A metaprogramming framework for building REST APIs from OTP operations
Arsenal enables automatic REST API generation by defining operations as simple Elixir modules with behavior callbacks. It provides a registry system, operation discovery, parameter validation, and OpenAPI documentation generation.
- Overview
- Architecture
- Core Components
- Creating Operations
- Framework Adapters
- Advanced Features
- API Documentation
- Development Guide
- Testing
- Contributing
Arsenal is a powerful metaprogramming framework that transforms Elixir modules into REST API endpoints. It's designed for OTP-focused applications that need to expose system monitoring, management, and debugging capabilities through a standardized REST interface.
- Automatic REST API Generation: Define operations as modules, get REST endpoints automatically
- Operation Registry: Automatic discovery and registration of operations
- Parameter Validation: Built-in validation with custom validators support
- OpenAPI Documentation: Auto-generated API documentation
- Framework Agnostic: Adapter-based design works with any web framework
- Analytics & Monitoring: Production-grade system monitoring with
Arsenal.AnalyticsServer - Distributed System Support: Built-in operations for cluster management (when available)
- Process Management: Comprehensive process inspection, tracing, and control operations
Experience Arsenal's capabilities immediately with our executable demo scripts:
# Clone the repository
git clone https://github.com/nshkrdotcom/arsenal.git
cd arsenal
# Run all examples
elixir examples/run_all_demos.exs
# Or try individual demos
elixir examples/run_basic_operations.exs # Basic operations and CRUD
elixir examples/run_analytics_demo.exs # System monitoring and analytics
elixir examples/run_process_demo.exs # Process management and inspectionWhat you'll see:
- âś… Mathematical operations with validation (factorial calculations)
- âś… User CRUD operations with database simulation
- âś… Real-time system health and performance monitoring
- âś… Process analysis, categorization, and management
- âś… Error handling and validation demonstrations
Each demo is self-contained and requires no setup - just run and explore!
# In mix.exs
defp deps do
[
{:arsenal, "~> 0.1.0"}
]
end
# In your application.ex
def start(_type, _args) do
children = [
{Arsenal, []},
# ... your other children
]
Supervisor.start_link(children, strategy: :one_for_one)
endSee the examples/ directory for comprehensive integration examples.
flowchart TD
A[Web Framework<br/>Phoenix/Plug] --> B[Adapter]
B --> C[Arsenal Core]
C --> D[Registry]
C --> E[Operations]
C --> F[Analytics Server]
style A fill:#e1f5fe,color:#000
style B fill:#f3e5f5,color:#000
style C fill:#e8f5e8,color:#000
style D fill:#fff3e0,color:#000
style E fill:#fff3e0,color:#000
style F fill:#fff3e0,color:#000
The main entry point and application supervisor.
# Start Arsenal
{:ok, _pid} = Arsenal.start(:normal, [])
# List all registered operations
operations = Arsenal.list_operations()
# Execute an operation by name
{:ok, result} = Arsenal.Registry.execute(:list_processes, %{"limit" => 10})
# Generate OpenAPI documentation
api_docs = Arsenal.generate_api_docs()The operation framework provides a standardized contract for all operations:
defmodule Arsenal.Operation do
@callback name() :: atom()
@callback category() :: atom()
@callback description() :: String.t()
@callback params_schema() :: map()
@callback execute(params :: map()) :: {:ok, term()} | {:error, term()}
@callback metadata() :: map()
@callback rest_config() :: map()
# Optional callbacks
@callback validate_params(params :: map()) :: {:ok, map()} | {:error, term()}
@callback format_response(result :: term()) :: map()
@callback authorize(params :: map(), context :: map()) :: :ok | {:error, term()}
@optional_callbacks [validate_params: 1, format_response: 1, authorize: 2]
endKey features:
- Named Operations: Operations are registered by name for stable API
- Categories: Operations are organized into logical categories
- Automated Validation: Validation based on
params_schema/0 - Built-in Telemetry: Automatic telemetry events for all operations
- Standardized Metadata: Consistent metadata for auth, rate limiting, etc.
