Add new retry policy options (#73)

slinkydeveloper · web-flow · commit 5e924a6c4490 · 2025-09-04T14:58:08.000+02:00
diff --git a/endpoint_manifest_schema.json b/endpoint_manifest_schema.json
@@ -24,6 +24,11 @@
       "maximum": 2147483647,
       "description": "Maximum supported protocol version"
     },
+    "lambdaCompression": {
+      "type": "string",
+      "enum": ["zstd"],
+      "description": "Compression used when the endpoint is a Lambda. This is unsupported if the endpoint is a regular HTTP endpoint."
+    },
     "services": {
       "type": "array",
       "items": {
@@ -175,6 +180,33 @@
                   "type": "boolean",
                   "description": "If true, the service cannot be invoked from the HTTP nor Kafka ingress."
                 },
+                "retryPolicyInitialInterval":  {
+                  "type": "integer",
+                  "minimum": 0,
+                  "description": "Retry policy initial interval, expressed in milliseconds."
+                },
+                "retryPolicyMaxInterval":  {
+                  "type": "integer",
+                  "minimum": 0,
+                  "description": "Retry policy max interval, expressed in milliseconds."
+                },
+                "retryPolicyMaxAttempts":  {
+                  "type": "integer",
+                  "minimum": 0,
+                  "description": "Retry policy max attempts."
+                },
+                "retryPolicyExponentiationFactor":  {
+                  "type": "number",
+                  "description": "Retry policy exponentiation factor."
+                },
+                "retryPolicyOnMaxAttempts":  {
+                  "title": "RetryPolicyOnMaxAttempts",
+                  "enum": [
+                    "PAUSE",
+                    "KILL"
+                  ],
+                  "description": "Retry policy behavior on max attempts."
+                },
                 "metadata": {
                   "type": "object",
                   "description": "Custom metadata of this handler definition. This metadata is shown on the Admin API when querying the service/handler definition.",
@@ -217,6 +249,33 @@
             "type": "boolean",
             "description": "If true, the service cannot be invoked from the HTTP nor Kafka ingress."
           },
+          "retryPolicyInitialInterval":  {
+            "type": "integer",
+            "minimum": 0,
+            "description": "Retry policy initial interval, expressed in milliseconds."
+          },
+          "retryPolicyMaxInterval":  {
+            "type": "integer",
+            "minimum": 0,
+            "description": "Retry policy max interval, expressed in milliseconds."
+          },
+          "retryPolicyMaxAttempts":  {
+            "type": "integer",
+            "minimum": 0,
+            "description": "Retry policy max attempts."
+          },
+          "retryPolicyExponentiationFactor":  {
+            "type": "number",
+            "description": "Retry policy exponentiation factor."
+          },
+          "retryPolicyOnMaxAttempts":  {
+            "title": "RetryPolicyOnMaxAttempts",
+            "enum": [
+              "PAUSE",
+              "KILL"
+            ],
+            "description": "Retry policy behavior on max attempts."
+          },
           "metadata": {
             "type": "object",
             "description": "Custom metadata of this service definition. This metadata is shown on the Admin API when querying the service definition.",
diff --git a/macros/src/gen.rs b/macros/src/gen.rs
@@ -230,6 +230,11 @@ impl<'a> ServiceGenerator<'a> {
                     workflow_completion_retention: None,
                     enable_lazy_state: None,
                     ingress_private: None,
+                    retry_policy_initial_interval: None,
+                    retry_policy_max_interval: None,
+                    retry_policy_max_attempts: None,
+                    retry_policy_exponentiation_factor: None,
+                    retry_policy_on_max_attempts: None,
                 }
             }
         });
@@ -252,6 +257,11 @@ impl<'a> ServiceGenerator<'a> {
                         idempotency_retention: None,
                         enable_lazy_state: None,
                         ingress_private: None,
+                        retry_policy_initial_interval: None,
+                        retry_policy_max_interval: None,
+                        retry_policy_max_attempts: None,
+                        retry_policy_exponentiation_factor: None,
+                        retry_policy_on_max_attempts: None,
                     }
                 }
             }
diff --git a/src/discovery.rs b/src/discovery.rs
@@ -60,6 +60,16 @@ impl Service {
         self.journal_retention = options.journal_retention.map(|d| d.as_millis() as u64);
         self.enable_lazy_state = options.enable_lazy_state;
         self.ingress_private = options.ingress_private;
+        // Retry policy
+        self.retry_policy_initial_interval = options
+            .retry_policy_initial_interval
+            .map(|d| d.as_millis() as u64);
+        self.retry_policy_exponentiation_factor = options.retry_policy_exponentiation_factor;
+        self.retry_policy_max_interval = options
+            .retry_policy_max_interval
+            .map(|d| d.as_millis() as u64);
+        self.retry_policy_max_attempts = options.retry_policy_max_attempts;
+        self.retry_policy_on_max_attempts = options.retry_policy_on_max_attempts;
 
