Page MenuHomePhabricator
Create Task
Maniphest T128040

Document and implement the REST API format versioning and negotiation policy
Closed, ResolvedPublic
Actions

Description

Following the resolution of T124365, we should clearly document our policy for REST API format versioning. It should be prominently mentioned in https://www.mediawiki.org/wiki/API_versioning, and referenced from Swagger documentations. Ideally, each end point's documentation will encourage users to explicitly provide an Accept header.

The implementation in RESTBase will start with the Parsoid content end points, to support the migration towards separate data-mw metadata (see T78676). Some Varnish work is needed to efficiently vary on Accept headers.

More general validation for Accept headers vs. supported response types might follow at a later point.

Details

SubjectRepoBranchLines +/-
Normalize REST API Accept headersoperations/puppetproduction+6 -0
Customize query in gerrit

Related Objects
Search...

Event Timeline

GWicke created this task.Feb 25 2016, 1:14 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptFeb 25 2016, 1:14 AM
ssastry mentioned this in T128231: All known clients of Parsoid HTML (either directly hitting Parsoid or via RESTBase) should provide Accept: headers in their requests.Feb 26 2016, 11:15 PM
ssastry mentioned this in T128233: VisualEditor: Add Accept: header to your HTML requests to RESTBase/Parsoid as per T124365.Feb 26 2016, 11:29 PM
ssastry mentioned this in T128235: CX Server: Add Accept: header to your HTML requests to RESTBase/Parsoid as per T124365.
ssastry mentioned this in T128236: Flow: Add Accept: header to your HTML requests to RESTBase/Parsoid as per T124365.Feb 26 2016, 11:32 PM
ssastry mentioned this in T128237: Mobile Content Service: Add Accept: header to your HTML requests to RESTBase/Parsoid as per T124365.
ssastry mentioned this in T128238: EPH Gadget: Add Accept: header to your HTML requests to RESTBase/Parsoid as per T124365.Feb 26 2016, 11:34 PM
ssastry mentioned this in T128239: Google: Add Accept: header to your HTML requests to RESTBase/Parsoid as per T124365.
GWicke added a parent task: T128392: Documentation improvements (tracking).Feb 29 2016, 7:00 PM
gerritbot subscribed.Feb 29 2016, 10:38 PM

Change 273997 had a related patch set uploaded (by Alex Monk):
Send Accept header to restbase

https://gerrit.wikimedia.org/r/273997

gerritbot added a project: Patch-For-Review.Feb 29 2016, 10:38 PM
GWicke added a comment.Mar 10 2016, 8:34 PM

We have updated https://www.mediawiki.org/wiki/API_versioning, and the documentation of individual entry points is providing the supported content types, along with a CURL example line for sending the Accept header.

We should further see if we can more prominently link to https://www.mediawiki.org/wiki/API_versioning, and perhaps tweak swagger-ui to automatically provide even stronger encouragement to send the default content-type in Accept headers.

GWicke mentioned this in T128392: Documentation improvements (tracking).Mar 23 2016, 11:22 PM
GWicke added a comment.EditedMar 31 2016, 6:07 PM

Next steps:

  • Normalize Accept headers in Varnish: Clamp to default value unless profile=https://www.mediawiki.org/wiki/Specs/ is supplied.
  • Send Vary: Accept on entry points that consider the Accept header.
  • Check & convert versions in specific end points. For Parsoid, we can either use Parsoid's upcoming HTML2HTML end point (T114413), or re-render content from scratch.
  • Store a stash of non-default composite responses, so that we can provide data-parsoid and data-mw consistent with the specific render, in the specific content-type.
  • Cache non-default type responses for less time than the stash TTL.
gerritbot added a comment.Apr 1 2016, 9:16 PM

Change 281042 had a related patch set uploaded (by GWicke):
Normalize REST API Accept headers

https://gerrit.wikimedia.org/r/281042

GWicke added a subtask: T114413: Support various conversions in Parsoid's pb2pb endpoint.Apr 7 2016, 11:41 PM
gerritbot added a comment.Apr 12 2016, 4:00 PM

Change 281042 merged by BBlack:
Normalize REST API Accept headers

https://gerrit.wikimedia.org/r/281042

Mattflaschen-WMF subscribed.May 13 2016, 10:29 PM

Are there plans to support any kind of non-exact specification?

