appwrite/app/realtime.php

<?php

require_once __DIR__ . '/init.php';

use Appwrite\Network\Validator\Origin;
use Appwrite\Realtime\Realtime;
use Appwrite\Utopia\Response;
use Swoole\Database\PDOProxy;
use Swoole\Process;
use Swoole\Http\Request;
use Swoole\Http\Response as SwooleResponse;
use Swoole\WebSocket\Frame;
use Swoole\WebSocket\Server;
use Utopia\App;
use Utopia\CLI\Console;
use Utopia\Swoole\Request as SwooleRequest;
use Utopia\Abuse\Abuse;
use Utopia\Abuse\Adapters\TimeLimit;

/**
 * TODO List
 * 
 * - JWT Authentication (in path / or in message)
 * 
 * Protocols Support:
 * - Websocket support: https://www.swoole.co.uk/docs/modules/swoole-websocket-server
 */

Swoole\Runtime::enableCoroutine(SWOOLE_HOOK_ALL);

$register->set('db', function () use ($register) {
    $pool = $register->get('dbPool');
    $pdo = $pool->get()->__getObject();

    return $pdo;
}, true);

$register->set('cache', function () use ($register) { // Register cache connection
    $redis = $register->get('redisPool')->get();
    $redis->setOption(Redis::OPT_READ_TIMEOUT, -1);

    return $redis;
}, true);

$server = new Server('0.0.0.0', 80);

$server->set([
    'package_max_length' => 64000 // Default maximum Package Size (64kb)
]);

$subscriptions = [];
$connections = [];

$server->on('workerStart', function ($server, $workerId) use (&$subscriptions, &$connections, &$register) {
    Console::success('Worker ' . $workerId . ' started succefully');
    
    $attempts = 0;
    $start = time();

    while ($attempts < 300) {
        try {
            if ($attempts > 0) {
                Console::error('Pub/sub connection lost (lasted ' . (time() - $start) . ' seconds, worker: ' . $workerId . ').
                    Attempting restart in 5 seconds (attempt #' . $attempts . ')');
                sleep(5); // 5 sec delay between connection attempts
            }

            $redis = $register->get('cache');

            if ($redis->ping(true)) {
                $attempts = 0;
                Console::success('Pub/sub connection established (worker: ' . $workerId . ')');
            } else {
                Console::error('Pub/sub failed (worker: ' . $workerId . ')');
            }

            $redis->subscribe(['realtime'], function ($redis, $channel, $payload) use ($server, &$connections, &$subscriptions) {
                /**
                 * Supported Resources:
                 *  - Collection
                 *  - Document
                 *  - File
                 *  - Account
                 *  - Session
                 *  - Team? (not implemented yet)
                 *  - Membership? (not implemented yet)
                 *  - Function? (not available yet)
                 *  - Execution? (not available yet)
                 */
                $event = json_decode($payload, true);

                $receivers = Realtime::identifyReceivers($event, $subscriptions);

                foreach ($receivers as $receiver) {
                    if ($server->exist($receiver) && $server->isEstablished($receiver)) {
                        $server->push(
                            $receiver,
                            json_encode($event['data']),
                            SWOOLE_WEBSOCKET_OPCODE_TEXT,
                            SWOOLE_WEBSOCKET_FLAG_FIN | SWOOLE_WEBSOCKET_FLAG_COMPRESS
                        );
                    } else {
                        $server->close($receiver);
                    }
                }
            });
        } catch (\Throwable $th) {
            Console::error('Pub/sub error: ' . $th->getMessage());
            $attempts++;
            continue;
        }

        $attempts++;
    }

    Console::error('Failed to restart pub/sub...');
});

$server->on('start', function (Server $server) {
    Console::success('Server started succefully');

    Console::info("Master pid {$server->master_pid}, manager pid {$server->manager_pid}");

    // listen ctrl + c
    Process::signal(2, function () use ($server) {
        Console::log('Stop by Ctrl+C');
        $server->shutdown();
    });
});

$server->on('open', function (Server $server, Request $request) use (&$connections, &$subscriptions, &$register) {
    $app = new App('UTC');
    $connection = $request->fd;
    $request = new SwooleRequest($request);

    Console::info("Connection open (user: {$connection}, worker: {$server->getWorkerId()})");

    App::setResource('request', function () use ($request) {
        return $request;
    });

    App::setResource('response', function () {
        return new Response(new SwooleResponse());
    });

    /** @var Appwrite\Database\Document $user */
    $user = $app->getResource('user');

