Active Peer
Description — Couchbase Lite’s Peer-to-Peer Synchronization enables edge devices to synchronize securely without consuming centralized cloud-server resources
Abstract — How to set up a Replicator to connect with a Listener and replicate changes using peer-to-peer sync
Related Content — API Reference | Passive Peer | Active Peer
Code Snippets
All code examples are indicative only.
They demonstrate the basic concepts and approaches to using a feature.
Use them as inspiration and adapt these examples to best practice when developing applications for your platform.
|
Introduction
This content provides sample code and configuration examples covering the implementation of Peer-to-Peer Sync over websockets. Specifically it covers the implementation of an Active Peer.
This active peer (also referred to as a client and-or a replicator) will initiate connection with a Passive Peer (also referred to as a server and-or listener) and participate in the replication of database changes to bring both databases into sync.
Subsequent sections provide additional details and examples for the main configuration options.
Secure Storage
The use of TLS, its associated keys and certificates requires using secure storage to minimize the chances of a security breach.
The implementation of this storage differs from platform to platform — see Using secure storage.
|
Configuration Summary
You should configure and initialize a replicator for each Couchbase Lite database instance you want to sync. Example 1 shows the initialization and configuration process.
// . . . preceding code. for example . . .
private static ListenerToken _thisListenerToken;
var Database thisDB;
// . . . other code . . .
// initialize the replicator configuration
var thisUrl = new URLEndpoint("wss://listener.com:4984/otherDB"); (1)
var config = new ReplicatorConfiguration(thisDB, thisUrl);
// Set replicator type
thisConfig.ReplicatorType = ReplicatorType.PushAndPull;
// Configure Sync Mode
thisConfig.Continuous = true; // default value
// Configure Server Security -- only accept self-signed certs
thisConfig.AcceptOnlySelfSignedServerCertificate = true; (2)
// Configure Client Security (3)
// Configure basic auth using user credentials
thisConfig.Authenticator = new BasicAuthenticator("Our Username", "Our Password");
/* Optionally set a conflict resolver call back */ (4)
// Use built-in resolver
thisConfig.ConflictResolver = new LocalWinConflictResolver(); //
// optionally use custom resolver
thisConfig.ConflictResolver = new ConflictResolver(
(conflict) => {
/* define resolver function */
}
); //
// Initialize and start a replicator
// Initialize replicator with configuration data
var thisReplicator = new Replicator(thisConfig); (5)
//Optionally add a change listener (6)
_thisListenerToken =
thisReplicator.AddChangeListener((sender, args) =>
{
if (args.Status.Activity == ReplicatorActivityLevel.Stopped) {
Console.WriteLine("Replication stopped");
}
});
// Start replicator
thisReplicator.Start(); (7)
1 | Configure how the client will authenticate the server. Here we say connect only to servers presenting a self-signed certificate. By default, clients accept only servers presenting certificates that can be verified using the OS bundled Root CA Certificates — see: Authenticating the Listener. |
2 | Configure the credentials the client will present to the server. Here we say to provide Basic Authentication credentials. Other options are available — see: Example 7. |
3 | Configure how the replication should perform Conflict Resolution. |
4 | Initialize the replicator using your configuration object. |
5 | Register an observer, which will notify you of changes to the replication status. |
6 | Start the replicator. |
API References
You can find C#.Net API References here.
Device Discovery
This phase is optional: If the listener is initialized on a well known URL endpoint (for example, a static IP Address or well known DNS address) then you can configure active peers to connect to those.
Prior to connecting with a listener you may execute a peer discovery phase to dynamically discover peers.
Configure Replicator
- In this section
-
Configure Target | Sync Mode | Retry Configuration | Authenticating the Listener | Client Authentication
Configure Target
Use the Initialize and define the replication configuration with local and remote database locations using the ReplicatorConfiguration object.
The constructor provides:
-
the name of the local database to be sync’d
-
the server’s URL (including the port number and the name of the remote database to sync with)
It is expected that the app will identify the IP address and URL and append the remote database name to the URL endpoint, producing for example:
wss://10.0.2.2:4984/travel-sample
The URL scheme for web socket URLs uses
ws:
(non-TLS) orwss:
(SSL/TLS) prefixes.
// initialize the replicator configuration
var thisUrl = new URLEndpoint("wss://l10.0.2.2:4984/anotherDB"); (1)
var config = new ReplicatorConfiguration(thisDB, thisUrl);
1 | Note use of the scheme prefix (wss://
to ensure TLS encryption — strongly recommended in production — or ws:// ) |
Sync Mode
Here we define the direction and type of replication we want to initiate.
