Add schema

[nickdnk]

Reason for This PR

Add schema like discussed.

Description of Changes

Add schema.

License Acceptance

By submitting this pull request, I confirm that my contribution is made under
the terms of the MIT license.

PR Checklist

[Author TODO: Meet these criteria.]
[Reviewer TODO: Verify that these criteria are met. Request changes if not]

• All commits in this PR are signed (git commit -s).
• The reason for this PR is clearly provided (issue no. or explanation).
• The description of changes is clear and encompassing.
• Any required documentation changes (code and docs) are included in this PR.
• Any user-facing changes are mentioned in CHANGELOG.md.
• All added/changed functionality is tested.

Summary by CodeRabbit

• New Features
  • Introduced a new JSON schema for configuring the Kafka plugin in the Roadrunner job system, ensuring robust validation of configuration parameters.
• Documentation
  • Added detailed definitions for pipeline and driver objects, including configuration options for producers, consumers, and driver settings.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 41.06%. Comparing base (7b5cbbc) to head (ff9eeca).
Report is 204 commits behind head on master.

Additional details and impacted files

@@             Coverage Diff             @@
##           master     #479       +/-   ##
===========================================
+ Coverage        0   41.06%   +41.06%     
===========================================
  Files           0       18       +18     
  Lines           0     1936     +1936     
===========================================
+ Hits            0      795      +795     
- Misses          0     1077     +1077     
- Partials        0       64       +64     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[coderabbitai]

Warning

Rate limit exceeded

@nickdnk has exceeded the limit for the number of commits or files that can be reviewed per hour. Please wait 7 minutes and 49 seconds before requesting another review.

⌛ How to resolve this issue?

After the wait time has elapsed, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans have higher rate limits than the trial, open-source and free plans. In all cases, we re-allow further reviews after a brief timeout.

Please see our FAQ for further information.

📥 Commits

Files that changed from the base of the PR and between 81c22a1 and ff9eeca.

Walkthrough

A new schema.json file has been added to define a JSON schema for the configuration parameters of the Kafka plugin used in the Roadrunner job system. This schema outlines the structure and validation rules for the pipeline and driver objects, including their required properties and configuration options. It specifies types, descriptions, and default values for various parameters, ensuring the integrity and correctness of Kafka plugin configurations.

Changes

File	Change Summary
schema.json	Added a new JSON schema defining pipeline and driver objects with configuration properties for the Kafka plugin.

Poem

In the land of code where plugins play,
A schema was born to light the way.
With Kafka's rules all neatly set,
Configurations clear, no need to fret.
So hop along, let the data flow,
With every byte, our systems grow! 🐇✨

---

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[coderabbitai]

Actionable comments posted: 5

🧹 Outside diff range and nitpick comments (2)

schema.json (2)

2-2: Consider using a versioned URL for schema $id

Using a branch reference (refs/heads/master) in the schema $id could lead to breaking changes for consumers if the schema is modified. Consider using a version-specific URL (e.g., /v1/schema.json) to ensure schema stability.

---

1-288: Consider adding schema versioning

The schema would benefit from:

1. Adding a version field to track schema changes
2. Creating a CHANGELOG.md to document schema evolution
3. Including examples in the schema documentation

This helps with schema maintenance and backwards compatibility.

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL

📥 Commits

Files that changed from the base of the PR and between 4c04707 and 92f3460.

📒 Files selected for processing (1)

• schema.json (1 hunks)

🧰 Additional context used

[coderabbitai]

⚠️ Potential issue

Fix mismatch between default value and enum

The default value "AllISRAcks" doesn't match any of the allowed enum values. It should be "AllISRAck" to match the enum.

-  "default": "AllISRAcks",
+  "default": "AllISRAck",

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	"default": "AllISRAcks",
	"enum": [
	"NoAck",
	"LeaderAck",
	"AllISRAck"
	]
	"default": "AllISRAck",
	"enum": [
	"NoAck",
	"LeaderAck",
	"AllISRAck"
	]

[coderabbitai]

🛠️ Refactor suggestion

Add validation for AWS credentials

For AWS MSK IAM authentication:

1. When mechanism is "aws_msk_iam", either access_key and secret_key should be required, or document how credentials are obtained from the environment.
2. Add a note about AWS credential best practices (e.g., using IAM roles instead of static credentials).

   "mechanism": {
     "type": "string",
     "enum": ["aws_msk_iam", "plain", "SCRAM-SHA-256", "SCRAM-SHA-512"]
   },
+  "allOf": [{
+    "if": {
+      "properties": { "mechanism": { "const": "aws_msk_iam" } }
+    },
+    "then": {
+      "anyOf": [
+        {
+          "required": ["access_key", "secret_key"]
+        },
+        {
+          "description": "When access_key and secret_key are not provided, credentials will be obtained from the AWS environment (ECS task role, EC2 instance profile, etc.)"
+        }
+      ]
+    }
+  }]

Committable suggestion was skipped due to low confidence.

