io/ipns/ipfs.io
The IPFS project maintains public IPFS gateways that you can use to access any content from the IPFS network. When sharing HTTP links to IPFS content, people often use ipfs.io addresses but you can use the address of any gateway.
If you want to learn about the many other ways you can use IPFS to access the same content using the same content-addressed link, go to the Tutorial on The Myriad Ways to Access and Distribute IPFS Content.
Otherwise proceed to the next lesson to learn how to Access IPFS content through any IPFS gateway
This lesson covers accessing IPFS content through Tor gateways.
After doing this Lesson you will be able to
Use the Tor browser and a public IPFS gateway on the Tor network to access IPFS content
If you do not already have the Tor browser installed, download the Tor browser from the Tor project by visiting https://www.torproject.org/projects/torbrowser.html.en
In some countries the Tor Project website is blocked or censored and it is not possible to download Tor directly. The Tor Project also hosts a mirror of Tor Browser Bundle on Github.
The GetTor service can also be used to download Tor Browser when the Project website and mirrors are blocked.
ipfs4uvgthshqonk.onion is a volunteer-run IPFS Gateway on the Tor network. You will use this gateway to request IPFS content. (Warning: The IPFS project does not run this gateway. We cannot guarantee stability or security.) There are probably many other IPFS gateways on the Tor network. You can use any of them in this way -- simply replace ipfs4uvgthshqonk.onion with the name of the gateway you're trying to access.
With the Tor browser running, enter the hash of the IPFS content you want to retrieve. This part is the same as using any other IPFS gateway -- only the address of the gateway is different: If you're using the hash of a specific snapshot of content, use the path https://ipfs4uvgthshqonk.onion/ipfs/<your-ipfs-hash>. If you're using an IPNS hash to get the latest version of some content, use the path https://ipfs4uvgthshqonk.onion/ipns/<your-ipns-hash>
To view the wikipedia page we're using as an example in all of the lessons in the Tutorial on The Myriad Ways to Access and Distribute IPFS Content, use these links:
latest (DNS): https://ipfs4uvgthshqonk.onion/ipns/wikipedia-on-ipfs.io
(you can verify it works with onion.link)
This approach relies on the IPFS gateway at ipfs4uvgthshqonk.onion to retrieve content from the IPFS network for you. The difference with this gateway, as opposed to the gateways at ipfs.io, is that it's listening for requests directly over Tor protocol. This allows you to access the gateway anonymously.
Read about how you can configure an IPFS node to use the Tor transport or return to the Tutorial on The Myriad Ways to Access and Distribute IPFS Content to learn about the many other ways you can use IPFS to access the same content using the same content-addressed link.
IPFS has an experimental feature that allows an IPFS node to interact with other IPFS nodes over the Tor transport protocol. The goal of this feature is to allow IPFS nodes to anonymously communicate with each other. This feature is experimental! Until we have tested this feature and removed the "experimental" designation, you should assume that information about your node might leak.
In the meantime, a more secure way to protect your anonymity would be to access data using the tor browser and an IPFS tor gateway.
To do the steps in this lesson you must:
Be familiar with using the command line
Install and Initialize IPFS on your local machine
After doing this Lesson you will be able to
Configure an IPFS node to use the Tor transport
Request content through that node
Work-In-Progress: https://github.com/ipfs/notes/issues/37
Work-In-Progress: https://github.com/OpenBazaar/go-onion-transport
TODO - This explanation has not been written yet. If you want to help work on it, or if you want to encourage us to give it attention, open an issue at https://github.com/ipfs-shipyard/ipfs-primer/issues
Start the IPFS daemon
For more info about this step, read Tutorial: Going Online - Joining the Distributed Web
This step is the same as using any other IPFS gateway -- only the address of the gateway is different: If you're using the hash of a specific snapshot of content, use the path http://localhost:8080/ipfs/<your-ipfs-hash>. If you're using an IPNS hash to get the latest version of some content, use the path http://localhost:8080/ipns/<your-ipns-hash>
To view the wikipedia page we're using as an example in all of the lessons in the Tutorial on The Myriad Ways to Access and Distribute IPFS Content, use these links:
latest (DNS): http://localhost:8080/ipns/wikipedia-on-ipfs.io
This feature is experimental! Until we have tested this feature and removed the "experimental" designation, you should assume that the explanation here is aspirational and provisional. We are describing what should be true but we have not yet tested and confirmed that the approach works without leaking information.