         // Apply handler specific options
         for (handler_name, handler_options) in options.handler_options {
@@ -86,5 +96,15 @@ impl Handler {
             options.workflow_retention.map(|d| d.as_millis() as u64);
         self.enable_lazy_state = options.enable_lazy_state;
         self.ingress_private = options.ingress_private;
+        // Retry policy
+        self.retry_policy_initial_interval = options
+            .retry_policy_initial_interval
+            .map(|d| d.as_millis() as u64);
+        self.retry_policy_exponentiation_factor = options.retry_policy_exponentiation_factor;
+        self.retry_policy_max_interval = options
+            .retry_policy_max_interval
+            .map(|d| d.as_millis() as u64);
+        self.retry_policy_max_attempts = options.retry_policy_max_attempts;
+        self.retry_policy_on_max_attempts = options.retry_policy_on_max_attempts;
     }
 }
diff --git a/src/endpoint/builder.rs b/src/endpoint/builder.rs
@@ -16,6 +16,12 @@ pub struct ServiceOptions {
     pub(crate) journal_retention: Option<Duration>,
     pub(crate) enable_lazy_state: Option<bool>,
     pub(crate) ingress_private: Option<bool>,
+    // Retry policy options
+    pub(crate) retry_policy_initial_interval: Option<Duration>,
+    pub(crate) retry_policy_exponentiation_factor: Option<f64>,
+    pub(crate) retry_policy_max_interval: Option<Duration>,
+    pub(crate) retry_policy_max_attempts: Option<u64>,
+    pub(crate) retry_policy_on_max_attempts: Option<crate::discovery::RetryPolicyOnMaxAttempts>,
     pub(crate) handler_options: HashMap<String, HandlerOptions>,
 
     _priv: (),
@@ -89,6 +95,53 @@ impl ServiceOptions {
         self
     }
 
+    /// Initial delay before the first retry attempt.
+    ///
+    /// If unset, the server default is used.
+    pub fn retry_policy_initial_interval(mut self, interval: Duration) -> Self {
+        self.retry_policy_initial_interval = Some(interval);
+        self
+    }
+
+    /// Exponential backoff multiplier used to compute the next retry delay.
+    ///
+    /// For attempt n, the next delay is roughly previousDelay * exponentiationFactor,
+    /// capped by retry_policy_max_interval if set.
+    pub fn retry_policy_exponentiation_factor(mut self, factor: f64) -> Self {
+        self.retry_policy_exponentiation_factor = Some(factor);
+        self
+    }
+
+    /// Upper bound for the computed retry delay.
+    pub fn retry_policy_max_interval(mut self, interval: Duration) -> Self {
+        self.retry_policy_max_interval = Some(interval);
+        self
+    }
+
+    /// Maximum number of attempts before giving up retrying.
+    ///
+    /// The initial call counts as the first attempt; retries increment the count by 1.
+    pub fn retry_policy_max_attempts(mut self, attempts: u64) -> Self {
+        self.retry_policy_max_attempts = Some(attempts);
+        self
+    }
+
+    /// Behavior when the configured retry_policy_max_attempts is reached: pause the invocation.
+    ///
+    /// The invocation enters the paused state and can be manually resumed from the CLI or UI.
+    pub fn retry_policy_pause_on_max_attempts(mut self) -> Self {
+        self.retry_policy_on_max_attempts = Some(crate::discovery::RetryPolicyOnMaxAttempts::Pause);
+        self
+    }
+
+    /// Behavior when the configured retry_policy_max_attempts is reached: kill the invocation.
+    ///
+    /// The invocation will be marked as failed and will not be retried unless explicitly re-triggered.
+    pub fn retry_policy_kill_on_max_attempts(mut self) -> Self {
+        self.retry_policy_on_max_attempts = Some(crate::discovery::RetryPolicyOnMaxAttempts::Kill);
+        self
+    }
+
     /// Handler-specific options.
     ///
     /// *Note*: If you provide a handler name for a non-existing handler, binding the service will *panic!*.
@@ -109,6 +162,12 @@ pub struct HandlerOptions {
     pub(crate) journal_retention: Option<Duration>,
     pub(crate) ingress_private: Option<bool>,
     pub(crate) enable_lazy_state: Option<bool>,
+    // Retry policy options
+    pub(crate) retry_policy_initial_interval: Option<Duration>,
+    pub(crate) retry_policy_exponentiation_factor: Option<f64>,
+    pub(crate) retry_policy_max_interval: Option<Duration>,
+    pub(crate) retry_policy_max_attempts: Option<u64>,
+    pub(crate) retry_policy_on_max_attempts: Option<crate::discovery::RetryPolicyOnMaxAttempts>,
 
