Resource Provider Interface
Note that the resource provider interface is still in development.
The interface between a resource provider and NixOps consist of expectations about:
- The Nix expression that builds the provider and its output
- The process that runs the provider
- A JSON-lines protocol between the provider and NixOps
Nix Expression
Resource providers are defined as Nix modules that declare their resource types. The provider module should include metadata for documentation generation and specify the resource types it supports.
For detailed information about all provider options, see the Provider Configuration Reference.
For rendering provider documentation, see lib.renderProviderDocs.
Process
NixOps launches the resource provider process built in the previous step.
It communicates with the provider over the standard input and output streams using a JSON-lines protocol. Standard error is used for logging, and is line-buffered.
Since the protocol is still in development, it is recommended to use the ../nixops4-resource crate.
Protocol
JSON-lines is a textual protocol where each line is a JSON value that is rendered without line breaks. Each line must contain a single JSON value, and be terminated with a newline character.
We will refer to the JSON value that takes the line as a message.
Messages going from NixOps to the provider are requests, and messages going from the provider to NixOps are responses.
The content of the messages is specified in the resource schema.
Message Flow
Each request-response exchange follows this pattern:
- NixOps sends a single request message to the provider's stdin
- The provider processes the request and sends a single response message to stdout
The provider may write diagnostic messages to stderr at any time.
Request and Response Structure
Both requests and responses use a wrapper object where the key indicates the message type (see Request and Response):
// Request
{
"createResourceRequest": {
"type": "memo",
"inputProperties": { "initialize_with": "hello" },
"isStateful": true
}
}
// Response
{
"createResourceResponse": {
"outputProperties": { "value": "hello" }
}
}
Operations
The protocol supports the following operations:
Create: Provisions a new resource. The request includes:
type: The resource type identifierinputProperties: Configuration values for the resourceisStateful: Whether state persistence will be provided
See CreateResourceRequest and CreateResourceResponse in the schema documentation.
Update: Modifies an existing stateful resource. The request includes:
resource: The current resource state (type, input properties, and output properties)inputProperties: New configuration values
See UpdateResourceRequest and UpdateResourceResponse in the schema documentation.
State Operations
Resources that provide state storage implement additional operations:
State Read: Retrieves the complete state managed by a state resource. The request includes:
resource: The state resource (type, input properties, and output properties)
The response contains the full state as a JSON object representing all managed resources.
State Event: Records a change event to the state. The request includes:
resource: The state resourceevent: The operation that produced this change (e.g., "create", "update", "destroy")nixopsVersion: The version of NixOps that produced this eventpatch: JSON Patch operations to apply to the state
These operations use JSON Patch (RFC 6902) to track incremental state changes, enabling efficient state updates and historical tracking.
State Persistence
The isStateful flag in create requests indicates whether the resource will have access to persistent state storage. Resource types that require state must validate this flag and fail if state persistence is not available.
State resources manage the persistence layer for stateful resources, providing operations to read the current state and record state changes as JSON Patch events.