When you configure an IPFS node to use the Tor transport, the node will pipe all of its peer-to-peer communications through the Tor onion network. This means that when you request content from your local node, whether through its http gateway at localhost:8080 or through the command line, the node will access the IPFS network over the tor transport protocol. When it connects with peer nodes on the IPFS network, the peers will not know which node they are talking to nor where it is.
Return to the Tutorial on The Myriad Ways to Access and Distribute IPFS Content to learn about the many other ways you can use IPFS to access the same content using the same content-addressed link.
This lesson introduces the concept of content addressing and explores the powerful implications of using this approach.
After doing this Lesson you will be able to
Define content addressing and compare it with location-addressing
Explain the implications of being able to access IPFS content through so many different paths
When you use an http:// or https:// link to point to a webpage, image, spreadsheet, dataset, tweet, etc, you're identifying content by its location. The link is an identifier that points to a particular location on the web, which corresponds to a particular server, or set of servers, somewhere on the web. Whoever controls that location controls the content. That's how HTTP works. It's location-addressed. Even if a thousand people have downloaded copies of a file, meaning that the content exists in a thousand locations, HTTP points to a single location. This location-addressed approach forces us all to pretend that the data are in only one location. Whoever controls that location decides what content to return when people use that link. They also decide whether to return any content at all.
To get a sense of how impractical it is to address content by its location, imagine if I used location-addressing to recommend the book Why Information Grows.
If I identify the book by its content, saying "Check out the book called Why Information Grows by César Hidalgo. The ISBN is 0465048994.", you will be able to get any copy of the book from any source and know that you're reading the information I recommended. You might even say "Oh. I already read it." or "My roommate has it in the other room. I'll borrow it from him.", saving yourself the cost or effort of getting another copy.
By contrast, if I used location-addressing to identify the book, I would have to point to a location, saying something like "Go to the news stand at Market & 15th in Philadelphia and ask for the thing 16 inches from the south end of the third shelf on the east wall" Those instructions are confusing and awkward, but that is how http links work. They identify content by its location and they rely on the 'host' at that location to provide the content to visitors. There are lots of things that could go wrong with this approach. It also puts a lot of power and responsibility on the shoulders of whoever controls the location you're pointing to - in this case the news stand.
Let's consider the responsibilities of whoever controls the location we've pointed to. If the people running the news stand want my directions (aka. my "link") to remain valid, allowing people to access the book, they have to:
Always be open, 24/7, in case someone wants to read the book.
Provide the book to everyone who seeks the book, whether it's one person or hundreds of thousands of people.
Protect the integrity of the book by preventing anyone from tampering with it.
Never remove the book from its shelf - if they get rid of it, or even move it, my link is broken and nobody will be able to use my instructions to find the book.
Along with those responsibilities come a great amount of power. The proprietors of the news stand control the location that my directions point to, so they can choose to:
Dictate who is allowed to see the book.
Move the book without telling anyone.
Destroy the book.
Charge people money to access the book or force them to watch ads when they walk in the door.
Collect data about everyone who accesses my book, using that information however they want.
Replace the book with something else -- They might not even put a book there, since my instructions are just describing a location, a malicious actor could replace the book with something dangerous, turning the location into a trap!
Location-addressing has worked on the web for 25 years, but it's starting to get painful and It's about to get much worse. As long as we continue to rely on it, the web will continue to be unstable, insecure, and prone to manipulation or exploitation.
The alternative is to identify content by its "fingerprint" rather than identifying it by its location. That way, when someone says "Look at the content with this fingerprint" you can get it from anyone who has a copy of the content. To do this, we identify content by its cryptographic hash. A cryptographic hash is a short string of letters and numbers that's calculated by feeding your content into a cryptographic hash function like SHA.
