lsm/seaweedfs
1
0
Fork 0
mirror of https://github.com/seaweedfs/seaweedfs.git synced 2026-02-09 09:17:28 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity
Page: Filer Notification Webhook
Pages
AWS CLI with SeaweedFS AWS IAM CLI Actual Users Admin UI Amazon IAM API Amazon S3 API Applications Async Backup Async Filer Metadata Backup Async Replication to Cloud Async Replication to another Filer Benchmark SeaweedFS as a GlusterFS replacement Benchmarks from jinleileiking Benchmarks Cache Remote Storage Choosing a Filer Store Client Libraries Cloud Drive Architecture Cloud Drive Benefits Cloud Drive Quick Setup Cloud Monitoring Cloud Tier Components Configure Remote Storage Cryptography and FIPS Compliance Customize Filer Store Data Backup Data Structure for Large Files Deployment to Kubernetes and Minikube Directories and Files Docker Compose for S3 Docker Image Registry with SeaweedFS Environment Variables Erasure Coding for warm storage Error reporting to sentry FAQ FIO benchmark FUSE Mount Failover Master Server File Operations Quick Reference Filer Active Active cross cluster continuous synchronization Filer Cassandra Setup Filer Change Data Capture Filer Commands and Operations Filer Data Encryption Filer JWT Use Filer Metadata Events Filer Notification Webhook Filer Redis Setup Filer Server API Filer Setup Filer Store Replication Filer Stores Filer as a Key Large Value Store Gateway to Remote Object Storage Getting Started HDFS via S3 connector Hadoop Benchmark Hadoop Compatible File System Hardware Hobbyest Tinkerer scale on premises tutorial Home Independent Benchmarks Kafka to Kafka Gateway to SMQ to SQL Kubernetes Backups and Recovery with K8up Large File Handling Load Command Line Options from a file Master Server API Migrate to Filer Store Mount Remote Storage OIDC Integration Optimization Path Specific Configuration Path Specific Filer Store PostgreSQL compatible Server weed db Production Setup Pub Sub to SMQ to SQL Quick Start with weed mini Replication Run Blob Storage on Public Internet Run Presto on SeaweedFS S3 API Audit log S3 API Benchmark S3 API FAQ S3 Bucket Quota S3 CORS S3 Conditional Operations S3 Configuration S3 Credentials S3 Nginx Proxy S3 Object Lock and Retention S3 Object Versioning S3 Policy Variables S3 Rate Limiting S3 Table Bucket Commands S3 Table Bucket SQL Queries on Message Queue SQL Quick Reference SRV Service Discovery Seaweed Message Queue SeaweedFS Java Client SeaweedFS in Docker Swarm Security Configuration Security Overview Server Side Encryption SSE C Server Side Encryption SSE KMS Server Side Encryption Server Startup via Systemd Store file with a Time To Live Structured Data Lake with SMQ and SQL Super Large Directories System Metrics TUS Resumable Uploads TensorFlow with SeaweedFS Tiered Storage UrBackup with SeaweedFS Use Cases Volume Files Structure Volume Management Volume Server API WebDAV Words from SeaweedFS Users Worker fstab nodejs with Seaweed S3 rclone with SeaweedFS restic with SeaweedFS run HBase on SeaweedFS run Spark on SeaweedFS s3cmd with SeaweedFS weed shell
Clone
1
Filer Notification Webhook
chrislusf edited this page 2025-12-08 11:09:43 -08:00
Table of Contents

Filer Notification Webhook

The webhook notification feature allows SeaweedFS filers to send real-time file system events to external HTTP endpoints. This enables integration with external systems for monitoring, auditing, data processing pipelines, and event-driven workflows.

Overview

The webhook notification system sends HTTP POST requests containing file system event data (create, update, delete, rename operations) to a configured endpoint. The system includes features like retry logic, concurrent workers, event filtering, and authentication support.

Architecture: Push Model

Important: The webhook notification system uses a push model, where SeaweedFS actively sends events to your HTTP endpoint. This architecture is designed for low to moderate traffic scenarios where you need real-time event notifications for triggering actions.

