Danube Schema Registry Architecture

Danube's Schema Registry is a centralized service that manages message schemas with versioning, compatibility checking, and validation capabilities. It ensures data quality, enables safe schema evolution, and provides a governance layer for all messages flowing through the Danube messaging system.

This page explains what the Schema Registry is, why it's essential for Danube messaging systems, how it works at a high level, and how to interact with it through APIs and CLI tools.

What is a Schema Registry?

A Schema Registry is a standalone service that stores, versions, and validates schemas, the contracts that define the structure of the messages. Instead of each topic managing its own schema independently, the Schema Registry provides:

Centralized schema management - Single source of truth for all schemas across the messaging infrastructure
Schema versioning - Track changes over time with automatic version management
Compatibility enforcement - Prevent breaking changes that could crash consumers
Schema reuse - Share schemas across multiple topics to reduce duplication
Data governance - Audit who created schemas, when they changed, and track dependencies

Think of it as a "contract repository" where producers and consumers agree on message structure, ensuring everyone speaks the same language.

Key Benefits

✅ Data Quality Guarantee
Every message is validated against its schema before being sent. Invalid messages are rejected, preventing data corruption from reaching consumers.

✅ Safe Schema Evolution
Compatibility checking ensures new schema versions don't break existing consumers. Add fields safely, knowing old clients will continue working.

✅ Reduced Bandwidth
Instead of sending the full schema with every message (potentially kilobytes), only a small schema ID (8 bytes) is transmitted.

✅ Development Velocity
Developers can evolve schemas confidently, knowing the system prevents breaking changes from reaching production.

✅ Operational Insight
Track all schema changes with full metadata: who created it, when, what changed, and which topics use it.

✅ Industry Standard
Follows the proven model from Confluent Schema Registry and Apache Pulsar, ensuring familiar patterns and easy migration.

High-Level Architecture

┌─────────────┐         ┌──────────────────┐         ┌──────────────┐
│  Producer   │         │  Schema Registry │         │   Consumer   │
│             │         │                  │         │              │
│ 1. Register ├────────>│  • Store schemas │<────────┤ 4. Fetch     │
│    Schema   │         │  • Version ctrl  │         │    Schema    │
│             │         │  • Validate      │         │              │
│ 2. Get ID   │<────────┤  • Check compat  │         │ 5. Deserialize│
│             │         │                  │         │    Messages   │
│ 3. Send msg │         └────────┬─────────┘         │              │
│  (with ID)  │                  │                   │              │
└──────┬──────┘                  │                   └──────▲───────┘
       │                         │                          │
       │                    ┌────▼────┐                     │
       │                    │  ETCD   │                     │
       │                    │Metadata │                     │
       │                    └─────────┘                     │
       │                                                    │
       │         ┌──────────────────┐                       │
       └────────>│  Danube Broker   │───────────────────────┘
                 │                  │
                 │ • Route messages │
                 │ • Validate IDs   │
                 │ • Enforce policy │
                 └──────────────────┘

Component Roles

Schema Registry Service
Standalone gRPC service managing all schema operations. Handles registration, retrieval, versioning, and compatibility checking independently from message routing.

ETCD Metadata Store
Persistent storage for all schema metadata, versions, and compatibility settings. Provides distributed consistency across broker cluster.

Danube Broker
Enforces schema validation on messages. Checks that message schema IDs match topic requirements before accepting or dispatching messages.

Producers
Register schemas, serialize messages according to schema, include schema ID in message metadata.

Consumers
Fetch schemas from registry, deserialize messages using correct schema version, optionally validate data structures.

Core Concepts

Subjects

A subject is a named container for schema versions. Typically, one subject corresponds to one message type (e.g., user-events, payment-transactions).

Subjects enable multiple topics to share the same schema
Subject names follow your naming conventions (commonly matches topic name)
Each subject tracks its own version history and compatibility settings

Versions

Every time you register a schema, it creates a new version if the content differs from existing versions.