When we identify content in this way, using the content's cryptographic hash instead of its location to identify it, this is called content-addressing. The cryptographic hash for a piece of content never changes, which means content addressing guarantees that the links will always return the same content, regardless of where I retrieve the content from, regardless of who added the content to the network, and regardless of when the content was added. That's the essential power of using a content-addressed protocol like IPFS instead of using a location-addressed protocol like HTTP.
Content-addressed links are permanent. The link permanently points to exactly that content. This has many powerful implications. From a computer science perspective, any time we create data that uses content-addressed links, we are creating a persistent data structure. There is a great amount of literature on the applications for persistent data structures. For this lesson, we will call out just a few implications of storing and sharing data using a content-addressed protocol:
This decentralized, content-addressed approach radically increases the durability of data. It ensures that data will not become endangered as long as anyone is still relying on it because anyone can hold a valid copy of the data they care about. If you hold a copy of a dataset on any of your devices, or if you pay someone to host it on an IPFS node for you, you become part of the network of stewards who protect that dataset from being lost. You won't have to worry about whether someone is going to turn off the servers where your data are hosted because you are one of the hosts. You and your peers hold the data among yourselves and are able to share the data directly with each other without relying on centralized points of failure.
Decentralization also increases the integrity of data because links are content-addressed. This means we can validate data by checking the data's fingerprints against the links. That kind of validation is impossible with location-addressed links. This is especially powerful on the large scale, where millions of websites and datasets reference each other billions of times. With location-addressed links, all of those connections are brittle. With content-addressed links, the connections become resilient and reliable.
As soon as any node has the content, everyone's links start working. Even if someone destroys all the copies on the network, it only takes one node adding the content in order to restore availability. A cryptographic hash permanently points to the content it was derived from, so IPFS links permanently point to their content. Even if the content becomes unavailable for a period, the links will work as soon as anyone starts providing the content again.
Even if the original publisher is taken down, the content can be served by anyone who has it. As long as at least one node on the network has a copy of the content, everyone will be able to get it. This means the responsibility for serving content can change over time without changing the way people link to the content and without any doubt that the content you're reading is exactly the content that was originally published.
The content you download is cryptographically verified to ensure that it hasn’t been tampered with.
IPFS can work in partitioned networks - you don’t need a stable connection to the rest of the web in order to access content through IPFS. As long as your node can connect to at least one node with the content you want, it works!
If one IPFS gateway gets blocked, you can use another one. IPFS gateways are all capable of serving the same content, so you’re not stuck relying on one point of failure.
Lightening the load: With IPFS, people viewing the content are also helping distribute the content (unless they opt out) and anyone can choose to pin a copy of some content on their node in order to help with access and preservation.
You can read anonymously. As with HTTP, IPFS can work over Tor and other anonymity systems
IPFS does not rely on DNS. If someone blocks your access to DNS or spoofs DNS in your network, it will not prevent IPFS nodes from resolving content over the peer-to-peer network. Even if you're using the DNSlink feature of IPFS, you just need to find a gateway that does have access to DNS. As long as the gateway you're relying on has access to DNS it will be able to resolve your DNSlink addresses.
IPFS does not rely on the Certificate Authority System, so bad or corrupt Certificate Authorities do not impact it.
You can move content via sneakernet! This is very useful in areas with poor connectivity, due to resource limitations, security reasons, or censorship. Even if your network is physically disconnected from the rest of the internet, you can write content from IPFS onto USB drives or other external drives, physically move them to computers connected to a new network, and re-publish the content on the new network. Even though you're on a separate network, IPFS will let nodes access the content using the same identifiers in both networks as long as at least one node on the network has that content.
IPFS nodes work hard to find each other on the network and to reconnect with each other after connections get cut.
(experimental) You can even form private IPFS networks to share information only with computers you've chosen to connect with.
Further light Reading:
Videos to Watch:
Academic Papers:
Read the Tutorial on The Myriad Ways to Access and Distribute IPFS Content to learn about the many different ways you can use IPFS to access the same content using the same content-addressed link.