E.g. specifying ~1.2 or 1.2 to mean 1.2.*?

Mattflaschen-WMF added a comment.EditedMay 13 2016, 10:30 PM

See P3094. We requested 1.2.0 and it's rejected since it only allows 1.2.1 or 2.0.0. (This particular issue is being addressed, I'm asking about the general scenario).

Mattflaschen-WMF added a subscriber: Arlolra.May 13 2016, 10:31 PM
GWicke added a comment.EditedMay 13 2016, 11:27 PM

The general intention behind this versioning scheme is to avoid breaking clients. This means that the priority is clearly on breaking changes, and not on patch versions.

Following semver, I think we should basically ignore patch versions in external Accept headers. Minor versions are debatable, as they are still guaranteed to be backwards-compatible. A client requesting the older minor version is still expected to work when consuming a newer minor version.

This leaves us primarily with major versions, which is also the focus of the upcoming Parsoid format migration (1.2.1 to 2.0.0 in that case).

I think we should encourage clients to specify the exact version they have tested, but take liberties on the server side to return the latest compatible version. This is allowed and arguably in the spirit of RFC 7231:

If an Accept header field is present in a request and none of the available representations for the response have a media type that is listed as acceptable, the origin server MAY either honor the Accept header field by sending a 406 (Not Acceptable) response or disregard the Accept header field by treating the response as if it is not subject to content negotiation.

To summarize, I'm proposing to

  • return an error 406 if the requested major version cannot be satisfied,
  • try to match the minor version, but return another (later) compatible version matching the major if that is not possible, and
  • ignore patch versions in client headers.
Mattflaschen-WMF added a comment.EditedMay 13 2016, 11:34 PM

It turns out this is what Parsoid is currently doing. They're using caret semantics, so if you request e.g. 1.0.0 (or 1.2.0, or 1.1.*, etc.), it will serve you 1.2.1. However, you can't use 0.0.0, or some future version (1.3.0) it doesn't know about.

The errors before were because the format string (not the version itself, which was an allowed change, but the other parts) changed. See https://gerrit.wikimedia.org/r/#/c/288725/1/includes/Conversion/Utils.php .

Arlolra added a comment.May 14 2016, 1:22 AM

Yes, that's what Parsoid already does, see:
https://github.com/wikimedia/parsoid/blob/master/lib/config/MWParserEnvironment.js#L608-L624

And the discussion in,
https://gerrit.wikimedia.org/r/#/c/284595/

GWicke added a comment.May 16 2016, 9:41 PM

I have expanded the documentation at https://www.mediawiki.org/wiki/API_versioning#Content_format_stability_and_-negotiation with details on semver handling in line with the discussion & the Parsoid implementation.

Danny_B added a project: Documentation.May 23 2016, 6:07 PM
Arlolra closed subtask T114413: Support various conversions in Parsoid's pb2pb endpoint as Resolved.Jul 13 2016, 4:49 AM
Arlolra reopened subtask T114413: Support various conversions in Parsoid's pb2pb endpoint as Open.Aug 9 2016, 6:39 PM
GWicke edited projects, added Services (next); removed Services.Oct 12 2016, 3:58 PM
GWicke added a comment.Oct 12 2016, 5:39 PM

The infrastructure is now all in place, and the policies are documented. We are now working on gradually using the Accept header to vary responses in specific end points. Whenever we do so, we need to keep the following in mind:

  • Set Vary: Accept, so that Varnish stores varying responses. Varnish already normalizes accept headers unless profile=https://www.mediawiki.org/wiki/Specs/ is supplied.
  • Keep an eye on usage of older versions, and make sure that conversions perform adequately.
Mattflaschen-WMF unsubscribed.Dec 3 2016, 1:41 AM
GWicke added a comment.Apr 19 2017, 11:05 PM

First step towards enforcing content type versions of Parsoid end points: https://github.com/wikimedia/restbase/pull/803

This does not use the client-supplied accept header yet, but does guarantee that the latest content type as documented by the API spec is returned.

