Skip to content

Latest commit

 

History

History

samples

Folders and files

NameName
Last commit message
Last commit date

parent directory

..

apihub-experience

apihub-experience

 
 

googleapis-openapi

googleapis-openapi

 
 

googleapis-protos

googleapis-protos

 
 

README.md

README.md

 
 

README.md

Sample projects

Each subdirectory contains a sample project that can be uploaded using the registry tool, e.g.

apihub-experience

This directory contains the configurations which are offered in the API Hub experience as part of the default sample implementations.

googleapis-protos

This directory contains sample configurations and scripts which can be used to evaluate the conformance of Googleapis (or any proto based API collection) with the AIPs.

googleapis-openapi

This directory contains yamls which will upload ~60 APIs to the registry, along with some project level configurations which will calculate the following artifacts for your specs:

  • connformance reports
  • scores
  • scorecards

Uploading to the hosted instance:

  • Upload the whole directory using the following command:
registry apply -f googleapis-openapi -R --parent projects/$PROJECT/locations/global

where PROJECT is set to the name of the target project.

Note: Please make sure you are running a registry instance of version v0.5.3 or higher.

  • Wait for 5 to 15 minutes to see the artifacts to show up in the registry.

Uploading to a locally running instance:

  • Upload the whole directory using the following command:
registry apply -f googleapis-openapi -R --parent projects/$PROJECT/locations/global

where PROJECT is set to the name of the target project.

Note: Please make sure you are running a registry instance of version v0.5.3 or higher.

  • Now, since you are running the local version, you will need to manually invoke the controller to generate the expected artifacts.
  • Run the following command to invoke the controller:
registry resolve projects/$PROJECT/locations/global/artifacts/apihub-manifest

Note: Please make sure you have installed spectral linter version 5.X.X

  • Due to the dependency relationships between different artifacts, you will need to invoke the controller at least 3 times in order to get all the artifacts generated. The artifacts generated in each invocation will be as follows:
    • First invocation:
      • conformance-apihub-styleguide (stores conformance reports)
      • connformance-receipt (stores the receipt of conformance action)
    • Second invocation:
      • score-lint-warnings (stores the score representing number of lint warnings)
      • score-lint-errors (stores the score representing number of lint errors)
      • score-receipt (stores the receipt of score computation action)
    • Third invocation:
      • scorecard-lint-summary (stores the summary of all lint scores)
      • scorecard-receipt (stores the receipt of scorecard computation action)

Verifying the results:

  1. You can use the following commands to list the artifacts

    # Listing vocabulary artifacts
registry list projects/$PROJECT/locations/global/apis/-/versions/-/specs/-/artifacts/vocabulary

# Listing complexity artifacts
registry list projects/$PROJECT/locations/global/apis/-/versions/-/specs/-/artifacts/complexity

# Listing conformance artifacts
registry list projects/$PROJECT/locations/global/apis/-/versions/-/specs/-/artifacts/conformance-apihub-styleguide

# Listing score artifacts
registry list projects/$PROJECT/locations/global/apis/-/versions/-/specs/-/artifacts/score-lint-errors
registry list projects/$PROJECT/locations/global/apis/-/versions/-/specs/-/artifacts/score-lint-warnings

# Listing scorecard artifacts
registry list projects/$PROJECT/locations/global/apis/-/versions/-/specs/-/artifacts/scorecard-lint-summary

  2. To get the scores for a particular spec, run the following:

    # Get lint-errors
registry projects/shrutiparab-sandbox/locations/global/apis/googleapis.com-analyticshub/versions/v1beta1/specs/openapi.yaml/artifacts/score-lint-errors --contents

# Get lint-warnings
registry get projects/shrutiparab-sandbox/locations/global/apis/googleapis.com-analyticshub/versions/v1beta1/specs/openapi.yaml/artifacts/score-lint-warnings --contents

# Get scorecard
registry get projects/shrutiparab-sandbox/locations/global/apis/googleapis.com-analyticshub/versions/v1beta1/specs/openapi.yaml/artifacts/scorecard-lint-summary --contents

  3. The expected response should be something like follows:

    • score-lint-errors 
      {
    "id": "score-lint-errors",
    "kind": "Score",
    "displayName": "Lint Errors",
    "description": "Number of lint errors found in conformance report",
    "definitionName": "projects/shrutiparab-sandbox/locations/global/artifacts/lint-errors",
    "integerValue": {
        "value": 1,
        "maxValue": 100
    }
}
    • score-lint-warnings 
      {
    "id": "score-lint-warnings",
    "kind": "Score",
    "displayName": "Lint Warnings",
    "description": "Number of lint warnings found in conformance report",
    "definitionName": "projects/shrutiparab-sandbox/locations/global/artifacts/lint-warnings",
    "integerValue": {
        "maxValue": 100
    }
}
    • scorecard-lint-summary 
      {
    "id": "scorecard-lint-summary",
    "kind": "ScoreCard",
    "displayName": "Lint Summary",
    "description": "Summary of lint scores",
    "definitionName": "projects/shrutiparab-sandbox/locations/global/artifacts/lint-summary",
    "scores": [
        {
        "id": "score-lint-errors",
        "kind": "Score",
        "displayName": "Lint Errors",
        "description": "Number of lint errors found in conformance report",
        "definitionName": "projects/shrutiparab-sandbox/locations/global/artifacts/lint-errors",
        "integerValue": {
            "value": 1,
            "maxValue": 100
        }
        },
        {
        "id": "score-lint-warnings",
        "kind": "Score",
        "displayName": "Lint Warnings",
        "description": "Number of lint warnings found in conformance report",
        "definitionName": "projects/shrutiparab-sandbox/locations/global/artifacts/lint-warnings",
        "integerValue": {
            "maxValue": 100
        }
        }
    ]
}