This lesson shows you how to view a simple webpage which you added to IPFS, and then how to publish that webpage to IPNS.
After doing this Lesson you will be able to
View the simple webpage you created earlier and publish it to IPNS
When you ran the command ipfs add -r simple-webpage/ in the previous lesson, your output was similar to this:
The IPFS hash on the last line is the hash you will use to view your webpage. Note that your own hash may be different. Use your IPFS hash and open your webpage in the browser like so:
https://ipfs.io/ipfs/your-webpage-hash
You should see the "Nice Kitty" webpage from the previous lesson.
Wonderful, now you have your webpage available via IPFS. But suppose you have decided to make a change to this webpage? The IPFS hash above will only ever point to this first version of your webpage. By using IPNS (the InterPlanetary Name System), you can create a hash that will not change, but you will make it point to your changing content found within IPFS. The IPNS hash will be tied to your Peer ID, and any changes in the future will also be tied to your Peer ID.
Run the following command (using your webpage hash) to publish to IPNS:
You should see output like the following:
Note that the hash on the first line will be your Peer ID. Using IPNS, you have tied your Peer ID to the webpage that you added to IPFS earlier. You can confirm that your Peer ID is tied to that IPFS entry with the following command:
You should see output like the following:
Now you will be able to view the webpage using an IPNS link with your Peer ID:
https://ipfs.io/ipns/your-peer-id
Note how the URL changes from /ipfs/ to /ipns/ once you publish to IPNS.
The IPFS hash for your webpage will always point to the exact same content, this is one of the fundamental ideas of the "Permanent Web". If you make changes to your webpage, then your new IPFS content will have a different hash. If you use IPNS to tie your webpage to your Peer ID, then you can make changes to your webpage and publish your URL using the IPNS hash.
Proceed to the next lesson to learn how to Modify Your Webpage and Republish to IPNS
This lesson shows you how to modify the simple webpage which you previously added to IPFS, and then how to republish that webpage to IPNS.
After doing this Lesson you will be able to
Modify any webpage that you have within IPFS and republish your new webpage to IPNS.
You will be working again in the simple-webpage directory:
Using the text editor, open the index.html file in the simple-webpage directory and copy/replace with the following text:
Save index.html in the simple-webpage directory and close the text editor.
Add another level of complexity with one more HTML file in the simple-webpage directory. Using the text editor, copy/paste the following text:
Save this as secret.html in the simple-webpage directory and close the text editor.
Run the following commands to update your webpage to IPFS:
You should see output like the following:
Because the content in the simple-webpage directory has been changed, the final hash for the directory is now different. You might notice that the hash for cat.jpg has not changed, as no changes were made to that file.
The IPFS hash on the last line is the hash you will use to view your webpage. Note that your own hash may be different. Use your IPFS hash and open your webpage in the browser like so:
https://ipfs.io/ipfs/your-webpage-hash
You should see the "Nice Kitty Update" webpage. Also try to access the secret.html webpage:
https://ipfs.io/ipfs/your-webpage-hash/secret.html
And now you can republish your updated webpage to IPNS:
You should see output like the following:
So you can see that when you republish the updated IPFS webpage to IPNS, it will again tie your Peer ID to your updates. This is the power of being able to use IPNS to point to your updated webpage.
View the updated webpage using the IPNS link with your Peer ID:
https://ipfs.io/ipns/your-peer-id
and also view the secret.html webpage:
https://ipfs.io/ipns/your-peer-id/secret.html
The IPFS hash of your webpage changes every time you make a update to the webpage. By using ipfs name publish you can republish your webpage using IPNS, which will use the same hash every time, tied to your Peer ID. In this way you can distribute your IPNS link with your Peer ID, and anyone accessing your webpage with this link will get the most current version when you republish.
Examples of how this is useful:
Make internet content available in places that don't have direct connections to the internet backbone (remote locations with limited connectivity, space stations)
Circumvent censorship by governments, corporations and overbearing parents.