The Registry serves as a central hub for the entire operation lifecycle:
# Register operations by name
Arsenal.Registry.register(:my_operation, MyApp.Operations.MyOperation)
# Execute operations with built-in validation and telemetry
{:ok, result} = Arsenal.Registry.execute(:list_processes, %{"limit" => 10})
# Get operation metadata
{:ok, metadata} = Arsenal.Registry.get_metadata(:list_processes)
# List operations by category
operations = Arsenal.Registry.list_by_category(:process)
# Introspect operation schema
{:ok, schema} = Arsenal.Registry.get_params_schema(:start_process)Key Registry features:
- Lifecycle Management: Handles discovery, validation, authorization, and execution
- Named Registration: Operations registered by atom names for API stability
- Automatic Validation: Validates params against schema before execution
- Telemetry Integration: Emits standardized events for monitoring
- Authorization Hooks: Built-in support for operation-level authorization
Framework-agnostic adapter behavior for integrating with web frameworks:
defmodule Arsenal.Adapter do
@callback extract_method(request :: any()) :: atom()
@callback extract_path(request :: any()) :: String.t()
@callback extract_params(request :: any()) :: map()
@callback send_response(request :: any(), status :: integer(), body :: map()) :: any()
@callback send_error(request :: any(), status :: integer(), error :: any()) :: any()
@optional_callbacks [before_process: 1, after_process: 2]
endProduction-grade monitoring and analytics:
# Track restart events
Arsenal.AnalyticsServer.track_restart(:my_supervisor, :worker_1, :normal)
# Get system health
{:ok, health} = Arsenal.AnalyticsServer.get_system_health()
# Subscribe to events
Arsenal.AnalyticsServer.subscribe_to_events([:restart, :health_alert])
# Get performance metrics
{:ok, metrics} = Arsenal.AnalyticsServer.get_performance_metrics()Arsenal provides a robust, standardized framework for operations that reduces boilerplate and improves consistency across the codebase.
Here's a complete operation showcasing the features:
defmodule Arsenal.Operations.StartProcess do
use Arsenal.Operation
@impl true
def name(), do: :start_process
@impl true
def category(), do: :process
@impl true
def description(), do: "Start a new process with configurable options"
@impl true
def params_schema() do
%{
module: [type: :atom, required: true],
function: [type: :atom, required: true],
args: [type: :list, default: []],
options: [type: :map, default: %{}],
name: [type: :atom, required: false],
link: [type: :boolean, default: false],
monitor: [type: :boolean, default: false]
}
end
@impl true
def metadata() do
%{
requires_authentication: true,
minimum_role: :operator,
idempotent: false,
timeout: 5_000,
rate_limit: {10, :minute}
}
end
@impl true
def rest_config() do
%{
method: :post,
path: "/api/v1/processes",
summary: "Start a new process",
responses: %{
201 => %{description: "Process started successfully"},
400 => %{description: "Invalid parameters"},
409 => %{description: "Process with given name already exists"}
}
}
end
@impl true
def execute(params) do
# Params are already validated based on params_schema
# Telemetry events are automatically emitted
# Authorization has already been checked
with {:ok, pid} <- start_process_logic(params) do
{:ok, %{pid: pid, started_at: DateTime.utc_now()}}
end
end
endThe framework automatically handles common patterns:
Parameters are validated against the schema before execution:
# This happens automatically before execute/1 is called
{:ok, validated_params} = Arsenal.Operation.Validator.validate(
params,
operation.params_schema()
)Standard telemetry events are emitted for every operation:
# Automatic events emitted by the framework:
[:arsenal, :operation, :start]
[:arsenal, :operation, :stop]
[:arsenal, :operation, :exception]