When to Use Webhooks:

  • Real-time monitoring and alerting (low volume)
  • Triggering workflows on specific file events
  • Audit logging for compliance
  • Integration with external systems for selected directories
  • Development and testing environments

When NOT to Use Webhooks:

  • High-traffic production environments with thousands of events per second
  • Bulk file processing operations
  • Large-scale data synchronization
  • Scenarios requiring guaranteed message delivery order

For High-Traffic Scenarios, consider these alternatives:

  • Filer Metadata Events: Pull model using local event logs that can be consumed at your own pace
  • Message Queue Systems: Use Kafka, AWS SQS, or Google Pub/Sub notification backends for scalable event processing
  • Direct gRPC Subscription: Use the SubscribeMetadata RPC API for efficient streaming of metadata changes

The webhook system includes buffering (default 10,000 events) and retry logic, but under sustained high load, events may be dropped if the buffer fills up or if your webhook endpoint cannot keep up with the event rate.

Limitations and Considerations

Push Model Constraints

The webhook system operates as a push model where SeaweedFS actively pushes events to your endpoint. This has important implications:

Traffic Limitations:

  • Best suited for low to moderate traffic (< 100 events/second sustained)
  • Each event requires an HTTP round-trip to your endpoint
  • Network latency and endpoint processing time directly impact throughput
  • Under sustained high load, the internal buffer may fill up, causing events to be dropped

Delivery Guarantees:

  • At-least-once delivery: With retries enabled, events may be delivered more than once (implement idempotency)
  • No strict ordering: Events may arrive out of order, especially with retries
  • Best-effort delivery: Events may be lost if buffer overflows or all retries fail

Blocking Behavior:

  • Slow webhook endpoints can create backpressure on the filer
  • Failed endpoints with max retries can delay event processing
  • Consider setting reasonable timeout and retry limits

Alternatives for High-Traffic Scenarios

If you're experiencing or expecting high event volumes, consider:

  1. Kafka Notifications (notification.kafka): Industry-standard message queue with high throughput
  2. AWS SQS (notification.aws_sqs): Managed queue service with unlimited scaling
  3. Google Pub/Sub (notification.google_pub_sub): Managed pub/sub with global scale
  4. Pull-based Event Logs: Read from /topics/.system/log directory at your own pace (see Filer Metadata Events)
  5. Direct gRPC Subscription: Use SubscribeMetadata RPC for efficient streaming

Configuration

Basic Setup

Add the webhook configuration to your notification.toml file. This file should be placed in one of these locations (in descending priority):

  • ./notification.toml
  • $HOME/.seaweedfs/notification.toml
  • /etc/seaweedfs/notification.toml

Minimal Configuration Example

[notification.webhook]
enabled = true
endpoint = "https://your-server.com/webhook"

Complete Configuration Example

[notification.webhook]
enabled = true

# Required: The HTTP endpoint to receive webhook notifications
endpoint = "https://your-server.com/webhook"

# Optional: Bearer token for authentication
bearer_token = "your-secret-token-here"

# Optional: HTTP request timeout in seconds (default: 10, range: 1-300)
timeout_seconds = 10

# Optional: Maximum number of retry attempts (default: 3, range: 0-10)
max_retries = 3

# Optional: Initial backoff delay in seconds (default: 3, range: 1-60)
backoff_seconds = 3

# Optional: Maximum backoff delay in seconds (default: 30, range: backoff_seconds-300)
max_backoff_seconds = 30

# Optional: Number of concurrent worker threads (default: 5, range: 1-100)
workers = 5

# Optional: Internal buffer size for queued events (default: 10000, range: 100-1000000)
buffer_size = 10000

# Optional: Filter by event types (if empty, all events are sent)
# Valid values: "create", "update", "delete", "rename"
event_types = ["create", "delete"]

# Optional: Filter by path prefixes (if empty, all paths are monitored)
path_prefixes = ["/important", "/data"]

Configuration Parameters

Parameter Type Required Default Range Description
enabled boolean Yes false - Enable/disable webhook notifications
endpoint string Yes - Valid URL HTTP endpoint to receive webhook POST requests
bearer_token string No "" - Bearer token for Authorization header
timeout_seconds integer No 10 1-300 HTTP request timeout
max_retries integer No 3 0-10 Number of retry attempts on failure
backoff_seconds integer No 3 1-60 Initial backoff delay between retries
max_backoff_seconds integer No 30 backoff_seconds-300 Maximum backoff delay (exponential backoff)
workers integer No 5 1-100 Number of concurrent worker threads
buffer_size integer No 10000 100-1000000 Internal queue buffer size
event_types array No all create, update, delete, rename Filter events by type
path_prefixes array No all - Filter events by path prefix

Event Types

The webhook notification system supports four types of file system events:

1. Create Event

Triggered when a new file or directory is created.