Versions start at 1 and increment automatically
Versions are immutable once created
Full version history is preserved indefinitely
Duplicate schemas are detected via fingerprinting (no duplicate versions created)

Compatibility Modes

Compatibility modes control what schema changes are allowed when registering new versions:

Mode	Description	When to Use	Example Change
Backward	New schema can read old data	Consumers upgrade before producers	Add optional field
Forward	Old schema can read new data	Producers upgrade before consumers	Remove optional field
Full	Both backward and forward	Critical schemas needing both directions	Only add optional fields
None	No validation	Development/testing only	Any change allowed

Default: Backward (industry standard, covers 90% of use cases)

Each subject has its own compatibility mode, configurable independently.

Schema Types

Danube supports multiple schema formats:

JSON Schema - Fully validated and production-ready
Avro - Apache Avro format (registration and storage ready)
Protobuf - Protocol Buffers (registration and storage ready)
String - UTF-8 text validation
Number - Numeric types
Bytes - Raw binary (no validation)

How It Works

1. Schema Registration

When you register a schema:

# Using CLI
danube-admin-cli schemas register user-events \
  --schema-type json_schema \
  --file user-events.json \
  --description "User activity events"

The Schema Registry:

Validates the schema definition (syntax, structure)
Checks compatibility with existing versions (if mode != None)
Computes fingerprint to detect duplicates
Assigns a unique schema ID (global across all subjects)
Creates new version number (auto-increment)
Stores in ETCD with full metadata (creator, timestamp, description, tags)
Returns schema ID and version to client

2. Schema Evolution

When you update a schema:

# Test compatibility first
danube-admin-cli schemas check user-events \
  --file user-events-v2.json \
  --schema-type json_schema

# If compatible, register new version
danube-admin-cli schemas register user-events \
  --schema-type json_schema \
  --file user-events-v2.json

The compatibility checker:

Retrieves latest version for the subject
Compares old vs. new schema based on compatibility mode
Validates the change is safe (e.g., adding optional field in Backward mode)
Rejects incompatible changes with detailed error message
If compatible, allows registration as new version

3. Message Production

Producers reference schemas when sending messages:

# Using CLI
danube-cli produce \
  -t /default/user-events \
  --schema-subject user-events \
  -m '{"user_id": "123", "action": "login"}'

The flow:

Producer retrieves schema ID from registry (cached locally)
Serializes message according to schema (validation happens client-side)
Includes schema ID in message metadata (8 bytes overhead)
Sends message to broker
Broker validates schema ID matches topic requirements
Message is accepted and routed to consumers

4. Message Consumption

Consumers fetch schemas to deserialize messages:

# Using CLI
danube-cli consume \
  -t /default/user-events \
  -m my-subscription

The flow:

Consumer receives message with schema ID
Fetches schema definition from registry (cached locally)
Deserializes message using schema
Optional: Validates deserialized data against struct definition
Processes validated message

Validation Layers

Danube provides three validation layers for maximum flexibility:

Producer-Side Validation

Applications serialize data according to schema before sending
Schema validation happens during serialization
Catches errors at source before data enters system
Recommended: Always validate at producer

Broker-Side Validation

Broker checks message schema ID matches topic requirements
Three policy levels: None, Warn, Enforce
Enforce mode: Rejects invalid messages before routing
Warn mode: Logs warnings but allows message (for monitoring)
None mode: No validation (development only)

Consumer-Side Validation

Consumers deserialize messages using schema
Optional struct validation at startup to ensure compatibility
Prevents runtime deserialization errors
Recommended: Validate structs at consumer startup

This multi-layer approach ensures data quality at every stage while maintaining flexibility.