For this example we will pretend you're using an external drive to move a snapshot of wikipedia from IPFS to a new network where wikipedia isn't available.
To do the steps in this lesson you must:
Be familiar with using the command line
After doing this Lesson you will know how to physically move IPFS content across an airgap, making it available over IPFS and HTTP on the other side.
Use ipfs get command to download the content you want to move across networks. In this example, we download a complete snapshot of Wikipedia archive to disk, saving it as a folder called WikipediaSnapshot (Warning: this snapshot is 15 GB. You might want to use something smaller):
Copy the snapshot (ie. the folder "WikipediaSnapshot") to your external drive
Copy the IPFS binaries you downloaded (ie. the folder "go-ipfs-v0.4.8") into your external drive
Eject your external drive
Physically carry your external drive to the next computer you want to use the information from.
Then import the data into ipfs (in this case, the folder called WikipediaSnapshot)
Start the ipfs daemon:
This approach allows you to physically move IPFS content into networks where it was previously unavailable.
Because IPFS uses content-addressing, as long as the content you added to the second network is identical to the original content you originally exported from IPFS, the IPFS identifier for your content will be identical in both networks.
Proceed to the next lesson to learn how to
We're not kidding. If you'd like to move IPFS content between networks via , IPFS is just fine with that. This lesson covers how to load IPFS content onto storage devices like USB drives so that you can physically move the content to new networks and then re-publish it. Without ever relying on a direct connection between the networks, this will make the IPFS links for your content valid on both sides of the air gap.
on your local machine
Download the latest IPFS binaries into your drive too. You will need this in order to publish the content on the other side. Make sure to download the appropriate go-ipfs binary for the computer you will be moving the data to. Note: there might be a newer version of ipfs available when you read this. Find out the most current version number at
First Install and initialize the IPFS binary on the new computer. The instructions in might help.
The snapshot link should now work:
Return to the to learn about the many other ways you can use IPFS to access the same content using the same content-addressed link.
Next, proceed to the tutorial.
Learn about cryptographic hashes, their history and characteristics
Cryptographic hashes are seen as long strings of alphabetic and numeric data. They are created by having data presented as input to a cryptographic hash function, which processes that data and writes out a hash value, or checksum. The input data may be of arbitrary length, but the ouput hash is always of a fixed length.
Cryptographic hashes have a number of very important characteristics:
Deterministic - the same input message always returns exactly the same output hash
Uncorrelated - a small change in the message should generate a completely different hash
Unique - it’s not possible to generate the same hash from two different messages
One-way - it’s not possible to guess or calculate the input message from its hash
Let's examine these characteristics:
Deterministic: So long as you use the same cryptographic hash function, you will always get the exact same output hash value for the same input data. This allows you to verify the authenticity of the data that you might have in a file, for example. If two files have the same output hash when processed with the same cryptographic hash function, then the data can be believed to be identical.
Uncorrelated: A small change to the input data should generate a completely different hash. In this way the two hashes should appear uncorrelated. You can demonstrate this for yourself on the command line:
Notice the huge difference in the two hashes above. By changing the first character 'A' to lower-case 'a', the hash function generated very different output.
Unique: It's not possible to generate the same hash from two different messages. This is a characteristic of a well-built, robust cryptographic hash function. It is possible that some hash functions can derive the same hash for different messages, and this is called a hash collision. Hash functions have evolved over time, primarily due to vulnerabilities and weaknesses that were found. Modern cryptographic hash functions are known for strong collision resistance. Much work has been put into the attacking of cryptographic hash functions in particular, as they are considered key building blocks of modern cryptography.
One-way: It’s not possible to guess or calculate the input message from its hash. In other words, you cannot reverse or invert a hash function to obtain the original message that it was computed from. Hence, a cryptographic hash function is considered a one-way function. Brute-force attack methods sometimes are used to try to find a message that matches a given hash. The use of rainbow tables (pre-computed values from known inputs) is another common attack.