    /** @var Appwrite\Database\Document $project */
    $project = $app->getResource('project');

    /** @var Appwrite\Database\Document $console */
    $console = $app->getResource('console');

    try {
        /*
        *  Project Check
        */
        if (empty($project->getId())) {
            throw new Exception('Missing or unknown project ID', 1008);
        }

        /*
        * Abuse Check
        *
        * Abuse limits are connecting 128 times per minute and ip address.
        */
        $timeLimit = new TimeLimit('url:{url},ip:{ip}', 128, 60, function () use ($register) {
            return $register->get('db');
        });
        $timeLimit
            ->setNamespace('app_' . $project->getId())
            ->setParam('{ip}', $request->getIP())
            ->setParam('{url}', $request->getURI());

        $abuse = new Abuse($timeLimit);

        if ($abuse->check() && App::getEnv('_APP_OPTIONS_ABUSE', 'enabled') === 'enabled') {
            throw new Exception('Too many requests', 1013);
        }

        /*
        * Validate Client Domain - Check to avoid CSRF attack.
        * Adding Appwrite API domains to allow XDOMAIN communication.
        * Skip this check for non-web platforms which are not required to send an origin header.
        */
        $origin = $request->getOrigin();
        $originValidator = new Origin(\array_merge($project->getAttribute('platforms', []), $console->getAttribute('platforms', [])));

        if (!$originValidator->isValid($origin)) {
            throw new Exception($originValidator->getDescription(), 1008);
        }

        Realtime::setUser($user);

        $roles = Realtime::getRoles();
        $channels = Realtime::parseChannels($request->getQuery('channels', []));

        /**
         * Channels Check
         */
        if (empty($channels)) {
            throw new Exception('Missing channels', 1008);
        }

        Realtime::subscribe($project->getId(), $connection, $roles, $subscriptions, $connections, $channels);

        $server->push($connection, json_encode($channels));
    } catch (\Throwable $th) {
        $response = [
            'code' => $th->getCode(),
            'message' => $th->getMessage()
        ];
        $server->push($connection, json_encode($response));
        $server->close($connection);
    }
});

$server->on('message', function (Server $server, Frame $frame) {
    $server->push($frame->fd, 'Sending messages is not allowed.');
    $server->close($frame->fd);
});

$server->on('close', function (Server $server, int $connection) use (&$connections, &$subscriptions) {
    Realtime::unsubscribe($connection, $subscriptions, $connections);
    Console::info('Connection close: ' . $connection);
});

$server->start();
Basic structure 2020-10-16 20:31:09 +13:00			`<?php`

add realtime prototype 2021-02-25 06:12:38 +13:00			`require_once __DIR__ . '/init.php';`
Added redis persistent connection 2020-10-20 04:09:53 +13:00
add cors validation 2021-03-02 05:02:01 +13:00			`use Appwrite\Network\Validator\Origin;`
add abuse checks and abstract class for logic 2021-02-26 06:00:41 +13:00			`use Appwrite\Realtime\Realtime;`
Refactored resources 2021-03-10 05:07:13 +13:00			`use Appwrite\Utopia\Response;`
move resource to http worker so workers work 2021-03-13 04:56:12 +13:00			`use Swoole\Database\PDOProxy;`
Cleanups 2021-03-10 20:43:10 +13:00			`use Swoole\Process;`
Added redis persistent connection 2020-10-20 04:09:53 +13:00			`use Swoole\Http\Request;`
Refactored resources 2021-03-10 05:07:13 +13:00			`use Swoole\Http\Response as SwooleResponse;`
Basic structure 2020-10-16 20:31:09 +13:00			`use Swoole\WebSocket\Frame;`
Cleanups 2021-03-10 20:43:10 +13:00			`use Swoole\WebSocket\Server;`
POC 2020-10-21 02:22:46 +13:00			`use Utopia\App;`
Added redis pub/sub 2020-10-19 00:51:16 +13:00			`use Utopia\CLI\Console;`
Fixed code to work with 0.7 changes 2021-02-22 10:22:32 +13:00			`use Utopia\Swoole\Request as SwooleRequest;`
add abuse checks and abstract class for logic 2021-02-26 06:00:41 +13:00			`use Utopia\Abuse\Abuse;`
			`use Utopia\Abuse\Adapters\TimeLimit;`
add realtime prototype 2021-02-25 06:12:38 +13:00
Basic structure 2020-10-16 20:31:09 +13:00			`/**`
			`* TODO List`
			`*`
			`* - JWT Authentication (in path / or in message)`
Added docs 2020-10-17 18:48:03 +13:00			`*`
POC 2020-10-21 02:22:46 +13:00			`* Protocols Support:`
			`* - Websocket support: https://www.swoole.co.uk/docs/modules/swoole-websocket-server`
Basic structure 2020-10-16 20:31:09 +13:00			`*/`

