breakout session from https://etherpad.wikimedia.org/p/summit_day2

Initial question: How do we obsolete things that are awkward/broken/etc?

Or how do we improve things without breaking them?

Criteria for switching off deprecated features:

• time-based? deadline?
• usage-based? did people stop using it?
• something else?

Discussion edit

Sumana: how do other similar apps deal with this?

GW: they have a lot of staff!

brad: they are monolithic and can just say "now we close this"; our community comes after us with pitchforks

... ... Convincing script writers to fix their stuff? have back-compat scripts to help transition; show warnings back to the users...

Yuri: we have warnings, people don't read them

Mark: add a sleep() call on the deprecated one ;)

duesentrieb: break things with error message progressively....?

?: it'll take at least a year to convert people!

aude: toolserver, labs, lots of things are changing --

sumanah: maybe change one thing at a time?

tor: don't think waiting is a good strategy; identify key users of each API -- the things you don't want to go down during a switchover -- and try to communicate with them

yuri: sometimes all we have is their IP; we can DDoS them to get attention... ;)

yuri: encouraging people to use better user-agent strings with email addresses, etc.

bryan: netflix example -- ships code that goes in long-running consumer electronics. elaborate system of API shim layers -- old API version still available, converts to the newer API and wraps back the expected format

GW: that works for a lot of stuff, but for example parsoid may change its HTML structure and that's harder to convert with a long-term window

yuri: may be good for internal code structure (progressive updates), plus clear path to kill things -- remove the shims when you're ready to drop

....

didn't we convert before from query.php?

yuri: yes but usage was relatively small and it was explicitly a trial; also a simpler migration path

tim: i have a feature request: mandatory API key with email address <- actually have a way to contact people. user-agents aren't customizable in the browser, and it's not always easy for people.

yuri: if you do that in GET you may damage caching; in POST it may as well be a header?

danielk: keys can be shared/stolen, hmm

tim: key identifies the author of the software, not the user

[key talk may need to be sidelined for now]

sumana: requiring keys with registration -> slippery slope to new policy requirements, make us like "the other guys"

sumana: what is the current roadmap for central repo for gadgets etc? (relates to timeline -- as we're doing this, maybe same time to do community management w/ api changes -> reduce friction)

...... ....

antoine: new versions, ....

something about language links API breaking due to internal changes not being fixed; somehow this got done wrong and exposed internal details to the outside

...... ... apple example...

danielk: not duplicating logic..... generating lists vs generating things out of lists (?)

Ideas to investigate edit

yuri: some good ideas in there:

• shimming old versions
• api key/useragent stuff .... discuss more

The DataStore would be a basic key-value store to be available for extensions that don't need to maintain their own fancy tables.

get(key)

put(key, data)

It would be like BagOStuff but persistent. The design is generic -- potentially allows non-sql backend. It has simple, atomic operations -- nothing fancy.

It would be searchable by key prefix and would allow data migration between stores -- mostly a single key space, but you can specify separate storage spaces which aren't shared.

(kinda like DB settings but funkier)

So extensions can share, or not, if they choose.

Discussion edit

• How is this actually different from BagOStuff with a persistent backend instead of memcached? [I didn't hear a real answer to this.]
• [...] some other key-value store -- worth looking at?

• max: but it's not invented here ;))

• brion: use a basic api and wrap it -- then can hook up to fancier backends with dependencies. keep it simple in core.

Outcome edit

[brion & tim: yeah we're liking this so far]

[aaron: recommend adding getMulti options]

We need a revision store for html, json+wikitext, etc for parsoid

• lack of high-level interface for this and other storage use cases in MW
• testing hard
  • unncecessary complexity for storage users
  • less storage primitive reuse than desirable (example: simple key-value store)
• storage backend abstraction
• share storage implementations (reuse across apps)
• extensibility -- harder :D
• scalability -- easily add more boxes, let the backend handle resharding?
• reliability -- avoid SPOF, do replication cross-DC
• ?

interaction with public content API:

• use essentially the same URL scheme externally and internally
• return the same content internally and externally, and make links in content work in both contexts without rewriting

Requests for comment/Storage service edit

first step: Rashomon revision store, a node.js rest server w/ cassandra backend

• first use case -- parsoid html/jsonmeta/wikitext

in theory adjacent revisions are adjacent on disk and should compress well (transparent by cassandra)

[question: security/auth?]

PHP Virtual REST Service edit

example got running parallel requests, POST data etc

[brion would this be purely for MW's internal use, or shared with tools like Parsoid? How to maintain guarantees....]

tim: surprised to see titles in keys

GW: that's a bad example :D

tim: yay

GW: the longer answer is that rashomon implements non-destructive renames by just creating a new revision at the new names, but not moving the old revisions. Plus is that this works well with eventual consistent storage and you can answer 'how did URL X look at time Y'. Traditional history can be implemented by storing a summary of renames.

yuri - plugin arch? things created on fly as needed?

mark: overlap w/ max's rfc.......... maybe one could be a backend for the other

brad- Does it handle RevDel and such? Answer: Not yet. It could, maybe. [currently permissions would be handled at the above app layer, like how we enforce them in MW today. ES lets you fetch any text item, even if it's struck from its revision]

[doesn't work well when Gabriel intends this to be public-facing too]

[yeah we still need to work out some details here i think. but having parsoid ping revision storage without having to go through PHP overhead has a certain appeal to it]

[I just hope the answer isn't "reimplement the whole of MW's access control in nodejs" or whatever] eeek! [see the parsoid model :( ]

mark: features team implementing it so far, eventually may migrate to core :D

GW split some concerns: lets make a decision on the PHP interface RFC first as that overlaps with Datastore; discuss the backend & revision storage ideas later

