Check out the Table of Contents to help you find what you're looking for. In particular, check out the Recommendations section.
The Bosk object is a container for your application state tree.
If it helps, you can picture it as an AtomicReference<MyStateTreeRoot> that your application can access,
though it actually does several more things:
- it acts as a factory for
Referenceobjects, which provide efficient access to specific nodes of your state tree, - it provides stable thread-local state snapshots, via
ReadContext, - it provides a
BoskDriverinterface, through which you can modify the immutable state tree, and - it can execute hook callback functions when part of the tree changes.
The Bosk object is typically a singleton.
Initialization of the Bosk object happens during its constructor.
Perhaps this seems self-evident, but it means a lot happens during the constructor, including running user-supplied code, in order to establish the initial bosk state invariants.
There are two primary things that need initializing:
- The
BoskDriver - The state tree
First, the driver is initialized by calling the DriverFactory function passed in to the bosk constructor.
The driver factory is an important bosk extension point that allows functionality to be customized.
Every Bosk object has a local driver, which applies updates directly to the in-memory state tree;
the DriverFactory allows this to be extended with additional functionality by stacking "decorator" layers on top of the local driver.
The DriverFactory function is invoked in the Bosk constructor as follows:
this.driver = driverFactory.build(this, localDriver);The return value of this function is stored, and becomes the object returned by Bosk.driver().
Note that the factory accepts the Bosk object itself, even though this object is still under construction.
The reason for this is to allow drivers to create Reference objects, which requires the Bosk (which behaves as a Reference factory).
During the execution of DriverFactory, the bosk object can be used for anything that doesn't involve accessing the driver or the state tree, because neither of these is ready yet at the time the factory is called.
Other operations, like creating references, or Bosk.instanceID(), work as expected.
The state tree (described below) is initialized by calling driver.initialState.
Drivers are free to choose how the initial state is computed: they can supply the initial state themselves, or they can delegate to a downstream driver.
For example, MongoDriver will load the initial state from the database if it's available, and if not, it will delegate to the downstream driver.
If all drivers choose to delegate to their downstream drivers, ultimately the initialState method of the bosk's local driver will be called.
This method calls the Bosk constructor's DefaultRootFunction parameter to compute the initial state tree.
The overall effect of this setup is that the DefaultRootFunction parameter is only used if the bosk's driver does not supply the initial state.
Your application state takes the form of a tree of immutable node objects that you design.
The Bosk object keeps track of the root node, and the other nodes can be reached by traversing the tree from the root.
A node is identified by the sequence of steps required to reach that node from the root node.
The step sequence can be represented as a slash-delimited path string;
for example, the path "/a/b" represents the node reached by calling root.a().b().
A Path object is the parsed form of a path string.
They can be created in three ways:
- The
Path.parsemethod accepts a slash-delimited path string. The segments of the path must be URL-encoded. - The
Path.ofmethod accepts a sequence of segment strings. The segments are not URL-encoded. - The
Path.thenmethod extends a path with additional trailing segments.
For example, the following three Path objects are identical:
Path.parse("/media/films/Star%20Wars")Path.of("media", "films", "Star Wars")Path.of("media", films").then("Star Wars")
Path objects are always interned, meaning that two identical paths are always represented by the same Path object.
Paths are validated upon creation to make sure they are properly formatted;
otherwise, a MalformedPathException is thrown.
A Reference is a pointer to a node in the state tree, identified by its path.
Reference is one of the most important classes in Bosk. It is used in two primary ways:
- A
Referencecan be created by the application (typically during initialization) to indicate a particular node to access, either to read its current value or to submit an update. - A
Referencecan be stored in the state tree itself to point to another node in the tree. (AReferencenode cannot point to anotherReferencenode.)
Unlike Path, Reference is type-checked upon creation to make sure it refers to an object that could exist.
It is valid for a reference to refer to an object that does not currently exist
(such as an Optional.empty() or a nonexistent Catalog entry),
but attempting to create a reference to an object that cannot exist
(such as a nonexistent field of an object) results in an InvalidTypeException.
Two Reference objects are considered equal if they have the same path and the same root type.
In particular, references from two different bosks can be equal.
StateTreeNode is a marker interface you use to indicate that your class can be stored in a bosk.
It has no functionality.
Entity is a StateTreeNode that has a method id() returning an Identifier.
This allows them to be stored in a Catalog (see below).
A node's contents are defined by the names and types of its constructor's arguments.
Each argument must have a corresponding getter method with the same name, taking no arguments, and returning the same type.
(These conventions are compatible with record types, which are encouraged.)
In the context of a bosk state tree, the constructor arguments and corresponding getters are referred to as "fields"
regardless of whether they actually correspond to fields of the Java object (though they usually do).
A node is considered to contain its fields, creating a whole/part parent/child relationship between them. Removing a node removes all its descendant nodes. Diamond relationships, where two nodes have the same child, are not prevented, but they are also not preserved: Bosk will interpret these as two different nodes and will make no effort to preserve their shared object identity.
To create a reference relationship instead of a containment relationship, use Reference or Listing.
A Catalog is an immutable ordered set of Entity objects of a particular type.
A Catalog field establishes a one-to-many parent/child containment relationship between nodes.
The identity of each entry is established by Entity.id().
Outside of a state tree, Catalog also doubles as a handy immutable collection data structure.
Entities can be added or removed by calling the with and without methods, respectively.
The with operation is an "upsert" operation that replaces an entry if one already exists with a matching ID; otherwise, it adds the new entry to the end.
The without operation removes the entry with a given ID, leaving the remaining objects in the same order; if there is no such entry, the operation has no effect.
These operations take O(log n) time.
Because Catalog objects contain their entries, the entries can be retrieved or iterated without a ReadContext.
A Listing is an ordered set of references to nodes in a particular Catalog referred to as the listing's domain.
A Listing establishes a one-to-many reference relationship between nodes.
The Listing object does not contain its entries; rather, it references entries contained in the domain Catalog in the bosk.
This means you need a ReadContext to access the referenced objects themselves.
The domain of a Listing plays a role similar to a datatype: it indicates the set of possible values to which a Listing may refer.
Just as a Reference points to a node that may or may not exist,
the entities pointed to by a Listing may or may not exist within the domain catalog;
that is, an entry can be added to a Listing even if the corresponding Catalog entry does not exist.
In fact, the Catalog itself need not exist either,
and it's not uncommon for the domain of a Listing to be a Phantom catalog,
in which case the domain is even more like a datatype, specifying a set of allowed values in an abstract manner.
Formally speaking, a listing entry carries no information besides its existence.
A Reference to a listing entry is of type Reference<ListingEntry> and, if the entry exists,
it always has the value LISTING_ENTRY. (ListingEntry is a unit type.)
A SideTable is an ordered map from nodes in a particular Catalog, referred to as the SideTable's domain,
to some specified type of value node.
A SideTable allows you to associate additional information with entities without adding fields to those entities.
The domain of a SideTable plays a role similar to a datatype for the SideTable's keys:
it indicates the set of possible values from which the SideTable's keys may be taken.
The SideTable object does not contain its keys, but does contain its values.
The keys are contained in the domain Catalog in the bosk.
This means you need a ReadContext to access the referenced key objects themselves.
Accessing the value objects, on the other hand, does not require a ReadContext.
Just as a Reference points to a node that may or may not exist,
the keys referenced by a SideTable may or may not exist within the domain catalog.
A Phantom field is a field that does not exist.
It behaves just like an Optional field that is always empty.
Phantom fields are primarily useful as the domain for a sparse Listing or SideTable in situations where there is no useful information to be stored about the key entities.
If you don't already know what this means, you probably don't want to use Phantom.
The Bosk object acts as a factory for Reference objects.
You can call any of the reference* methods to generate references as desired.
The methods are type-safe, in that they require the caller to pass type information that is checked against what is actually found in the state tree.
The Bosk object also offers a method called buildReferences
that can create a number of Reference objects all at once, in a declarative fashion.
This is usually the preferred way to create references.
To use it, first declare a public interface class with methods annotated with @ReferencePath
and returning references of the appropriate type.
A simple example:
public interface Refs {
@ReferencePath("/")
Reference<TestRoot> root();
@ReferencePath("/entities/-entity-")
Reference<TestEntity> anyEntity();
}The return type of each method must be one of
Reference, CatalogReference, ListingReference, or SideTableReference.
The path may be parameterized.
Then instantiate your interface as follows:
Refs refs = bosk.buildReferences(Refs.class);For parameterized paths, the method may also accept Identifier arguments
for one or more of the parameters.
It may also accept Identifier[] or Identifier... as its last argument.
public interface Refs {
// Fully parameterized
@ReferencePath("/planets/-planet-/cities/-city-")
Reference<City> anyCity();
// Binds the -planet- parameter and leaves -city- unbound
@ReferencePath("/planets/-planet-/cities/-city-")
Reference<City> anyCity(Identifier planet);
// A concrete reference to a specified city
@ReferencePath("/planets/-planet-/cities/-city-")
Reference<City> city(Identifier planet, Identifier city);
// Varargs
@ReferencePath("/planets/-planet-/cities/-city-")
Reference<City> city(Identifier... ids);
}Calling buildReferences is costly, requiring perhaps tens of milliseconds,
and performing reflection, class loading, and dynamic bytecode generation.
In contrast, using the resulting object is efficient.
The intent is for buildReferences to be called during initialization to build a singleton
for dependency injection.
Bosk is designed to provide stable, deterministic, repeatable reads, using the Reference class.
Reference contains several related methods that provide access to the current state of the tree.
The most commonly used method is Reference.value(), which returns the current value of the reference's target node, or throws NonexistentReferenceException if the node does not exist.
A referenced node does not exist if any of the reference's path segments don't exist;
for example, a reference to /planets/tatooine/cities/anchorhead doesn't exist if there is no planet tatooine.
There are a variety of similar methods with slight variations in behaviour.
For example, Reference.valueIfExists() is like value(), but returns null if the node does not exist.
