Show HN: Caffeine – Minimum viable back end for prototyping (opens in new tab)

(github.com)

206 pointsaw4y4y ago76 comments

76 comments

58 comments · 23 top-level

sgt4y ago· 7 in thread

Feature request: supply .json file via command line to pre-load data into the in-memory database.

Taking it even further; how about persisting the data in the file?

Sometimes your prototype will need some pre-added data so I think this might be useful.

qw4y ago

I have used WireMock in the past that supports pre-defined mocks. It can be run both locally and as a service (I only ran it locally)

http://wiremock.org/

It's more complex than Caffeine, but it has a lot of options.

It can also run as a proxy and generate the mocks from actual http requests passing through the proxy

aw4yOP4y ago

currently there are two implementation for the database "behind": in memory or with postgres, both with zero config (except for starting an instance of postgres, in the second case!). it can be easily extended to use files as persistence, good idea :)

regarding the pre-population, you can just make a quick script with curl that will add some data after you run the service. any thought?

tbrock4y ago

Thats code folks would have to write instead of focusing on the MVP, it would be better if this loaded it by convention.

nicoburns4y ago

SQLite could also be a good option

skhm4y ago

My first thought too, but I guess it's also very easy to hand-roll an init_data.sh script with a bunch of POST curls to populate the DB.

aw4yOP4y ago

exactly!

lofties4y ago

Can probably do that with some `jq` and CURL magic already!

thih94y ago· 5 in thread

FYI, there is a name clash with Caffeine, a Mac OS menu bar app that keeps the screen awake: https://intelliscapesolutions.com/apps/caffeine . But I guess this is expected with a name like this, and the scopes of the projects are clearly different, so this should be relatively harmless.

Danidada4y ago

And also a (very efficient) Java cache library https://github.com/ben-manes/caffeine

lekevicius4y ago

You don't need an app. `caffeinate` is a command line utility built into macOS.

jamesmishra4y ago

Caffeine is also a central nervous system stimulant of the methylxanthine class.

cozzyd4y ago

And a gnome shell extension that does the same thing.

das_keyboard4y ago

Since we are collecting :) there is also a streaming service https://www.caffeine.tv/

quickthrower24y ago· 4 in thread

Like the idea. Any user auth?

I wonder if parse is still around and supported? I thought that was pretty good for this kinda thing.

enstyled4y ago

Parse is still around and supported: https://github.com/parse-community/parse-server

IggleSniggle4y ago

This is bizarre. I spent a good 5+ min looking over the README and documentation site, and couldn’t find out what that project is other than “a backend that runs on Nodejs.” Yeah ok but what is it? Why am I interested? I’m not looking to be sold, just for it to tell me what it’s for. I have some assumptions based on how I got linked there, but this is surprising to me.

2 more replies

WolfOliver4y ago

I think auth is the trickiest thing to solve in a BaaS solution. Could not find anything in the readme about it.

berkes4y ago

If you mean https://parseplatform.org/ then it looks to be still around.

gwbas1c4y ago· 3 in thread

At a minimum, this should be password protected by default.

One of the security lessons from the late 1990s and early 2000s is that things like this quickly get hacked. Many developers forget that a service where all security is handled client-side are easy targets for hacking.

Furthermore: In a lot of cases, people will ship prototypes and run their stuff on top of them long after they have outgrown a critical component.

I have tried to write a universal backend... It's possible, but you really have to work in a permissions model from the beginning. What you'll find is that basic read/write/own enables very basic functionality. Unfortunately, to do anything complicated, you will need to write server-side queries that verify that the user is allowed to do what they are trying to do.

btbuildem4y ago

Pretty sure this is meant for prototyping and maybe demoing in controlled environments.

As soon as you involve auth, things get boring and annoying.

gwbas1c4y ago

Honestly, anything simple. It could be as brain-dead simple as passing a password on the command-line, and then requiring the password as a header.

1 more reply

throw_m2393394y ago

> As soon as you involve auth, things get boring and annoying.

No, JWT is easy enough to implement.

1 more reply

aw4yOP4y ago· 3 in thread

A very basic REST service for JSON data - enough for prototyping and MVPs!

Features:

    no need to set up a database, all data is managed automagically*
    REST paradigm CRUD for multiple entities/namespaces
    schema validation
    search using jq like syntax 
    CORS enabled
    easy to deploy as container

torgard4y ago

Just a heads-up, you might want to take down the example website. Now that it's been posted to HN you might see malicious actors.

I also think it's prone to SQL injection at the moment? At least, it's raising a syntax error when inputting an apostrophe.

grey-area4y ago

Yes, don't do this:

https://github.com/rehacktive/caffeine/blob/master/database/...

"INSERT INTO %v (id, data) VALUES('%v','%v') ON CONFLICT (id) DO UPDATE SET data = '%v'"

Use prepared statements and parameters passed to the db driver, not building strings with strings or you are vulnerable to sqli.

I'd also avoid using %v anyway when building strings - safer to use a specific type like %d for int.

3 more replies

samstave4y ago

>>Now that it's been posted to HN you might see malicious actors.

This needs to be an HN fN Masterclass by @Dang....

We should have regular visibility into /how/ HN is used by malicious actors.... HN has enough pedigree to get some insight from some of the top security folks... and it would be REALLY good to know how HN is being harvested in this space.

brainzap4y ago· 2 in thread

A few requests should randomly fail to force the developer to think about handling errors. :)

codefined4y ago

Hah! I'm not sure my MVP has ever had error handling beyond "Something went wrong.". That's something for a real production app, not the minimum possible product.

1 more reply

Method54404y ago

You guys have errors in your programs? :)

Jokes aside… chaos engineering is a big deal right now - this isn’t a terrible idea and might be worthy of a fork.

hashimotonomora4y ago· 2 in thread

Why do people overload common nouns so much when naming a project? A name should confer its essence.

lmilcin4y ago

You know, naming is one of the two really hard problems in CS. But there is apparently a hack which is to open dictionary on random page and point your finger on random word.

My next application is going to be called Toreutics which is going to break this word for every person that actually uses it.

Kinda like breaking the word Meta. Which I suppose is actually aimed at making things difficult to search for.

ABraidotti4y ago

Caffeine suggests a jump start, which is what this tool purports to do.

cpursley4y ago· 2 in thread

This is useful. But you can achieve the same results in just a few more steps with Hasura or Supabase and end up with something that is close to production ready.

kall4y ago

Yeah, I would probably go hasura if I needed this, but I can see the appeal of something that is a single component you can self host and self understand. Hasura is rock solid, but I will never read through it‘s haskell source or understand how it constructs those extra-clever postgres queries.

If I read it right, you don‘t need to configure any schema to use this? You can just POST a user and it will create that type? If it‘s true, that‘s a real step above hasura/supabase for rapid prototyping.

aw4yOP4y ago

yes, no schema required (but you can add it if you want validation)

kypro4y ago· 2 in thread

Sorry if this is a little off topic, but what is it with devs and naming projects Caffeine?

Am I the only person who rolls their eyes when I see another Caffeine / Coffee named project?

anon_cow11114y ago

I wish devs would stop naming EVERYTHING after common english words; it makes stuff 10 times harder to troubleshoot unless you already rank high on the search results.

I guess HN would be the best place to bring this up in a psa topic but I doubt it'll have any long-term influence...

samatman4y ago

Imagine if Gosling had gone with Oak, there are so many more trees to work with.

Of course Indonesian islands were the other possibility...

hardwaresofton4y ago· 1 in thread

Nice to see that the interface for the DB was separated out:

https://github.com/rehacktive/caffeine/blob/master/service/s...

It's not "MVP" fashion but even for only one implementation making these interfaces is critical IMO.

That said, if it's not too much maybe consider adding a SQLite backend! :)

aw4yOP4y ago

the SQLite implementation is in TODO :)

rightly4y ago· 1 in thread

Similar project -> https://sheet2api.com/

Wronnay4y ago

Only 25 rows are supported in the free plan and the other plans are more expensive.