How are lint results calculated?

  • The lint result artifacts are called as conformance reports, to represent how conformant an API is with respect to the specified lint rules. The calculation of Scores depends on the existence of StyleGuide artifacts. These artifacts are stored at the project level and hence are applied to the whole project.
  • You can see what definitions currently exist in your registry using the following command: 
    registry list projects/$PROJECT/locations/global/artifacts/- --filter='mime_type.contains("StyleGuide")'
  • Every time the compute conformance command is invoked, it will fetch all the StyleGuides in the project and compute conformance artifacts based on the definitions which apply to the supplied spec.
  • Here is an explanation of what each field means in a StyleGuide definition and how the compute conformance command uses it. Let's consider the StyleGuide that we are uploading as part of this sample. 
    apiVersion: apigeeregistry/v1
kind: StyleGuide
metadata:
  name: apihub-styleguide
data:
  mime_types:
  - application/x.openapi+gzip;version=3
  - application/x.openapi;version=3
  - application/x.openapi+gzip;version=2
  - application/x.openapi;version=2
  - application/x.openapi+gzip
  - application/x.openapi
  guidelines:
  - id: operation
    display_name: Govern properties of Operations
    rules:
    - id: operation-success-response
      description: >
        Operation must have at least one 2xx or 3xx response.
        Any API operation (endpoint) can fail, but presumably
        it is also meant to do something constructive at some point.
      linter: spectral
      linter_rulename: operation-success-response
      severity: WARNING
      doc_uri: https://github.com/stoplightio/spectral/blob/develop/docs/reference/openapi-rules.md#operation-success-response
...
    • mime_types: this defines which types of APISpecs can this definition be applied to. The above example mentions that this styleguide can be applied to all APIs of type openapi of all versions. The compute conformance command looks for an exact match between the types mentioned here and the one that is set on the APISpec itself. So make sure the mime_type on the spec resource is set correctly if you want to get the conformance report calculated for that spec.
    • guidelines: This is a list of guidelines which define how a spec should be defined. Each guideline will have a set of rules which represent what the guideline is checking for. For example, in this particular example, we have a guideline defined for governing operation properties. The generated conformance report shows violations which are grouped into these guidelines. This helps users to set their own guidelines and give a sructure to the linting rules. Note that a particular guideline can have rules coming from two different linters. More on rules below:
    • Let's see how to define a rule now:
      • id: This is used by the conformance tool to identify a particular rule by it's id.
      • description: a short description of the rule.
      • linter: the linter name from which the rule is coming. This helps the conformance tool to decide which plugin to invoke, for example here, the conformance tool will invoke the registry-lint-spectral plugin. This plugin is available to be invoked as part of the APIHub experience. If you want to add your own / any other linter, you need to manage your own controller job and either reuse this (image)[https://github.com/apigee/registry-experimental/pkgs/container/registry-linters] ((Dockerfile)[https://github.com/apigee/registry-experimental/blob/main/containers/registry-linters/Dockerfile]) which includes spectral, gnostic, api linter and their plugins built in. Or you can build your own linter and it's corresponding plugin.
      • linter_rulename: This is the rulename with which a linter reports a violation. This helps the conformance tool to map the errors reported in the linter's result to the rule ids in the structured conformance report.
      • severity: This is the SEVERITY with which a violation of this rule should be reported.
      • doc_uri: This is the informational field where you can link to an explanation of the rule in detail, in this particular example the link points to the spectral rule.
  • For more details on the fields, refer the proto definition.

How are Scores calculated?

  • The calculation of Scores depends on the existence of ScoreDefintion artifacts. These artifacts are stored at the project level and hence are applied to the whole project.
  • You can see what definitions currently exist in your registry using the following command: 
    registry list projects/$PROJECT/locations/global/artifacts/- --filter='mime_type.contains("ScoreDefinition")'
  • Every time the compute score command is invoked, it will fetch all the ScoreDefinitions in the project and compute Score artifacts based on the definitions which apply to the supplied spec.
  • Here is an explanation of what each field means in a ScoreDefinition and how the compute score command uses it. Let's consider the ScoreDefinition that we are uploading as part of this sample. 
    apiVersion: apigeeregistry/v1
kind: ScoreDefinition
metadata:
    name: apihub-lint-errors
data:
    display_name: "Lint Errors"
    description: "Number of lint errors found in conformance report"
    uri: "https://meta.stoplight.io/docs/spectral/4dec24461f3af-open-api-rules"
    uri_display_name: "Spectral rules"
    target_resource:
        pattern: "apis/-/versions/-/specs/-"
    score_formula:
        artifact:
            pattern: "$resource.spec/artifacts/conformance-apihub-styleguide"
        score_expression: "has(guidelineReportGroups[2].guidelineReports) ? sum(guidelineReportGroups[2].guidelineReports.map(r, has(r.ruleReportGroups[1].ruleReports) ? size(r.ruleReportGroups[1].ruleReports) : 0)) : 0"
    integer:
        min_value: 0
        max_value: 100
    • display_name, description, uri, uri_display_name: These are metadata fields which can be set to attach additional information to the definition. In the hosted version, this information is used to populate the UI.
    • target_resource: this defines the resource pattern on which this score definition can be applied. Target resource is determined with the combination of pattern + filter.
      • pattern: This can be any valid resource pattern. In this definition we use "apis/-/versions/-/specs/-", which means this definition will be used to calculate apihub-lint-errors score for all the specs in the registry.
      • filter: This is a CEL filter which can be applied on the pattern. For example, if we had a filter which looked like mime_type.contains("openapi"), then our definition would have been used for spec of type openapi only.
    • score_formula: This defines how the score will be computed. It defines what the score depends on and also the formula to calculate the score.
      • artifact: artifact is a combination of pattern and filter which should fetch a single artifact, the contents from this artifact will be used to compute the score. In this example, we fetch the conformance-apihub-styleguide artifact which is attached to the target resource, note the use of $resource.spec to define that the artifact is under the target resource's spec. If the expected artifact doesn't exists or failure to fetch it will result in a failure in score calculation.
      • score_expression: This is a CEL expression which will be applied on the contents of the artifact to generate a score value. Any error in the expression will result in a failure in score calculation.
    • rollup_formula: This is another way of defining the formula which is essentially a wrapper around multiple score_formulas. See this example for how it can be used.
    • interger: This defines the type of the generated score. The value generated by the score_expression should match the type defined here. In this case, the score_expression should always generate an integer value.
      • min_value: the lowest value this score can take
      • max_value: the highest value this score can take.
      • thresholds: you can also define thresholds which will be used to assign a Severity value to the score. Foe example on how to define thresholds, refer this example. The value that the score_expression generates should be within the min and max values defined here, if out of bounds, it is assigned a default Severity of ALERT
    • There is also an option to define boolean or percentage score types.
  • For more details on the fields, refer the proto definition.

How are ScoresCards calculated?

  • The calculation of ScoreCards depends on the existence of ScoreCardDefintion artifacts. These artifacts are stored at the project level and hence are applied to the whole project.
  • You can see what definitions currently exist in your registry using the following command: 
    registry list projects/$PROJECT/locations/global/artifacts/- --filter='mime_type.contains("ScoreCardDefinition")'
  • Every time the compute scorecard command is invoked, it will fetch all the ScoreDefinitions in the project and compute ScoreCard artifacts based on the definitions which apply to the supplied spec.
  • Here is an explanation of what each field means in a ScoreCardDefinition and how the compute scorecard command uses it. Let's consider the ScoreCardDefinition that we are uploading as part of this sample. 
    apiVersion: apigeeregistry/v1
kind: ScoreCardDefinition
metadata:
    name: lint-summary
data:
    display_name: "Lint Summary"
    description: "Summary of lint scores"
    target_resource:
        pattern: apis/-/versions/-/specs/-
    score_patterns:
    - $resource.spec/artifacts/score-lint-errors
    - $resource.spec/artifacts/score-lint-warnings
    - $resource.spec/artifacts/score-lint-error-percentage
    - $resource.spec/artifacts/score-lint-errors-exist
    • display_name, description: These are metadata fields which can be set to attach additional information to the definition. In the hosted version, this information is used to populate the UI.
    • target_resource: this defines the resource pattern on which this ScoreCard definition can be applied. Target resource is determined with the combination of pattern + filter.
      • pattern: This can be any valid resource pattern. In this definition we use "apis/-/versions/-/specs/-", which means this definition will be used to calculate apihub-lint-errors score for all the specs in the registry.
      • filter: This is a CEL filter which can be applied on the pattern. For example, if we had a filter which looked like mime_type.contains("openapi"), then our definition would have been used for spec of type openapi only.
    • score_patterns: This definition is quite simple in the sense that you have to just list the score artifacts you want to be included in you ScoreCard. Note the use of $resource.spec to define that the artifact is under the target resource's spec. We are listing four artifacts here which will be wrapped in the lint-summary ScoreCard.
  • For more details on the fields, refer the proto definition.