Pchelolo mentioned this in T170606: Add Accept header to webrequest logs.Jul 13 2017, 5:18 PM
GWicke removed GWicke as the assignee of this task.Oct 11 2017, 10:28 PM
Mholloway awarded a token.Jan 31 2018, 8:26 PM
Mholloway subscribed.
Jdforrester-WMF subscribed.Jun 6 2018, 9:43 PM
bearND subscribed.Jun 6 2018, 9:45 PM
srodlund moved this task from Backlog to API Documentation Request on the Documentation board.Aug 15 2018, 12:18 AM
Pchelolo added a comment.EditedAug 23 2018, 8:58 PM

As the first iteration of this, we would like to implement on-demand downgrading of the content without storage or stashing. Then we can verify correctness and latency impact of the downgrading and make an informed decision how to proceed regarding storage part of it.

The semantics will be the following:

  1. Semver patch version differences are ignored.
  2. If the client accept header is greater then what we have in storage, we simply make a no-cache request. If the rerender provided a version matching the requested version -return. If the rerender provided version greater then requested - go to point 3. If the rerender returned version semver minor less then requested - return. If rerender provided version semver major less the requested - 406
  3. If the client accept header is less then stored - try to downgrade and follow https://phabricator.wikimedia.org/T128040#2294397
  4. If the client didn't supply accept header - return whatever we have in storage. This will be revisited later when we make sure the vast majority of the clients specify the header.

If we all agree on the semantics, I can start coding this up as soon as I have some Parsoid endpoint to test agains

Pchelolo added a comment.Aug 27 2018, 9:48 PM

Just talked with @ssastry over IRC on the spec described in the previous comment and he agrees this is how it should be done. Implemented in https://github.com/wikimedia/restbase/pull/1052

Arlolra added a comment.Aug 30 2018, 7:34 PM

If the rerender returned version semver minor less then requested - return. why isn't that a 406 as well?

Pchelolo added a comment.Aug 30 2018, 7:37 PM

If the rerender returned version semver minor less then requested - return. why isn't that a 406 as well?

Ye that's controversial and it is a bug in the client, but I thought we've agreed on the proposal in https://phabricator.wikimedia.org/T128040#2294397

I'm pretty indifferent whether to return 406 or just return the content, slightly leaning to 406 as a more correct approach

Arlolra added a comment.Aug 30 2018, 7:41 PM

That proposal says,

try to match the minor version, but return another (later) compatible version matching the major if that is not possible, and

Carrot semantics are such that it's ok to return a greater than or equal minor version. Here you're returning a less than minor version, which may be missing the feature that's depended on (ie. the difference is adding a feature vs making a backwards incompatible change).

Pchelolo added a comment.Aug 30 2018, 7:43 PM

Oh right! I've misread that comment! Of course, you're right.

Pchelolo added a comment.Sep 14 2018, 5:18 AM

Except a small hack with dummy data-parsoid, RESTBase PR is ready for review https://github.com/wikimedia/restbase/pull/1052

mobrovac closed subtask T202682: Improve Accept header normalization in VCL for REST API as Resolved.Sep 17 2018, 2:19 PM
Arlolra closed subtask T202666: html2wt endpoint should handle mismatching content versions as Resolved.Sep 19 2018, 5:38 PM
Stashbot subscribed.Sep 27 2018, 4:25 PM

Mentioned in SAL (#wikimedia-operations) [2018-09-27T16:25:19Z] <ppchelko@deploy1001> Started deploy [restbase/deploy@0f11d5d]: Canary on 2001 for content negotiations T128040

Stashbot added a comment.Sep 27 2018, 4:29 PM

Mentioned in SAL (#wikimedia-operations) [2018-09-27T16:29:36Z] <ppchelko@deploy1001> Finished deploy [restbase/deploy@0f11d5d]: Canary on 2001 for content negotiations T128040 (duration: 04m 17s)

Stashbot added a comment.Sep 27 2018, 4:39 PM

Mentioned in SAL (#wikimedia-operations) [2018-09-27T16:39:54Z] <ppchelko@deploy1001> Started deploy [restbase/deploy@0f11d5d]: Full deploy for content negotiations T128040