I don't think this has a good price-performance ratio - all other solutions I know are cheaper...

l30n4da54y ago· 1 in thread

`"CREATE TABLE IF NOT EXISTS %v ( id text PRIMARY KEY, data json NOT NULL)"`

Correct me if I'm wrong, as I havent used Postgres in a few years, but doesn't the `json` column in Postgres just store the data as text?

Last I knew, jsonb was much more efficient/performant for queries and storage, while having a very robust api for querying specific properties.

Curious what the reasoning was for using json rather than jsonb.

mccolin4y ago

Correct. The json data type is less performant and stores the data more or less as lightly indexed text. jsonb optimizes the storage format and allows for more JSON operations, such as extracting individual keys.

For this product, if the super-generic API doesn't offer/require a need to do complex operations, though, json may be adequate to lookup items by id and present them.

miki_tyler4y ago· 1 in thread

This awesome! Our product supports json as a backend in a very simple way in order to feed data to HTML templates (https://www.stack55.com) and I was thinking of doing something very similar to what you have done.

aw4yOP4y ago

very cool :)

manx4y ago· 1 in thread

Very nice idea! I haven't seen anything like it.

mikkelenzo4y ago

Looks great indeed

jpdelatorre4y ago

Another similar project that I use for mocking API server https://github.com/typicode/json-server

nkozyra4y ago

I realize this is just for prototyping but it looks like it just spits sprintf SQL strings into the database.

While not a security risk if done locally, why not just use a where string builder to generate the $ values and a variadic as the input? It's about the same amount of work.

shireboy4y ago

I could have used something similar recently, but that persisted to disk as json. I ended up just storing a wad of JSON on disk and memory, loading and saving as needed. Will only ever be 1M or so and only 2 users.

lhorie4y ago

Shameless plug: along the same lines, but for rapid web UI prototyping cases where you don't want to waste time with setting up a server, I built a tiny tool called REM[0] a few years ago.

It never actually stores data on the server (it echos it into a cookie instead), so the dataset is only ever visible to you, no auth or service keys required.

[0] http://rem-rest-api.herokuapp.com/

josh_carterPDX4y ago

We tried to do this back in 2016 with BrightWork. We got a lot of traction, but it came on the heels of Parse being shutdown by Facebook after acquiring them for a ton of money.

The lesson I learned from that experience is that there is still a tremendous amount of distrust in platforms that make it easy to stand up something quickly. Even prototyping.

Even if you make it easy for users to export their code from your platform you will still run into scalability questions (i.e. what happens if someone builds the next Flappy Bird on your platform?).

All that aside, this is great! Congrats on launching Caffeine. :)

theK4y ago

Cool project! Personally I've been using apiary or Snowboard for Backend prototyping since they allow for a design first approach and typically end up with quite good Dokumentation and Testing infrastructure. But having a real interactive back end like caffeine provides is also very intriguing!

kjgkjhfkjf4y ago

Very cool. You could simplify the tests by using testify [0] assertions and possibly a test suite. Then it'd be easier to add additional test cases.

[0] https://github.com/stretchr/testify

blintz4y ago

Cool! I like that it's zero config to start with, and that adding schemas can itself just be done with a request.

sgt4y ago

This may become very useful! I will definitely check it out.

j / k navigate · click thread line to collapse

76 comments

58 comments · 23 top-level

sgt4y ago· 7 in thread

Feature request: supply .json file via command line to pre-load data into the in-memory database.

Taking it even further; how about persisting the data in the file?

Sometimes your prototype will need some pre-added data so I think this might be useful.

qw4y ago

I have used WireMock in the past that supports pre-defined mocks. It can be run both locally and as a service (I only ran it locally)

http://wiremock.org/

It's more complex than Caffeine, but it has a lot of options.

