Skip to content

Update API-design-guidelines for subscription#198

Merged
rartych merged 32 commits intocamaraproject:mainfrom
bigludo7:patch-1
Jun 4, 2024
Merged

Update API-design-guidelines for subscription#198
rartych merged 32 commits intocamaraproject:mainfrom
bigludo7:patch-1

Conversation

@bigludo7
Copy link
Collaborator

@bigludo7 bigludo7 commented May 10, 2024

What type of PR is this?

Add one of the following kinds:

  • enhancement/feature

What this PR does / why we need it:

Reformulate the subscription part to align with our decision to move to CloudsEvent subscription model. This PR is aligned with the PR #189 which provide an examples.

Which issue(s) this PR fixes:

Fixes #185 #153 #149 #140

Special notes for reviewers:

Changelog input

 release-note
- Move to cloudsEvents subscription model
- Add `initialevent` management
- Add draft subscription status management

Additional documentation

This section can be blank.

docs

@rartych rartych mentioned this pull request May 16, 2024
Open
PedroDiez
PedroDiez reviewed May 17, 2024
View reviewed changes
@PedroDiez PedroDiez mentioned this pull request May 17, 2024
Merged
rartych
rartych reviewed May 17, 2024
View reviewed changes
AxelNennker
AxelNennker suggested changes May 18, 2024
View reviewed changes
Copy link
Contributor

@AxelNennker AxelNennker left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

sinkCredential is not explained enough.
Is it a shared secret provided by the API consumer?
Do we enforce that the shared secret is different and random enough for each subscription?

Is the sinkCredential a signed and encrypted JWT? With an aud of sink?
What is the value of source? Is it the value of issuerthe the AZ metadata? Or is the source maybe API specific (and the event still have different types for the same API?

@AxelNennker
Copy link
Contributor

AxelNennker commented May 24, 2024

I changed my mind about ACCESSTOKEN. There is not much Camara can do on enforcing security at the API consumer.
Somebody can please resolve the conversations. @shilpa-padgaonkar

bigludo7 and others added 6 commits May 26, 2024 21:35
@bigludo7 @PedroDiez
Update documentation/API-design-guidelines.md
6331c7e 
Co-authored-by: Pedro Díez García <pedro.diezgarcia@telefonica.com>
@bigludo7 @PedroDiez
Update documentation/API-design-guidelines.md
9796896 
Co-authored-by: Pedro Díez García <pedro.diezgarcia@telefonica.com>
@bigludo7 @PedroDiez
Update documentation/API-design-guidelines.md
7b712de 
Co-authored-by: Pedro Díez García <pedro.diezgarcia@telefonica.com>
@bigludo7 @PedroDiez
Update documentation/API-design-guidelines.md
a849984 
Co-authored-by: Pedro Díez García <pedro.diezgarcia@telefonica.com>
@bigludo7
Update API-design-guidelines.md
7e6a98e 
Improved sinkCredential description.
@bigludo7
Update API-design-guidelines.md
3558093 
Rename webhook to sink for implicit subscription
bigludo7
bigludo7 commented May 26, 2024
View reviewed changes
Copy link
Collaborator Author

@bigludo7 bigludo7 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Rename webhook to sink for implicit subscription + accepted @PedroDiez proposals + proposal for token expiration

@bigludo7
Copy link
Collaborator Author

bigludo7 commented May 26, 2024

I changed my mind about ACCESSTOKEN. There is not much Camara can do on enforcing security at the API consumer. Somebody can please resolve the conversations. @shilpa-padgaonkar

Thanks @AxelNennker
@PedroDiez I can close this point?

@rartych rartych mentioned this pull request May 27, 2024
Closed
AxelNennker
AxelNennker suggested changes May 27, 2024
View reviewed changes
Copy link
Contributor

@AxelNennker AxelNennker left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

  • phoneNumber format should be "corrrect" (if needed at all, better use sub)
  • add Authorization Header

bigludo7 and others added 2 commits May 27, 2024 14:56
@bigludo7 @AxelNennker
Update documentation/API-design-guidelines.md
b0af7af 
Co-authored-by: Axel Nennker <axel.nennker@telekom.de>
@bigludo7 @AxelNennker
Update documentation/API-design-guidelines.md
4ee34eb 
Co-authored-by: Axel Nennker <axel.nennker@telekom.de>
shilpa-padgaonkar
shilpa-padgaonkar reviewed May 27, 2024
View reviewed changes
@bigludo7 @shilpa-padgaonkar
Update documentation/API-design-guidelines.md
80dc505 
Co-authored-by: Shilpa Padgaonkar <77152136+shilpa-padgaonkar@users.noreply.github.com>
PedroDiez
PedroDiez reviewed May 28, 2024
View reviewed changes
Copy link
Contributor

