--- title: "Connector Proxy — Spiff Arena 0.1 documentation" description: "A connector-proxy is an optional application that can be deployed alongside (or separately from) the frontend and backend. Please see Connector Proxy in 5 mins ." source_url: https://spiff.works/docs/spiff-arena/explanation/dev/connector_proxy.html --- ☰ Menu # Connector Proxy[](#connector-proxy "Link to this heading") A connector-proxy is an optional application that can be deployed alongside (or separately from) the frontend and backend. Please see [Connector Proxy in 5 mins](https://github.com/sartography/spiff-arena/wiki/Connector-Proxy-in-5-mins). graph TD subgraph ConnectorProxy[Connector Proxy Application] direction TB ConnectorA ConnectorB end subgraph ConnectorA[Connector A] direction TB CommandA1[Command C] CommandA2[Command D] end subgraph ConnectorB[Connector B] direction TB CommandB1[Command E] CommandB2[Command F] end Connector proxies are containers for connectors. In this repository, connectors are Python libraries that are included in connector proxy codebases, and some proxies embed connector logic directly (see the async-http example below). Our connector-proxy-demo includes a few connectors, including [connector-aws](https://github.com/sartography/connector-aws), [connector-http](https://github.com/sartography/connector-http), [connector-slack](https://github.com/sartography/connector-slack), and [connector-smtp](https://github.com/sartography/connector-smtp). Connector-http can be used for many API interactions, but you can also [write your own connectors](../../how_to_guides/extend_the_system/how_to_build_a_connector.html). ## async-http Example[](#async-http-example "Link to this heading") The **async-http** example demonstrates a simple and explicit connector proxy pattern: - A command discovery endpoint that returns available commands and parameter schemas - A set of execution routes, one per command - A consistent response envelope for results, with a versioned contract **Implementation notes:** - Built with **Falcon ASGI** (`falcon.asgi.App`) - Uses **httpx.AsyncClient** for outbound requests (`timeout=None` in the sample) - Uses **orjson** for JSON parsing - Enables CORS (`cors_enable=True`) > **Important:** This implementation is intentionally minimal (for example, error handling is marked TODO) and should be hardened before production use. See **Security & Production Hardening**. --- ## Running async-http with Docker Compose[](#running-async-http-with-docker-compose "Link to this heading") Example compose service: ``` services: connector-proxy-async-http: build: context: connector-proxies/async-http dockerfile: Dockerfile environment: HOST: "0.0.0.0" PORT: "${CONNECTOR_PROXY_ASYNC_HTTP_PORT:-8200}" XDG_CACHE_HOME: "/app/.cache" ports: - "${CONNECTOR_PROXY_ASYNC_HTTP_PORT:-8200}:${CONNECTOR_PROXY_ASYNC_HTTP_PORT:-8200}/tcp" ``` Start the service: ``` docker compose up --build ``` By default, the port published is: - `http://localhost:8200` (when `CONNECTOR_PROXY_ASYNC_HTTP_PORT` is not set) --- ## API: Command Discovery[](#api-command-discovery "Link to this heading") ### `GET /v1/commands`[](#get-v1-commands "Link to this heading") Returns a list of supported commands and their parameter schemas. This makes the connector proxy **self-describing**. The async-http example exposes these commands: - `http/DeleteRequest` - `http/GetRequest` - `http/HeadRequest` - `http/PatchRequest` - `http/PostRequest` - `http/PutRequest` Each command includes a `parameters` array describing: - `id` (parameter name) - `type` - `required` (true/false) --- ## API: Command Execution[](#api-command-execution "Link to this heading") Each command is executed through a dedicated route: - `POST /v1/do/http/DeleteRequest` - `POST /v1/do/http/GetRequest` - `POST /v1/do/http/HeadRequest` - `POST /v1/do/http/PatchRequest` - `POST /v1/do/http/PostRequest` - `POST /v1/do/http/PutRequest` All execution routes: - accept a JSON request body - make an outbound HTTP request using `httpx.AsyncClient.request(...)` - return a standard response envelope --- ## Parameters (`/v1/commands`)[](#parameters-v1-commands "Link to this heading") These are the schema definitions returned by async-http and should be treated as the public contract. ### Common parameters (all commands)[](#common-parameters-all-commands "Link to this heading") - `url` *(required, string)* — Target URL - `headers` *(optional, any/object)* — Request headers ### Optional basic authentication (supported)[](#optional-basic-authentication-supported "Link to this heading") - `basic_auth_username` *(optional, string)* - `basic_auth_password` *(optional, string)* ### GET / HEAD commands[](#get-head-commands "Link to this heading") - `params` *(optional, any/object)* — Query string parameters ### DELETE / PATCH / POST / PUT commands[](#delete-patch-post-put-commands "Link to this heading") - `data` *(optional, any/object)* — request body. - `body_format` *(optional, string)* — how to send `data`; defaults to `json`. Supported values are `json`, `form`, `raw`, and `none`. - `include_response_headers` *(optional, boolean)* — when true, include upstream response headers in `command_response.headers`. > **Note:** In this example, `DeleteRequest` is advertised with `data` (not `params`) in the command schema. The embedded Arena HTTP connector also supports `body_format` and `include_response_headers` on its standard write commands. --- ## Request and Response Examples[](#request-and-response-examples "Link to this heading") For detailed examples of request payloads and response structures, including: - Sample requests for GET, POST, PUT, PATCH, DELETE, and HEAD operations - Response envelope structure and parsing behavior - Error response examples - Long-running task callbacks See the [Connector Proxy API Examples](connector_proxy_examples.html) page. --- ## Error Handling Notes[](#error-handling-notes "Link to this heading") The async-http example is intentionally minimal: - `error` is included but may not be populated in all cases - the HTTP client is configured with `timeout=None` For production use, implement: - consistent error objects in `error` - exception handling for upstream failures and parsing errors - timeouts and retry policies appropriate for your environment --- ## API Key Authentication[](#api-key-authentication "Link to this heading") If Spiff Arena is configured with a `SPIFFWORKFLOW_BACKEND_CONNECTOR_PROXY_API_KEY`, it will include a `Spiff-Connector-Proxy-Api-Key` header on every request it sends to the connector proxy. Your connector proxy implementation can validate this header to restrict access to authorized Spiff Arena instances only. See [Configure a Connector Proxy](../../how_to_guides/deployment/configure_a_connector_proxy.html) for how to set the key.