It can also run as a proxy and generate the mocks from actual http requests passing through the proxy

aw4yOP4y ago

regarding the pre-population, you can just make a quick script with curl that will add some data after you run the service. any thought?

tbrock4y ago

Thats code folks would have to write instead of focusing on the MVP, it would be better if this loaded it by convention.

nicoburns4y ago

SQLite could also be a good option

skhm4y ago

My first thought too, but I guess it's also very easy to hand-roll an init_data.sh script with a bunch of POST curls to populate the DB.

aw4yOP4y ago

exactly!

lofties4y ago

Can probably do that with some `jq` and CURL magic already!

thih94y ago· 5 in thread

Danidada4y ago

And also a (very efficient) Java cache library https://github.com/ben-manes/caffeine

lekevicius4y ago

You don't need an app. `caffeinate` is a command line utility built into macOS.

jamesmishra4y ago

Caffeine is also a central nervous system stimulant of the methylxanthine class.

cozzyd4y ago

And a gnome shell extension that does the same thing.

das_keyboard4y ago

Since we are collecting :) there is also a streaming service https://www.caffeine.tv/

quickthrower24y ago· 4 in thread

Like the idea. Any user auth?

I wonder if parse is still around and supported? I thought that was pretty good for this kinda thing.

enstyled4y ago

Parse is still around and supported: https://github.com/parse-community/parse-server

IggleSniggle4y ago

2 more replies

WolfOliver4y ago

I think auth is the trickiest thing to solve in a BaaS solution. Could not find anything in the readme about it.

berkes4y ago

If you mean https://parseplatform.org/ then it looks to be still around.

gwbas1c4y ago· 3 in thread

At a minimum, this should be password protected by default.

Furthermore: In a lot of cases, people will ship prototypes and run their stuff on top of them long after they have outgrown a critical component.

btbuildem4y ago

Pretty sure this is meant for prototyping and maybe demoing in controlled environments.

As soon as you involve auth, things get boring and annoying.

gwbas1c4y ago

Honestly, anything simple. It could be as brain-dead simple as passing a password on the command-line, and then requiring the password as a header.

1 more reply

throw_m2393394y ago

> As soon as you involve auth, things get boring and annoying.

No, JWT is easy enough to implement.

1 more reply

aw4yOP4y ago· 3 in thread

A very basic REST service for JSON data - enough for prototyping and MVPs!

Features:

    no need to set up a database, all data is managed automagically*
    REST paradigm CRUD for multiple entities/namespaces
    schema validation
    search using jq like syntax 
    CORS enabled
    easy to deploy as container

torgard4y ago

Just a heads-up, you might want to take down the example website. Now that it's been posted to HN you might see malicious actors.

I also think it's prone to SQL injection at the moment? At least, it's raising a syntax error when inputting an apostrophe.

grey-area4y ago

Yes, don't do this:

https://github.com/rehacktive/caffeine/blob/master/database/...

"INSERT INTO %v (id, data) VALUES('%v','%v') ON CONFLICT (id) DO UPDATE SET data = '%v'"

Use prepared statements and parameters passed to the db driver, not building strings with strings or you are vulnerable to sqli.

I'd also avoid using %v anyway when building strings - safer to use a specific type like %d for int.

3 more replies

samstave4y ago

>>Now that it's been posted to HN you might see malicious actors.

This needs to be an HN fN Masterclass by @Dang....

brainzap4y ago· 2 in thread

A few requests should randomly fail to force the developer to think about handling errors. :)

codefined4y ago

Hah! I'm not sure my MVP has ever had error handling beyond "Something went wrong.". That's something for a real production app, not the minimum possible product.

1 more reply

Method54404y ago

You guys have errors in your programs? :)

Jokes aside… chaos engineering is a big deal right now - this isn’t a terrible idea and might be worthy of a fork.

hashimotonomora4y ago· 2 in thread

Why do people overload common nouns so much when naming a project? A name should confer its essence.

lmilcin4y ago

You know, naming is one of the two really hard problems in CS. But there is apparently a hack which is to open dictionary on random page and point your finger on random word.

My next application is going to be called Toreutics which is going to break this word for every person that actually uses it.

Kinda like breaking the word Meta. Which I suppose is actually aimed at making things difficult to search for.

