SLA4OAI is an open source standard for describing SLA in APIs.
Based on the standards proposed by the OpenAPI Initiative, SLA4OAI builds on top of the OpenAPI Specification by defining a specification extension that describes Service Level Agreements (SLAs) for APIs.
This SLA definition in a neutral vendor flavor will allow fostering innovation in the area where APIs expose and documents its SLA, API Management tools can import and measure such key metrics and composed SLAs for composed services aggregated way in a standard way.
The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be interpreted as described in RFC 2119.
This specification is an on-going work developed by the SLA4OAI Technical Committee over the course of the last years. In the working discussions a number of practitioners and academics have participated, including: Refael Botbol (UP9), Tim Burks (Google), Dave O'Neil (Apimetrics), Paul Cray (Apimetrics), Hyungjun Lim (Google), Khushan Adatiya (Google), Antonio Gamez (Independent), Fran Mendez (AsyncAPI), Emmanuel Paraskakis (Smartbear/Independent), Phil Sturgeon (Stoplight), Nikhil Kolekar (Paypal/Independent), Marsh Gardiner (Google), Prithpal Bhogill (Google), Madhurranjan Mohaan (Google), Isaac Hepworth (ex-Google), Scott Ganyo (Google), Kin Lane (API Evangelist), Mike Ralphson (Independent), Jeffrey ErnstFriedman (OpenTravel Alliance), Antonio Ruiz-Cortes (ISA Group/University of Sevilla), Pedro J. Molina (Metadev/ISA Group) and Pablo Fernandez (ISA Group/University of Sevilla).
| Version | Date | Notes |
|---|---|---|
| 1.0.0 | 2020-11-16 | Initial draft. |
SLA extension can be mapped in an external YAML or JSON file. For the sake of clarity throughout this document YAML will be used in examples. The OpenAPI specification main document (inside the info section) can link to SLA definitions using the standard extension and $ref linking mechanism:
openapi: 3.1
info:
x-sla:
$ref: ./sla.ymlA SLA4API document is built as an extension to a given OAS document. This extension will add an SLA definition to all or part of the services exposed in the API by means of different plans that include limitations over the usage of the API. Specifically, a full SLA definition is a YAML (or JSON) document composed of the structure of an SLA Object.
Simple Example:
sla: 1.0.0
context:
id: petstore-sample
type: plans
api:
$ref: ./petstore-service.yml
provider: ISAGroup
metrics:
requests:
type: "int64"
description: "Number of requests"
plans:
base:
availability: R/00:00:00Z/23:00:00Z
free:
rates:
/pets/{id}:
get:
requests:
- max: 1
period: second
quotas:
/pets:
post:
requests:
- max: 10
period: minute
pro:
pricing:
cost: 5
currency: EUR
billing: monthly
rates:
/pets/{id}:
get:
requests:
- max: 100
period: secondThe SLA Object represent the top placeholder for the SLA Document.
| Field Name | Type | Description |
|---|---|---|
| sla | string |
Required Identifies the version of the SLA4OAI used. |
| context | ContextObject |
Required Holds the main information of the SLA context. |
| metrics | MetricsObject |
Required A list of metrics to use in the context of the SLA. |
| plans | PlansObject |
Optional A set of plans to define different service levels per plan. |
The Context Object provides information about the general context of the actual SLA.
| Field Name | Type | Description |
|---|---|---|
| id | string |
Required The identification of the SLA context. |
| api | uri |
Optional Indicates a URI (absolute or relative) describing the API, described in the OpenAPI format, to be instrumented. If unspecified, the associated API is the one defined by the referring OpenAPI specification main document. |
| provider | string |
Optional Provider information: data about the owner/host of the API. This field is required in case of the context type is instance. |
Example:
context:
id: petstore-sample
api:
$ref: ./petstore-service.yml
provider: ISAGroupMetrics sections describes the relevant technical indicators and business metrics for the SLA. There could be pure technical ones like number of requests, response time or throughput but also related to the business model such as data export formats or number of persistent resources.
| Field Name | Type | Description |
|---|---|---|
| {name} | MetricObject |
Optional Definitions of metrics with name, types and descriptions. |
| {name} | object {"$ref": uri} |
Optional Reference to pre-existing metrics in an external file. |
Example:
metrics:
animalTypes:
type: integer
format: int64
description: Number of different animal types.
requests:
$ref: ./metrics.yml#requestIn the above example, we referred to a pre-existing metrics metrics.yml which has some predefined metrics like requests and responseTime.