# Subscribe to operation events
:telemetry.attach_many(
"arsenal-handler",
[
[:arsenal, :operation, :start],
[:arsenal, :operation, :stop]
],
&handle_event/4,
nil
)Arsenal includes a Mix task to generate new operations:
# Generate a new operation
mix arsenal.gen.operation MyApp.Operations.MyNewOperation custom my_operation
# Examples
mix arsenal.gen.operation MyApp.Operations.StartWorker process start_worker
mix arsenal.gen.operation Arsenal.Operations.RestartNode distributed restart_nodedefmodule MyApp.Operations.GetUserInfo do
use Arsenal.Operation
@impl true
def rest_config do
%{
method: :get,
path: "/api/v1/users/:id",
summary: "Get user information by ID",
parameters: [
%{
name: :id,
type: :integer,
required: true,
location: :path,
description: "User ID"
}
],
responses: %{
200 => %{description: "User found"},
404 => %{description: "User not found"}
}
}
end
@impl true
def validate_params(%{"id" => id}) when is_binary(id) do
case Integer.parse(id) do
{int_id, ""} -> {:ok, %{"id" => int_id}}
_ -> {:error, {:invalid_parameter, :id, "must be an integer"}}
end
end
@impl true
def execute(%{"id" => id}) do
case MyApp.Users.get_user(id) do
nil -> {:error, :not_found}
user -> {:ok, user}
end
end
@impl true
def format_response(user) do
%{
data: %{
id: user.id,
name: user.name,
email: user.email
}
}
end
endThe rest_config/0 callback returns a map with:
method: HTTP method (:get,:post,:put,:delete,:patch)path: URL path with parameter placeholders (e.g.,/api/v1/resource/:id)summary: Human-readable operation descriptionparameters: List of parameter definitionsresponses: Map of status codes to response descriptions
Parameter definitions include:
name: Parameter nametype: Data type (:string,:integer,:boolean,:array,:object)required: Whether the parameter is requiredlocation: Where the parameter comes from (:path,:query,:body)description: Human-readable description
defmodule MyApp.ArsenalPhoenixAdapter do
@behaviour Arsenal.Adapter
@impl true
def extract_method(%Plug.Conn{method: method}) do
method |> String.downcase() |> String.to_atom()
end
@impl true
def extract_path(%Plug.Conn{request_path: path}), do: path
@impl true
def extract_params(%Plug.Conn{} = conn) do
conn.params
end
@impl true
def send_response(conn, status, body) do
conn
|> Plug.Conn.put_resp_content_type("application/json")
|> Plug.Conn.send_resp(status, Jason.encode!(body))
end
@impl true
def send_error(conn, status, error) do
send_response(conn, status, error)
end
enddefmodule MyAppWeb.ArsenalController do
use MyAppWeb, :controller
def handle(conn, _params) do
Arsenal.Adapter.process_request(MyApp.ArsenalPhoenixAdapter, conn)
end
end
# In router.ex
scope "/api", MyAppWeb do
pipe_through :api
# Route all Arsenal operations through the adapter
forward "/v1", ArsenalController, :handle
endArsenal includes a comprehensive analytics server that monitors:
- System Health: CPU, memory, process count, message queues
- Restart Tracking: Supervisor restart events and patterns
- Performance Metrics: Real-time system performance data
- Anomaly Detection: Automatic detection of unusual patterns
- Event Subscriptions: Real-time notifications for system events
# Subscribe to all events
Arsenal.AnalyticsServer.subscribe_to_events([:all])
# Get historical data
{:ok, history} = Arsenal.AnalyticsServer.get_historical_data(
DateTime.add(DateTime.utc_now(), -3600, :second),
DateTime.utc_now()
)
# Get restart statistics
{:ok, stats} = Arsenal.AnalyticsServer.get_restart_statistics(:my_supervisor)Arsenal includes built-in operations for process management:
- ListProcesses: List all system processes with sorting and filtering
- GetProcessInfo: Get detailed information about a specific process
- StartProcess: Start new processes with configurable options
- KillProcess: Terminate processes with specified reasons