MD5: Designed by Ron Rivest in 1991 to replace an earlier hash function MD4. "MD" stands for "Message Digest". Produces a hash of 128 bits (16 bytes). Suitable for non-cryptographic uses, such as basic data integrity. Collisions against MD5 can be calculated within seconds which makes the algorithm unsuitable as a cryptographic hash.
SHA-1: Developed as part of the U.S. Government's Capstone project. The original specification of the algorithm was published in 1993. "SHA" stands for "Secure Hash Algorithm". Produces a hash of 160 bits (20 bytes). Collisions against SHA-1 have been produced and this hash function should be considered broken.
SHA-2: Designed by the United States National Security Agency (NSA), first published in 2001. SHA-2 basically consists of two hash algorithms: SHA-256 and SHA-512. SHA-512 is more secure than SHA-256. There are a number of variants of both algorithms. SHA-256 produces a hash of 256 bits (32 bytes) and SHA-512 produces a hash of 512 bits (64 bytes).
SHA-3: Released by NIST in 2015. SHA-3 is a subset of the broader cryptographic primitive family Keccak. SHA-3 has the same output sizes as SHA-2: 224, 256, 384 and 512 bits.
Read more on Cryptographic Hash Functions
Next, learn how to Build a Tree of Data in IPFS Using Cryptographic Hashes to Link the Pieces (a Merkle DAG)
These Lessons introduce the following concepts:
Immutability: "Changes" as additions to the tree
CRDTs
Pubsub
Authenticated Streams (with pubsub)
Disclaimer: Dynamic content on IPFS is a Work in Progress
Lesson: Add data to the DAG (locally)
Lesson: Tell peers about your Changes
Lesson: Use hashes to get someone's changes from IPFS
Lesson: Use a pub/sub strategy to pass around messages about changes
Lesson: Resolve conflicts with a merge strategy (CRDTs)
This lesson shows you how to generate an new name keypair and use it to publish a different IPNS webpage than your original Peer ID.
After doing this Lesson you will be able to
Generate a new name keypair and use it along with IPNS.
Imagine that you want to create a new name keypair called "trains". Run the following command:
Output should be a hash similar to the following:
Now you might list the keys that you have on your local node:
Note that "self" is the default name for the keypair of your Peer ID. This keypair is used when you ipfs name publish without specifying the name.
Create a new webpage directory in your user's home directory for trains.
Download 2 train images using ipfs:
Using a text editor, create a file called index.html and copy/paste the following content:
Save index.html in the trains-webpage directory and close the text editor. If you like, you may open index.html in the browser to see the webpage.
Now you can add your trains-webpage directory to IPFS
You should see output like the following:
You now know from the earlier lessons that you can view your webpage by using the hash from the last line above (Note that your own hash may be different):
https://ipfs.io/ipfs/QmTVgwpmruEWN8Dyx71FnBzymxfs8B5qV9Wuy8W4NZehPB
Now you can publish your trains webpage to IPNS using your new "trains" keypair with the hash of the trains-webpage/ directory:
You should see output like the following:
Note that the "Published to" hash above is the new name keypair "trains" hash that you created at the top of this page.
View the new webpage using the IPNS link with your "trains" hash:
https://ipfs.io/ipns/QmexZbauipkBBrV8vZv8WjeYe8F7ojCm4UZXuAhxk5vFF1
Use the same procedure that you learned earlier to update this webpage, add to IPFS, and republish to IPNS.
At any time you like you may generate a new name keypair to use with IPFS/IPNS work. This will allow you to work with multiple keypairs other than your primary Peer ID.
Next, proceed to the Merkle Trees and the IPFS DAG tutorial.
These Lessons introduce the following concepts:
Cryptographic Hashes and Content Addressability
Authenticated Graphs
Turning Files into Trees
Turning any Data into Trees
Publishing hashes on the DHT
Getting data from the Peer to Peer Network
Work in Progress This is the content from this existing Lesson vaguely re-framed to fit the Lesson framework.
