Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
docs/advanced: add initial draft of data-by-pass
Introduce a new section "Advanced concepts" for patterns etc. Also add a first draft of the data by-pass pattern. Signed-off-by: Alexander Wellbrock <a.wellbrock@mailbox.org>
- Loading branch information
Showing
4 changed files
with
82 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Binary file added
BIN
+32.6 KB
.../src/main/resources/images/pages/advanced/data-by-pass-architectural-design.jpg
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
65 changes: 65 additions & 0 deletions
65
documentation/src/main/resources/pages/ditto/advanced-data-by-pass.md
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,65 @@ | ||
| --- | ||
| title: Data By-Pass Pattern | ||
| keywords: auth, access control, router, content-type, correlation-id, feature, message, payload, thing | ||
| tags: [advanced] | ||
| permalink: advanced-data-by-pass.html | ||
| --- | ||
|
|
||
| This pattern centers around the Idea to delegate the data transmission to external services, by-passing the ditto cluster, while still being able to benefit from dittos policy system and IoT architecture. | ||
|
|
||
| ## Context | ||
|
|
||
| You have services exposing their functionality transparently though dittos messaging API as part of your digital twin. E.g. a history service providing the actual interface to your timeseries database as part of the things interface such that a client may not need to know if the history actually is managed by the thing itself or any other program. You use dittos policy system to secure access to your services that way. | ||
|
|
||
| Your services provide data in quantities that are not suited for transmission through the ditto cluster directly, because of (de-)serialization costs, round-trip-times etc. | ||
|
|
||
| ## Problem | ||
|
|
||
| You want to query a greater amount of data (e.g. database query result) by issuing a ditto message to a thing which is picked up by a service speaking with you databases. It does not work to just let this service return the result as a response to the ditto message, since the messaging system in the ditto cluster is not designed for big quantities of data and will reject them based on tight quotas. Also the costs due to many (de-)serialization steps are high. | ||
|
|
||
| ## Solution | ||
|
|
||
| The solution is comprised of the following systems: | ||
|
|
||
| * **database**: where your bigger chunks of data reside and wait to be delivered / queried | ||
| * **database provider mirco-service**: the service managing the database connection and exposing it to clients through things messaging API | ||
| * **thing**: a digital thing with extended API through a micro-service | ||
| * **client**: a client-application trying to receiving bigger quantities of data via a things messaging API in the scope of that thing and secured via ditto policies | ||
| * **high-performance data proxy** (or just proxy): a third-party application proxy sitting in-between the database and the provider micro-service managing data delivery | ||
|
|
||
| {% include image.html file="pages/advanced/data-by-pass-architectural-design.jpg" alt="Architectural Design" caption="Architectural design of the data by-pass pattern showing all actors and their interactions." max-width=800 %} | ||
|
|
||
| In order for the client-application to retrieve the requested data in a secure and performant way we introduce a high-performance proxy (e.g. based on nginx, example below). The proxy will not have any credentials by itself, it's just serving prepared queries on a randomly, hard-to-guess URL with an expiration time of 5 minutes. It features an admin API which the micro-service has credentials to access. | ||
|
|
||
| The provider micro-service hooks into a twin (e.g. via websockets) and listens for queries. If a query arrives it will formulate the query, store it at the high-performance proxy (which might already query the data) and return a randomly generated URL to the proxy together with a Location-header as a response to the client-application. The client then needs to follow the response in order to retrieve the data from the proxy. | ||
|
|
||
| With this approach the access to the database is secured via ditto policies and in scope of single things while the data retrieval happens via a performant proxy application without the ditto cluster ever seeing those packages. | ||
|
|
||
| ## Discussion | ||
|
|
||
| **Benefits**: | ||
|
|
||
| * Higher performance compared to using just ditto | ||
| * The ditto policy system can be utilized to scope and secure data access from clients to databases / -stores | ||
|
|
||
| **Drawbacks**: | ||
|
|
||
| * A third-party application for the high-performance proxy has to be added and maintained | ||
| * A custom messaging API is necessary in the first place introducing a higher complexity | ||
| * A translation of certain query-languages from messages to the actual databases / applications has to be implemented | ||
|
|
||
| **Issues**: | ||
|
|
||
| * Managing and communicating custom messaging APIs is not natively supported in ditto, other ways have to be explored to keep APIs consistent | ||
|
|
||
| ## Proxy Implementations | ||
|
|
||
| The [ceryx proxy project](https://github.com/sourcelair/ceryx) was used for the [PoC (or reference implementation)](https://github.com/w4tsn/ceryx) of this pattern. It was enhanced with delegation features which still have to be contributed upstream. Have a look at the [forks source code](https://github.com/w4tsn/ceryx) or the [corresponding container image](https://quay.io/repository/w4tsn/ceryx) until then. | ||
|
|
||
| The ceryx proxy is a modified nginx with a redis-database to store the randomly generated IDs correlating with prepared queries. It is not suited for this use-case on it's own so capabilities to store queries (including Authentication) behind expiring random URLs was added, but not send upstream yet. | ||
|
|
||
| ## Known uses | ||
|
|
||
| **[othermo GmbH](https://www.othermo.de) uses this for a history-service**: The history service connects to ditto via websockets and hooks into things by answering specific `/history` messages. The messages API is translated to InfluxDB queries which then are stored with a randomly generated URL and expiration of 5 minutes at the high-performance proxy. The service then returns the random URL to the client which then follows the 303 to retrieve the actual data. | ||
|
|
||
| The messages contain InfluxDB-similar query elements while the query is only constructed at the provider service. That's because the provider service uses the databases specifics like Tags in InfluxDB to assign thingId, policy and path informations in order to get the stored data into the right scopes and to be able to retrieve the correct sets of data. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,9 @@ | ||
| --- | ||
| title: "Advanced topics" | ||
| tagName: advanced | ||
| search: exclude | ||
| permalink: tag_advanced.html | ||
| sidebar: ditto_sidebar | ||
| folder: tags | ||
| --- | ||
| {% include taglogic.html %} |