Configure client connections with a builder #733

glbrntt · 2020-03-03T17:09:21Z

Motivation:

Configuring a client without TLS is easy to do, since no tls is the
default in the client connection configuration. This is bad. The API
should make it clearer that the default is insecure.

The current API for configuring clients falls a bit short in a number of
areas. In no particular order:

It can't be easily extended without SemVer major changes (since we'd
have to provide a new init whenever new properties are added),
Nested configuration (i.e. TLS) is unnecessarily verbose,
The initializer requires properties to be passed in the correct
order, and
TLS is disabled by default (!) and the API doesn't make this clear that
this is insecure

Modifications:

create a ClientConnectionBuilder whose public API is limited to
configuring the private properties; this is similar to NIOs bootstraps
provide static methods on ClientConnection to provide a secure or
insecure builder
update tests in a couple of places to demonstrate usage

Result:

Configuring a connection is less verbose
Not using TLS is more obviously 'insecure'

Motivation: Configuring a client without TLS is easy to do, since no tls is the default in the client connection configuration. This is bad. The API should make it clearer that the default is insecure. The current API for configuring clients falls a bit short in a number of areas. In no particular order: 1. It can't be easily extended without SemVer major changes (since we'd have to provide a new init whenever new properties are added), 2. Nested configuration (i.e. TLS) is unnecessarily verbose, 3. The initializer requires properties to be passed in the correct order, and 4. TLS is disabled by default (!) and the API doesn't make this clear that this is insecure Modifications: - create a `ClientConnectionBuilder` whose public API is limited to configuring the private properties; this is similar to NIOs bootstraps - provide static methods on `ClientConnection` to provide a `secure` or `insecure` builder - update tests in a couple of places to demonstrate usage Result: - Configuring a connection is less verbose - Not using TLS is more obviously 'insecure'

Davidde94

Not sure if I should approve as I might not be authorised yet, but LGTM

Davidde94 · 2020-03-04T12:14:58Z

Sources/GRPC/ClientConnection.swift

@@ -101,6 +101,9 @@ public class ClientConnection {
  }

  /// Creates a new connection from the given configuration.
+  ///
+  /// - Important: Users should prefer using `ClientConnection.secure(group:)` to build a connection
+  ///   with TLS, or `ClientConnection.insecure(group:)` to build a connection without TLS.
  public init(configuration: Configuration) {


This is still alpha right? You could make an API-breaking change to hide these initialisers and force people to use the new secure and insecure?

That's right but it's impossible to provide fix-its for this and it's quite an annoying change to have to make. I'm leaning towards keeping it for now. The longer term plan would be to not add anything to it to gently force people to the builder.

Please do not hide this initialiser, as this would disallow precise configuration by hands, which is often needed.

@be4rd what's your use case here? Everything should be representable by the builder as well.

@glbrntt if you'd like to keep it another option to dissuade use would be to deprecate or provide a warning for direct use

@glbrntt sorry, did not saw TLS configuration methods in builder when I left a comment 😅

Davidde94 · 2020-03-04T12:17:01Z

Sources/GRPC/GRPCChannel/GRPCChannelBuilder.swift

+  /// multiplier to 1.0.
+  @discardableResult
+  public func withConnectionBackoff(fixed amount: TimeAmount) -> Self {
+    let seconds = Double(amount.nanoseconds) / Double(1_000_000_000)


Constant 1_000_000_000 is used a couple of times. Perhaps make attached it to Double to reduce potential error? (E.g. Double.Nanosecond, or just make it a constant somewhere)

ghost · 2020-03-06T10:42:13Z

Sources/GRPC/ClientConnection.swift

@@ -101,6 +101,9 @@ public class ClientConnection {
  }

  /// Creates a new connection from the given configuration.
+  ///
+  /// - Important: Users should prefer using `ClientConnection.secure(group:)` to build a connection
+  ///   with TLS, or `ClientConnection.insecure(group:)` to build a connection without TLS.
  public init(configuration: Configuration) {


@glbrntt sorry, did not saw TLS configuration methods in builder when I left a comment 😅

glbrntt added kind/enhancement Improvements to existing feature. nio 🆕 semver/minor Adds new public API. labels Mar 3, 2020

glbrntt requested a review from MrMage March 3, 2020 17:09

glbrntt force-pushed the gb-channel-builders branch from f5c3b3d to 0c29466 Compare March 4, 2020 10:34

Davidde94 reviewed Mar 4, 2020

View reviewed changes

Add Double.seconds(from:) to convert TimeAmount to seconds

64f137c

ghost approved these changes Mar 6, 2020

View reviewed changes

glbrntt merged commit 86ea799 into grpc:nio Mar 6, 2020

glbrntt deleted the gb-channel-builders branch March 6, 2020 15:14

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Configure client connections with a builder #733

Configure client connections with a builder #733

glbrntt commented Mar 3, 2020

Davidde94 left a comment

Davidde94 Mar 4, 2020

glbrntt Mar 4, 2020

ghost Mar 5, 2020

glbrntt Mar 5, 2020

Davidde94 Mar 5, 2020

ghost Mar 6, 2020

Davidde94 Mar 4, 2020

ghost Mar 6, 2020

Configure client connections with a builder #733

Configure client connections with a builder #733

Conversation

glbrntt commented Mar 3, 2020

Davidde94 left a comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment