Documentation of module context #36
Conversation
michielbdejong
changed the title
michielbdejong
requested review from
jaxoncreed,
justinwb,
kjetilk,
pmcb55 and
RubenVerborgh
|
See https://github.com/inrupt/wac-ldp/blob/module-context-docs/README.md#context for human-readable display of the markdown source. Please add comments to this PR about how we can improve this documentation. |
There was a problem hiding this comment.
Main issues for me:
- the definition of the arrow as source code dependency
- need for a description of each block (especially the new ones) to determine responsibilities
- the listing of "5 main functional components". I think they are rather different kinds of specific HTTP handlers the server can delegate to, and I agree on LDP and IDP as being such blocks, but unsure about the others.
- we forgot server management as a block (managing users and their pods by server admin)
Detailed issues:
-
We might want the arrow to mean "uses" instead of "depends on (source code)". For instance, I would expect the server to use LDP and Databrowser, but only depend on them in the abstract sense: to the server, they should just be generic HTTP handlers.
-
Seems like we are missing a router component.
-
Are there definitions of the blocks? What is the exact functionality of "Notifications" and "Search"?
-
There is no fundamental difference between "LDP" and "Search", in the sense that both are HTTP interfaces to the data shielded by auth. This is now clear from their positioning in the diagram, but we perhaps want a different word for "Search". I imagine a diagram where there are a bunch of different "RDF-over-HTTP" blocks, where LDP, Search-A, Search-B, Query-C, etc. are just instances. (so something like
[LDP] [A] … [Z]). I don't think "Search" is a thing like "LDP" is (but "Search-A" etc. are). -
Just like "Search" is not a component for me, I don't think "Data browser" is. There is a notion of "statically served files", so just a "Static" component would do for me. (Cfr. https://github.com/solid/solid-architecture/blob/master/server/request-flow.md where there are LDP and non-LDP requests.)
-
IDP: let's remove "persistent storage"? Blocks might or might not have storage; not a concern at this level. Same for Persistence; could just be in-memory. The DB icon clutters unnecessarily.
-
The dependency between Persistence and Auth depends on specific implementations of Auth (but it is indeed reasonable to have it). Another way to view things is that Auth depends on LDP. Such a view might even be necessary depending on who has the knowledge to do the URL-to-filename translation.
-
The fact that Auth is, under current arrow semantics, a code dependency of LDP/Notifications/Search prevents a layered approach where these components do not have to explicitly perform auth calls. A very different option for the architecture is to have Auth before LDP (without source code dependency), and to have Notifications/Search depend on LDP rather than on Storage. Not saying that we should, just want to bring up this possibility.
Note: these comments are just on the architectural diagram; code structure discussions are only meaningful after we have the architecture nailed down.
|
Re server vs router, I was thinking of the router as (the main) part of the server. So the router does not have a code dependency on the route handlers it routes to, but the server is the resulting executable that contains the router plus all the route handlers, and so it has all of them as dependencies.
Good point! I'll change that. Re data browser, I included it mainly because it's a sizeable software project, it's quite essential for the services a pod provider runs, and it's also very visible to end-users. Also, static vs dynamic is not a very interesting distinction to me - Not so sure about removing the db and network interface icons, to me they are quite essential to see what's going on. Otherwise it seems that 'Persistence' is the database, and not the source code module surrounding it (and same for 'Server' looking like it means http entry/exit point instead of source code surrounding it), and then the meaning of the arrows becomes confusing. But I'll think about it. Re auth depending on ldp, or auth being a step before ldp, I'll think about that some more.
Totally agree now, that's also what @justinwb explained to me yesterday. |
Not disagreeing, but data browser is just a UI for a Solid pod. So "Databrowser" is actually just a collection of static files that make up the UI that you see. It is a client-side Solid app.
It is, because static files you can host on any Solid pod. E.g., I can just host Databrowser, Warp, or any other Solid app or UI myself. I cannot host LDP though. So see static/dynamic as "does the server require anything beyond standard HTTP?". Makes a big difference, because the set of static files can be expanded without even touching the code. So I insist that Databrowser is just serving static files, which is something we will need to do anyway (CSS etc.).
Not "static" in the sense of "constant" / "equal across all servers".
Exactly, and they are just all statically wired up files. Crucially, login and register pages should just be static files in this server. In NSS, that UI is tightly integrated with the internals. What we need is an RDF API for logging in, creating accounts, etc., and a front-end UI (a completely static client-side Solid app) that uses that API. That way, different servers can use different login and management apps. So let's have a generic component for serving static files, AKA client-side Solid apps and their assets.
It's visual noise that distracts from what we need to see in the figure: components and relations. Opening the figure now, I see two big databases and a purple thing, but that's not the essence. Whether or not a component has storage or network interface is not an important question at this stage. If storage and network are important, let's have them as components instead. Or just a list below the figure "these components use storage". |
|
New version: |
|
Thanks, this makes sense to me (pending a resolution for auth). What do you think? And what do others think? There's several options besides what I suggested, so I'm sure there will be other takes. |
|
Re @kjetilk's questions:
that would be a sub-component inside the "Data interface 1 (e.g. LDP)" component.
I previously thought we should check quota and conflicting writes before attempting to write to storage, but later @pmcb55 convinced me that it's better not to do those checks and locks beforehand, but rather just let the operations error when and where a problem occurs, so the quota check would be inside the Persistence component.
I'm going to try to do without that if we can. If the only reason would be setting different quota limits for different users then I think we can just leave that feature out (but if you want then we put it on the request list in #31?) |
For one thing, I think we need input validation and filter also on the query component. The other thing is that I think it can get really large. Like, orders of magnitude larger than the rest of the server. The stuff we'd want it for, like shapes validation and QA purposes, is probably not too large, but then there's the infamous EU Copyright Article 17 (formerly 13), which may require us to spend much more time on input filtering than we do on any other activity. That legislation has created a minefield for Europe, and although I don't see how anyone would argue that the At least, I'm thinking it would consist of several microservices that has a consistent interface and some internal structure, but that is not sufficient reason to consider it a functional component by itself, I guess.
Right, that would simplify. Just to have it on the radar so that we're not going ending up with the same situation that so simple things get really hard because we simply haven't got a place to put that data.
The main reason was to store the current usage (which is a bit too expensive to compute on the fly). Different quotas for different users are already in NSS5. However, I can also imagine us wanting to cache certain things internally, so, it might be a nice-to-have shared component. |
|
@kjetilk yeah, the BlobTree implementation can decide for itself how it caches current usage, so that's all inside that component, and then it can throw OverQuota errors which will then be converted to some http error status (403 maybe?) in the HttpResponder. I created a separate issue for your point about input validation. @RubenVerborgh re '(pending a resolution for auth)', can you be more specific about what you want me to resolve and how? I think if you look at the implementations from #28 and inrupt/websockets-pubsub#1 then the current diagram correctly described how auth is a software dependency of LDP and of WebSockets notifications, and how auth depends on the BlobTree storage, right? The goal of this PR is to document the current architecture, we can list refactor requests in #31. |
Okay, got it. But can we also have a future architecture diagram? |
Yes! What would you change? |
|
I'll merge this and then we can do a new PR for the 'future' diagram. |
No description provided.