Explain how IPFS represents Files as Merkle trees
Explore the Merkle Tree Blocks that make up a File in IPFS
For this lesson we need a file that's larger than 256kb. Download this image: tree-in-cosmos.jpg (863kb)
Save it as "tree-in-cosmos.jpg" and then add it to IPFS
Let's look at how IPFS represented that file internally by passing the content's hash to the ipfs ls command:
This returned a bunch of hashes. That's different from what happened in the lesson on adding file content to ipfs, where you only got one hash back. This is because ipfs breaks files into content blocks that are each about 256kb and then uses a hash tree to represent how they fit together.
This is one example of how IPFS uses hash trees, also known as Merkle DAGs, to represent information.
This kind of hash tree is formally known as a Merkle DAG -- this is because the technical term for this type of data structure is a Directed Acyclic Graph, or DAG, and a mathematician named Ralph Merkle invented them. Hence: Merkle DAG, or merkledag.
In this case, the hash for our file QmWNj1pTS... is the hash of the root block in a DAG that contains 4 sub-blocks. The output from ipfs ls lists those sub-blocks and their size.
Sometimes sub-blocks have sub-blocks of their own. That's when a Merkle DAG starts looking like a tree. This diagram shows a Merkle DAG with three layers of sub-blocks.:
Do you think it looks like an upside-down tree?
The ipfs refs and ipfs object links commands are other ways to get the listing of sub-blocks in the tree.
Try these:
If the sub-blocks had more sub-blocks within them, you would be able to use these commands to get the hashes of those sub-sub-blocks. For example:
But this doesn't return anything because there aren't sub-blocks within QmPHPs1P...
If you use ipfs cat to read the content back out of ipfs, it handles re-assembling the file from the hash tree. For example, the following command will read our sample image out of ipfs and write the content into a new file called "copy-of-tree-in-cosmos.jpg". Run the command and then open the new file to confirm that the image is still intact.
Use these commands to examine the blocks in the hash tree:
ipfs block stat will tell you the exact size of a given block (without its
children)
ipfs refs will tell you all the children of that block. This is a more suitable command for scripting something to run on each child block of a given object.
ipfs ls or ipfs object links will show you all children and their sizes.
In some cases you want to retrieve sub-blocks from a tree. You can use ipfs cat to do that. You can test that with the sub-bocks from our image.
The output will look similar to this because it's image content, not text:
ipfs cat allows you read the contents of each block and it also allows you to concatenate many inputs. This means we can use ipfs cat to re-build our image by passing the hashes of all our sub-blocks into that command.
Some things to try:
Write a script that uses ipfs refs and ipfs cat to rebuild a file from its root hash
Merkle DAGs are the core concept of IPFS. Merkle DAGs are also at the core of technologies like git, bitcoin and dat.
Hash trees are made up of content blocks that are each identified by their cryptographic hash. You can reference any of these blocks using its hash, which allows you to build trees of blocks that reference their "sub blocks" using the hashes of those sub blocks.
The ipfs add command will create a Merkle DAG out of the data in the files you specify. It follows the unixfs data format when doing this. What this means is that your files are broken down into blocks, and then arranged in a tree-like structure using 'link nodes' to tie them together. A given file's 'hash' is actually the hash of the root (uppermost) node in the DAG. for a given DAG, you can easily view the sub-blocks under it with ipfs ls.
Next, examine The Cryptographic Hash
Work in Progress This is the content from this existing Lesson vaguely re-framed to fit the Lesson framework.
Build a tree of data in IPFS using cryptographic hashes to link the pieces (a Merkle DAG)
In ipfs, a block refers to a single unit of data, identified by its key (hash). a block can be any sort of data, and does not necessarily have any sort of format associated with it. an object, on the other hand, refers to a block that follows the merkledag protobuf data format. it can be parsed and manipulated via the ipfs object command. any given hash may represent an object or a block.
Creating your own blocks is easy! simply put your data in a file and run ipfs block put <yourfile> on it, or you can pipe your filedata into ipfs block put, like so:
Note: When making your own block data, you wont be able to read the data with ipfs cat, this is because you are inputting raw data without the unixfs data format. To read raw blocks use ipfs block get as shown in the example.