@PedroDiez PedroDiez left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Need to think about Access Token Expiration. Get your view @bigludo7

Several editorial comments. The whole view looks fine to me

bigludo7 and others added 2 commits May 29, 2024 08:34
@bigludo7 @PedroDiez
Update documentation/API-design-guidelines.md
8a73678 
Co-authored-by: Pedro Díez García <pedro.diezgarcia@telefonica.com>
@bigludo7 @PedroDiez
Update documentation/API-design-guidelines.md
b092091 
Co-authored-by: Pedro Díez García <pedro.diezgarcia@telefonica.com>
bigludo7
bigludo7 commented Jun 3, 2024
View reviewed changes
Copy link
Collaborator Author

@bigludo7 bigludo7 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@shilpa-padgaonkar @AxelNennker I've accepted your proposal + changed the sentence line 1404.

@shilpa-padgaonkar
Copy link
Contributor

shilpa-padgaonkar commented Jun 3, 2024

@bigludo7 Thanks. There is another very small fix already proposed as suggestion in this comment by Axel #198 (comment) which will fix the missing authZ header in one of the examples.
After that its /LGTM :)

@bigludo7 @AxelNennker
Update documentation/API-design-guidelines.md
59ced62 
Co-authored-by: Axel Nennker <axel.nennker@telekom.de>
@bigludo7
Copy link
Collaborator Author

bigludo7 commented Jun 3, 2024

Thanks @shilpa-padgaonkar for the pointer on @AxelNennker comment.
Commited!

@rartych rartych self-requested a review June 3, 2024 13:36
rartych
rartych previously approved these changes Jun 3, 2024
View reviewed changes
shilpa-padgaonkar
shilpa-padgaonkar previously approved these changes Jun 4, 2024
View reviewed changes
Copy link
Contributor

@shilpa-padgaonkar shilpa-padgaonkar left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/LGTM

PedroDiez
PedroDiez previously approved these changes Jun 4, 2024
View reviewed changes
@shilpa-padgaonkar
Copy link
Contributor

shilpa-padgaonkar commented Jun 4, 2024

@bigludo7 I noticed that there is a minor conflict you would need to resolve in the file which is blocking the merge. If you could kindly do this, we would go ahead and merge this PR as we have enough approvals now :)

@bigludo7 bigludo7 dismissed stale reviews from PedroDiez, shilpa-padgaonkar, and rartych via cd3863f June 4, 2024 08:00
@bigludo7
Copy link
Collaborator Author

bigludo7 commented Jun 4, 2024

@bigludo7 I noticed that there is a minor conflict you would need to resolve in the file which is blocking the merge. If you could kindly do this, we would go ahead and merge this PR as we have enough approvals now :)

Thanks @shilpa-padgaonkar. Hope to have fixed it.

@rartych rartych requested a review from shilpa-padgaonkar June 4, 2024 08:03
rartych
rartych reviewed Jun 4, 2024
View reviewed changes
@bigludo7 @rartych
Update documentation/API-design-guidelines.md
a8981d2 
Co-authored-by: Rafal Artych <121048129+rartych@users.noreply.github.com>
@rartych rartych self-requested a review June 4, 2024 08:46
rartych
rartych previously approved these changes Jun 4, 2024
View reviewed changes
AxelNennker
AxelNennker suggested changes Jun 4, 2024
View reviewed changes
@bigludo7 @AxelNennker
Update documentation/API-design-guidelines.md
f55bfd3 
Co-authored-by: Axel Nennker <axel.nennker@telekom.de>
shilpa-padgaonkar
shilpa-padgaonkar approved these changes Jun 4, 2024
View reviewed changes
Copy link
Contributor

@shilpa-padgaonkar shilpa-padgaonkar left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/LGTM

@rartych rartych merged commit 4933df1 into camaraproject:main Jun 4, 2024
@rartych rartych mentioned this pull request Jun 5, 2024
Closed
@hdamker hdamker mentioned this pull request Aug 2, 2024
Closed
@bigludo7 bigludo7 deleted the patch-1 branch October 4, 2024 12:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@shilpa-padgaonkar shilpa-padgaonkar shilpa-padgaonkar approved these changes

@rartych rartych rartych approved these changes

@PedroDiez PedroDiez PedroDiez left review comments

@patrice-conil patrice-conil Awaiting requested review from patrice-conil patrice-conil is a code owner

@RubenBG7 RubenBG7 Awaiting requested review from RubenBG7

+1 more reviewer

@AxelNennker AxelNennker AxelNennker requested changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Common proposal to tackle subscription-based open issues.

5 participants

@bigludo7 @AxelNennker @shilpa-padgaonkar @PedroDiez @rartych