ABraidotti4y ago

Caffeine suggests a jump start, which is what this tool purports to do.

cpursley4y ago· 2 in thread

This is useful. But you can achieve the same results in just a few more steps with Hasura or Supabase and end up with something that is close to production ready.

kall4y ago

aw4yOP4y ago

yes, no schema required (but you can add it if you want validation)

kypro4y ago· 2 in thread

Sorry if this is a little off topic, but what is it with devs and naming projects Caffeine?

Am I the only person who rolls their eyes when I see another Caffeine / Coffee named project?

anon_cow11114y ago

I wish devs would stop naming EVERYTHING after common english words; it makes stuff 10 times harder to troubleshoot unless you already rank high on the search results.

I guess HN would be the best place to bring this up in a psa topic but I doubt it'll have any long-term influence...

samatman4y ago

Imagine if Gosling had gone with Oak, there are so many more trees to work with.

Of course Indonesian islands were the other possibility...

hardwaresofton4y ago· 1 in thread

Nice to see that the interface for the DB was separated out:

https://github.com/rehacktive/caffeine/blob/master/service/s...

It's not "MVP" fashion but even for only one implementation making these interfaces is critical IMO.

That said, if it's not too much maybe consider adding a SQLite backend! :)

aw4yOP4y ago

the SQLite implementation is in TODO :)

rightly4y ago· 1 in thread

Similar project -> https://sheet2api.com/

Wronnay4y ago

Only 25 rows are supported in the free plan and the other plans are more expensive.

I don't think this has a good price-performance ratio - all other solutions I know are cheaper...

l30n4da54y ago· 1 in thread

`"CREATE TABLE IF NOT EXISTS %v ( id text PRIMARY KEY, data json NOT NULL)"`

Correct me if I'm wrong, as I havent used Postgres in a few years, but doesn't the `json` column in Postgres just store the data as text?

Last I knew, jsonb was much more efficient/performant for queries and storage, while having a very robust api for querying specific properties.

Curious what the reasoning was for using json rather than jsonb.

mccolin4y ago

For this product, if the super-generic API doesn't offer/require a need to do complex operations, though, json may be adequate to lookup items by id and present them.

miki_tyler4y ago· 1 in thread

aw4yOP4y ago

very cool :)

manx4y ago· 1 in thread

Very nice idea! I haven't seen anything like it.

mikkelenzo4y ago

Looks great indeed

jpdelatorre4y ago

Another similar project that I use for mocking API server https://github.com/typicode/json-server

nkozyra4y ago

I realize this is just for prototyping but it looks like it just spits sprintf SQL strings into the database.

While not a security risk if done locally, why not just use a where string builder to generate the $ values and a variadic as the input? It's about the same amount of work.

shireboy4y ago

lhorie4y ago

Shameless plug: along the same lines, but for rapid web UI prototyping cases where you don't want to waste time with setting up a server, I built a tiny tool called REM[0] a few years ago.

It never actually stores data on the server (it echos it into a cookie instead), so the dataset is only ever visible to you, no auth or service keys required.

[0] http://rem-rest-api.herokuapp.com/

josh_carterPDX4y ago

We tried to do this back in 2016 with BrightWork. We got a lot of traction, but it came on the heels of Parse being shutdown by Facebook after acquiring them for a ton of money.

The lesson I learned from that experience is that there is still a tremendous amount of distrust in platforms that make it easy to stand up something quickly. Even prototyping.

Even if you make it easy for users to export their code from your platform you will still run into scalability questions (i.e. what happens if someone builds the next Flappy Bird on your platform?).

All that aside, this is great! Congrats on launching Caffeine. :)

theK4y ago

kjgkjhfkjf4y ago

Very cool. You could simplify the tests by using testify [0] assertions and possibly a test suite. Then it'd be easier to add additional test cases.

[0] https://github.com/stretchr/testify

blintz4y ago

Cool! I like that it's zero config to start with, and that adding schemas can itself just be done with a request.

sgt4y ago

This may become very useful! I will definitely check it out.

j / k navigate · click thread line to collapse