Integration Points

CLI Tools

Admin CLI - Schema management operations:

# Register schema
danube-admin-cli schemas register <subject> --file schema.json

# Get schema
danube-admin-cli schemas get --subject <subject>

# List versions
danube-admin-cli schemas versions <subject>

# Check compatibility
danube-admin-cli schemas check <subject> --file new-schema.json

# Set compatibility mode
danube-admin-cli schemas set-compatibility <subject> --mode backward

# Delete version
danube-admin-cli schemas delete <subject> --version N --confirm

Danube CLI - Producer/Consumer with schemas:

# Produce with schema
danube-cli produce -t /topic --schema-subject events -m '{"data": "value"}'

# Consume with schema validation
danube-cli consume -t /topic -m subscription

gRPC API

The Schema Registry exposes 7 core operations via gRPC:

RegisterSchema - Register new schema or version
GetSchema - Retrieve schema by ID
GetLatestSchema - Get newest version by subject
ListVersions - Get all versions for subject
CheckCompatibility - Validate schema changes
DeleteSchemaVersion - Remove specific version
SetCompatibilityMode - Configure compatibility rules

All operations use standard gRPC with Protobuf definitions available in danube-core/proto/SchemaRegistry.proto.

Client SDK

Type-safe Rust client for schema operations:

// Registration
schema_client.register_schema("events")
    .with_type(SchemaType::JsonSchema)
    .with_description("Event schema v1")
    .execute().await?;

// Retrieval
let schema = schema_client.get_latest("events").await?;

// Compatibility check
schema_client.check_compatibility("events", new_schema).await?;

Storage Model

ETCD Organization

Schemas are stored hierarchically in ETCD:

/schemas/
  ├── {subject}/
  │   ├── metadata              # Subject-level metadata
  │   │   ├── compatibility_mode
  │   │   ├── created_at
  │   │   └── created_by
  │   └── versions/
  │       ├── 1                 # Version 1 data
  │       ├── 2                 # Version 2 data
  │       └── 3                 # Version 3 data

Caching Strategy

To optimize performance, Danube uses distributed caching:

Writes go directly to ETCD (source of truth)
Reads served from local cache (eventually consistent)
Updates propagated via ETCD watch mechanism (automatic invalidation)
Schema IDs cached in topics for fast validation (no registry lookup per message)

This pattern ensures cluster-wide consistency while maintaining low-latency reads.

Use Cases

Microservices Event Bus

Share schemas across microservices to ensure contract compliance:

User Service publishes user-registered events
Email Service subscribes and validates against schema
Analytics Service subscribes and validates against same schema
CRM Service subscribes and validates against same schema

All services share one schema subject, ensuring consistent message structure.

Schema Evolution During Upgrades

Safely evolve schemas during rolling deployments:

v1 Schema: {user_id, action}
Add optional field: {user_id, action, email?} → Backward compatible
Deploy consumers first (can read old + new messages)
Deploy producers second (send new format)
All consumers upgraded → Make field required in v3 if needed

Multi-Environment Management

Use different compatibility modes per environment:

Development: mode: none - Fast iteration, no restrictions
Staging: mode: backward - Test compatibility checks
Production: mode: full - Strictest safety

Same schemas, different governance levels based on environment needs.

Data Governance and Compliance

Track all schema changes with audit trail:

Who created each schema version (created_by)
When it was created (timestamp)
What changed (description, tags)
Which topics use which schemas
Full version history for compliance audits

Metrics and Monitoring

The Schema Registry exposes Prometheus metrics for observability:

Schema Validation Metrics:

schema_validation_total - Total validation attempts
schema_validation_failures_total - Failed validations

Labels:

topic - Which topic validation occurred on
policy - Validation policy (Warn/Enforce)
reason - Failure reason (missing_schema_id, schema_mismatch)

Use these metrics to:

Monitor schema adoption across topics
Track validation failure rates
Alert on breaking changes or misconfigurations
Measure impact of schema updates

Summary

The Danube Schema Registry transforms schema management from an ad-hoc, error-prone process into a robust, centralized governance layer. It enables:

Safe evolution of message contracts without breaking consumers
Data quality guarantees through multi-layer validation
Operational visibility with full audit trails and versioning
Developer confidence with compatibility checking and type safety
Production readiness following industry-standard patterns

By centralizing schema management, Danube ensures that all participants in the messaging infrastructure speak the same language, evolving together safely over time.