  • Detection: new_entry is present, old_entry is null
  • Event Type: "create"

2. Update Event

Triggered when an existing file or directory is modified.

  • Detection: Both old_entry and new_entry are present, no path change
  • Event Type: "update"

3. Delete Event

Triggered when a file or directory is deleted.

  • Detection: old_entry is present, new_entry is null
  • Event Type: "delete"

4. Rename Event

Triggered when a file or directory is moved or renamed.

  • Detection: Both old_entry and new_entry are present, and new_parent_path is specified
  • Event Type: "rename"

Webhook Payload Format

HTTP Request Details

  • Method: POST
  • Content-Type: application/json
  • Authorization: Bearer {bearer_token} (if configured)

Payload Structure

{
  "key": "/path/to/file.txt",
  "event_type": "create",
  "message": {
    "old_entry": null,
    "new_entry": {
      "name": "file.txt",
      "is_directory": false,
      "attributes": {
        "file_size": 1024,
        "mtime": 1733616000,
        "file_mode": 420,
        "uid": 1000,
        "gid": 1000,
        "mime": "text/plain"
      },
      "chunks": [
        {
          "file_id": "3,01637037d6",
          "offset": 0,
          "size": 1024,
          "mtime": 1733616000
        }
      ]
    },
    "delete_chunks": false,
    "new_parent_path": "",
    "is_from_other_cluster": false
  }
}

Example Payloads

Create File Event

{
  "key": "/documents/report.pdf",
  "event_type": "create",
  "message": {
    "old_entry": null,
    "new_entry": {
      "name": "report.pdf",
      "is_directory": false,
      "attributes": {
        "file_size": 524288,
        "mtime": 1733616000,
        "file_mode": 420,
        "uid": 1000,
        "gid": 1000,
        "mime": "application/pdf"
      },
      "chunks": [
        {
          "file_id": "4,023f8a9c2e",
          "offset": 0,
          "size": 524288,
          "mtime": 1733616000
        }
      ]
    },
    "delete_chunks": false,
    "new_parent_path": ""
  }
}

Update File Event

{
  "key": "/documents/report.pdf",
  "event_type": "update",
  "message": {
    "old_entry": {
      "name": "report.pdf",
      "is_directory": false,
      "attributes": {
        "file_size": 524288,
        "mtime": 1733616000,
        "file_mode": 420,
        "uid": 1000,
        "gid": 1000,
        "mime": "application/pdf"
      }
    },
    "new_entry": {
      "name": "report.pdf",
      "is_directory": false,
      "attributes": {
        "file_size": 612352,
        "mtime": 1733617200,
        "file_mode": 420,
        "uid": 1000,
        "gid": 1000,
        "mime": "application/pdf"
      },
      "chunks": [
        {
          "file_id": "5,034b9d1a3f",
          "offset": 0,
          "size": 612352,
          "mtime": 1733617200
        }
      ]
    },
    "delete_chunks": true,
    "new_parent_path": ""
  }
}

Delete File Event

{
  "key": "/documents/old_file.txt",
  "event_type": "delete",
  "message": {
    "old_entry": {
      "name": "old_file.txt",
      "is_directory": false,
      "attributes": {
        "file_size": 2048,
        "mtime": 1733610000,
        "file_mode": 420,
        "uid": 1000,
        "gid": 1000,
        "mime": "text/plain"
      }
    },
    "new_entry": null,
    "delete_chunks": true,
    "new_parent_path": ""
  }
}

Rename/Move File Event

{
  "key": "/documents/old_name.txt",
  "event_type": "rename",
  "message": {
    "old_entry": {
      "name": "old_name.txt",
      "is_directory": false,
      "attributes": {
        "file_size": 1024,
        "mtime": 1733616000,
        "file_mode": 420,
        "uid": 1000,
        "gid": 1000,
        "mime": "text/plain"
      }
    },
    "new_entry": {
      "name": "new_name.txt",
      "is_directory": false,
      "attributes": {
        "file_size": 1024,
        "mtime": 1733616000,
        "file_mode": 420,
        "uid": 1000,
        "gid": 1000,
        "mime": "text/plain"
      }
    },
    "delete_chunks": false,
    "new_parent_path": "/archive"
  }
}

Create Directory Event

{
  "key": "/data/new_folder",
  "event_type": "create",
  "message": {
    "old_entry": null,
    "new_entry": {
      "name": "new_folder",
      "is_directory": true,
      "attributes": {
        "file_size": 0,
        "mtime": 1733616000,
        "file_mode": 493,
        "uid": 1000,
        "gid": 1000
      },
      "chunks": []
    },
    "delete_chunks": false,
    "new_parent_path": ""
  }
}

Event Filtering

Filter by Event Types

To receive only specific types of events, use the event_types parameter:

[notification.webhook]
enabled = true
endpoint = "https://your-server.com/webhook"
# Only receive create and delete events
event_types = ["create", "delete"]

Filter by Path Prefixes

To monitor only specific directories, use the path_prefixes parameter:

[notification.webhook]
enabled = true
endpoint = "https://your-server.com/webhook"
# Only monitor /important and /data directories
path_prefixes = ["/important", "/data"]

Combined Filtering

You can combine both filters:

[notification.webhook]
enabled = true
endpoint = "https://your-server.com/webhook"
# Only receive create/delete events from /important directory
event_types = ["create", "delete"]
path_prefixes = ["/important"]

Retry and Error Handling

The webhook system includes robust error handling:

  1. Automatic Retries: Failed requests are automatically retried up to max_retries times
  2. Exponential Backoff: Retry delays increase exponentially from backoff_seconds to max_backoff_seconds
  3. Dead Letter Queue: After exhausting retries, failed messages are logged for debugging
  4. Status Code Validation: Only 2xx status codes are considered successful

Example Retry Configuration

[notification.webhook]
enabled = true
endpoint = "https://your-server.com/webhook"
max_retries = 5
backoff_seconds = 2
max_backoff_seconds = 60

This configuration will retry up to 5 times with delays: 2s, 4s, 8s, 16s, 32s.

Performance Tuning

⚠️ Note: While you can tune these parameters, remember that webhooks use a push model best suited for low to moderate traffic. For high-traffic scenarios (>1000 events/second sustained), consider using Kafka, message queues, or the pull-based metadata event logs instead.

Concurrent Workers

Adjust the number of concurrent workers based on your webhook endpoint's capacity:

[notification.webhook]
enabled = true
endpoint = "https://your-server.com/webhook"
workers = 10  # Increase for higher throughput

Trade-offs: More workers increase throughput but also increase the load on your webhook endpoint and network connections.

Buffer Size

Increase buffer size for high-volume environments to prevent event loss during traffic bursts:

[notification.webhook]
enabled = true
endpoint = "https://your-server.com/webhook"
buffer_size = 50000  # Handle more concurrent events

Trade-offs: Larger buffers consume more memory and may delay detection of delivery failures. If events are being generated faster than they can be delivered, increasing the buffer only delays the inevitable - you need to either increase processing capacity or switch to a pull-based model.

Security Considerations

Authentication

Use bearer token authentication to secure your webhook endpoint:

[notification.webhook]
enabled = true
endpoint = "https://your-server.com/webhook"
bearer_token = "your-secret-token-here"

The token will be sent as: Authorization: Bearer your-secret-token-here

HTTPS

Always use HTTPS endpoints in production:

[notification.webhook]
enabled = true
endpoint = "https://your-server.com/webhook"  # Use HTTPS

Webhook Receiver Validation

Your webhook receiver should:

  1. Validate the bearer token (if configured)
  2. Validate request content type is application/json
  3. Parse and validate JSON payload structure
  4. Respond with 2xx status code for successful processing
  5. Implement idempotency to handle potential duplicate events

Example Webhook Receiver (Node.js/Express)

const express = require('express');
const app = express();

app.use(express.json());

app.post('/webhook', (req, res) => {
  // Validate bearer token
  const authHeader = req.headers.authorization;
  const expectedToken = 'Bearer your-secret-token-here';
  
  if (authHeader !== expectedToken) {
    return res.status(401).json({ error: 'Unauthorized' });
  }

  // Process webhook payload
  const { key, event_type, message } = req.body;
  
  console.log(`Received ${event_type} event for: ${key}`);
  
  // Process based on event type
  switch (event_type) {
    case 'create':
      handleCreate(key, message);
      break;
    case 'update':
      handleUpdate(key, message);
      break;
    case 'delete':
      handleDelete(key, message);
      break;
    case 'rename':
      handleRename(key, message);
      break;
  }

  // Return success response
  res.status(200).json({ success: true });
});

app.listen(3000, () => {
  console.log('Webhook receiver listening on port 3000');
});

Example Webhook Receiver (Python/Flask)

from flask import Flask, request, jsonify

app = Flask(__name__)

EXPECTED_TOKEN = "your-secret-token-here"

@app.route('/webhook', methods=['POST'])
def webhook():
    # Validate bearer token
    auth_header = request.headers.get('Authorization')
    if auth_header != f'Bearer {EXPECTED_TOKEN}':
        return jsonify({'error': 'Unauthorized'}), 401
    
    # Parse webhook payload
    data = request.json
    key = data.get('key')
    event_type = data.get('event_type')
    message = data.get('message')
    
    print(f"Received {event_type} event for: {key}")
    
    # Process based on event type
    if event_type == 'create':
        handle_create(key, message)
    elif event_type == 'update':
        handle_update(key, message)
    elif event_type == 'delete':
        handle_delete(key, message)
    elif event_type == 'rename':
        handle_rename(key, message)
    
    # Return success response
    return jsonify({'success': True}), 200

if __name__ == '__main__':
    app.run(host='0.0.0.0', port=3000)

Troubleshooting

Enable Debug Logging

Check SeaweedFS logs for webhook-related errors:

weed filer -v=1

Common Issues

  1. Webhook not receiving events

    • Verify enabled = true in configuration
    • Check endpoint URL is correct and accessible
    • Verify filer is using the notification.toml file
    • Check event/path filters aren't blocking events

  2. Authentication failures

    • Verify bearer_token matches on both sides
    • Check Authorization header format

  3. Timeout errors

    • Increase timeout_seconds
    • Optimize webhook receiver response time
    • Check network connectivity

  4. Events being dropped

    • Increase buffer_size
    • Increase workers for higher throughput
    • Check dead letter queue logs

  5. Webhook endpoint receiving duplicate events

    • This is expected behavior with retry logic
    • Implement idempotency in your webhook receiver

  6. Consistent high latency or event backlog

    • Check if event rate exceeds webhook capacity
    • Monitor buffer utilization in logs
    • Consider migrating to Kafka, SQS, or pull-based event logs for higher throughput
    • Webhooks are a push model designed for low-moderate traffic; high sustained traffic requires alternative architectures

Monitoring

Monitor webhook health through logs:

# Watch for failed webhook deliveries
weed filer -v=1 | grep webhook

# Look for dead letter queue messages (failed after all retries)
weed filer -v=1 | grep "dead letter"

Related Documentation

Use Cases

Appropriate Webhook Use Cases (Low-Moderate Traffic)

  1. Real-time Alerting: Send notifications to Slack, email, or monitoring systems for critical file events
  2. Selective Audit Logging: Track file system changes for specific sensitive directories
  3. Triggered Workflows: Start business processes when specific files are uploaded (e.g., invoice processing)
  4. Development/Test Environments: Real-time event monitoring during development
  5. Configuration Change Detection: Monitor configuration directories for changes
  6. Compliance Notifications: Alert on access or modifications to regulated data
  7. Backup Triggers: Trigger backups for specific critical files or directories

Consider Alternatives For (High Traffic)

  1. Large-scale Search Indexing: Use Kafka → Elasticsearch pipeline for high-volume indexing
  2. Bulk Data Processing: Use pull-based event logs or Kafka for processing thousands of files
  3. Content Distribution at Scale: Use Kafka or message queues for reliable high-volume sync
  4. Data Lake Integration: Use Kafka or direct event log consumption for streaming at scale
  5. High-frequency Monitoring: Use pull-based metrics or dedicated monitoring integrations

Rule of Thumb: If you're processing more than 50-100 events per second sustained, or if you have large batch operations, webhooks are likely not the right tool. Use Kafka, message queues, or pull-based event logs instead.

References

Introduction

API

Configuration

Filer

Filer Stores

Management

Advanced Filer Configurations

FUSE Mount

WebDAV

Cloud Drive

AWS S3 API

S3 Table Bucket

S3 Authentication & IAM

Server-Side Encryption

S3 Client Tools

Machine Learning

HDFS

Replication and Backup

Metadata Change Events

Messaging

Use Cases

Operations

Advanced

Security

Misc Use Case Examples