Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

application end point registration API yaml #321

Open
wants to merge 18 commits into
base: main
Choose a base branch
from
+625 −0
Open

application end point registration API yaml #321

Changes from 1 commit
Commits
Show all changes
18 commits
Select commit Hold shift + click to select a range
9bc7abe
Initial Commit of application end point registration API yaml
maheshc01 Nov 11, 2024
271930a
fixed linting errors
maheshc01 Nov 11, 2024
a9c52fb
fixed linting errors related to trailing spaces.
maheshc01 Nov 11, 2024
4482ac6
fix for linting error
maheshc01 Nov 11, 2024
c5eb3bd
trailing spaces removed
maheshc01 Nov 11, 2024
cd1ccff
fixing typo
urvika-v Nov 18, 2024
6eca83f
fixing typo
urvika-v Nov 18, 2024
4ee2224
Merge pull request #323 from urvika-v/286-eds-api-application-endpoin…
maheshc01 Nov 19, 2024
e3394e3
Updated Application-endpoint-registration.yaml
urvika-v Nov 25, 2024
df8f592
Update Application-endpoint-registration.yaml
urvika-v Nov 25, 2024
0af0105
Update Application-endpoint-registration.yaml
urvika-v Nov 25, 2024
b30d999
Merge pull request #325 from urvika-v/286-eds-api-application-endpoin…
maheshc01 Nov 26, 2024
158bfe3
fixing linting issues.
maheshc01 Nov 26, 2024
0fa6ffa
Fixed linting issues- Application-endpoint-registration.yaml
urvika-v Nov 28, 2024
4b710b2
Update Application-endpoint-registration.yaml
urvika-v Nov 28, 2024
ce21596
Merge pull request #327 from urvika-v/286-eds-api-application-endpoin…
maheshc01 Dec 1, 2024
c4a7b46
Update Application-endpoint-registration.yaml
urvika-v Feb 3, 2025
ca8a95f
Merge pull request #332 from urvika-v/286-eds-api-application-endpoin…
maheshc01 Feb 3, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Next Next commit
Initial Commit of application end point registration API yaml
@maheshc01
maheshc01 committed Nov 11, 2024
commit 9bc7abec5b61388a1ddbfd4331e8ce0a135a2402
372 changes: 372 additions & 0 deletions code/API_definitions/Application-endpoint-registration.yaml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,372 @@
openapi: 3.0.3

Check warning on line 1 in code/API_definitions/Application-endpoint-registration.yaml

GitHub Actions / MegaLinter 

1:1 [document-start] missing document start "---"
info:
title: Application Endpoint Registration API
version: 0.1.0
license:
name: Apache 2.0
url: https://www.apache.org/licenses/LICENSE-2.0.html
description: |
Application endpoint registration allows application developers to register
one or more Application Endpoints, and retrieve, update,and delete those registrations.

Check failure on line 10 in code/API_definitions/Application-endpoint-registration.yaml

GitHub Actions / MegaLinter 

10:81 [line-length] line too long (91 > 80 characters)
This information can we used for various usecases like optimal end point discovery to help end users connect to the most most optimal instance of the application. Addtionally the information can be used to also monitor the different instance to take decisions from a lifecycle mangement perspective.

Check failure on line 11 in code/API_definitions/Application-endpoint-registration.yaml

GitHub Actions / MegaLinter 

11:81 [line-length] line too long (303 > 80 characters)

### Authorization and authentication

The "Camara Security and Interoperability Profile" provides details on how a client requests an access token. Please refer to Identify and Consent Management (https://github.com/camaraproject/IdentityAndConsentManagement/) for the released version of the Profile.

Check failure on line 15 in code/API_definitions/Application-endpoint-registration.yaml

GitHub Actions / MegaLinter 

15:81 [line-length] line too long (267 > 80 characters)

Which specific authorization flows are to be used will be determined during onboarding process, happening between the API Client and the Telco Operator exposing the API, taking into account the declared purpose for accessing the API, while also being subject to the prevailing legal framework dictated by local legislation.

Check failure on line 17 in code/API_definitions/Application-endpoint-registration.yaml

GitHub Actions / MegaLinter 

17:81 [line-length] line too long (327 > 80 characters)

It is important to remark that in cases where personal user data is processed by the API, and users can exercise their rights through mechanisms such as opt-in and/or opt-out, the use of 3-legged access tokens becomes mandatory. This measure ensures that the API remains in strict compliance with user privacy preferences and regulatory obligations, upholding the principles of transparency and user-centric data control.