Stashbot added a comment.Sep 27 2018, 4:43 PM

Mentioned in SAL (#wikimedia-operations) [2018-09-27T16:43:01Z] <ppchelko@deploy1001> Finished deploy [restbase/deploy@0f11d5d]: Full deploy for content negotiations T128040 (duration: 03m 06s)

Stashbot added a comment.Sep 27 2018, 4:43 PM

Mentioned in SAL (#wikimedia-operations) [2018-09-27T16:43:48Z] <ppchelko@deploy1001> Started deploy [restbase/deploy@0f11d5d]: Full deploy for content negotiations T128040 take 2, feeds

Stashbot added a comment.Sep 27 2018, 4:47 PM

Mentioned in SAL (#wikimedia-operations) [2018-09-27T16:47:37Z] <ppchelko@deploy1001> Finished deploy [restbase/deploy@0f11d5d]: Full deploy for content negotiations T128040 take 2, feeds (duration: 03m 49s)

Stashbot added a comment.Sep 27 2018, 4:47 PM

Mentioned in SAL (#wikimedia-operations) [2018-09-27T16:47:46Z] <ppchelko@deploy1001> Started deploy [restbase/deploy@0f11d5d]: Full deploy for content negotiations T128040 take 3, feeds

Stashbot added a comment.Sep 27 2018, 4:51 PM

Mentioned in SAL (#wikimedia-operations) [2018-09-27T16:51:45Z] <ppchelko@deploy1001> Finished deploy [restbase/deploy@0f11d5d]: Full deploy for content negotiations T128040 take 3, feeds (duration: 03m 59s)

Stashbot added a comment.Sep 27 2018, 4:52 PM

Mentioned in SAL (#wikimedia-operations) [2018-09-27T16:52:15Z] <ppchelko@deploy1001> Started deploy [restbase/deploy@0f11d5d]: Full deploy for content negotiations T128040 take 4, feeds....

Stashbot added a comment.Sep 27 2018, 4:57 PM

Mentioned in SAL (#wikimedia-operations) [2018-09-27T16:57:01Z] <ppchelko@deploy1001> Finished deploy [restbase/deploy@0f11d5d]: Full deploy for content negotiations T128040 take 4, feeds.... (duration: 04m 46s)

Stashbot added a comment.Sep 27 2018, 4:57 PM

Mentioned in SAL (#wikimedia-operations) [2018-09-27T16:57:12Z] <ppchelko@deploy1001> Started deploy [restbase/deploy@0f11d5d]: Full deploy for content negotiations T128040 take 5, feeds....

Stashbot added a comment.Sep 27 2018, 5:03 PM

Mentioned in SAL (#wikimedia-operations) [2018-09-27T17:03:44Z] <ppchelko@deploy1001> Finished deploy [restbase/deploy@0f11d5d]: Full deploy for content negotiations T128040 take 5, feeds.... (duration: 06m 32s)

Stashbot added a comment.Oct 1 2018, 7:23 PM

Mentioned in SAL (#wikimedia-operations) [2018-10-01T19:23:58Z] <ppchelko@deploy1001> Started deploy [restbase/deploy@7caf4d8]: Content-negotiation filter going live T128040

Stashbot added a comment.Oct 1 2018, 7:27 PM

Mentioned in SAL (#wikimedia-operations) [2018-10-01T19:27:36Z] <ppchelko@deploy1001> Finished deploy [restbase/deploy@7caf4d8]: Content-negotiation filter going live T128040 (duration: 03m 38s)

mobrovac added a parent task: T205935: MCS should request 2.0 Parsoid HTML.Oct 3 2018, 9:33 AM
Arlolra added a comment.Oct 11 2018, 1:22 AM

See the discussion at https://github.com/wikimedia/restbase/pull/1073#pullrequestreview-163606489 when it comes to the documenting portion of this task

mobrovac added a project: Platform Team Legacy (Later).Dec 20 2018, 12:17 PM
Pchelolo closed this task as Resolved.Mar 13 2019, 3:02 PM
Pchelolo claimed this task.
Pchelolo edited projects, added Services (done); removed Platform Team Legacy (Later), Services (next), Services-next.

I think this is done and can be resolved now.

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL