feat(notify): message idempotency/storage & webhook refactor #161
Conversation
…d in notifyMessage, webhook security
|
The latest updates on your projects. Learn more about Vercel for Git ↗︎
|
chris13524
changed the title
chris13524
changed the title
chris13524
changed the title
chris13524
changed the title
| icon?: string | null, | ||
| url?: string | null, |
There was a problem hiding this comment.
@Elyniss it should because this is the Notify API endpoint. null will be translated to "" by the Notify Server
| "type": string, | ||
| type Body = [{ | ||
| // Idempotency key and ID to track status | ||
| notificationId?: string | null, |
There was a problem hiding this comment.
Do we really need to give the ability to provide the ID for a new notification? For me, server-generated IDs look more consistent, and does the client need this ability? cc @chris13524
There was a problem hiding this comment.
The primary purpose of this ID is actually for idempotency.
We can have an idempotencyKey field instead, and require the client to read the response in order to call the status endpoint. But I figured it's a slightly nicer API for the caller to be able to specify their own IDs in order to avoid storing the response to their database if they already have notification IDs on their end.
In my approach this notificationId would be dapp-facing only, unique key being separate per-dapp, and the pk of the database would still be a server-generated UUID. Happy with either approach really, but we need idempotency.
| string | ||
| type Response = { | ||
| // IDs for the sent notifications returned in the same order as the body. If a `notificationId` wasn't specified in the request, one will be generated. | ||
| notifications: string[], |
There was a problem hiding this comment.
With the queuing behavior now, are consumers of this API expected to query all the messages they sent until they either get published or some of the error statuses?
Not sure if I missed something here
There was a problem hiding this comment.
are consumers of this API expected to query all the messages they sent until they either get published or some of the error statuses?
Yes, but only if they want to know the status. However I suppose this is polling so would be good to have a webhook option for this as well.
There was a problem hiding this comment.
yes - I think a webhook option would make sense. Polling would be absurd for all the different notification ids
chris13524
force-pushed
the
feat/messaging-refactor
branch
from
de42a9a
to
00008e3
Compare
idto notifyMessage (ensures message ID can be used for client deduplication, and also provides method to acknowledge, send read receipts, etc.)notificationIdto/notifyendpoint, which makes the endpoint idempotent<project-id>parameter/v1prefixSend Notification and Notification Status APIs subject to change upon discovering real-world implementation scalability challenges. For example, it may make sense to respond with
not-subscribed,wrong-scope, andrate-limitedin the initial request, rather than requiring a second call to get this information.Potential TODOs: