Patterns for processor and criteria services — implementation, registration, and lifecycle. # 1. Architecture Overview A **calculation member** is an external gRPC client that participates in entity workflow processing on the Cyoda platform. The platform delegates work to your client over a persistent bidirectional gRPC stream, and your client returns results on the same stream. For the rationale behind preferring gRPC over HTTP for compute nodes, see [APIs and surfaces](/concepts/apis-and-surfaces/). ``` ┌──────────────────────┐ gRPC (bidirectional stream) ┌─────────────────────────┐ │ Cyoda Platform │ ◄──────────────────────────────────────────►│ Your Calculation │ │ │ CloudEvent (Protobuf, JSON payload) │ Member (Client) │ │ ┌────────────────┐ │ │ │ │ │ Workflow Engine│ │ 1. Client opens stream, sends Join │ ┌───────────────────┐ │ │ │ │ │ 2. Server responds with Greet │ │ Business Logic │ │ │ │ - Processors │──┼──3. Server pushes Processing/Criteria reqs──┼──│ │ │ │ │ - Criteria │ │ 4. Client returns responses │ │ - Data transforms │ │ │ │ │ │ 5. Keep-alive heartbeats (bidirectional) │ │ - Criteria checks │ │ │ └────────────────┘ │ │ └───────────────────┘ │ └──────────────────────┘ └─────────────────────────┘ ``` Two types of work can be delegated: | Use Case | Description | Request Type | Response Type | |---|------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|---|---| | **Processing** | Perform actions, such as transforming entity data during a workflow transition, performing CRUD ops on other entities, running reports, interacting with other systems, etc. | `EntityProcessorCalculationRequest` | `EntityProcessorCalculationResponse` | | **Criteria Evaluation** | Evaluate a boolean condition (e.g., "should this transition fire?") | `EntityCriteriaCalculationRequest` | `EntityCriteriaCalculationResponse` | ## 1.1 Protocol Summary - **Transport**: gRPC bidirectional streaming via `CloudEventsService.startStreaming` - **Message format**: [CNCF CloudEvents](https://cloudevents.io/) Protobuf envelope with JSON `text_data` payload - **Authentication**: Bearer JWT token in gRPC `Authorization` metadata header - **Auth context propagation**: The platform attaches [CloudEvents Auth Context extension](https://github.com/cloudevents/spec/blob/main/cloudevents/extensions/authcontext.md) attributes to processor and criteria requests, identifying the principal whose action triggered the workflow (see [Section 8](#8-auth-context-on-incoming-requests)) - **Serialization**: All payloads are JSON-serialized inside CloudEvent `text_data` (not binary protobuf) --- # 2. Prerequisites ## 2.1 Proto Definitions Your client needs the following proto files to generate gRPC stubs: - **`cloudevents.proto`** — The standard CloudEvents Protobuf message definition (package `io.cloudevents.v1`) - **`cyoda-cloud-api.proto`** — The Cyoda service definition (package `org.cyoda.cloud.api.grpc`) The service definition: ```protobuf service CloudEventsService { rpc startStreaming(stream io.cloudevents.v1.CloudEvent) returns (stream io.cloudevents.v1.CloudEvent); } ``` The CloudEvent message: ```protobuf message CloudEvent { string id = 1; // Unique event ID (UUID recommended) string source = 2; // URI-reference identifying the event source string spec_version = 3; // Must be "1.0" string type = 4; // Event type string (see Section 4) map attributes = 5; oneof data { bytes binary_data = 6; string text_data = 7; // ← Used by Cyoda (JSON payload) google.protobuf.Any proto_data = 8; } } ``` ## 2.2 JWT Authentication Token Obtain a valid JWT Bearer token from the Cyoda IAM system (OAuth 2.0 client credentials flow). The token must contain: - A valid `caas_org_id` claim (your legal entity ID) - Valid user roles The token is validated on every stream establishment. If the token expires during an active stream, the stream remains valid — re-authentication occurs only when a new stream is opened. ## 2.3 Dependencies (Java/Kotlin Example) For JVM-based clients, the recommended dependencies are: - `io.grpc:grpc-stub`, `io.grpc:grpc-protobuf`, `io.grpc:grpc-netty-shaded` — gRPC runtime - `io.cloudevents:cloudevents-protobuf` — CloudEvents SDK Protobuf format support - `io.cloudevents:cloudevents-core` — CloudEvents SDK core - `com.fasterxml.jackson.core:jackson-databind` — JSON serialization --- # 3. Connection Setup ## 3.1 Create the gRPC Channel ```java ManagedChannel channel = ManagedChannelBuilder .forAddress("cyoda-host.example.com", 50051) .usePlaintext() // Use .useTransportSecurity() for TLS in production .keepAliveTime(30, TimeUnit.SECONDS) .keepAliveTimeout(10, TimeUnit.SECONDS) .build(); ``` **Production