fregate 0.10.3

Framework for services creation
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136

# Usage

"Swiss knife" crate, consists of a lot of useful instruments such as system health diagnostics, logging, proxies etc.

# Questions

### ❓ Dependencies logic

https://github.com/Wandalen/fregate_review/blob/master/examples/grafana/Cargo.toml

Not clear what is logic of including dependencies.
Lots of dependencies come from `fregate` and public,
but some are not public and included by a user

```toml
fregate = { path = "../.." }
tracing = "0.1.36"
tokio = { version = "1", features = ["full"] }
prost = "0.11.0"
tonic = "0.8.0"
```

Why these dependencies are not in `fregate`?
Is it possible to remove dependency `axum`?

### ❓ Consider vector

Consider maybe [vector](https://vector.dev/).

# Review

### ✅ No major problem

### ✅ Idiomatic: code is short and concise

### ✅ Disciplinar: Library code is mostly covered in unit tests

Consider measuring test coverage.

### ✅ Architectural: following of deep module / information hiding principles

Read more on [deep module / information hiding] principles](https://medium.com/@nathan.fooo/5-notes-information-hiding-and-leakage-e5bd75dc41f7)

### ✅ Disciplinar: sticking to the best practices

`cargo fmt` - this utility formats all bin and lib files of the current crate using rustfmt. It's used ✅.

`cargo clippy` - checks a package to catch common mistakes and improve your Rust code. Seems it's ignored ✅.
Use (reasonable) preset of wanring/clippy rules  ✅.

[`cargo miri`](https://github.com/rust-lang/miri) - an experimental interpreter for Rust's mid-level intermediate representation (MIR). It can run binaries and test suites of cargo projects and detect certain classes of undefined behavior. Use compile-time conditionals to separate code which `miri` can interpret. As long as crate has no `unsafe` code you can use `#![forbid(unsafe_code)]` to forbid unsafe code. If your library is not intended to have `unsafe`, consider adding `#![forbid(unsafe_code)]`, which will ease reasoning about the code for potential security auditors, and will require quite a reasoning to add any `unsafe` in future.❕

[`cargo-audit`](https://github.com/RustSec/rustsec/tree/main/cargo-audit) - audit Cargo files for crates with security vulnerabilities reported to the RustSec Advisory Database ✅.

[`cargo-checkmate`](https://github.com/cargo-checkmate/cargo-checkmate) - ensures your project builds, tests pass, has good format, doesn't have dependencies with known vulnerabilities ✅.

[`cargo-udeps`](https://github.com/est31/cargo-udeps) - ensures there is no unused dependencies in Cargo.toml ✅.

Consider having a `Makefile` tools for audit as targets❕.

These tools give free suggestion how to improve quality of code and to avoid common pitfalls.

### ❕ Architectural: modularity is okay

There is no sense to decompose the crate since it looks lightweight (seems to be design requirenment) and there is no advantages in transforming crate into complex system ✅.

Pub usage of `axum` ✅
`fregate` manages the `axum` versions. The end-user cannot do anything with this. To have a single web server, the user must build his application based on `fregate` dependencies.

No access to `tokio` ❕
Crate does not provide public access to `tokio`, that's why even "hello world" example needs to add this dependency again to run the main function.

Extensive wildcard imports into root ❕
Crate root namespace should be reserved for entities that will be immediately needed by a user.
Currently everything is exported through the crate root.
What is somewhat excessive.
Structs like `NoHealth` and `AlwaysReadyAndAlive` should not pollute the root namespace.
https://www.lurklurk.org/effective-rust/wildcard.html

### ❕ Architectural: framework vs toolkit approach ( vendorlock vs agnostic )

Overuse of inversion of control and adapter/facade patterns is obeservable, what is typical for frameworks.

It creates several disadvantages:

1. It decreases maintainability because isolatation from original crates by facade. New features are not necessarily available for user of the framework.
2. It decreases flexibility and extendability of the codebase of users of the crate. Because many parameters are hidden. Interfaces are changed, but new interfaces are not necessarily better than original.
3. It increase time for onboarding. New developers should spend more time to learn custom interfaces of `fregate`.

There is risk that this crate will become framework. Better I would suggest to keep principle of being agnostics and transparent, providing fundamentals components instead of aggregating eagerly them into higher-order entities.

### ❕ Architectural: risk of utility anti-pattern

What is responsibility of the crate? List all and evaluate does not it have too much responsibilities?

- Telemetry + logging feels okay.
- Telemetry + logging + creating server feels too much for me.

https://www.yanglinzhao.com/posts/utils-antipattern/

### ❕ Security: Potential sensitive information leak through errors

in `src/middleware/proxy.rs:fn handle_result`, Error is directly
passed through to the caller of the API. Errors potentially contain sensitive
information (such as secret keys, URLs, etc), and one should be careful
about passing errors directly to the caller.

### ❕ Performance: async trait.

Async traits use dynamic dispatch under the hood, which has runtime performance cost.
- [Async trait downsides](https://internals.rust-lang.org/t/async-traits-the-less-dynamic-allocations-edition/13048/2)
- [Async trait under the hood](https://smallcultfollowing.com/babysteps/blog/2019/10/26/async-fn-in-traits-are-hard/)

### ❕ Structural: lack of features

Forward control over features of exposed dependencies and dependencies themselves.

### ❕ Structural: lack of documentation

Public functions, structs, traits, modules should be descibed well.
Example files should be described.
Most functions/structs should have snipets with examples.
Some example files look more like smoke tests than examples.

### ❕ Strategic: value for open source

The goal: to answer the question whether I should use this crate in my (including commercial) projects and, if so, in what cases it is most useful.

**PROS**
* couple of built-in tools, most of which could be necessary for common web application
* reputation of the company

**CONS**
* `fregate` doesn't give you any guarantees about versions of it's dependencies
* zero flexibility in choosing web frameworks. axum is required
* too framework-like with disadvantages explained above