Contains a definition of a metric.
| Field Name | Type | Description |
|---|---|---|
| type | string |
Required This is the metric type accordingly to the OAI spec defined types. |
| format | string |
Optional The extending format for the previously mentioned type. See Data Type Formats for further details. |
| description | string |
Optional A brief description of the metric. |
Example:
animalTypes:
type: integer
format: int64
description: Number of different animal types.Contains a list of plans describing different levels of service and prices.
| Field Pattern | Type | Description |
|---|---|---|
| {planName} | PlanObject |
Describes a usage plan for the API with its associate costs, availability and guarantees. |
Example:
plans:
base:
availability: R/00:00:00Z/23:00:00Z
free:
rates:
/pets/{id}:
get:
requests:
- max: 1
period: second
pro:
pricing:
cost: 50
quotas:
/pets:
get:
requests:
- max: 20
period: secondThe base keyword is proposed as the common base plan. Any elements (availability, pricing, quota or rate) in a base plan apply to all plans. Consequently, a specific plan inherits definitions from base but it can override any element to make it more concrete or relaxed.
Describes a plan in full.
| Field Name | Type | Description |
|---|---|---|
| availability | string |
Optional Availability of the service for this plan expressed via time slots using the ISO 8601 time intervals format. |
| pricing | PricingObject |
Optional Specific pricing data for this plan. Overrides default pricing data defined before. |
| quotas | QuotasObject |
Optional Specific quotas data for this plan. Overrides default quotas data defined before. |
| rates | RatesObject |
Optional Specific rates data for this plan. Overrides default rates data defined before. |
Example:
pro:
availability: R/00:00:00Z/23:00:00Z
pricing:
cost: 50
quotas:
/pets:
get:
requests:
- max: 20
period: secondDescribes the general information of the pricing of the a given plan.
| Field Name | Type | Description |
|---|---|---|
| cost | number |
Optional Units of cost associated with this service. Defaults to 0 if unspecified. |
| currency | string |
Optional Currency used to express the cost. Supported currency values are expressed in ISO 4217 format. Samples: USD, EUR, or BTC for US dollar, euro, or bitcoin, respectively. Defaults to USD if unspecified. |
| billing | string |
Optional Billing frequency. Possible values are: onepay, an unique payment before start using the service; daily , billed every day; weekly, billed every week; monthly, billed every month; quarterly, billed every quarter; yearly, billed every year. If it is not specified, the default value assumed is monthly |
Example:
pricing:
cost: 5
currency: "EUR"
billing: "monthly"Quotas are limits computed in static time windows independent from the usage of the service; as an example, a daily quota would be reset every midnight (in the given timezone where the service is operated).
The Quotas Object is composed of a map from name to PathObject describing the quota limits for the service on the current plan.
| Field Pattern | Type | Description |
|---|---|---|
| {pathName} | PathObject |
Required Describes the API endpoint path quota configurations. |
Example:
quotas:
/pets:
post:
requests:
- max: 100
period: hourPath names can include the special path name "default", which can be used to specify quotas for all paths that aren't otherwise specified.
Rates are limits computed in dynamic time windows relatives to the usage of the service; as an example, a rate per minute refers to the period of 60 seconds immediately before the last operation of each API consumer.
In a similar way to quotas, the Rates Object contains a map from name to PathObject describing the rate limits for the service on the current plan.
| Field Pattern | Type | Description |
|---|---|---|
| {pathName} | PathObject |
Required Describes the API endpoint path rate configurations. |
Example:
rates:
/pets/{id}:
get:
requests:
- max: 5
period: secondPath names can include the special path name "default", which can be used to specify rate limits for all paths that aren't otherwise specified.
The API endpoint path.
| Field Pattern | Type | Description |
|---|---|---|
| {methodName} | OperationObject |
Required the operations attached to this path. |
Example:
/pets/{id}:
post:
requests:
- max: 1000
period: dayThe operations attached to the path.
| Field Pattern | Type | Description |
|---|---|---|
| {metricName} | LimitObject |
Required The allowed limits of the request. |
Example:
get:
requests:
- max: 20
period: minuteThe allowed limits of the metric (e.g. requests).
| Field Pattern | Type | Description |
|---|---|---|
| max | number |
Required Maximum value that can be reached so the limit is not violated. |
| period | string |
Optional The period specified for the given limit; it should be one of the following possible values: second, minute, hour, day, month or year. In case it is not specified, it would be a permanent limit over the metric. |
Example:
max: 2
period: second-
An Analysis of RESTful APIs Offerings in the Industry. A. Gamez-Diaz(B), P. Fernandez, and A. Ruiz-Cortes. In M. Maximilien et al. (Eds.): ICSOC 2017, LNCS 10601, pp. 589–604, 2017. DOI: 10.1007/978-3-319-69035-3_43
-
The Role of SLA in the API Industry. SLA4OAI-TC Members. 10.1145/3338906.3340445
-
ISO-8601. Data elements and interchange formats – Information interchange – Representation of dates and times ISO-8601