TLS**: In production, always use TLS. Replace `.usePlaintext()` with: ```java .useTransportSecurity() .sslContext(/* your SSL context */) ``` ## 3.2 Attach JWT Credentials Create a `CallCredentials` implementation that injects the `Authorization` header: ```java CallCredentials callCredentials = new CallCredentials() { @Override public void applyRequestMetadata(RequestInfo requestInfo, Executor executor, MetadataApplier applier) { executor.execute(() -> { Metadata headers = new Metadata(); headers.put( Metadata.Key.of("Authorization", Metadata.ASCII_STRING_MARSHALLER), "Bearer " + jwtTokenSupplier.get() // Always fetch a fresh token ); applier.apply(headers); }); } }; ``` ## 3.3 Create the Stub ```java CloudEventsServiceGrpc.CloudEventsServiceStub asyncStub = CloudEventsServiceGrpc .newStub(channel) .withCallCredentials(callCredentials) .withWaitForReady(); // Wait for the channel to become ready before sending ``` --- # 4. CloudEvent Type System Every message on the stream is a CloudEvent with a `type` field that determines how to deserialize the JSON `text_data`. Your client must handle the following types: | CloudEvent `type` | Direction | Description | |---|---|---| | `CalculationMemberJoinEvent` | Client → Server | Register as a calculation member | | `CalculationMemberGreetEvent` | Server → Client | Server confirms registration | | `CalculationMemberKeepAliveEvent` | Bidirectional | Heartbeat probe and response | | `EventAckResponse` | Server → Client | Acknowledgment of keep-alive | | `EntityProcessorCalculationRequest` | Server → Client | Process entity data | | `EntityProcessorCalculationResponse` | Client → Server | Return processed entity data | | `EntityCriteriaCalculationRequest` | Server → Client | Evaluate a boolean criterion | | `EntityCriteriaCalculationResponse` | Client → Server | Return criterion result | ## 4.1 Building a CloudEvent To send a CloudEvent on the stream (Java/Kotlin with CloudEvents SDK): ```java // 1. Build the CloudEvents SDK event io.cloudevents.CloudEvent sdkEvent = CloudEventBuilder.v1() .withType("CalculationMemberJoinEvent") // Must match the type table above .withSource(URI.create("my-calculation-member")) .withId(UUID.randomUUID().toString()) .withData(PojoCloudEventData.wrap(event, e -> objectMapper.writeValueAsBytes(e))) .build(); // 2. Serialize to Protobuf EventFormat protobufFormat = EventFormatProvider.getInstance() .resolveFormat("application/cloudevents+protobuf"); byte[] protoBytes = protobufFormat.serialize(sdkEvent); // 3. Parse to the gRPC CloudEvent message io.cloudevents.v1.proto.CloudEvent grpcEvent = io.cloudevents.v1.proto.CloudEvent.parseFrom(protoBytes); ``` ## 4.2 Parsing a Received CloudEvent ```java // From the gRPC StreamObserver.onNext(value): String eventType = value.getType(); String jsonPayload = value.getTextData(); // Deserialize based on type switch (eventType) { case "CalculationMemberGreetEvent": GreetEvent greet = objectMapper.readValue(jsonPayload, GreetEvent.class); break; case "EntityProcessorCalculationRequest": ProcessorRequest req = objectMapper.readValue(jsonPayload, ProcessorRequest.class); break; // ... etc } ``` --- # 5. Connection Lifecycle ## 5.1 Open the Stream ```java StreamObserver requestObserver = asyncStub.startStreaming( new StreamObserver() { @Override public void onNext(CloudEvent value) { // Dispatch based on value.getType() — see Sections 6–8 } @Override public void onError(Throwable t) { // Connection lost — trigger reconnect (see Section 11) } @Override public void onCompleted() { // Server closed the stream — trigger reconnect } } ); ``` ## 5.2 Join Handshake Immediately after opening the stream, send a `CalculationMemberJoinEvent`: ```json { "id": "", "tags": ["my-processor-tag", "production"] } ``` **Tags** are critical for routing. The platform routes processing/criteria requests to members whose tags are a **superset** of the tags configured on the workflow processor/criterion. Tags are case-insensitive (lowercased server-side). The server responds with a `CalculationMemberGreetEvent`: ```json { "id": "", "success": true, "memberId": "", "joinedLegalEntityId": "" } ``` **Store the `memberId`** — you will need it for keep-alive messages. If `success` is `false`, inspect the `error` object for the failure reason (e.g., subscription limit exceeded, invalid token). ### 5.3 Keep-Alive The platform periodically probes your member with `CalculationMemberKeepAliveEvent` messages to verify liveness. You **must** respond to each probe with an `EventAckResponse`. **Server-initiated keep-alive probe** (Server → Client): ```json { "id": "", "memberId": "" } ``` **Required response** (Client → Server): ```json { "id": "", "sourceEventId": "", "success": true } ``` You may also send **client-initiated keep-alive** messages to confirm your own liveness. The server will respond with an `EventAckResponse`. **Timing parameters** (server-side defaults): | Parameter | Default | Description | |---|---|---| | Keep-alive probe interval | 1,000 ms | How often the server probes | | Max idle interval | 3,000 ms | How long before a member is marked as not alive | | Keep-alive check timeout | 1,000 ms | How long the server waits for a probe response | A member is marked not alive when a probe times out (keep-alive check timeout, default 1,000 ms) **and** the max idle interval (default 3,000 ms) has been exceeded since the last successful probe response. Both conditions must hold — a single slow probe within the idle window does not mark the member dead. **If your member is marked as not alive, the platform will not route requests to it.** The member remains registered but idle. Responding to a subsequent keep-alive probe restores the alive status. > ⚠️ **Critical**: Failing to respond to keep-alive probes will cause your member to be marked as dead. Ensure your keep-alive response handler is fast and non-blocking. --- # 6. Handling Processor Requests When an entity reaches a workflow transition with an externalized processor configured to match your member's tags, the platform sends an `EntityProcessorCalculationRequest`. ## 6.1 Request Schema ```json { "id": "", "requestId": "", "entityId": "", "processorId": "", "processorName": "", "transactionId": "", "workflow": { "id": "", "name": "" }, "transition": { "id": "", "name": "", "stateFrom": "", "stateTo": "" }, "parameters": { /* arbitrary JSON configured on the processor */ }, "payload": { "type": "TREE", "data": { /* entity data as JSON — present only if attachEntity=true */ }, "meta": { /* entity metadata */ } } } ``` **Key fields**: - `requestId` — You **must** echo this back in the response for correlation. - `entityId` — The entity being processed. Echo this back. - `processorName` — Use this to dispatch to different business logic handlers. - `parameters` — Arbitrary JSON configured on the processor in the workflow definition (the `context` field). Use for passing configuration to your handler. - `payload.data` — The entity data. Only present when `attachEntity` is `true` in the workflow configuration. > 💡 **Auth context**: The CloudEvent envelope for this request also carries auth context extension attributes (`authtype`, `authid`, `authclaims`) identifying the principal whose action triggered the workflow. See [Section 8](#8-auth-context-on-incoming-requests) for details on how to extract them. ## 6.2 Response Schema ```json { "id": "", "requestId": "", "entityId": "", "success": true, "payload": { "type": "TREE", "data": { /* modified entity data to write back */ } } } ``` **Rules**: 1. **`requestId`** must exactly match the value from the request. 2. **`entityId`** must exactly match the value from the request. 3. If you set `success: true`, the platform applies your `payload.data` to the entity. 4. If you set `success: false`, the platform treats this as a processing failure. Include an `error` object. 5. The `payload` field is optional. If omitted (or `payload.data` is null), no data modification occurs. ## 6.3 Error Response ```json { "id": "", "requestId": "", "entityId": "", "success": false, "error": { "code": "BUSINESS_ERROR", "message": "Detailed error description", "retryable": true } } ``` The `error.retryable` flag tells the platform whether it should retry the request on a different member (if a retry policy is configured). Set to `true` for transient failures and `false` for permanent failures. --- # 7. Handling Criteria Requests When a workflow transition has an externalized criterion configured as a `function`, the platform sends an `EntityCriteriaCalculationRequest`. ## 7.1 Request Schema ```json { "id": "", "requestId": "", "entityId": "", "criteriaId": "", "criteriaName": "", "target": "TRANSITION", "transactionId": "", "workflow": { "id": "", "name": "" }, "transition": { "id": "", "name": "", "stateFrom": "", "stateTo": "" }, "processor": { "id": "", "name": "" }, "parameters": { /* arbitrary JSON */ }, "payload": { "type": "TREE", "data": { /* entity data */ } } } ``` **The `target` field** indicates what the criterion is attached to: | Target | Meaning | Available Context | |---|---|---| | `WORKFLOW` | Workflow-level criterion (selects which workflow applies) | `workflow` | | `TRANSITION` | Transition-level