- RestartProcess: Restart supervised processes
- TraceProcess: Enable tracing on a process with configurable flags
- SendMessage: Send messages to processes
Arsenal provides operations for managing supervisors:
- ListSupervisors: List all supervisors in the system with metadata
For distributed Elixir systems, Arsenal provides:
- ClusterTopology: View cluster topology and node connectivity
- NodeInfo: Get detailed information about specific nodes
- ProcessList: List processes across the cluster
- ClusterHealth: Monitor cluster-wide health metrics
- ClusterSupervisionTrees: Get supervision tree information across the cluster
- HordeRegistryInspect: Inspect Horde registry state (when using Horde)
For testing and isolation:
- CreateSandbox: Create isolated supervisor trees
- ListSandboxes: View all active sandboxes
- GetSandboxInfo: Get detailed sandbox information
- RestartSandbox: Restart a sandbox supervisor
- DestroySandbox: Clean up sandboxes
- HotReloadSandbox: Hot-reload sandbox code
Arsenal automatically generates OpenAPI 3.0 documentation:
docs = Arsenal.generate_api_docs()
# Returns:
%{
openapi: "3.0.0",
info: %{
title: "Arsenal API",
version: "1.0.0",
description: "Comprehensive OTP process and supervisor management API"
},
servers: [...],
paths: %{
"/api/v1/processes" => %{
get: %{
summary: "List all processes in the system",
parameters: [...],
responses: %{...}
}
},
# ... more paths
}
}flowchart LR
A[arsenal/] --> B[lib/]
A --> C[test/]
A --> D[mix.exs]
B --> E[arsenal.ex]
B --> F[arsenal/]
B --> G[mix/tasks/]
F --> H[adapter.ex]
F --> I[analytics_server.ex]
F --> J[operation.ex]
F --> K[registry.ex]
F --> L[operations/]
F --> M[startup.ex]
F --> N[system_analyzer.ex]
L --> O[process operations]
L --> P[sandbox operations]
L --> Q[distributed/]
L --> R[storage/]
Q --> S[cluster operations]
G --> T[arsenal.gen.operation.ex]
C --> U[operation tests]
style A fill:#e8f5e8,color:#000
style B fill:#fff3e0,color:#000
style F fill:#fff3e0,color:#000
style L fill:#f3e5f5,color:#000
style Q fill:#f3e5f5,color:#000
- Create a new module in
lib/arsenal/operations/ - Implement the
Arsenal.Operationbehavior - Define REST configuration with
rest_config/0 - Implement parameter validation (optional)
- Implement the
execute/1function - Format the response (optional)
- Parameter Validation: Always validate and sanitize input parameters
- Error Handling: Return consistent error tuples
{:error, reason} - Documentation: Include comprehensive descriptions in
rest_config/0 - Testing: Write tests for parameter validation and execution logic
- Performance: Consider performance implications for operations that list many items
Run the test suite:
mix testExample test for a custom operation:
defmodule MyOperationTest do
use ExUnit.Case
test "validates parameters correctly" do
assert {:ok, %{"id" => 123}} =
MyOperation.validate_params(%{"id" => "123"})
assert {:error, _} =
MyOperation.validate_params(%{"id" => "invalid"})
end
test "executes successfully" do
assert {:ok, result} =
MyOperation.execute(%{"id" => 123})
end
end- Fork the repository
- Create a feature branch (
git checkout -b feature/amazing-feature) - Write tests for your changes
- Ensure all tests pass (
mix test) - Run code analysis (
mix dialyzer) - Commit your changes (
git commit -m 'Add amazing feature') - Push to the branch (
git push origin feature/amazing-feature) - Open a Pull Request
# Clone the repository
git clone https://github.com/nshkrdotcom/arsenal.git
cd arsenal
# Install dependencies
mix deps.get
# Run tests
mix test
# Generate documentation
mix docsThis project is licensed under the MIT License - see the LICENSE file for details.
Arsenal is designed to work seamlessly with the Elixir/OTP ecosystem and can be integrated with various web frameworks through its adapter system.