Added redis persistent connection 2020-10-20 04:09:53 +13:00			`Swoole\Runtime::enableCoroutine(SWOOLE_HOOK_ALL);`
Added redis pub/sub 2020-10-19 00:51:16 +13:00
Overwriting registry for realtime 2021-03-11 00:26:38 +13:00			`$register->set('db', function () use ($register) {`
			`$pool = $register->get('dbPool');`
			`$pdo = $pool->get()->__getObject();`

			`return $pdo;`
			`}, true);`

move resource to http worker so workers work 2021-03-13 04:56:12 +13:00			`$register->set('cache', function () use ($register) { // Register cache connection`
			`$redis = $register->get('redisPool')->get();`
			`$redis->setOption(Redis::OPT_READ_TIMEOUT, -1);`

			`return $redis;`
			`}, true);`

add redis connection pool 2021-02-26 22:21:07 +13:00			`$server = new Server('0.0.0.0', 80);`

add realtime prototype 2021-02-25 06:12:38 +13:00			`$server->set([`
add package_max_length description 2021-03-02 04:13:10 +13:00			`'package_max_length' => 64000 // Default maximum Package Size (64kb)`
add channels to realtime response 2021-02-25 23:43:39 +13:00			`]);`
add redis connection pool 2021-02-26 22:21:07 +13:00
Handle user & project channels 2020-10-21 23:50:11 +13:00			`$subscriptions = [];`
Added connection open/close logic 2020-10-22 01:03:50 +13:00			`$connections = [];`
Added redis pub/sub 2020-10-19 00:51:16 +13:00
add redis connection pool 2021-02-26 22:21:07 +13:00			`$server->on('workerStart', function ($server, $workerId) use (&$subscriptions, &$connections, &$register) {`
Fixed registry contex 2021-03-10 06:27:48 +13:00			`Console::success('Worker ' . $workerId . ' started succefully');`
Refactored resources 2021-03-10 05:07:13 +13:00
Added redis persistent connection 2020-10-20 04:09:53 +13:00			`$attempts = 0;`
			`$start = time();`
add realtime prototype 2021-02-25 06:12:38 +13:00
Fixed connection retry 2020-10-20 09:38:49 +13:00			`while ($attempts < 300) {`
Added redis persistent connection 2020-10-20 04:09:53 +13:00			`try {`
add realtime prototype 2021-02-25 06:12:38 +13:00			`if ($attempts > 0) {`
			`Console::error('Pub/sub connection lost (lasted ' . (time() - $start) . ' seconds, worker: ' . $workerId . ').`
			`Attempting restart in 5 seconds (attempt #' . $attempts . ')');`
add redis connection pool 2021-02-26 22:21:07 +13:00			`sleep(5); // 5 sec delay between connection attempts`
Fixed connection retry 2020-10-20 09:38:49 +13:00			`}`

