The Nexus protocol, as specified below, is a synchronous RPC protocol. Arbitrary length operations are modelled on top of a set of pre-defined synchronous RPCs.
A Nexus caller calls a handler. The handler may respond inline or return a reference for a future, asynchronous operation. The caller can cancel an asynchronous operation, check for its outcome, or fetch its current state. The caller can also specify a callback URL, which the handler uses to asynchronously deliver the result of an operation when it is ready.
An operation is addressed using the following components:
- The containing endpoint, a URL prefix (e.g.
http://api.mycompany.com/services/) - Service Name - A grouping of operations (e.g.
payments.v1) - Operation Name - A unique name for the given (e.g.
charge) - Operation ID - A unique ID assigned by the handler as a response to a StartOperation request.
The service name, operation name, and operation ID MUST not be empty and may contain any arbitrary character sequence as long as they're encoded into the URL.
The Failure object represents protocol level failures returned in non successful HTTP responses as well as failed or
canceled operation results. The object MUST adhere to the following JSON schema:
type: object
properties:
message:
type: string
description: A simple text message.
metadata:
type: object
additionalProperties:
type: string
description: |
A key-value mapping for additional context. Useful for decoding the 'details' field, if needed.
details:
type: any
properties:
description: |
Additional JSON serializable structured data.The OperationInfo object MUST adhere to the given schema:
type: object
properties:
id:
type: string
description: |
An identifier for referencing this operation.
state:
enum:
- succeeded
- failed
- canceled
- running
description: |
Describes the current state of an operation.Start an arbitrary length operation. The response of the operation may be delivered synchronously (inline), or asynchronously, via a provided callback or the Get Operation Result endpoint.
Path: /{service}/{operation}
Method: POST
callback: Optional. If the operation is asynchronous, the handler should invoke this URL once the operation's result is available.
A client may attach arbitrary headers to the request.
Headers that start with the Nexus-Callback- prefix are expected to be attached to the callback request when invoked by
the handler. The callback request must strip away the Nexus-Callback- prefix. E.g if a Start Operation request
includes a Nexus-Callback-Token: some-token header, the callback request would include a Token: some-token header.
The Operation-Timeout header field can be added to inform the handler how long the caller is willing to wait for an
operation to complete. This is distinct from the more general Request-Timeout header which is used to indicate the
timeout for a single HTTP request. Format of this header value is number + unit, where unit can be ms for
milliseconds, s for seconds, and m for minutes.
The Nexus-Link header field can be added to associate resources with the start request. A handler may attach these
links as metadata to underlying resources to provide end-to-end observability. See the Nexus-Link
section for more information.
The body may contain arbitrary data. Headers should specify content type and encoding.
-
200 OK: Operation completed successfully.Headers:
Nexus-Operation-State: succeeded
Body: Arbitrary data conveying the operation's result. Headers should specify content type and encoding.
-
201 Created: Operation was started and will complete asynchronously. It may returnNexus-Linkheaders to associate resources to this operation.Headers:
Content-Type: application/json
Body: A JSON serialized
OperationInfoobject. -
424 Failed Dependency: Operation completed asfailedorcanceled.Headers:
Content-Type: application/jsonNexus-Operation-State: failed | canceled
Body: A JSON serialized
Failureobject. -
409 Conflict: This operation was already started with a different request ID.Headers:
Content-Type: application/json
Body: A JSON serialized
Failureobject.
Request to cancel an operation. The operation may later complete as canceled or any other outcome. Handlers should ignore multiple cancelations of the same operation and return successfully if cancelation was already requested.
Path: /{service}/{operation}/{operation_id}/cancel
Method: POST
-
202 Accepted: Cancelation request accepted.Body: Empty.
-
404 Not Found: Operation ID not recognized or references deleted.Headers:
Content-Type: application/json
Body: A JSON serialized
Failureobject.
Retrieve operation result.
Path: /{service}/{operation}/{operation_id}/result
Method: GET
-
wait: Optional. Duration indicating the waiting period for a result, defaulting to no wait. If by the end of the wait period the operation is still running, the request should resolve with a 412 status code (see below).Format of this parameter is number + unit, where unit can be
msfor milliseconds,sfor seconds, andmfor minutes. Examples:100ms1m5s
-
200 OK: Operation completed successfully.Headers:
Nexus-Operation-State: succeeded
Body: Arbitrary data conveying the operation's result. Headers should specify content type and encoding.
-
408 Request Timeout: The server gave up waiting for operation completion. The request may be retried by the caller.Body: Empty.
-
412 Precondition Failed: Operation still running.When waiting for completion, the caller may re-issue this request to start a new long poll.
Body: Empty.
-
424 Failed Dependency: Operation completed asfailedorcanceled.Headers:
Content-Type: application/jsonNexus-Operation-State: failed | canceled
Body: A JSON serialized
Failureobject. -
404 Not Found: Operation ID not recognized or references deleted.Headers:
Content-Type: application/json
Body: A JSON serialized
Failureobject.
Retrieve operation details.
Path: /{service}/{operation}/{operation_id}
Method: GET
-
200 OK: Successfully retrieved info.Headers:
Content-Type: application/json
Body:
A JSON serialized
OperationInfoobject. -
404 Not Found: Operation ID not recognized or references deleted.Headers:
Content-Type: application/json
Body: A JSON serialized
Failureobject.
For compatiblity of this HTTP spec with future transports, when a handler fails a request, it should use one of the following predefined error codes.
| Name | Status Code | Description |
|---|---|---|
BAD_REQUEST |
400 | The server cannot or will not process the request due to an apparent client error. |
UNAUTHENTICATED |
401 | The client did not supply valid authentication credentials for this request. |
UNAUTHORIZED |
403 | The caller does not have permission to execute the specified operation. |
NOT_FOUND |
404 | The requested resource could not be found but may be available in the future. Subsequent requests by the client are permissible. |
RESOURCE_EXHAUSTED |
429 | Some resource has been exhausted, perhaps a per-user quota, or perhaps the entire file system is out of space. |
INTERNAL |
500 | An internal error occured. |
NOT_IMPLEMENTED |
501 | The server either does not recognize the request method, or it lacks the ability to fulfill the request. |
UNAVAILABLE |
503 | The service is currently unavailable. |
UPSTREAM_TIMEOUT |
520 | Used by gateways to report that a request to an upstream server has timed out. |
The Nexus-Link header field provides a means for serializing one or more links in HTTP headers. This header is encoded
the same way as the HTTP header Link described here.
Handlers and callers can specify links in different Nexus requests to associate an operation with arbitrary resources.
Links must contain a type parameter that expresses how they should be parsed.
Example: `Nexus-Link: myscheme://somepath?k=v; type="com.example.MyResource"
Callers may specify the Request-Timeout header on all APIs to inform the handler how long they're willing to wait for
a response.
Format of this header value is number + unit, where unit can be ms for milliseconds, s for seconds, and m for
minutes.
Any HTTP URL can be used to deliver operation completions.
Callers should ensure URLs contain sufficient information to correlate completions with initiators.
For invoking a callback URL:
- Issue a POST request to the caller-provided URL.
- Include any callback headers supplied in the originating StartOperation request, stripping away the
Nexus-Callback-prefix. - Include the
Nexus-Operation-Idheader,Nexus-Operation-Start-Timeand anyNexus-Linkheaders for resources associated with this operation to support completing asynchronous operations before the response to StartOperation is received.Nexus-Operation-Start-Timeshould be in a valid HTTP format described here. If is omitted, the time the completion is received will be used as operation start time. - Include the
Nexus-Operation-Stateheader. - If state is
succeeded, deliver non-empty results in the body with correspondingContent-*headers. - If state is
failedorcanceled, content type should beapplication/jsonand the body must have a serializedFailureobject. - Upon successful completion delivery, the handler should reply with a
200 OKstatus and an empty body.
There's no enforced security for callback URLs at this time. However, some specific Nexus server implementations may deliver additional details as headers or have other security requirements of the callback endpoint. When starting an operation, callers may embed a signed token into the URL, which can be verified upon delivery of completion.
- What potential security concerns should be taken into consideration while implementing this protocol?
Security is not part of this specification, but as this is a thin layer on top of HTTP, standard practices should be used to secure these APIs. For securing callback URLs, see Callback URLs > Security.