[coderabbitai]

💡 Codebase verification

Based on the gathered information, I can now provide the final response:

Schema should support environment variable references for credentials

The current schema only supports plain text credentials without any built-in mechanism for secure credential management. Given that:

1. The schema supports various SASL mechanisms including SCRAM-SHA-256/512
2. There's no existing support for environment variables or external secret references
3. The codebase already has environment-related dependencies (godotenv)

Recommendations:

• Add envVar field to credential fields to support environment variable references
• Example structure:

"username": {
  "oneOf": [
    {
      "type": "string",
      "description": "Direct username value"
    },
    {
      "type": "object",
      "properties": {
        "envVar": {
          "type": "string",
          "description": "Environment variable containing the username"
        }
      }
    }
  ]
}

🔗 Analysis chain

Consider security implications for credential handling

The schema allows plain text credentials. Consider:

1. Adding a note in descriptions about secure credential management practices
2. Supporting environment variable references or external secret management

---

Let me analyze the results and gather more information to verify if there's any existing support for environment variables or secure credential management.

The first search revealed references to environment variables and secrets in the codebase, but I want to specifically check if there's any existing support for environment variables in the schema and if there's any documentation about credential management before making the final recommendation.

---

Let me do one final check to understand the full schema structure and any existing credential handling patterns.

This will help us understand if there are any existing patterns for credential handling in the schema and if there's any precedent for environment variable support before making the final recommendation.

---

Let me fix the regex and try one more time.

This should help us understand the authentication configuration context and any existing environment variable support patterns in the schema.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Check if there are any existing patterns for secure credential handling
rg -i "env|secret|vault" .

Length of output: 3894

---

Script:

#!/bin/bash
# Check for environment variable support patterns in the schema and related files
ast-grep --pattern 'env' schema.json

# Check for any documentation about credential handling
fd README.md . --exec cat {}

Length of output: 145

---

Script:

#!/bin/bash
# Check the complete schema structure around authentication
rg -A 10 -B 10 '"username":\s*{' schema.json

# Look for any existing environment variable patterns in configuration
rg -A 5 -B 5 'env|ENV|variable' schema.json

Length of output: 186

---

Script:

#!/bin/bash
# Check the complete schema structure around authentication
rg -A 10 -B 10 '"username": \{' schema.json

# Look for any environment variable patterns in the schema
cat schema.json | grep -A 5 -B 5 -E "(env|ENV|variable)"

Length of output: 813

[coderabbitai]

Actionable comments posted: 1

🧹 Outside diff range and nitpick comments (2)

schema.json (2)

1-5: Consider adding version information to the schema

While the schema is well-structured, consider adding a version field to track schema changes over time. This helps with schema evolution and backward compatibility.

---

101-107: Add pattern validation for topic names

The topics array should include pattern validation to ensure valid Kafka topic names.

Add a pattern constraint:

 "items": {
   "type": "string"
+  "pattern": "^[a-zA-Z0-9._-]+$",
+  "minLength": 1,
+  "maxLength": 249
 }

📜 Review details

Configuration used: CodeRabbit UI
Review profile: CHILL

📥 Commits

Files that changed from the base of the PR and between 92f3460 and 81c22a1.

📒 Files selected for processing (1)

• schema.json (1 hunks)

🧰 Additional context used

🔇 Additional comments (4)

schema.json (4)

98-120: Add validation for message size relationship

The previous review comment about validating the relationship between max_fetch_message_size and min_fetch_message_size is still valid.

---

197-207: Remove hardcoded broker addresses

The previous review comment about removing hardcoded broker addresses is still valid.

---

231-284: Add validation for AWS credentials

The previous review comment about AWS MSK IAM authentication validation is still valid.

---

1-288: Overall schema structure looks good

The schema provides comprehensive validation for Kafka configuration. While there are some suggested improvements, the overall structure is solid and follows JSON Schema best practices.

[coderabbitai]

⚠️ Potential issue

Add validation for SASL mechanism dependencies

The SASL mechanism selection should enforce required properties based on the selected mechanism:

• plain, SCRAM-SHA-256, SCRAM-SHA-512 require username and password
• aws_msk_iam requires either AWS credentials or environment configuration

Add conditional validation:

 "mechanism": {
   "type": "string",
   "enum": ["aws_msk_iam", "plain", "SCRAM-SHA-256", "SCRAM-SHA-512"]
-  }
+  },
+  "allOf": [{
+    "if": {
+      "properties": {
+        "mechanism": {
+          "enum": ["plain", "SCRAM-SHA-256", "SCRAM-SHA-512"]
+        }
+      }
+    },
+    "then": {
+      "required": ["username", "password"]
+    }
+  }]

Committable suggestion was skipped due to low confidence.