Broker - Real-time BaaS (Backend as a Service)
Purpose
The purpose of this library is to be your real-time BaaS (Backend as a Service).
Broker is a SSE message broker that requires you write no backend code to have a full real-time API.
Broker is born from the need that rather than building a complex REST API with web-sockets and a SQL database to provide reactive web forms (like for React) there must be a simpler way.
Broker follows an insert-only/publish/subscribe paradigm rather than a REST CRUD paradigm.
Features
- Very performant with a low memory footprint that uses about 20MB and 2 CPU threads
- Under 1,000 lines of code
- Secure Real-time Event Stream via SSE - requires the use of broker-client
- Multi-tenanted
- Supports CORS
- Supports SSL - full end-to-end encryption
- Provides user authentication with JWTs or HTTP Basic with stored Bcrypt(ed) passwords
- Handles future events via Epoch UNIX timestamp
- Uses Global NTP servers and doesn't rely on your local server time
- Stateful immutable event persistence
- Insert event via JSON POST request
- Sync latest events on SSE client connection
- Event log via GET request
- Event cancellation via GET request
How it works
In Broker you create a user, login, then insert an event with its data, a collection_id, and a timestamp. Broker publishes the event when the timestamp is reached to the event stream via SSE. Broker keeps all events its database that can be viewed in collections (by collection_id). Broker can also cancel future events.
When the client first subscribes to the SSE connection all the latest events and data is sent to the client. Combined with sending the latest event via SSE when subscribed negates the necessity to do any GET API requests in the lifecycle of an event.
The side-effect of this system is that the latest event is the schema. Old events are saved in the database and are not changed but the latest event is the schema for the front-end. This is pure NoSQL as the backend is agnostic to the event data.
Recommeded Services/Libraries to use with Broker
- broker-client - the official front-end client for broker
- broker-hook - the official react hook for broker
- broker-grid - the official data grid for broker
- Integromat - No-code Event Scheduler that supports many apps like GitHub, Meetup, and etc.
- React Hook Form - Best form library for React
- React Debounce Input - React input for Real-time Submission (Edit in Place forms)
Broker FAQ
- Why compete against Parse Server and Firebase?
Firebase is not open-source, is not free, and has complicated pricing. Parse Server doesn't have real-time features and is about 30,000 LOC of JS.
- Will broker work with mobile apps?
Yes with React Native. There may be native 3rd party libraries for SSE that work. In the future official libraries may be made available for native platforms.
API
Step 1 - create a user
POST /users
- public endpoint
- POST JSON to create a user
- where {...} is for username and string, password a string, collection_id is the uuid of the event collection for user info, tenant_id is the uuid of the tenant
will return
- where {...} is the uuid (string) of the user
For JWT Auth: Step 2 - login with the user
POST /login
- public endpoint
- POST JSON to login
- where {...} is for username a string and password a string
will return
- where {...} is a JWT (string)
Step 3 - connect to SSE
GET /events/{id}
- where {id} is the tenant_id
- authenticated endpoint (Authorization: Bearer {jwt}) or (Authorization: Basic {base64})
- connect your sse-client to this endpoint using broker-client
- note: broker-client uses fetch as eventsource doesn't support headers
Step 4 - insert an event
POST /insert
- authenticated endpoint (Authorization: Bearer {jwt}) or (Authorization: Basic {base64})
- POST JSON to insert an event
- where {...} is for the event a string, tenant_id is an assigned uuid v4 for the tenant, collection_id is an assigned uuid v4 for the event collection, timestamp is the epoch unix timestamp when you want the event to become the current event, and data is any JSON you want
will return
- where {...} is the event
Optional Endpoints
GET /collections/{collection_id}
- authenticated endpoint (Authorization: Bearer {jwt}) or (Authorization: Basic {base64})
- do a GET request where {collection_id} is the uuid of the collection you want (sorted by ascending timestamp) for the user's tenant
will return
- where {...} is the array of events
GET /user_events
- authenticated endpoint (Authorization: Bearer {jwt}) or (Authorization: Basic {base64})
- do a GET request to get the user event collections (sorted by ascending timestamp)
will return
- where (...) is for info a list of events for user info and events a list of all events that the user inserted
GET /cancel/{id}
- authenticated endpoint (Authorization: Bearer {jwt}) or (Authorization: Basic {base64})
- do a GET request where id is the uuid of the event to cancel a future event for the user's tenant
will return
- where {...} is the event
Use
use broker;
pub async
OR
cargo install broker
- the origin needs to be passed in as a flag - wildcard is supported - default http://localhost:3000
- the port needs to be passed in as a flag - default 8080
- the expiry (for jwts) needs to be passed in as a flag - default 3600
- the secret (for jwts) needs to be passed in as a flag - default secret
- the conection needs to passed in as a flag (http or https) - default http
- the key-path needs to passed in as a flag if connection https - default ./broker.rsa
- the cert-path needs to passed in as a flag if connection https - default ./broker.pem
- the save_path where the embedded database will save needs to be passed in as an environment variable
- example: SAVE_PATH=./tmp/broker_data broker --port 8080 --connection https --origin http://localhost:3000 --expiry 3600 --secret secret --key-path ./broker.rsa --cert-path ./broker.pem
Under the Hood
Inspiration
Migrations
- from 4.0 to 5.0: multi-tenancy has been added and sled has been upgraded - there is no upgrade path from 4.0 to 5.0
- from 3.0 to 4.0: the sse endpoint now returns all events with all collections with the latest collection event rather than just the latest event data for all event types
- from 2.0 to 3.0: the sse endpoint is now secure and requires the use of the broker-client library
- from 1.0 to 2.0: the optional API endpoints URLs have been changed but have the same functionality