The core of bosk's approach to deterministic, repeatable behaviour is to avoid race conditions by using immutable data structures to represent program state. To keep the state consistent over the course of an operation, bosk provides snapshot-at-start behaviour: the same state tree object is used throughout the operation, so that all reads are consistent with each other.
The ReadContext object defines the duration of a single "operation".
Without a ReadContext, a call to Reference.value() will throw IllegalStateException.
ReadContext is an AutoCloseable object that uses ThreadLocal to establish the state snapshot to be used for the duration of the operation:
try (var __ = bosk.readContext()) {
exampleRef.value(); // Returns the value from the snapshot
}
exampleRef.value(); // Throws IllegalStateExceptionBy convention, in the bosk library, methods that require an active read context have value in their name.
The intent is to create a read context at the start of an operation and hold it open for the duration, so that the state is fixed and unchanging. For example, if you're using a servlet container, use one read context for the entirety of a single HTTP endpoint method. Creating many brief read contexts opens your application up to race conditions due to state changes from one context to the next.
At any point in the code, a call to bosk.readContext() will establish a read context on the calling thread.
If there is already an active read context on the calling thread, the call to readContext has no effect.
Sometimes a program will use multiple threads to perform a single operation, and it is wise to use the same state snapshot for all of them.
A snapshot from one thread can be used on another via ReadContext.adopt:
try (var __ = inheritedContext.adopt()) {
exampleRef.value(); // Returns the same value as the thread that created inheritedContext
}A path can contain placeholders, called parameters, that can later be bound to Identifier values.
A reference whose path contains one or more parameters is referred to as a parameterized reference (or sometimes an indefinite reference);
a reference with no parameters is a concrete (or sometimes definite) reference.
Parameters are delimited by a hyphen character -, chosen because it survives URL encoding, meaning paths retain their readability even when URL-encoded.
An example:
Reference<City> anyCity = bosk.reference(City.class, Path.parseParameterized(
"/planets/-planet-/cities/-city-"));Parameter values can either be supplied by position or by name.
To supply parameters by position, use Reference.boundTo:
Reference<City> anchorhead = anyCity.boundTo(
Identifier.from("tatooine"),
Identifier.from("anchorhead"));
// Concrete reference to /planets/tatooine/cities/anchorheadTo supply parameters by name, generate a BindingEnvironment and use Reference.boundBy. For example, this produces the same concrete reference as the previous boundTo example:
BindingEnvironment env = BindingEnvironment.builder()
.bind("planet", Identifier.from("tatooine"))
.bind("city", Identifier.from("anchorhead"))
.build();
Reference<City> anchorhead = anyCity.boundBy(env);You can also extract a binding environment using a parameterized reference to do pattern-matching:
BindingEnvironment env = anyCity.parametersFrom(anchorhead.path()); // binds -planet- and -city-The state tree is modified by submitting updates to the bosk's driver.
The BoskDriver interface accepts updates and causes them to be applied asynchronously to the bosk state.
Because updates are applied asynchronously, it's possible that intervening updates could cause the update to become impossible to apply; for example, changing a field of an object that has been deleted. Updates that can't be applied due to the contents of the bosk state are silently ignored.
In contrast, updates that are impossible to apply regardless of the state tree contents will throw an exception at submission time; examples include an attempt to modify a nonexistent field in an existing object, or an attempt to submit an update when an error has left the driver temporarily unable to accept updates.
The most common form of update is submitReplacement, which supplies a new value for a node.
Replacement is an "upsert": the node is left in the desired state whether or not it existed before the update occurred.
An attempt to replace a component of a nonexistent object will be silently ignored;
for example, a replacement operation on /planets/tatooine/cities will be ignored if tatooine does not exist.1
Some nodes in the tree can be deleted. Examples include:
- Fields of type
Optional - Entries in a
Catalog,ListingorSideTable
To delete such nodes, call BoskDriver.submitDeletion.
When applied, a deletion causes the node (and all its children) to become nonexistent.
The semantic nuances are similar to those of replacement.
The replacement and deletion operations each have corresponding conditional forms.
Conditional updates are silently ignored if a given precondition node does not have the specified requiredValue at the time the update is to be applied.
For example, submitConditionalReplacement(target, newValue, precondition, requiredValue) has the same effect as
submitReplacement(target, newValue), unless the node referenced by precondition has a value other than requiredValue or does not exist.
submitConditionalDeletion is similar.
A third kind of conditional update, called submitInitialization, is like submitReplacement except ignored if the target node already exists.
The flush() method ensures all prior updates to the bosk have been applied,
meaning they will be reflected in a subsequent read context.
Formally, the definition of "prior updates" is the happens-before relationship from the Java specification.
Conceptually, flush behaves as though it performs a "nonce" update to the bosk and then waits for that update to be applied;
the actual implementation may, of course, operate differently.
Even in parallel distributed setups with queueing, bosk updates are totally-ordered
(like synchronizing operations from the Java spec),
so waiting for the "nonce" update ensures all prior updates have also been applied.
The semantics are such that the following example works correctly.
A bosk-based application is deployed as a replica set, with multiple servers sharing a single bosk (eg. using MongoDriver).
A client makes a request to the first server to update the bosk,
and then makes a request to the second server to call flush() and then read from the bosk.
In this scenario, the second request is guaranteed to reflect the update applied by the first request,
even though they are executed by different servers.
Calling flush() inside a read context will still apply the updates,
but those changes will not be reflected by any reads performed in the same read context,
since the read context continues using the state snapshot acquired when the read context began.
Flush does not guarantee that any hooks triggered by the applied updates will have been called yet.
To wait for a particular hook to run, the hook and application code must cooperate using a synchronization mechanism such as a semaphore.
(Be aware, though, that hooks can be called more than once, so make sure your semaphore code can cope with this case.)
The Bosk.registerHook method indicates that a particular call-back should occur any time a specified part of the state tree (the hook's scope) is updated.
bosk.registerHook("Name update", bosk.nameRef, ref -> {
System.out.println("Name is now: " + ref.value());
});Hooks are also called at registration time for all matching nodes. They can also fire spontaneously; any application logic in a hook must be designed to accept additional calls even if the tree state didn't change.
A hook's scope can be a parameterized reference, in which case it will be called any time any matching node is updated. Suppose your bosk has a field declared as follows:
final Reference<ExampleWidget> anyWidget = reference(ExampleWidget.class, Path.parseParameterized(
"/widgets/-widget-"));You can then declare a hook as follows:
bosk.registerHook("Widget changed", bosk.anyWidget, ref -> {
System.out.println("A widget changed: " + ref); // `ref` points to the particular widget that changed
});The hook call-back occurs inside a read context containing a state snapshot taken immediately after the triggering update occurred.
If a single update triggers multiple hooks, the hooks will run in the order they were registered.
It is fairly common for hooks to perform bosk updates, and these could themselves trigger additional hooks. Triggered hooks are queued, and are run in the order they were queued.
For example, if one update triggers two hooks A and B, and then A performs an update that triggers hook C, B will run before C. The hooks will reliably run in the order A, B, C. When C runs, its read context will reflect the updates performed by A and C but not B, even though B ran first2.
See the HooksTest unit test for examples to illustrate the behaviour.
Any Exception thrown by a hook is caught, logged, and ignored.
This makes the hook execution loop robust against most bugs in hooks.
Errors are not ignored.
In particular, AssertionError is not ignored, which allows you to write unit tests that include assertions inside hooks.
BoskDriver defines the interface by which updates are sent to a bosk.
The interface's update semantics are described in the Updates section above. This section focuses on the configuration and implementation of drivers, rather than their usage, and briefly describes the drivers that are built into the bosk library.
Every bosk has a local driver, which applies changes directly to the in-memory state tree.
If you use Bosk::simpleDriver as your driver factory when you initialize your Bosk object,
then the driver is just the local driver.
The local driver performs the grafting operations that create a new state tree containing specified changes applied to the existing tree. The local driver is also the component responsible for triggering and executing hooks.
Despite the BoskDriver interface's asynchronous design, the local driver actually operates synchronously, and does not use a background thread.
The calling thread is used to trigger hooks, and even to run them (unless a hook is already running on another thread).
BoskDriver itself is designed to permit stackable layers (the Decorator design pattern),
making drivers modular and composable.
The simplest DriverFactory is Bosk::simpleDriver, which adds no driver layers at all, and simply returns the bosk's own local driver, which directly updates the Bosk's in-memory state tree.
More sophisticated driver layers can provide their own factories, which typically create an instance of the driver layer object configured to forward update requests to the downstream driver, forming a forwarding chain that ultimately ends with the bosk's local driver.
For example, an application could create a LoggingDriver class to perform logging of update requests before forwarding them to a downstream driver that actually applies them to the bosk state.
The DriverFactory interface is used to instantiate a driver layer, given the downstream driver object:
public interface DriverFactory<R extends Entity> {
BoskDriver<R> build(Bosk<R> bosk, BoskDriver<R> downstream);
}The DriverStack class facilitates the composition of driver layers.
DriverStack extends DriverFactory; that is, a DriverStack is a kind of DriverFactory that invokes other factories to assemble a composite driver.
For example, a stack could be composed as follows:
DriverFactory<ExampleState> exampleDriverFactory() {
return DriverStack.of(
LoggingDriver.factory("Submitted to MongoDriver"),
MongoDriver.factory(...)
);
}This creates a chain configured to process each update as follows:
- The
LoggingDriverwill log the event, and forward it to theMongoDriver - The
MongoDriverwill send the update to MongoDB, and then receive a change event and forward it to the bosk's local driver - The local driver will update the in-memory state tree
(The local driver doesn't appear in a DriverStack. It is implicitly at the bottom of every stack.)
Later on, this could even be extended by sandwiching the MongoDriver between two LoggingDriver instances,
in order to log events submitted to and received from MongoDriver:
DriverFactory<ExampleState> exampleDriverFactory() {
return DriverStack.of(
LoggingDriver.factory("Submitted to MongoDriver"),
MongoDriver.factory(...),
LoggingDriver.factory("Received from MongoDriver") // NEW LAYER!
);
}The DriverFactory and DriverStack classes make this a one-line change.
All of this might appear a bit abstract, but the upshot is that your drivers can snap together like Lego.
Some handy drivers ship with the bosk-core module.
This can be useful in composing your own drivers, and in unit tests.
BufferingDriverqueues all updates, and applies them only whenflush()is called.ForwardingDriveraccepts a collection of zero or more downstream drivers, and forwards all updates to all of them.MirroringDriveraccepts updates to one bosk, and emits corresponding updates to another bosk with the same root type.MongoDriverenables persistence and replication, and is important enough that it deserves its own section.
By adding the bosk-mongo dependency to your project and configuring MongoDriver,
you can turn your server into a replica set with relatively little difficulty.
MongoDriver uses MongoDB as a broadcast medium to deliver bosk updates to all the servers in your replica set.
Newly booted servers connect to the database, initialize their bosk from the current database contents, and follow the MongoDB change stream to receive updates.
Like most drivers, MongoDriver is not instantiated directly, but instead provides a DriverFactory to simplify composition with other driver components.
Create a MongoDriverFactory by calling MongoDriver.factory:
static <RR extends Entity> MongoDriverFactory<RR> factory(
MongoClientSettings clientSettings,
MongoDriverSettings driverSettings,
BsonPlugin bsonPlugin
) { ... }The arguments are as follows:
clientSettingsis how the MongoDB client library configures the database connection.driverSettingscontains the bosk-specific settings, the most important of which isdatabase(the name of the database in which the bosk state is to be stored). Bosks that use the same database will share the same state.bsonPlugincontrols the translation between BSON objects and the application's state tree node objects. For simple scenarios, the application won't need to worry about this object, and can simply instantiate one and pass it in.
Here is an example of a method that would return a fully configured MongoDriverFactory:
static DriverFactory<ExampleState> driverFactory() {
MongoClientSettings clientSettings = MongoClientSettings.builder()
.build();
MongoDriverSettings driverSettings = MongoDriverSettings.builder()
.database("ExampleBoskDB") // Bosks using the same name here will share state
.build();
// For advanced usage, you'll want to inject this object,
// but for getting started, we can just create one here.
BsonPlugin bsonPlugin = new BsonPlugin();
return MongoDriver.factory(
clientSettings,
driverSettings,
bsonPlugin);
}Bosk supports MongoDB 4.4 and up.
To support change streams, MongoDB must be deployed as a replica set. In production, this is a good practice anyway, so this requirement shouldn't cause any hardship: the MongoDB documentation recommends against deploying a standalone server to production.
For local development, standalone MongoDB servers don't support change streams (for some reason).
To support MongoDriver, you must use a replica set, even if you are running just one server.
This can be achieved using the following Dockerfile:
FROM mongo:4.4 # ...but use a newer version if you can
RUN echo "rs.initiate()" > /docker-entrypoint-initdb.d/rs-initiate.js
CMD [ "mongod", "--replSet", "rsLonesome", "--port", "27017", "--bind_ip_all" ]An important design principle of MongoDriver is that it should be able to recover from temporary outages without requiring an application reboot.
When faced with a situation it can't cope with, MongoDriver has just one fallback mode of operation: a disconnected state that does not process changes from the database.
Once disconnected, MongoDriver will no longer send updates downstream, and so the in-memory state will stay frozen until the connection can be re-established.
Recovering from a disconnected state occurs automatically when conditions improve, and should not require any explicit action to be taken. Also, no particular sequence of steps should be required to recover: any actions that an operator takes to restore the database state and connectivity should have the expected effect.
For example, suppose the bosk database were to be deleted.
MongoDriver would respond by suspending updates, and leaving the last known good state intact in memory.
Perhaps the operator takes the database offline entirely, then reboots it and restores the last known good state from a backup.
MongoDriver would respond by reconnecting to the database (possibly after some period of time) and reloading the database state to re-sync the in-memory state with the database.
Like the rest of bosk, the bosk-mongo module logs via the SLF4J framework.
The logs emitted assume that applications will use log level WARN for bosk.
Additional detail is available at higher logging levels:
INFO will contain details likely to be useful for bosk users, while
DEBUG is more likely to be useful for the maintainers of the bosk library.
(TRACE can produce a large amount of output and isn't generally recommended for production.)
The logs make use of the Mapped Diagnostic Context (MDC) feature of SLF4J to provide
several MDC keys with MongoDriver as a prefix.
If you might find this useful, you can configure your logging system to emit this key;
for example, using Logback, you can add %X{MongoDriver} to your appender's encoder pattern.
When present, the string associated with the MongoDriver MDC key always starts with a single space character,
so you can append it to your existing log strings with no whitespace,
meaning it takes up no space at all when it's not present.
MongoDriver offers two database format options:
- The Sequoia format (the default) stores the entire bosk state in a single document in a single collection.
- The Pando format divides up the bosk state into multiple documents, to overcome the MongoDB limit of 16MB for a single document.
For Sequoia, the collection is called boskCollection and the document has four fields:
_id: this is alwaysboskDocumentpath: this is always/state: contains the entire bosk state treerevision: an incrementing version number; used to implementflush()
The format of the state field is determined by BsonPlugin and Formatter.
The code will have the details, but some high-level points about the BSON format:
- It does not match the JSON format generated by
bosk-jackson. This is a deliberate decision based on differing requirements. - It strongly favours objects over arrays, because object members offer efficient idempotency and (ironically) stronger ordering guarantees.
For Pando, the situation is similar, except that instead of having a single document with an _id of boskDocument,
there are multiple documents with _id values that start with | (vertical bar)
and that describe where the document fits within the overall BSON structure.
In general, bosk does not support null field values.
If you add a new field to your state tree node classes, they become incompatible with the existing database contents (which do not have that field).
This means that new fields must, at least initially, support being absent.
The first step is to use the @Polyfill annotation to indicate a default value:
record ExampleNode(ExampleValue newField) {
@Polyfill("newField")
static final ExampleValue NEW_FIELD_DEFAULT = ExampleValue.DEFAULT_VALUE;
}This will allow operations that deserialize ExampleNode objects (from JSON, from databases, etc.)
to tolerate the absence of newField temporarily by providing the given default value.
With the @Polyfill in place, any updates written to MongoDB will include the new field,
so the database state will be gradually upgraded to include the new field.
Because MongoDriver ignores any fields in the database it doesn't recognize,
this new version of the code can coexist with older versions that don't know about the new field.
The second step is to ensure that any older versions of the server are shut down. This will prevent new objects from being created without the new field.
The third step is to change external systems so they always supply the new field;
for MongoDriver, this is accomplished by calling MongoDriver.refurbish().3
This method rewrites the entire bosk state in the new format, which has the effect of adding the new field to all existing objects.
Finally, you can remove the @Polyfill field,
secure in the knowledge that there are no objects in the database that don't have the new field.
Note that @Polyfill is not meant as a general way to supply default values for optional fields,
but rather to allow rollout of new required fields with no downtime.
For optional fields, just use Optional.
Also note that @Polyfill does not yet provide a perfect illusion that the field exists;
specifically, updates inside nonexistent state tree nodes will still be ignored,
even if they have a polyfill.
That is, if you provide a polyfill for a node at /a/b, but that node does not actually exist in the database,
then a read from /a/b will return the polyfill node,
but a write to /a/b/c will be ignored, which could be confusing.
We hope to overcome this shortcoming in the near future.4
BoskDriver implementations typically take the form of a stackable layer that accepts update requests, performs some sort of processing, and forwards the (possibly modified) requests to the next driver in the chain (the downstream) driver.
This is a powerful technique to add functionality to a Bosk instance.
To retain compatibility with application code, however, driver implementations must obey the BoskDriver contract.
The low-level details of that contract are well documented in the BoskDriver javadocs, and are tested in the DriverConformanceTest class.
In addition, there there are also important higher-level rules governing the allowed differences between the updates a driver receives and those it forwards to the downstream driver.
Breaking these rules might alter application behaviour in ways that the developers won't be expecting.
Broadly, the validity of a sequence of updates can be understood in terms of the implied sequence of states that exist between updates.
The updates emitted downstream by a driver layer are allowed to differ from the operations it received,
provided that the emitted updates have the same effect on the bosk state.
For example, if the layer receives a conditional update whose precondition matches, it is allowed to submit an equivalent unconditional update downstream.
Another example: if the layer receives an update that has no effect on the state, it is allowed to ignore that update and decline to submit it downstream.
These rules are checked during the DriverConformanceTest suite via the DriverStateVerifier class.
(These state-based rules require that the driver maintains an awareness of the current bosk state, which most drivers do not, and so most drivers are rarely able to take advantage of these options, because they can't generally determine what effect an update will have.)
The bosk-jackson module uses the Jackson library to support JSON serialization and deserialization.
To configure an ObjectMapper that is compatible with a particular Bosk object, use the JacksonPlugin.moduleFor method.
Here is an example:
JacksonPlugin jacksonPlugin = new JacksonPlugin();
boskMapper = new ObjectMapper()
.registerModule(jacksonPlugin.moduleFor(bosk))
// You can add whatever configuration suits your application:
.enable(INDENT_OUTPUT);JacksonPlugin is compatible with many of the ObjectMapper configuration options, so you should be able to configure it as you want.
Most nodes are serialized in the expected fashion, with one member per field, and child objects nested inside parents.
The format of the various built-in types is shown below.
"reference": "/a/b/c", # References are strings
"catalog": [ # Catalogs are arrays of single-member objects
{
"entry1": {
"id": "entry1", # The id field is included here (redundantly)
"exampleField": "value"
}
}
],
"listing": { # Listings are objects with two fields
"ids": ["entry1", "entry2"],
"domain": "/catalog" # Reference to the containing Catalog
},
"sideTable": { # SideTables are objects with two fields
"valuesById": [
{ "entry1": { "exampleField": "value" } },
{ "entry2": { "exampleField": "value" } }
],
"domain": "/catalog" # Reference to the containing Catalog
}A field of type Optional<T> is simply serialized as a T, unless the optional is empty, in which case the field does not appear at all.
A field of type Phantom<T> is not serialized (just like Optional.empty()).
The id field of a Catalog entry or a SideTable key may be omitted,
and will be inferred during deserialization if possible from context,
including any @DeserializationPath annotations.
This inference process takes some time, though,
so for best performance, it's better for the JSON input to include the id field,
just as it does when serialized.
Fields marked as @Self or @Enclosing are not serialized.
They are inferred automatically at deserialization time.
In order to infer the correct values of @Self and @Enclosing references,
the deserialization process must keep track of the current location in the state tree.
This is simple when deserializing the entire bosk state: the location starts in the root object,
and from there, the format is designed in such a way that the location can be tracked as JSON parsing proceeds.
However, when deserializing only part of the bosk state (which is by far the most common situation),
the deserialization must know the corresponding state tree location so it can compute @Self and @Enclosing references.
To deserialize just one node of the bosk state, use a try-with-resources statement to wrap the deserialization in a DeserializationScope object initialized with the path of the node being deserialized:
try (var __ = jacksonPlugin.newDeserializationScope(ref)) {
newValue = objectMapper.readValue(exampleJson, ref.targetType());
}For this to work, you will need access to the JacksonPlugin object,
typically from your dependency injection framework.
For an object whose fields represent specific nodes of the bosk state,
use the @DeserializationPath annotation; see the javadocs for more info.
In inner-loop, high-performance code, it can be too costly to use Reference.value() to access node objects, and it is definitely too costly to create new Reference objects.
In those cases, it may be preferable to use the node objects directly.
If you construct an object containing some node objects directly, and you then want to serialize that object as though they were References instead,
you can annotate the class with @DerivedRecord.
All the "directly-contained node" objects must implement ReflectiveEntity.
The serialization process will call ReflectiveEntity.reference() to compute the reference, which will be serialized as a string.
References are designed to be created once and reused many times. Occasionally, you can create references dynamically, but it will be slower, and usually there's no need.
A typical pattern is to create a Bosk subclass containing a long list of references your application needs.
Larger apps might want to break up this list and put references into separate classes,
but small apps can dump them all into the Bosk object itself.
As a naming convention, indefinite references (with parameters) start with any,
unless the method accepts enough arguments to bind all the parameters.
Example:
import io.vena.bosk.Bosk;
import io.vena.bosk.Identifier;
import io.vena.bosk.Path;
import io.vena.bosk.Reference;
import io.vena.bosk.annotations.ReferencePath;
import io.vena.bosk.exceptions.InvalidTypeException;
@Singleton // You can use your framework's dependency injection for this
public class ExampleBosk extends Bosk<ExampleState> {
public final Refs refs;
public ExampleBosk() throws InvalidTypeException {
super(
"ExampleBosk",
ExampleState.class,
new ExampleState(Identifier.from("example"), "world"),
driverFactory());
this.refs = buildReferences(Refs.class);
}
public interface Refs {
@ReferencePath("/name") Reference<String> name();
@ReferencePath("/widgets") CatalogReference<ExampleWidget> widgets();
@ReferencePath("/widgets/-widget-") Reference<ExampleWidget> anyWidget();
@ReferencePath("/widgets/-widget-") Reference<ExampleWidget> widget(Identifier widget);
}
// Start off simple
private static DriverFactory<ExampleState> driverFactory() {
return Bosk::simpleDriver;
}
}To reduce coupling between different parts of a large codebase sharing a single bosk,
the fields of the root node are typically different "services" owned by different development teams.
The next level would be a Catalog of tenants or users, depending on your application's tenancy pattern.
Finally, within a tenant node, many of the important objects are stored in top-level catalogs,
rather than existing only deeper in the tree.
For example, a typical bosk path might look like /exampleService/tenants/-tenant-/exampleWidgets/-widget-.
There is a tendency to place all state relevant to some object inside that object.
Bosk encourages you to separate state that is modified by different parts of the code,
employing SideTables rather than putting all state in the same object.
For example, suppose your application distributes shards of data to worker nodes in a cluster.
You could imagine a Worker object like this:
// Not recommended
public record Worker (
Identifier id,
String baseURL,
Status status,
Catalog<Shard> assignedShards
) {}Don't do this. The trouble is, this puts state into the same object that is changed under three different circumstances:
baseURLis set by static configuration or by service discovery. This is configuration: information supplied to your application to tell it how to behave.statusis set either by a polling mechanism, or when worker communications result in an error. This is an observation: information your application draws from external systems.assignedShardsis set by the data distribution algorithm. This is a decision: a choice made by your application, typically in response to configuration and observations.
You want to separate configuration from observations from decisions.
The entity itself should contain only configuration; observations and decisions should be stored in SideTables.