Check failure on line 19 in code/API_definitions/Application-endpoint-registration.yaml

GitHub Actions / MegaLinter 

19:81 [line-length] line too long (425 > 80 characters)

x-camara-commonalities: 0.4.0

servers:
- url: "{apiRoot}/application-endpoint-registration/v0.1"
variables:
apiRoot:
default: http://localhost:9091
description: |
API root, defined by service provider, e.g.
`api.example.com` or `api.example.com/somepath`

tags:
- name: Application Endpoint Registration
description: |
Operations to register, read and manage an deployed instances of the application.

Check failure on line 35 in code/API_definitions/Application-endpoint-registration.yaml

GitHub Actions / MegaLinter 

35:81 [line-length] line too long (87 > 80 characters)

paths:
/application-endpoints:
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I would have expected there to also be a get method for /application-endpoints, to be able to list all of the registered applicationEndpointsId. Otherwise the client needs to maintain a database of the registered applicationEndpointsId to be able to update/delete them later.

Copy link

@urvika-v urvika-v Nov 26, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Agreed. Added GetAll API which lists all the registered applications.

post:
operationId: register-application-endpoints
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

For the POST method should we also include "x-correlator" header as done with other APIs.?

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Included "x-correlator" for all the APIs

Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I would suggest to specify operationIds in camelCase, rather than dash-separated, i.e. this should be registerApplicationEndpoints. Both the EAM API and the official doc examples specify operationIds in camelCase, and it's better to be consistent across the APIs.

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Fixed.

requestBody:
description: Array of Application Endpoints for a
deployed application
content:
application/json:
schema:
type: array
items:
$ref: "#/components/schemas/ApplicationInstance"
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It seems like the components schema should be called ApplicationEndpoint instead of ApplicationInstance. The description even describes it as an Array of Application Endpoints. From the other comment, if we were to refactor out some common fields from the array, then maybe the schema would instead be a single ApplicationInstance which includes an array of ApplicationEndpoint.

Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Also, you probably want a minItems: 1 for the array, unless it's actually ok to register an empty array of endpoints.

responses:
"200":
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We should also consider the additional status codes which could be valid for the POST requests in alignment with other APIs and consistency.

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Added relevant status codes for all the APIs

description: Returns a applicationEndpointsId
content:
application/json:
schema:
$ref: "#/components/schemas/TypesApplicationEndpointsId"
"401":
$ref: "#/components/responses/Unauthorized"
default:
$ref: "#/components/responses/Unexpected"
tags:
- Application Endpoint Registration
summary: Register Application Endpoints
description: Register Application Endpoints of a
deployed application to specified edge cloud zone.

"/application-endpoints/{applicationEndpointsId}":
parameters:
- name: applicationEndpointsId
in: path
required: true
description: applicationEndpointsId param //added desc
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This description looks like it needs to be fixed, and the //added desc removed.
There's 6 instances //added desc in this file that need to be fixed.

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Fixed

schema:
$ref: "#/components/schemas/TypesApplicationEndpointsId"
get:
operationId: get-application-endpoints-by-applicationEndpointsId
responses:
"200":
description: Arry of registered Application Endpoints
content:
application/json:
schema:
type: array
items:
$ref: "#/components/schemas/ApplicationInstance"
"400":
$ref: "#/components/responses/BadRequest"
"401":
$ref: "#/components/responses/Unauthorized"
"404":
$ref: "#/components/responses/NotFound"
default:
$ref: "#/components/responses/Unexpected"
tags:
- Application Endpoint Registration
summary: Get registered edge application endpoint information
description: Returns endpoint information for all
Application Endpoints registered to a
specified applicationEndpointId.
put:
operationId: update-application-endpoint
requestBody:
description: application Endpoint information
content:
application/json:
schema:
type: array
items:
$ref: "#/components/schemas/ApplicationInstance"
responses:
"204":
$ref: "#/components/responses/NoContent"
"401":
$ref: "#/components/responses/Unauthorized"
"404":
$ref: "#/components/responses/NotFound"
default:
$ref: "#/components/responses/Unexpected"
tags:
- Application Endpoint Registration
summary: Update a application Endpoint
description: Update registered application Endpoint information.
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please clarify if the update completely replaces the existing array or does something else like appending to it.
Also, a minor complaint, typically the summary and description would come at the top, right after the method type (i.e. the put or get). Having it all the way at the bottom after the responses means I'm trying to understand all the details of the method before I know the general intent of the method, which is hard. I would suggest moving them up.

Copy link

@urvika-v urvika-v Nov 26, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Moved the summary and the description to the top of the Schema.

delete:
operationId: deregister-application-endpoint
responses:
"204":
$ref: "#/components/responses/NoContent"
"400":
$ref: "#/components/responses/BadRequest"
"401":
$ref: "#/components/responses/Unauthorized"
"404":
$ref: "#/components/responses/NotFound"
default:
$ref: "#/components/responses/Unexpected"
tags:
- Application Endpoint Registration
summary: Deregister an application's application Endpoint
description: Deregister an application's application
Endpoint from the edge cloud zone.
components:
securitySchemes:
openId:
description: OpenID Provider Configuration Information

Check failure on line 144 in code/API_definitions/Application-endpoint-registration.yaml

GitHub Actions / MegaLinter 

144:9 [indentation] wrong indentation: expected 6 but found 8
type: openIdConnect
openIdConnectUrl: https://example.com/.well-known/openid-configuration
headers:
x-correlator:
description: Correlation id for the different services
schema:
type: string

schemas:
ApplicationInstance:
description: Application instance represented
by application Endpoint definition
type: object
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I would suggest adding a required section to note which fields are required.

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Added "Required" section to the schema.

properties:
applicationEndpointsId:
$ref: "#/components/schemas/TypesApplicationEndpointsId"
applicationEndpoint:
$ref: "#/components/schemas/ResourcesapplicationEndpoint"
applicationServerProviderName:
type: string
description: Unique ID representing the Edge
Application Provider
applicationId:
type: string
description: Unique ID representing the Edge Application
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is this really the applicationId or is it the appInstanceId? In the EAM API, the appId refers to definition of an App, like a helm chart, while the appInstanceId refers to an actually deployed instance of the helm chart. I ask because this object is called ApplicationInstance but I don't see any appInstanceId field. I think it would confusing if applicationId in Discovery means something different from appId in EAM.

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Agreed. "applicationId" is not referenced. Removed the parameter

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I believe this point needs more discussion. we need provide developers will more clarity and details on how these different APIs in edge cloud work togethers. EAM used for orchestrating the individual instances of the application. Application end point registration is a mechanism for creating a database of records for all the active and available application instances and the same information will be using in traffic influence and application end point discovery to identify the specific application instance. I think we need to take a closer look at how and where we are using the terms appId and appInstanceId

Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Totally agree with you @maheshc01 , we should be careful and be clear how all this parameters are using along the different APIs.
appId is generated in EAM as reponse of the first POST/apps when we make the onboarding of the application.
image
image
appInstanceId is generated in EAM as response of the second POST/appinstances when we make the instantiation of the application.
image
image
I don't know if this could help you somehow.

applicationDescription:
type: string
description: Description of the application Endpoint
additionalProperties: false
applicationProfileId:
$ref: "#/components/schemas/TypesApplicationProfileId"
edgeCloudZoneId:
$ref: "#/components/schemas/EdgeCloudZoneId"
edgeCloudZoneName:
$ref: "#/components/schemas/EdgeCloudZoneName"
edgeCloudProvider:
$ref: "#/components/schemas/EdgeCloudProvider"
edgeCloudRegionId:
$ref: "#/components/schemas/EdgeCloudRegionName"
Comment on lines +354 to +361
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I have a question on the intent here. First, are these edgeCloudZone-related fields specified during the POST /application-endpoints API? If they are specified, is it expected that the Operator Platform handling the API call will verify that it has the specified Zone in it's list of zones (i.e., if I specify a random string for the Zone ID, it will reject it)? Or does it treat them as just a reference to some external Zone that it doesn't know about, so I could just put in anything there and I will just get it back out during the "find" API call?

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes, the edgeCloudZone-related fields are to be specified during the POST call. And it is expected that the Operator platform should verify whether its a valid cloud zone or not before the "ApplicationEndpointsId" gets created

ResourcesapplicationEndpoint:
type: object
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should we assume that an application can expose only one endpoint or there could be more than one for different purposes? If there can be more than one which only application provider knows then this parameter should allow the multiplicity by having it as an array of objects. Also in that case with each endpoint there should be a discriminator field to allow client applications to know the purpose of a specific endpoint.

Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Although the top level object is an array but then if application has multiple endpoints some of the information will be repeated that many times as they will be common to an application.

Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I also had the same question about repetitive data in the array. For example, is it expected that applicationId is the same for each ApplicationInstance in the array? If any field must be the same for each item in the array, it should be factored out into a single field in a parent object that encapsulates the endpoints array. If every field in the array can be different, then what is the intent of assigning a single applicationEndpointsId to the entire array?

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

In this initial version, the API handles where an application has a single purpose but distributed across various edge locations so each application instance at a given edge location has an endpoint to register.
The scenario mentioned application endpoints with different purpose is also a valid one. This can be considered in the later release.

Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The title "title: Application Endpoints Registration" has plural "Endpoints" as the keyword and based on the current form with single endpoint we may change it to singular form as endpoint or if we want to handle endpoints with different purposes in this release only then we need to provide option for multiple endpoint i.e. array in my view.

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

"Application Endpoints" and its type "array" is still valid in this initial version because the same application can be deployed across multiple edge locations.

Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

So does this mean ResourcesapplicationEndpoint should be converted to an array in some way? Is that the right interpretation of your comment?

Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think this object is part of ApplicationEndpoints in the form of array. In that case my previous comment will become invalid.

description: applicationEndpoint//added desc
properties:
uri:
type: string
description: URI of application Endpoint if available
format: uri
fqdn:
type: string
description: FQDN of application Endpoint if available
ipv4Address:
type: string
description: IPv4 Address of application Endpoint if available
format: ipv4
ipv6Address:
type: string
description: IPv6 Address of application Endpoint if available
format: ipv6
port:
type: integer
description: |
Port information of application Endpoint
if IPv4 or IPv6 is mentioned
additionalProperties: false
EdgeCloudZoneId:
description: |
Operator-issued UUID for the Edge Cloud Zone.
type: string
format: uuid
additionalProperties: false
EdgeCloudZoneName:
description: |
Edge Cloud Zone Name - the common name for the Edge Cloud Zone.
type: string
additionalProperties: false
EdgeCloudProvider:
description: |
The company name of the Edge Cloud Zone provider.
type: string
EdgeCloudRegionName:
description: |
region of the Edge Cloud Zone.
type: string
TypesApplicationEndpointsId:
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I would suggest renaming TypesApplicationEndpointsId to just ApplicationEndpointsId, as the Types prefix seems redundant.

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Fixed

description: |
A system-defined string identifier representing
one or more registered Application Endpoints.
type: string
format: uuid
readOnly: true
additionalProperties: false
TypesApplicationProfileId:
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I would suggest renaming TypesApplicationProfileId to just ApplicationProfileId, as the Types prefix seems redundant.

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Modified "TypesApplicationProfileId" to "ApplicationProfileId"

description: |
Unique identifier for a Application Profile
type: string
readOnly: false
additionalProperties: false
TypesError:
type: object
description: types Error//added desc
properties:
code:
type: string
description: code //added desc
message:
type: string
description: message //added desc
ErrorInfo:
type: object
description: Error information
required:
- status
- code
- message
properties:
status:
type: integer
description: HTTP status code returned along with this error response
code:
type: string
description: Code given to this error
message:
type: string
description: Detailed error description

responses:
NoContent:
description: HTTP 204 No Content
BadRequest:
description: HTTP 400 Bad Request
content:
application/json:
schema:
$ref: "#/components/schemas/TypesError"
NotFound:
description: HTTP 404 The specified resource was not found
content:
application/json:
schema:
$ref: "#/components/schemas/TypesError"
Unauthorized:
description: HTTP 401 Unauthorized
content:
application/json:
schema:
$ref: "#/components/schemas/TypesError"
Unexpected:
description: HTTP 500 Internal Server Error
content:
application/json:
schema:
$ref: "#/components/schemas/TypesError"
Generic400:
description: Invalid argument
content:
application/json:
schema:
$ref: "#/components/schemas/ErrorInfo"
example:
status: 400
code: INVALID_ARGUMENT
message: "Invalid argument"

Generic401:
description: Unauthenticated
content:
application/json:
schema:
$ref: "#/components/schemas/ErrorInfo"
example:
status: 401
code: UNAUTHENTICATED
message: "Authorization failed: ..."

Generic403:
description: Permission denied
content:
application/json:
schema:
$ref: "#/components/schemas/ErrorInfo"
example:
status: 403
code: PERMISSION_DENIED
message: "Operation not allowed: ..."

Generic404:
description: Not found
content:
application/json:
schema:
$ref: "#/components/schemas/ErrorInfo"
example:
status: 404
code: NOT_FOUND
message: "The specified resource is not found"

Generic409:
description: Conflict
content:
application/json:
schema:
$ref: "#/components/schemas/ErrorInfo"
example:
status: 409
code: Conflict
message: "There is conflict in the request"

Generic500:
description: Internal server error
content:
application/json:
schema:
$ref: "#/components/schemas/ErrorInfo"
example:
status: 500
code: INTERNAL
message: "Internal server error"

Generic503:
description: application unavailable
content:
application/json:
schema:
$ref: "#/components/schemas/ErrorInfo"
example:
status: 503
code: UNAVAILABLE
message: "application unavailable"

Check failure on line 372 in code/API_definitions/Application-endpoint-registration.yaml

GitHub Actions / MegaLinter 

372:47 [new-line-at-end-of-file] no new line character at the end of file