We use ReplicatorConfiguration
class’s ReplicatorType and
Continuous
parameters, to tell the replicator:
-
The type (or direction) of the replication:
pushAndPull
;pull
;push
-
The replication mode, that is either of:
-
Continuous — remaining active indefinitely to replicate changed documents (
continuous=true
). -
Ad-hoc — a one-shot replication of changed documents (
continuous=false
).
-
// Set replicator type
thisConfig.ReplicatorType = ReplicatorType.PushAndPull;
// Configure Sync Mode
thisConfig.Continuous = true; // default value
Unless there is a solid use-case not to, always initiate a single This prevents the replications generating the same checkpoint |
Retry Configuration
Couchbase Lite for C#.Net’s replication retry logic assures a resilient connection.
The replicator minimizes the chance and impact of dropped connections by maintaining a heartbeat; essentially pinging the listener at a configurable interval to ensure the connection remains alive.
In the event it detects a transient error, the replicator will attempt to reconnect, stopping only when the connection is re-established, or the number of retries exceeds the retry limit (9 times for a single-shot replication and unlimited for a continuous replication).
On each retry the interval between attempts is increased exponentially (exponential backoff) up to the maximum wait time limit (5 minutes).
The REST API provides configurable control over this replication retry logic using a set of configiurable properties — see: Table 1.
Property |
Use cases |
Description |
---|---|---|
|
The interval (in seconds) between the heartbeat pulses. Default: The replicator pings the listener every 300 seconds. |
|
Change this to limit or extend the number of retry attempts. |
The maximum number of retry attempts
|
|
Change this to adjust the interval between retries. |
The maximum interval between retry attempts Whilst you can configure the maximum permitted wait time, each individual interval is calculated by the replicator’s exponential backoff algorithm and is not configurable.
|
When necessary you can adjust any or all of those configurable values — see: Example 4 for how to do this.
var url = new Uri("ws://localhost:4984/mydatabase");
var target = new URLEndpoint(url);
var config = new ReplicatorConfiguration(database, target);
// other config as required . . .
config.Heartbeat = TimeSpan.FromSeconds(120); // (1)
config.Maxattempts = 20; // (2)
config.MaxAttemptWaitTime = TimeSpan.FromSeconds(600); // (3)
// other config as required . . .
var repl = new Replicator(config);
1 | Here we use Heartbeat() to set the required interval (in seconds) between the heartbeat pulses |
2 | Here we use MaxAttempts() to set the required number of retry attempts |
3 | Here we use MaxAttemptWaitTime() to set the required interval between retry attempts. |
Authenticating the Listener
Define the credentials the your app (the client) is expecting to receive from the server (listener) in order to ensure that the server is one it is prepared to interact with.
Note that the client cannot authenticate the server if TLS is turned off. When TLS is enabled (Sync Gateway’s default) the client must authenticate the server. If the server cannot provide acceptable credentials then the connection will fail.
Use ReplicatorConfiguration
properties AcceptOnlySelfSignedServerCertificate and PinnedServerCertificate, to tell the replicator how to verify server-supplied TLS server certificates.
-
If there is a pinned certificate, nothing else matters, the server cert must exactly match the pinned certificate.
-
If there are no pinned certs and AcceptOnlySelfSignedServerCertificate is
true
then any self-signed certificate is accepted. Certificates that are not self signed are rejected, no matter who signed them. -
If there are no pinned certificates and AcceptOnlySelfSignedServerCertificate is
false
(default), the client validates the server’s certificates against the system CA certificates. The server must supply a chain of certificates whose root is signed by one of the certificates in the system CA bundle.
-
CA Cert
-
Self Signed Cert
-
Pinned Certificate
Set the client to expect and accept only CA attested certificates.
// Configure Server Security -- only accept CA certs
thisConfig.AcceptOnlySelfSignedServerCertificate = false; (1)
1 | This is the default. Only certificate chains with roots signed by a trusted CA are allowed. Self signed certificates are not allowed. |
Set the client to expect and accept only self-signed certificates
// Configure Server Security -- only accept self-signed certs
thisConfig.AcceptOnlySelfSignedServerCertificate = true; (1)
1 | Set this to true to accept any self signed cert.
Any certificates that are not self-signed are rejected. |
Set the client to expect and accept only a pinned certificate.
// Only CA Certs accepted
thisConfig.AcceptOnlySelfSignedServerCertificate =
false; (1)
var thisCert =
new X509Certificate2(caData); (2)
thisConfig.PinnedServerCertificate =
thisCert; (3)
1 | Configure to accept only CA certs |
2 | Configure the pinned certificate using data from the byte array cert |
3 | Set the certificate to be compared with that provided by the server |
Client Authentication
Here we define the credentials that the client can present to the server if prompted to do so in order that the server can authenticate it.
We use ReplicatorConfiguration's Authenticator method to define the authentication method to the replicator.
Basic Authentication
Use the BasicAuthenticator
to supply basic authentication credentials (username and password).
This example shows basic authentication using user name and password:
// Configure basic auth using user credentials
thisConfig.Authenticator = new BasicAuthenticator("Our Username", "Our Password");
// Configure basic auth using user credentials
thisConfig.Authenticator = new BasicAuthenticator("Our Username", "Our Password");
Certificate Authentication
Use the ClientCertificateAuthenticator
to configure the client TLS certificates to be presented to the server, on connection.
This applies only to the URLEndpointListener.
The server (listener) must have disableTLS set false and have a ClientCertificateAuthenticator configured, or it will never ask for this client’s certificate.
|
The certificate to be presented to the server will need to be signed by the root certificates or be valid based on the authentication callback set to the listener via ListenerCertificateAuthenticator.
This example shows client certificate authentication using an identity from secure storage.
// Client identity
thisIdentity =
TLSIdentity.ImportIdentity(_store,
clientData,
"123",
"CBL-Client-Cert",
null); (1)
thisConfig.Authenticator =
new ClientCertificateAuthenticator(thisIdentity); (2)
1 | Get an identity from secure storage and create a TLS Identity object |
2 | Set the authenticator to ClientCertificateAuthenticator and configure it to use the retrieved identity |
Initialize Replicator
Use the Replicator
class’s (ReplicatorConfiguration config) constructor, to initialize the replicator with the configuration you have defined.
You can, optionally, add a change listener (see Monitor Sync) before starting the replicator running using Start().
// Initialize and start a replicator
// Initialize replicator with configuration data
var thisReplicator = new Replicator(thisConfig); (1)
// Start replicator
thisReplicator.Start(); (2)
1 | Initialize the replicator with the configuration |
2 | Start the replicator |
Monitor Sync
- In this section
-
Change Listeners | Replicator Status | Documents Pending Push
You can monitor a replication’s status by using a combination of Change Listeners and the replication.status.activity
property — see; Activity.
This enables you to know, for example, when the replication is actively transferring data and when it has stopped.
Change Listeners
Use this to monitor changes and to inform on sync progress; this is an optional step. You can add and a replicator change listener at any point; it will report changes from the point it is registered.
Best Practice
Don’t forget to save the token so you can remove the listener later
|
Use the Replicator class to add a change listener as a callback to the Replicator (addChangeListener()) — see: Example 9. You will then be asynchronously notified of state changes.
You can remove a change listener with RemoveChangeListener(ListenerToken).
Replicator Status
You can use the ReplicatorStatus struct to check the replicator status. That is, whether it is actively transferring data or if it has stopped — see: Example 9.
The returned ReplicationStatus structure comprises:
-
Adding a Change Listener
-
Using replicator.status
_thisListenerToken =
thisReplicator.AddChangeListener((sender, args) =>
{
if (args.Status.Activity == ReplicatorActivityLevel.Stopped) {
Console.WriteLine("Replication stopped");
}
});
_thisReplicator.Stop();
while (_thisReplicator.Status.Activity != ReplicatorActivityLevel.Stopped) {
// Database cannot close until replicators are stopped
Console.WriteLine($"Waiting for replicator to stop (currently {_thisReplicator.Status.Activity})...");
Thread.Sleep(200);
}
_thisDatabase.Close();
Replication States
Table 2 shows the different states, or activity levels, reported in the API; and the meaning of each.
State |
Meaning |
---|---|
|
The replication is finished or hit a fatal error. |
|
The replicator is offline as the remote host is unreachable. |
|
The replicator is connecting to the remote host. |
|
The replication caught up with all the changes available from the server.
The |
|
The replication is actively transferring data. |
The replication change object also has properties to track the progress (change.status.completed and change.status.total ).