A better arrangement of this state might look like this:
// Recommended
public record Worker (
Identifier id,
String baseURL
) {}
public record Cluster (
Catalog<Worker> workers,
SideTable<Worker, Status> workerStatus,
SideTable<Worker, Shard> workerAssignments
) {}Using a succession of multiple ReadContexts for the same operation causes that operation to be exposed to race conditions from concurrent state updates.
For any one operation, use a single ReadContext around the whole operation.
The "operation" should be as coarse-grained as feasible.
Some examples:
- An HTTP endpoint method should be enclosed in a single
ReadContext. Typically this is done by installing a servlet filter that acquires aReadContextaround anyGET,HEAD, orPOSTrequest (assuming you usePOSTas "GETwith a body". If you use RPC-stylePOSTendpoints, you might not be able to have a singleReadContextaround the entire endpoint.) Note thatPUTandDELETEtypically don't need aReadContextat all. - A scheduled action (eg. using the
@Scheduledannotation in Spring Boot) should immediately acquire aReadContextfor its entire duration
In general, open one large ReadContext as early as possible in your application's call stack unless this is unworkable for some reason.
Bosk is often used to control a server's local state. For example, a caching application could use bosk to control what's in the cache in the server's memory, so that all servers have the same cache contents and therefore provide reliable response times across the cluster. The cache itself is local state because it exists independently in each server instance.
To make your system declarative and idempotent, write your hooks in a style that follows these steps:
- From the current bosk state, compute the desired local state
- Compare the desired state with the actual local state
- If they differ, make changes to the local state to make it match the desired state
This style leads to more stable systems than imperative-style hooks that respond to bosk updates by issuing arbitrary imperative commands.
Having a node of some type contain a descendant node of the same type is usually a code smell in a Bosk state tree.
Recursive structures require the application to create an unlimited number of References dynamically
(for example, /root/child, /root/child/child, /root/child/child/child and so on),
which is awkward and slow.
It also makes it difficult to evolve your design if you discover you need to handle a use case in which the relationship is not strictly a tree.
For example, if you are representing information about files and folders in your bosk, one natural design would be to nest child folders inside parent folders, and make the files children of the folder they are in. Don't do this.
Instead, create two top-level Catalogs: one for Files and one for Folders.
Represent their nesting relationships using References.
This way, two parameterized references can access all your objects: /files/-file- and /folders/-folder-.
In addition, if you discover you need to handle hard links, where the same file is in multiple folders, this becomes a straightforward extension instead of an awkward redesign.
Apply: When an update has been applied to the bosk, it will be reflected in a subsequent read context
Driver: An object that accepts and processes bosk updates
Entity: A state tree node with an id field, which can participate in certain bosk features.
Catalog entries must be entities, for example.
Node: An object in the state tree.
Path: The sequence of fields that reaches a particular state tree node starting from the tree's root node.
Parameter: A path segment that can be substituted for an Identifier.
Reference: A type-safe representation of a Path that can be used to access a node in a particular Bosk object.
Root: The topmost, or outermost, state object in a bosk.
Scope: (of a hook) a reference to the node (or nodes, if the scope is parameterized) being watched for changes. Any updates to that node will cause the hook to be triggered.
Segment: A portion of a path between slashes. The path /a/b/c has three segments: a, b, and c. In its string representation, the segments of a path are URL-encoded.
Submit: (of an update) to be sent to the driver for subsequent execution.
Trigger: (of a hook) to be queued for execution. A hook is triggered whenever its scope node is updated. The execution may happen immediately, or it may happen later, depending on the circumstances.
Footnotes
-
It may seem preferable to throw an exception at submission time in such cases. However, driver implementations are explicitly allowed to queue updates and apply them later, because queueing is often a key strategy to achieve robust, scalable distributed systems. Requiring synchronous confirmation about the current state of the bosk rules out queueing. By requiring these operations to be ignored, bosk ensures the behaviour is the same in local development and in production, and so any confusion caused by this behaviour should be encountered early on in the application development process. ↩
-
It might at first appear strange that hook C would not observe the effects of hook B, if B runs before C. However, recall that, though B's updates will be submitted before C runs, there is no guarantee that they will be applied before C runs. Suppose, for example, that we've chosen to deploy our application as a cluster that uses a queueing system (perhaps for scalability, or change data capture, or any number of other reasons that distributed systems might use a queue). This would cause a delay between when B submits the update and when the bosk applies the update. Rather than expose users to a race condition in some operating environments that is not present in others, bosk heavily favours consistency, and employs a convention that can be implemented efficiently in many environments: updates from B are never visible in C's read scope. Whatever confusion this might cause, that confusion will be encountered during initial application development, rather than providing surprises when moving to a different environment for production. ↩
-
Note that if your database is using the Sequoia format, and you refurbish it to the Pando format, there is a brief window (before the change events arrive) when writes to the old Sequoia driver will be silently ignored. While refurbishing from Sequoia to a different format, ensure the bosk is quiescent (not performing any updates), or is performing a
flush()before each update. This is a consequence of Sequoia's design simplicity; specifically, its avoidance of multi-document transactions. ↩ -
See Issue #108. ↩