Removed context, added pools 2021-03-10 19:53:49 +13:00			`$redis = $register->get('cache');`
Added redis persistent connection 2020-10-20 04:09:53 +13:00
add realtime prototype 2021-02-25 06:12:38 +13:00			`if ($redis->ping(true)) {`
Added redis persistent connection 2020-10-20 04:09:53 +13:00			`$attempts = 0;`
add realtime prototype 2021-02-25 06:12:38 +13:00			`Console::success('Pub/sub connection established (worker: ' . $workerId . ')');`
			`} else {`
			`Console::error('Pub/sub failed (worker: ' . $workerId . ')');`
Added logs 2020-10-20 07:56:02 +13:00			`}`
Fixed code to work with 0.7 changes 2021-02-22 10:22:32 +13:00
add channels to realtime response 2021-02-25 23:43:39 +13:00			`$redis->subscribe(['realtime'], function ($redis, $channel, $payload) use ($server, &$connections, &$subscriptions) {`
Fixed code to work with 0.7 changes 2021-02-22 10:22:32 +13:00			`/**`
			`* Supported Resources:`
			`* - Collection`
			`* - Document`
			`* - File`
cleanup code 2021-03-04 22:28:24 +13:00			`* - Account`
			`* - Session`
			`* - Team? (not implemented yet)`
			`* - Membership? (not implemented yet)`
			`* - Function? (not available yet)`
			`* - Execution? (not available yet)`
Fixed code to work with 0.7 changes 2021-02-22 10:22:32 +13:00			`*/`
add channels to realtime response 2021-02-25 23:43:39 +13:00			`$event = json_decode($payload, true);`
add realtime prototype 2021-02-25 06:12:38 +13:00
improve time-space complexity of identifying receivers 2021-03-02 04:33:33 +13:00			`$receivers = Realtime::identifyReceivers($event, $subscriptions);`
add realtime prototype 2021-02-25 06:12:38 +13:00
			`foreach ($receivers as $receiver) {`
add channels to realtime response 2021-02-25 23:43:39 +13:00			`if ($server->exist($receiver) && $server->isEstablished($receiver)) {`
			`$server->push(`
			`$receiver,`
			`json_encode($event['data']),`
			`SWOOLE_WEBSOCKET_OPCODE_TEXT,`
			`SWOOLE_WEBSOCKET_FLAG_FIN \| SWOOLE_WEBSOCKET_FLAG_COMPRESS`
			`);`
			`} else {`
add realtime prototype 2021-02-25 06:12:38 +13:00			`$server->close($receiver);`
Fixed code to work with 0.7 changes 2021-02-22 10:22:32 +13:00			`}`
			`}`
Added redis persistent connection 2020-10-20 04:09:53 +13:00			`});`
			`} catch (\Throwable $th) {`
add realtime prototype 2021-02-25 06:12:38 +13:00			`Console::error('Pub/sub error: ' . $th->getMessage());`
Added redis persistent connection 2020-10-20 04:09:53 +13:00			`$attempts++;`
			`continue;`
			`}`
Fixed connection retry 2020-10-20 09:38:49 +13:00
			`$attempts++;`
Added redis persistent connection 2020-10-20 04:09:53 +13:00			`}`
Added redis pub/sub 2020-10-19 00:51:16 +13:00
Added connection open/close logic 2020-10-22 01:03:50 +13:00			`Console::error('Failed to restart pub/sub...');`
Added redis pub/sub 2020-10-19 00:51:16 +13:00			`});`

add redis connection pool 2021-02-26 22:21:07 +13:00			`$server->on('start', function (Server $server) {`
Added redis pub/sub 2020-10-19 00:51:16 +13:00			`Console::success('Server started succefully');`
POC 2020-10-21 02:22:46 +13:00
			`Console::info("Master pid {$server->master_pid}, manager pid {$server->manager_pid}");`

			`// listen ctrl + c`
			`Process::signal(2, function () use ($server) {`
			`Console::log('Stop by Ctrl+C');`
			`$server->shutdown();`
			`});`
Basic structure 2020-10-16 20:31:09 +13:00			`});`

add realtime prototype 2021-02-25 06:12:38 +13:00			`$server->on('open', function (Server $server, Request $request) use (&$connections, &$subscriptions, &$register) {`
use redis connection pool on http 2021-03-13 03:16:40 +13:00			`$app = new App('UTC');`
Handle user & project channels 2020-10-21 23:50:11 +13:00			`$connection = $request->fd;`
			`$request = new SwooleRequest($request);`
POC 2020-10-21 02:22:46 +13:00
adapt to review 2021-03-11 02:39:37 +13:00			`Console::info("Connection open (user: {$connection}, worker: {$server->getWorkerId()})");`

Handle user & project channels 2020-10-21 23:50:11 +13:00			`App::setResource('request', function () use ($request) {`
			`return $request;`
			`});`

Refactored resources 2021-03-10 05:07:13 +13:00			`App::setResource('response', function () {`
			`return new Response(new SwooleResponse());`
			`});`
Fixed code to work with 0.7 changes 2021-02-22 10:22:32 +13:00
add channels to realtime response 2021-02-25 23:43:39 +13:00			`/** @var Appwrite\Database\Document $user */`
Now tracking all user roles 2020-10-22 20:16:40 +13:00			`$user = $app->getResource('user');`
Handle user & project channels 2020-10-21 23:50:11 +13:00
			`/** @var Appwrite\Database\Document $project */`
add channels to realtime response 2021-02-25 23:43:39 +13:00			`$project = $app->getResource('project');`

add cors validation 2021-03-02 05:02:01 +13:00			`/** @var Appwrite\Database\Document $console */`
			`$console = $app->getResource('console');`

