A Go microservice that connects Tesla vehicles to the DIMO Network, handling vehicle onboarding, telemetry management, and command execution.
Tesla Oracle connects Tesla vehicles to the DIMO Network as blockchain-based devices. It provides:
- Vehicle Onboarding: Connects Tesla vehicles to the DIMO network as synthetic devices
- Telemetry Management: Subscribes to and manages Tesla vehicle data streams
- Vehicle Commands: Executes vehicle operations (lock/unlock, climate control, etc.)
- Blockchain Integration: Mints NFTs for vehicles and validates ownership
- Credential Security: Stores and manages Tesla Fleet API credentials with encryption
Tesla Oracle handles vehicle onboarding through a simplified API flow that replaces the previous devices-api integration.
Tesla Auth β List Vehicles β Virtual Key β Verify β Mint Data β Sign β Submit β Poll β Finalize
Current Flow (backed by tesla-oracle):
- Authorize with Tesla - OAuth flow with Tesla
POST /v1/tesla/vehicles- Get owned vehicles (vin,externalId,device_definition_id, MMY)- Select vehicle from the list
GET /v1/tesla/virtual-key?vin=<vin>- Check virtual key pairing status- Depending on the status handle virtual key step with Tesla app
POST /v1/vehicle/verify- Verify vehicle with{vins: [vin]}payloadGET /v1/vehicle/mint?vins=<vin>- Get signing payload for the VIN- Sign the payload - EIP-712 signature + SACD creation
POST /v1/vehicle/mint- Submit signed data:{ "vinMintingData": [ {"vin": "...", "signature": "0x...", "typedData": {}, "sacd": "..."} ] }GET /v1/vehicle/mint/status?vins=<vin>- Poll for mint completionPOST /v1/vehicle/finalize- Complete onboarding with{vins: [vin]}- Response:
{vehicles: [{vin, vehicleTokenId, syntheticTokenId}]}
WebView Integration Flow:
- Open WebView with oracle UI URL + JWT + optional vehicle token ID
- Listen for messages:
open- Open URL for virtual key pairingsign-mint- Sign typed data and add SACD to responseonboarded- Receive VIN, vehicle token ID, and synthetic device token ID
- Close WebView and continue with app flow
Tesla Oracle uses decision trees to determine vehicle status and next actions based on Tesla Fleet API data.
{
"message": "Vehicle ready to start data flow. Call start data flow endpoint",
"action": "set_telemetry_config",
"next": {
"method": "POST",
"endpoint": "/v1/tesla/telemetry/123/start"
}
}{
"message": "Virtual key not paired. Open Tesla app deeplink for pairing.",
"action": "open_tesla_deeplink"
}{
"message": "Firmware too old. Please update to 2025.20 or higher.",
"action": "update_firmware"
}{
"message": "Streaming toggle disabled. Prompt user to enable it.",
"action": "prompt_toggle"
}{
"message": "Telemetry configuration already set, no need to call /start endpoint",
"action": "telemetry_configured"
}- Subscribe/Unsubscribe: Requires
MobileAppDevLicensewallet (dev license validation) - Start Data Flow: Requires vehicle ownership validation
- Commands: Require active telemetry subscription status + privilege token authentication
Tesla Oracle uses River job queue system for asynchronous processing of complex operations such as onboarding or commands.
OnboardingWorker handles vehicle minting operations:
- Job Type:
OnboardingArgs - Timeout: 30 minutes for complex blockchain operations
- Max Attempts: 1 (fail-fast approach)
- Unique Jobs: Prevents duplicate processing for the same VIN
- Processing:
- Validates onboarding record and status
- Generates synthetic device wallets if needed
- Executes blockchain transactions (Vehicle NFT + Synthetic Device NFT minting)
- Updates status throughout the process
- Handles failure scenarios with proper rollback
CommandWorker handles Tesla vehicle command execution:
- Job Type:
CommandArgs - Timeout: Configurable based on command type
- Max Attempts: Configurable retry logic
- Processing:
- Retrieves and decrypts Tesla credentials
- Executes commands via Tesla Fleet API (lock/unlock, climate control, etc.)
- Handles Tesla API rate limiting and errors
- Updates command status and results
- Manages credential refresh if needed
Architecture Improvement: The River jobs for commands simplified the legacy task-worker devices-api β task-worker approach by eliminating Kafka dependency and performing async operations completely within the service itself.
- Vehicle data retrieval and management
- Telemetry subscription/unsubscription
- Virtual key status monitoring
- Command execution
- Identity API: User and device identity management
- Device Definitions API: Vehicle metadata and specifications
- Synthetic Wallets API: Blockchain transaction management
- Devices gRPC: Task and workflow coordination
- Vehicle NFT minting and ownership validation
- Smart contract event processing
- Wallet-based authentication and authorization
Credential Listener: Tesla Oracle consumes credential updates from the DIMO network via Kafka:
- Topic:
CREDENTIAL_KTABLE(configured per environment) - Consumer Group:
tesla-oracle - Purpose: Receives Tesla API credential updates for synthetic devices
- Processing:
- Listens for credential cloud events with access/refresh tokens
- Updates
synthetic_devicestable with new encrypted credentials - Handles token expiry management (access tokens + 90-day refresh tokens)
- Filters for Tesla integration (IntegrationTokenID = 2)
Contract Event Consumer: Processes blockchain events when enabled:
- Topic: Configurable contract event topic
- Purpose: Handles smart contract events and state changes
make generate-swagger
We use https://github.com/swaggo/swag with the fiber support.