Skip to content

Kinto History

Jump to bottom Edit New page
Rémy HUBSCHER edited this page Jun 30, 2016 · 7 revisions

History of changes

For some applications we want to keep an history of changes on the data of the application.

This is a common usecase and for instance the Django Admin have got a LogEntry for the very similar use-case.

What do we want to log?

  • The history should track changes of collection records
  • The history should track changes of collection metadata (track changes of jsonschema or signature status)
  • The history should track changes of bucket metadata (track changes of administration permissions)
  • The history should track changes of group metadata (track changes of editors and groups permissions changes)

How do we want to log?

History collection endpoint

After investigating multiple alternatives it seems that having a history collection for the bucket (name configurable in the configuration as well as resources patterns that have an history) would be a good solution:

/v1/buckets/staging/collections/history/records

We need to make sure that this history collection won't be taken into account by other plugins such as the signer, changes, or the history itself (keeping track of the history would have interesting consequences)

Record properties

Each history record contains:

  • who: The prefixed_userID of the person doing the change
  • last_modified: The date of the modification
  • action: create/update or delete
  • resource: Information about the resource.
    • uri: The resource URI
    • resource_name: The resource_name (bucket/collection/group/record)
    • bucket_id: The bucket ID
    • collection_id: The collection ID
    • id: The resource ID
  • data: The record data
  • permissions: The record permission

Record permissions

The history record is read-only and new record in the history collection can only be added by the kinto-history plugin.

Read permissions of record are calculated by building a set containing all principals of the write and read permission of the resource as well as the write and read permission of the collection (if it is a record).

Example of a history record

{
  "data": {
    "who": "fxa:123456789012",
    "last_modified": 1467278674621,
    "action": "create",
    "resource": {
      "uri": "/buckets/2f9b1aaa-552d-48e8-1b78-371dd08688b3/collections/test"
      "resource_name": "collection",
      "bucket_id": "2f9b1aaa-552d-48e8-1b78-371dd08688b3",
      "collection_id": "test",
      "id": "test"
    }
    "data": {
      "id": "test",
      "last_modified": 1467278674512
    },
    "permissions": {
      "write": ["fxa:123456789012"]
    }
  },
  "permissions": {
    "read": ["fxa:123456789012"]
  }
}

## Batch requests

The `AfterResourceChanged` impacted records event data of a batch request is split in order to build an history record per changes.

## Capability

A capability called «history» reveals presence of plugin with the list of resources pattern configured to have such a feature.

## RSS content-type

The history resource accepts a RSS `application/rss+xml` content-type which allow to subscribe to a stream of modification for the bucket history. It accepts the same query string filters and respects the permissions policies.

Join us on irc.freenode.net #kinto or on our Slack Workspace for more info.

Add a custom sidebar
Clone this wiki locally