add exception to realtime opener 2021-03-10 22:01:24 +13:00			`try {`
			`/*`
			`* Project Check`
			`*/`
			`if (empty($project->getId())) {`
			`throw new Exception('Missing or unknown project ID', 1008);`
			`}`
move project check before abuse and cors validation 2021-03-02 22:57:22 +13:00
add exception to realtime opener 2021-03-10 22:01:24 +13:00			`/*`
			`* Abuse Check`
adapt to review 2021-03-11 02:39:37 +13:00			`*`
			`* Abuse limits are connecting 128 times per minute and ip address.`
add exception to realtime opener 2021-03-10 22:01:24 +13:00			`*/`
adapt to review 2021-03-11 02:39:37 +13:00			`$timeLimit = new TimeLimit('url:{url},ip:{ip}', 128, 60, function () use ($register) {`
add exception to realtime opener 2021-03-10 22:01:24 +13:00			`return $register->get('db');`
			`});`
			`$timeLimit`
			`->setNamespace('app_' . $project->getId())`
			`->setParam('{ip}', $request->getIP())`
			`->setParam('{url}', $request->getURI());`

			`$abuse = new Abuse($timeLimit);`

			`if ($abuse->check() && App::getEnv('_APP_OPTIONS_ABUSE', 'enabled') === 'enabled') {`
			`throw new Exception('Too many requests', 1013);`
			`}`
add abuse checks and abstract class for logic 2021-02-26 06:00:41 +13:00
add exception to realtime opener 2021-03-10 22:01:24 +13:00			`/*`
			`* Validate Client Domain - Check to avoid CSRF attack.`
			`* Adding Appwrite API domains to allow XDOMAIN communication.`
			`* Skip this check for non-web platforms which are not required to send an origin header.`
			`*/`
			`$origin = $request->getOrigin();`
			`$originValidator = new Origin(\array_merge($project->getAttribute('platforms', []), $console->getAttribute('platforms', [])));`
add abuse checks and abstract class for logic 2021-02-26 06:00:41 +13:00
add exception to realtime opener 2021-03-10 22:01:24 +13:00			`if (!$originValidator->isValid($origin)) {`
			`throw new Exception($originValidator->getDescription(), 1008);`
			`}`
add channels to realtime response 2021-02-25 23:43:39 +13:00
add exception to realtime opener 2021-03-10 22:01:24 +13:00			`Realtime::setUser($user);`
add cors validation 2021-03-02 05:02:01 +13:00
add exception to realtime opener 2021-03-10 22:01:24 +13:00			`$roles = Realtime::getRoles();`
			`$channels = Realtime::parseChannels($request->getQuery('channels', []));`
add cors validation 2021-03-02 05:02:01 +13:00
add exception to realtime opener 2021-03-10 22:01:24 +13:00			`/**`
			`* Channels Check`
			`*/`
			`if (empty($channels)) {`
			`throw new Exception('Missing channels', 1008);`
			`}`
add abuse checks and abstract class for logic 2021-02-26 06:00:41 +13:00
add exception to realtime opener 2021-03-10 22:01:24 +13:00			`Realtime::subscribe($project->getId(), $connection, $roles, $subscriptions, $connections, $channels);`
Now tracking all user roles 2020-10-22 20:16:40 +13:00
add exception to realtime opener 2021-03-10 22:01:24 +13:00			`$server->push($connection, json_encode($channels));`
			`} catch (\Throwable $th) {`
			`$response = [`
			`'code' => $th->getCode(),`
			`'message' => $th->getMessage()`
			`];`
			`$server->push($connection, json_encode($response));`
add abuse checks and abstract class for logic 2021-02-26 06:00:41 +13:00			`$server->close($connection);`
			`}`
Basic structure 2020-10-16 20:31:09 +13:00			`});`

add channels to realtime response 2021-02-25 23:43:39 +13:00			`$server->on('message', function (Server $server, Frame $frame) {`
cleanup code 2021-03-04 22:28:24 +13:00			`$server->push($frame->fd, 'Sending messages is not allowed.');`
			`$server->close($frame->fd);`
Basic structure 2020-10-16 20:31:09 +13:00			`});`

adapt to review 2021-03-11 02:39:37 +13:00			`$server->on('close', function (Server $server, int $connection) use (&$connections, &$subscriptions) {`
			`Realtime::unsubscribe($connection, $subscriptions, $connections);`
			`Console::info('Connection close: ' . $connection);`
Basic structure 2020-10-16 20:31:09 +13:00			`});`

add redis connection pool 2021-02-26 22:21:07 +13:00			`$server->start();`