Idempotency is Key
Idempotence1 is a property of software that regardless of the number of times an operation is run, the final results (its output + side effects) are equivalent to running it only once.
If you’re performing an action at a given time, you could schedule a cron job and perform it at the desired time. The idempotent way of doing this would also include checks against if you’ve already done an action before.
In some software, this might be overkill. In many cases, this property of software is critical to your success, whether it be software that performs financial transactions2 or sends notifications to users.
Why do I need to worry about this?
There are many reasons software might require this property:
- your server went down while the code may or may not have performed an action
- you may need to update the code to be able to execute it again, but without side effects due to re-running the code
- your data pipeline received data late, and therefore needs to be re-run for the late time-range
In any case, it should only take a little extra thought to figure out that you’ve run into any case like these.
With cloud computing being so common, failure is almost expected of your hardware3. How you handle error scenarios is all based on risk. You’ll want to apply idempotency to software where you can’t take the risk that your code will generate additional side effects if re-run.
Example 1: Notifications
Email marketing is a common solution to reaching out to the masses about your product, blog, or feature update. A simple solution could be:
- Gather a list of recipients that need to be emailed
- Iterate over the list and email them
However, there could be issues with running this in production. This process is not idempotent, and can create a larger issue if it fails in the middle or is processed multiple times.
If we want to enable idempotency, you could do the following (changes in bold):
- Gather a list of recipients that haven’t received this email
- Iterate over the list and email them, marking them off as you go
Now, if you run the process again, it will only notify those that haven’t already received the email.
Example 2: Data Processing
Data is another common example that is ever-present in software nowadays. Something as simple as a user login count could easily be implemented like this:
UPDATE users SET login_count = login_count + 1 WHERE id = <id>;
As we can see, there are two main issues with this statement:
- It’s not idempotent! Running it multiple times (software bug, login spam) will result in a invalid count that shows signs of the number of times it was run.
- You can’t retrace your steps! You only have the final count in the DB; unless you load a DB backup and re-run your API logs against it, you can’t reconcile the login count of a user if there was an issue.
Let’s try this again, but include a path for idempotency. If we keep a log of logins that are performed by users, we could utilize this table:
INSERT INTO user_logins
(id, user_id, timestamp)
VALUES
(<id>, <user_id>, now())
ON CONFLICT(id) DO NOTHING;
| ID | User ID | Timestamp |
|---|---|---|
| 1 | 1 | 2022-02-09 00:02:23 |
| 2 | 1 | 2022-02-09 00:02:45 |
| 3 | 2 | 2022-02-09 00:02:46 |
| 4 | 2 | 2022-02-09 00:03:01 |
| 5 | 2 | 2022-02-09 00:04:26 |
Since we assign an ID to each login request, we can dedup the results by the ID column. You can then perform a daily aggregation:
INSERT INTO daily_user_counts
SELECT timestamp::date, user_id, COUNT(1) as count
FROM user_logins
WHERE timestamp::date = <date>
ON CONFLICT (user_id, date) UPDATE
SET count = excluded.count;
If this is ran one time or twenty times for the date '2022-02-09', you’ll
always get the following result:
| User ID | Count | Date |
|---|---|---|
| 1 | 2 | 2022-02-09 |
| 2 | 3 | 2022-02-09 |
This way, the entire data process4 is idempotent – the final results don’t show any sign of the number of times it was run, and can safely be performed multiple times and deliver the same, accurate results.
What does this mean for “the bottom line”?
Ever heard a business professional complain that your software team spends too much time testing?
I find it important to be able to talk to non-technical colleagues about the importance of technical concepts. I find idempotency to bring a couple key factors to software that a business benefits from.
The lack of custom processes when something goes wrong. If a data pipeline fails, you can fix the problem then run things back up-to-speed. You don’t need to isolate data and come up with a custom patch to fix the time range you need to address. This adds up to faster turnaround times and overall safer processes.
Good software surprises your users and builds trust. When software Just WorksTM, then you could end up with software that surprises your users. It’s like finding your hard work saved on a computer that crashed – that additional care to keep track of yout state and make processes re-runnable makes for happier users and better trust in your software.
Idempotency is Key
This was just a brief introduction to the caveats of idempotency. It helps you build reliable software processes that can handle more of the unknowns that critical production systems can throw at you. When you have a critical process, idempotency can be one of the best tools to create a more resilient software solution.
A great example is Stripe’s Idempotency Key ↩︎
When you think in terms of the blast radius, the question of failure is no longer a question of if but a matter of when. AWS Fundamentals ↩︎
The process is idempotent, but the transform is reproducable. Let’s Get ‘Idempotence’ Right ↩︎