criterion (should this transition fire?) | `workflow`, `transition` | | `PROCESSOR` | Processor-level criterion (should this processor run?) | `workflow`, `transition`, `processor` | | `NA` | Reserved for future use | — | > 💡 **Auth context**: Like processor requests, criteria requests also carry auth context extension attributes on the CloudEvent envelope. See [Section 8](#8-auth-context-on-incoming-requests). ## 7.2 Response Schema ```json { "id": "", "requestId": "", "entityId": "", "success": true, "matches": true, "reason": "Entity meets all validation criteria" } ``` **Key fields**: - `requestId` — Must exactly match the request. - `entityId` — Must exactly match the request. - `matches` — The boolean result: `true` means the criterion is satisfied (transition fires / processor runs), `false` means it is not. - `reason` — Optional human-readable explanation (useful for debugging). If `success: false`, the platform treats it as a criteria evaluation failure (the criterion evaluates to `false` by default). --- # 8. Auth Context on Incoming Requests The platform attaches [CloudEvents Auth Context extension](https://github.com/cloudevents/spec/blob/main/cloudevents/extensions/authcontext.md) attributes to every `EntityProcessorCalculationRequest` and `EntityCriteriaCalculationRequest`. These attributes identify the authenticated principal whose action triggered the workflow execution (e.g., the user who created or updated the entity). ## 8.1 Extension Attributes The auth context is carried as CloudEvent extension attributes in the Protobuf `attributes` map — **not** inside the JSON `text_data` payload. | Attribute | Type | Required | Description | |---|---|---|---| | `authtype` | String | YES | Principal type. One of: `user`, `service_account`, `system`, `unauthenticated`, `unknown` | | `authid` | String | NO | Unique identifier of the principal (UUID). Absent for `system` or `unauthenticated`. | | `authclaims` | String | NO | JSON string containing claims about the principal (e.g., `legalEntityId`, `roles`). Does not contain credentials. | ## 8.2 Auth Type Values | `authtype` Value | Meaning | |---|---| | `user` | A regular authenticated user (JWT-based login) | | `service_account` | A machine-to-machine (M2M) technical user | | `system` | An internal platform trigger (no user context, e.g., scheduled transitions) | | `unauthenticated` | No authentication context was available | | `unknown` | Reserved for future use | ## 8.3 Extracting Auth Context (Java/Kotlin) The attributes are available in the Protobuf CloudEvent's `attributes` map. The keys are the attribute names listed above (no prefix): ```java // From the gRPC StreamObserver.onNext(value): String authType = value.getAttributesMap().get("authtype").getCeString(); String authId = value.getAttributesMap().containsKey("authid") ? value.getAttributesMap().get("authid").getCeString() : null; String authClaimsJson = value.getAttributesMap().containsKey("authclaims") ? value.getAttributesMap().get("authclaims").getCeString() : null; // Parse claims if present if (authClaimsJson != null) { Map claims = objectMapper.readValue(authClaimsJson, Map.class); String legalEntityId = (String) claims.get("legalEntityId"); List roles = (List) claims.get("roles"); // may be null for plain IUser } ``` The exact accessor depends on your gRPC tooling — in Go, use the generated message's `GetAttributes()` method; in Python, dict-like indexing on `.attributes`. See your language's generated proto bindings. ## 8.4 Example Claims JSON ```json { "legalEntityId": "acme-corp", "roles": ["USER", "SUPER_USER"] } ``` For `service_account` (M2M) users: ```json { "legalEntityId": "acme-corp", "roles": ["M2M"] } ``` ## 8.5 Use Cases - **Audit logging**: Record which user triggered the processing for compliance. - **Authorization decisions**: Apply different business logic based on the caller's roles or legal entity. - **Multi-tenant isolation**: Verify the triggering principal belongs to the expected tenant. - **Debugging**: Trace processing failures back to the originating user action. > ⚠️ **Note**: The `authclaims` field never contains credentials (passwords, tokens, secrets). It contains only identity and authorization metadata. --- # 9. Workflow Configuration Your calculation member does not exist in isolation — it is invoked by workflow configurations on the platform side. This section describes how workflows reference externalized processors and criteria, so you understand the relationship between your member's tags/handlers and the platform configuration. ## 9.1 Externalized Processor in Workflow JSON ```json { "workflows": [{ "version": "1", "name": "my-workflow", "initialState": "start", "states": { "start": { "transitions": [{ "name": "process-data", "next": "processed", "manual": false, "processors": [{ "name": "my-processor-function", "executionMode": "SYNC", "config": { "attachEntity": true, "calculationNodesTags": "my-processor-tag", "responseTimeoutMs": 60000, "retryPolicy": "FIXED", "context": "{\"key\": \"value\"}" } }] }] }, "processed": {} } }] } ``` ## 9.2 Processor Configuration Fields | Field | Type | Default | Description | |---|---|---|---| | `name` | string | — | **Required.** The processor name. Sent as `processorName` in the request. | | `executionMode` | string | — | **Required.** One of `SYNC`, `ASYNC_SAME_TX`, `ASYNC_NEW_TX`. | | `config.attachEntity` | boolean | `true` | Whether to send entity data in the request payload. | | `config.calculationNodesTags` | string | `""` | Comma/semicolon-separated tags. Only members whose tags are a superset are eligible. | | `config.responseTimeoutMs` | long | `60000` | How long the platform waits for your response before timing out. | | `config.retryPolicy` | string | `FIXED` | `NONE` — no retry. `FIXED` — retry with fixed delay (default: 3 retries, 500ms delay). | | `config.context` | string | `null` | Arbitrary string passed as `parameters` in the request. Use for handler-specific configuration. | | `config.asyncResult` | boolean | `false` | Enable async response processing (advanced). | | `config.crossoverToAsyncMs` | long | `5000` | Time before switching from sync to async response handling (advanced). | ## 9.3 Execution Modes | Mode | Behavior | |---|---| | `SYNC` | The workflow engine waits for your response within the same transaction. The transition completes only after your response is applied. | | `ASYNC_SAME_TX` | The engine sends the request and can process other work. Your response is applied within the same entity transaction. | | `ASYNC_NEW_TX` | Like `ASYNC_SAME_TX`, but your response is applied in a new transaction. Useful for long-running computations. | > For most use cases, **`SYNC`** is the simplest and recommended starting point. ## 9.4 Externalized Criteria (Function) in Workflow JSON ```json { "transitions": [{ "name": "conditional-transition", "next": "target-state", "manual": false, "criterion": { "type": "function", "function": { "name": "my-criteria-function", "config": { "attachEntity": true, "calculationNodesTags": "my-processor-tag", "responseTimeoutMs": 5000, "retryPolicy": "NONE" } } } }] } ``` Criteria functions use the same `config` fields as processors (except `asyncResult` and `crossoverToAsyncMs`, which are not applicable to criteria). ## 9.5 Retry Policies | Policy | Behavior | |---|---| | `NONE` | No retry. If the member fails or times out, the processing fails. | | `FIXED` | Retries up to N times (default: 3) with a fixed delay (default: 500ms) between retries. Each retry attempts a **different** member if available (the failed member is excluded from selection). | --- # 10. BaseEvent Schema All events on the stream extend the `BaseEvent` schema: ```json { "id": "", "success": true, "error": { "code": "", "message": "", "retryable": false }, "warnings": [""] } ``` - `id` — Every event must have a unique ID (UUID recommended). - `success` — Defaults to `true`. Set to `false` to indicate an error. - `error` — Only relevant when `success` is `false`. The `code` and `message` fields are required within the error object. - `warnings` — Optional array of warning strings. --- # 11. Production Robustness ## 11.1 Reconnection Strategy gRPC streams can be terminated by network issues, server restarts, or load balancer timeouts. Implement automatic reconnection: 1. **Detect disconnection** via `onError` or `onCompleted` on the response observer. 2. **Back off exponentially** — start at 1 second, cap at 60 seconds. 3. **Re-join after reconnect** — every new stream requires a fresh `CalculationMemberJoinEvent`. 