Since the replication occurs in batches the total count can vary through the course of a replication.
|
Replication Status and App Life Cycle
Couchbase Lite doesn’t react to OS backgrounding or foregrounding events and replication(s) will continue running as long as the remote system does not terminate the connection and the app does not terminate. It is generally recommended to stop replications before going into the background otherwise socket connections may be closed by the OS and this may interfere with the replication process.
Documents Pending Push
Replicator.IsDocumentPending() is quicker and more efficient. Use it in preference to returning a list of pending document IDs, where possible. |
You can check whether documents are waiting to be pushed in any forthcoming sync by using either of the following API methods:
-
Use the Replicator.GetPendingDocumentIDs() method, which returns a list of document IDs that have local changes, but which have not yet been pushed to the server.
This can be very useful in tracking the progress of a push sync, enabling the app to provide a visual indicator to the end user on its status, or decide when it is safe to exit.
-
Use the Replicator.IsDocumentPending() method to quickly check whether an individual document is pending a push.
var url = new Uri("ws://localhost:4984/mydatabase");
var target = new URLEndpoint(url);
var database = new Database("myDB");
var config = new ReplicatorConfiguration(database, target);
config.ReplicatorType = ReplicatorType.Push;
var replicator = new Replicator(config);
var mydocids =
new HashSet <string> (replicator.GetPendingDocumentIDs()); (1)
if (mydocids.Count > 0)
{
Console.WriteLine($"There are {mydocids.Count} documents pending");
replicator.AddChangeListener((sender, change) =>
{
Console.WriteLine($"Replicator activity level is " +
change.Status.Activity.ToString());
// iterate and report-on previously
// retrieved pending docids 'list'
foreach (var thisId in mydocids)
if (!replicator.IsDocumentPending(thisId)) (2)
{
Console.WriteLine($"Doc ID {thisId} now pushed");
};
});
replicator.Start();
}
1 | Replicator.GetPendingDocumentIDs() returns a list of the document IDs for all documents waiting to be pushed. This is a snapshot and may have changed by the time the response is received and processed. |
2 | Replicator.IsDocumentPending() returns true if the document is waiting to be pushed, and false otherwise. |
Stop Sync
Stopping a replication is straightforward. It is done using Stop(). This initiates an asynchronous operation and so is not necessarily immediate. Your app should account for this potential delay before attempting any subsequent operations.
You can find further information on database operations in Databases.
// Stop replication.
thisReplicator.Stop(); (1)
1 | Here we initiate the stopping of the replication using the Stop() method. It will stop any active change listener once the replication is stopped. |
Conflict Resolution
Unless you specify otherwise, Couchbase Lite’s default conflict resolution policy is applied — see Handling Data Conflicts.
To use a different policy, specify a conflict resolver using ConflictResolver as shown in Example 12.
For more complex solutions you can provide a custom conflict resolver - see: Handling Data Conflicts.
-
Local Wins
-
Remote Wins
-
Merge
class LocalWinConflictResolver : IConflictResolver
{
Document Resolve(Conflict conflict)
{
return conflict.LocalDocument;
}
}
class RemoteWinConflictResolver : IConflictResolver
{
public Document Resolve(Conflict conflict)
{
return conflict.RemoteDocument;
}
}
class MergeConflictResolver : IConflictResolver
{
public Document Resolve(Conflict conflict)
{
var localDict = conflict.LocalDocument.ToDictionary();
var remoteDict = conflict.RemoteDocument.ToDictionary();
var result = localDict.Concat(remoteDict)
.GroupBy(kv => kv.Key)
.ToDictionary(g => g.Key, g => g.First().Value);
return new MutableDocument(conflict.DocumentID, result);
}
}
Just as a replicator may observe a conflict — when updating a document that has changed both in the local database and in a remote database — any attempt to save a document may also observe a conflict, if a replication has taken place since the local app retrieved the document from the database.
To address that possibility, a version of the Database.save()
method also takes a conflict resolver as shown in Example 13.
The following code snippet shows an example of merging properties from the existing document (current
) into the one being saved (new
).
In the event of conflicting keys, it will pick the key value from new
.
using (var document = database.GetDocument("xyz"))
using (var mutableDocument = document.ToMutable()) {
mutableDocument.SetString("name", "apples");
database.Save(mutableDocument, (updated, current) =>
{
var currentDict = current.ToDictionary();
var newDict = updated.ToDictionary();
var result = newDict.Concat(currentDict)
.GroupBy(kv => kv.Key)
.ToDictionary(g => g.Key, g => g.First().Value);
updated.SetData(result);
return true;
});
}
For more on replicator conflict resolution see: Handling Data Conflicts.