Outcomes edit

going back to the API stuff ---- we think we're going to refine this a bit

• ACCEPT - Max's data store
• ACCEPT - GW's more general PHP interface for services (with parallel operations ability)
• DEFER / out of time - Storage service
• DEFER / out of time - REST content API

Proposed Agenda:

   3 minute lightning talk API Versioning

   20 minute discussion

   3 minute lightning talk Storage Services

   20 minute discussion

   3 minute lightning talk DataStore

   20 minute discussion

Slides: https://docs.google.com/presentation/d/1H6JYzTR2V7RibJzuEc60EItqylGMijnh1YNMa4kokIE/edit?usp=sharing API is broken, but partly because it is hard to break backwards compatibility. API Versioning can help. What are the criteria for deprecation of APIs What are the strategies for migrating to new APIs Sumana: How do similar applications deal with this?

• There is no one best practice
• Often dictated for deprecation
• Community "vibe" is conservative in this area

Daniel: it's case-by-case.

• can use a combination of mechanisms (versioning, feature flag), depending on situation
• content api may be a rewrite but we want to reuse
• Siebrand makes a comment about how this being a communication problem too (hey, we changed something)
• How do we get GOOG to switch from XML to json?
  • Easier with large users, harder with scripters/botters
  • Just because you get a deprecated warning doesn't mean it will be respected
  • Mark made a joke about inserting sleep() into deprecated API calls. :) (was he joking?)  :-) Mark was only half joking :)
  • You can also rewrite api calls internally, change params, redirect etc
• Use the api mailing list. Pick a time frame (1 year, etc)
• The Google approach is to kill services (but it's not very nice)

TOR: waiting is not a good strategy. identify the key users of an API. the long tail will always lag until something is turned off anyway.

• There is more logging being added in this area
• Yuri says there is some effort to make user-agent fields with contact info (required?)

Bryan: Netflix up-transforms their API calls to newer versions Gabriel: It can work in some cases, but not infinitely Yuri: Having an extensible API (hooks, extensions etc) also makes that difficult. [I assume the internal API for controlling that would also be super complex] TheDJ: Scripts and gadgets on the wikis are not being maintained. Haven't we had this problem/discussion before? Tim: feature request for mandatory API keys

• Require email registration
• Fixes problem of user-agent modification techical challenges

Yuri: passing api key in get request kills caching

• You can write varnish rules to fix that (or use HTTP headers)
• How would you prevent someone else from using the key
  • Tim: API key identifies developer of gadget
  • Brad: What keeps a script kiddy from using the key of a popular gadget?
  • Yuri: Do we force people to register? Isn't that against some policies and practices?
  • ALL: we should continue on mailing list
  • Brad: Similar to OAUTH keys
  • Sumana: If you are going to make a policy change then you need to ensure trust and prevent misuse/abuse
  • Issues with copying gadgets from one wiki to another with API keys?

Sumana: gadgets were eaiser because there's a central repo, what about a similar solution

• • TheDJ: create less friction by combining change
  • Yuri: If extensions are in our git repos we can search for problem use cases and fix them / notify developers
  • When there are security fixes related to gadgets, who is doing the maintenance
  • Yuri: You can invest in support or solve it by moving forward on the server - it's a trade off

Antoine: Thinks current API is a bit messy and would support a new version 2 change with better architecture. Would deprecate the existing and not focus on backwards compatability.

• • Yuri: Current api is very big. It would be a lot of code to get rid of.
  • Antoine: Freeze old api and only add new features to version 2
  • Brion: How does the "API" rely on the internal implemenation? Isn't it the implementation of the "API" that has this dependency?
  • Antoine: Would like to see official client libraries in multiple languages that encapsulate these details
  • Tyler: +1 for client library. build an SDK. There are also tools which generate API clients in multiple languages based on an API spec
  • There are also API calls which mirror / duplicate functionality of the web interface, there is duplicated logic
  • Yuri: orthogonal issue, implementation detail
  • Brion: Why aren't internal and external API the same?
  • RobLa: Sometimes there are very impactful breakages with slow moving clients (eg Apple desktop dictionary). Are there lots of slow moving clients like this?
  • Brion: there are OIA feeds, some other custom sofware users
  • Gabriel: comment about duplication of logic between Web UI/Special Page/API code. Refactoring core code into service layer addresses this issue.

We are starting to hit the time limit

slides: https://docs.google.com/presentation/d/1H6JYzTR2V7RibJzuEc60EItqylGMijnh1YNMa4kokIE/edit?usp=sharing Gabriel:

• need revision store for html, json and wikitext for parsoid
• Wants a storage backend abstraction, and to be able to share storage implementations
• Scalability, Reliability of course
• Wants to have a public content API (exposing this directly also affects some implementation details, like links, domain names etc)
• Sample implentation in javascript https://github.com/gwicke/rashomon (cassandra)
• Performance details in slides
• Example of simple versioned API endpoints
• Implementation supports compression (down to 16%-18% of original size for wikitext) and immutable writes for revisions
• Can work as a more generic storage bucket and also support more specialised use cases (counters)
• Has a PHP service which talks to it, and supports parallel/batching of curl requests
• Rashomon is missing auth, and bucket creation, PHP interface is not yet implemented (?)

(Outcome clarified Feb 5 by Brion: "on the REST thing, I'm pretty sure we agreed to approve the interface, with an initial implementation using DataStore key-value as a backend")