4. **Refresh the JWT token** before reconnecting if it is near expiry. ``` ┌─────────┐ onError/onCompleted ┌──────────┐ delay ┌──────────────┐ success ┌──────┐ │ Connected│ ──────────────────────► │ Backoff │ ────────► │ Reconnecting │ ────────────► │ Join │ └─────────┘ └──────────┘ └──────────────┘ └──────┘ ▲ │ failure │ │ ▼ │ │ ┌──────────┐ │ │ │ Backoff │ (increase delay) │ │ └──────────┘ │ └────────────────────────────────────────────────────────────────────────────────────────┘ Greet received ``` ## 11.2 Thread Safety The gRPC `StreamObserver` is **not thread-safe**. If your business logic runs on multiple threads, synchronize all calls to `observer.onNext()`: ```java synchronized (requestObserver) { requestObserver.onNext(cloudEvent); } ``` ## 11.3 Response Timeouts Your client must respond within the configured `responseTimeoutMs` (default: 60 seconds). If you exceed this: - The platform considers the request failed. - If retry policy is `FIXED`, the platform retries with a different member. - Late responses are silently discarded. Design your business logic to complete well within the timeout, accounting for network latency. ## 11.4 Idempotency In edge cases (e.g., network partitions, retries), you may receive the same request more than once. Use the `requestId` as an idempotency key to avoid processing the same request twice. ## 11.5 Graceful Shutdown When shutting down your client: 1. Stop accepting new requests (drain in-flight work). 2. Complete any pending responses and send them. 3. Close the gRPC stream via `requestObserver.onCompleted()`. 4. Shut down the `ManagedChannel` with a grace period: ```java channel.shutdown().awaitTermination(10, TimeUnit.SECONDS); ``` The platform will detect the stream closure and broadcast a member-offline event to the cluster. Pending requests that were in-flight will time out and may be retried on other members. ## 11.6 Multiple Members You can run **multiple calculation member instances** (same or different processes) with the same tags for horizontal scaling and high availability. The platform selects one eligible member per request, preferring members connected to the local cluster node. Running at least two members ensures continued processing if one goes down. ## 11.7 Monitoring Track these metrics in your client: - **Request count** by type (processor vs. criteria) and result (success vs. failure) - **Response latency** (time from receiving request to sending response) - **Keep-alive response time** - **Reconnection count and frequency** - **Stream errors** (by gRPC status code) --- # 12. Quick Reference — Message Flow ``` Client Server │ │ │──── startStreaming() ─────────────────────────►│ (open bidirectional stream) │ │ │──── CalculationMemberJoinEvent ───────────────►│ (register with tags) │◄─── CalculationMemberGreetEvent ───────────────│ (server confirms, assigns memberId) │ │ │◄─── CalculationMemberKeepAliveEvent ───────────│ (periodic heartbeat probe) │──── EventAckResponse ─────────────────────────►│ (ack the probe) │ │ │◄─── EntityProcessorCalculationRequest ─────────│ (process this entity) │──── EntityProcessorCalculationResponse ───────►│ (here's the result) │ │ │◄─── EntityCriteriaCalculationRequest ──────────│ (evaluate this criterion) │──── EntityCriteriaCalculationResponse ────────►│ (matches: true/false) │ │ │──── CalculationMemberKeepAliveEvent ──────────►│ (client-initiated heartbeat) │◄─── EventAckResponse ─────────────────────────│ (server acks) │ │ ``` --- # 13. Troubleshooting | Symptom | Likely Cause | Fix | |---|---|---| | `UNAUTHENTICATED` on stream open | Missing/invalid/expired JWT token | Refresh JWT before connecting. Ensure `Authorization: Bearer ` header. | | `NOT_FOUND` after JWT validation | User not found in Cyoda for the given JWT | Verify user enrollment and legal entity configuration. | | Greet event has `success: false` | Subscription limit exceeded (max client nodes) | Check your subscription plan limits. | | Member marked as not alive | Keep-alive responses too slow or missing | Ensure non-blocking, fast keep-alive handler. Check network latency. | | Requests not arriving | Tags mismatch | Verify your member's tags are a superset of the workflow processor's `calculationNodesTags`. Tags are case-insensitive. | | Requests not arriving | Member on wrong legal entity | Requests only route to members in the same legal entity as the entity owner. | | Request timeout | Business logic too slow | Optimize processing time or increase `responseTimeoutMs` in workflow config. | | Duplicate requests | Retry policy triggered | Implement idempotency using `requestId`. | | Stream drops unexpectedly | Server restart, network issue, idle timeout | Implement reconnection with exponential backoff (Section 11.1). | | `authtype` is `system` unexpectedly | Workflow triggered by an internal platform action (e.g., scheduled transition) or no user context was available | This is expected for system-initiated workflows. If you expect a user context, verify the originating API call is authenticated. | | `authclaims` is missing | The triggering principal is a plain `IUser` without extended claims, or the auth type is `system`/`unauthenticated` | Only `user` and `service_account` auth types include claims. Check `authtype` before parsing claims. |