     _priv: (),
 }
@@ -183,6 +242,53 @@ impl HandlerOptions {
         self.enable_lazy_state = Some(enable);
         self
     }
+
+    /// Initial delay before the first retry attempt.
+    ///
+    /// If unset, the server default is used.
+    pub fn retry_policy_initial_interval(mut self, interval: Duration) -> Self {
+        self.retry_policy_initial_interval = Some(interval);
+        self
+    }
+
+    /// Exponential backoff multiplier used to compute the next retry delay.
+    ///
+    /// For attempt n, the next delay is roughly previousDelay * exponentiationFactor,
+    /// capped by retry_policy_max_interval if set.
+    pub fn retry_policy_exponentiation_factor(mut self, factor: f64) -> Self {
+        self.retry_policy_exponentiation_factor = Some(factor);
+        self
+    }
+
+    /// Upper bound for the computed retry delay.
+    pub fn retry_policy_max_interval(mut self, interval: Duration) -> Self {
+        self.retry_policy_max_interval = Some(interval);
+        self
+    }
+
+    /// Maximum number of attempts before giving up retrying.
+    ///
+    /// The initial call counts as the first attempt; retries increment the count by 1.
+    pub fn retry_policy_max_attempts(mut self, attempts: u64) -> Self {
+        self.retry_policy_max_attempts = Some(attempts);
+        self
+    }
+
+    /// Behavior when the configured retry_policy_max_attempts is reached: pause the invocation.
+    ///
+    /// The invocation enters the paused state and can be manually resumed from the CLI or UI.
+    pub fn retry_policy_pause_on_max_attempts(mut self) -> Self {
+        self.retry_policy_on_max_attempts = Some(crate::discovery::RetryPolicyOnMaxAttempts::Pause);
+        self
+    }
+
+    /// Behavior when the configured retry_policy_max_attempts is reached: kill the invocation.
+    ///
+    /// The invocation will be marked as failed and will not be retried unless explicitly re-triggered.
+    pub fn retry_policy_kill_on_max_attempts(mut self) -> Self {
+        self.retry_policy_on_max_attempts = Some(crate::discovery::RetryPolicyOnMaxAttempts::Kill);
+        self
+    }
 }
 
 /// Builder for [`Endpoint`]
diff --git a/src/endpoint/mod.rs b/src/endpoint/mod.rs
@@ -37,6 +37,7 @@ const X_RESTATE_SERVER_VALUE: HeaderValue =
     HeaderValue::from_static(concat!("restate-sdk-rust/", env!("CARGO_PKG_VERSION")));
 const DISCOVERY_CONTENT_TYPE_V2: &str = "application/vnd.restate.endpointmanifest.v2+json";
 const DISCOVERY_CONTENT_TYPE_V3: &str = "application/vnd.restate.endpointmanifest.v3+json";
+const DISCOVERY_CONTENT_TYPE_V4: &str = "application/vnd.restate.endpointmanifest.v4+json";
 
 type BoxError = Box<dyn std::error::Error + Send + Sync + 'static>;
 
@@ -301,7 +302,10 @@ impl Endpoint {
         let mut version = 2;
         let mut content_type = DISCOVERY_CONTENT_TYPE_V2;
         if let Some(accept) = accept_header {
-            if accept.contains(DISCOVERY_CONTENT_TYPE_V3) {
+            if accept.contains(DISCOVERY_CONTENT_TYPE_V4) {
+                version = 4;
+                content_type = DISCOVERY_CONTENT_TYPE_V4;
+            } else if accept.contains(DISCOVERY_CONTENT_TYPE_V3) {
                 version = 3;
                 content_type = DISCOVERY_CONTENT_TYPE_V3;
             } else if accept.contains(DISCOVERY_CONTENT_TYPE_V2) {
@@ -324,6 +328,7 @@ impl Endpoint {
             }],
             Bytes::from(
                 serde_json::to_string(&crate::discovery::Endpoint {
+                    lambda_compression: None,
                     max_protocol_version: 5,
                     min_protocol_version: 5,
                     protocol_mode: Some(match protocol_mode {
@@ -341,6 +346,30 @@ impl Endpoint {
 
     fn validate_discovery_request(&self, version: usize) -> Result<(), ErrorInner> {
         // Validate that new discovery fields aren't used with older protocol versions
+        if version <= 3 {
+            // Check for new discovery fields in version 3 that shouldn't be used in version 2 or lower
+            for service in &self.0.discovery_services {
+                if service.retry_policy_initial_interval.is_some()
+                    || service.retry_policy_exponentiation_factor.is_some()
+                    || service.retry_policy_max_interval.is_some()
+                    || service.retry_policy_max_attempts.is_some()
+                    || service.retry_policy_on_max_attempts.is_some()
+                {
+                    Err(ErrorInner::FieldRequiresMinimumVersion("retry_policy", 4))?;
+                }
+
+                for handler in &service.handlers {
+                    if handler.retry_policy_initial_interval.is_some()
+                        || handler.retry_policy_exponentiation_factor.is_some()
+                        || handler.retry_policy_max_interval.is_some()
+                        || handler.retry_policy_max_attempts.is_some()
+                        || handler.retry_policy_on_max_attempts.is_some()
+                    {
+                        Err(ErrorInner::FieldRequiresMinimumVersion("retry_policy", 4))?;
+                    }
+                }
+            }
+        }
         if version <= 2 {
             // Check for new discovery fields in version 3 that shouldn't be used in version 2 or lower
             for service in &self.0.discovery_services {

Original file line number	Diff line number	Diff line change
`@@ -230,6 +230,11 @@ impl<'a> ServiceGenerator<'a> {`
`230`	`230`	`workflow_completion_retention: None,`
`231`	`231`	`enable_lazy_state: None,`
`232`	`232`	`ingress_private: None,`
	`233`	`+ retry_policy_initial_interval: None,`
	`234`	`+ retry_policy_max_interval: None,`
	`235`	`+ retry_policy_max_attempts: None,`
	`236`	`+ retry_policy_exponentiation_factor: None,`
	`237`	`+ retry_policy_on_max_attempts: None,`
`233`	`238`	`}`
`234`	`239`	`}`
`235`	`240`	`});`
`@@ -252,6 +257,11 @@ impl<'a> ServiceGenerator<'a> {`
`252`	`257`	`idempotency_retention: None,`
`253`	`258`	`enable_lazy_state: None,`
`254`	`259`	`ingress_private: None,`
	`260`	`+ retry_policy_initial_interval: None,`
	`261`	`+ retry_policy_max_interval: None,`
	`262`	`+ retry_policy_max_attempts: None,`
	`263`	`+ retry_policy_exponentiation_factor: None,`
	`264`	`+ retry_policy_on_max_attempts: None,`
`255`	`265`	`}`
`256`	`266`	`}`
`257`	`267`	`}`