orchestration IDD (dynamic strategy)
GENERIC-HTTP & GENERIC-HTTPS
Overview
This page describes the GENERIC-HTTP and GENERIC-HTTPS service interface of orchestration, which provides runtime (late) binding between application systems. It’s implemented using protocol, encoding as stated in the following tables:
GENERIC-HTTP
| Profile type | type | Version |
|---|---|---|
| Transfer protocol | HTTP | 1.1 |
| Data encryption | N/A | - |
| Encoding | JSON | RFC 8259 |
| Compression | N/A | - |
GENERIC-HTTPS
| Profile type | type | Version |
|---|---|---|
| Transfer protocol | HTTPS | 1.1 |
| Data encryption | TLS | - |
| Encoding | JSON | RFC 8259 |
| Compression | N/A | - |
Hereby the Interface Design Description (IDD) is provided to the orchestration – Service Description. For further details about how this service is meant to be used, please consult that document.
Interface Description
pull
The service operation request requires an identity related header or certificate and a ServiceOrchestrationRequest JSON encoded body.
POST /serviceorchestration/orchestration/pull HTTP/1.1
Authorization: Bearer <identity-info>
{
"serviceRequirement":{
"serviceDefinition":"kelvin-info",
"operations":[
"query-temperature"
],
"versions":[],
"alivesAt":"2025-10-05T11:35:14Z",
"metadataRequirements":[],
"interfaceTemplateNames":[
"generic-https"
],
"interfaceAddressTypes":[
"HOSTNAME",
"IPV4"
],
"interfacePropertyRequirements":[],
"securityPolicies":[
"TIME_LIMITED_TOKEN_AUTH"
],
"preferredProviders":[]
},
"orchestrationFlags":{
"MATCHMAKING":"true",
"ALLOW_TRANSLATION":"true",
"ONLY_PREFERRED":"false",
"ONLY_EXCLUSIVE":"false",
"ALLOW_INTERCLOUD":"false",
"ONLY_INTERCLOUD":"false"
},
"qosRequirements":{
"max-latency-ms":"10"
},
"exclusivityDuration":600
}
The service operation responds with the status code 200 if called successfully and with a ServiceOrchestrationResponse JSON encoded body.
{
"results":[
{
"serviceId":"temperature-provider2::kelvin-info::1.0.0",
"providerName":"temperature-provider2",
"serviceDefinitition":"kelvin-info",
"version":"1.0.0",
"aliveUntil":"2028-11-08T10:21:11Z",
"exclusiveUntil":"2025-10-05T11:35:14Z",
"metadata":{
"margin-of-error":0.5
},
"interfaces":[
{
"templateName":"generic-https",
"protocol":"https",
"policy":"TIME_LIMITED_TOKEN_AUTH",
"properties":{
"accessAddresses":[
"192.168.56.116",
"tp2.greenhouse.com"
],
"accessPort":8080,
"operations":{
"query-temperature":{
"path":"/query",
"method":"GET"
}
},
"basePath":"/kelvin"
}
}
]
}
],
"warnings":[
"part_time_exclusivity"
]
}
The error codes are 400 if the request is malformed, 401 if the requester authentication was unsuccessful,
403 if the authenticated requester has no permission and
500 if an unexpected error happens. The error response also contains an
ErrorResponse JSON encoded body.
{
"errorMessage": "QoS requirements are present, but QoS support is not enabled",
"errorCode": 400,
"exceptionType": "INVALID_PARAMETER",
"origin": "POST /serviceorchestration/orchestration/pull"
}
subscribe
The service operation request requires an identity related header or certificate and a ServiceOrchestrationSubscriptionRequest JSON encoded body.
POST /serviceorchestration/orchestration/subscribe?trigger=<trigger-value> HTTP/1.1
Authorization: Bearer <identity-info>
{
"orchestrationRequest":{
"serviceRequirement":{
"serviceDefinition":"kelvin-info",
"operations":[
"query-temperature"
],
"versions":[
],
"alivesAt":"2025-10-05T11:35:14Z",
"metadataRequirements":[
],
"interfaceTemplateNames":[
"generic-https"
],
"interfaceAddressTypes":[
"HOSTNAME",
"IPV4"
],
"interfacePropertyRequirements":[
],
"securityPolicies":[
"TIME_LIMITED_TOKEN_AUTH"
],
"preferredProviders":[
]
},
"orchestrationFlags":{
"MATCHMAKING":"true",
"ALLOW_TRANSLATION":"true",
"ONLY_PREFERRED":"false",
"ONLY_EXCLUSIVE":"false",
"ALLOW_INTERCLOUD":"false",
"ONLY_INTERCLOUD":"false"
},
"qosRequirements":{
"max-latency-ms":"10"
},
"exclusivityDuration":600
},
"notifyInterface":{
"protocol":"mqtt",
"properties":{
"topic":"arrowhead/orchestration-push"
}
},
"duration":100000
}
The service operation responds with the status code 200 if called successfully and an existing subscription was overwritten or 201 if the subscription was newly created. The response also contains a UUID text body.
d4d61873-07db-4e93-a16e-9465852bdabf
The error codes are 400 if the request is malformed, 401 if the requester authentication was unsuccessful,
403 if the authenticated requester has no permission and
500 if an unexpected error happens. The error response also contains an
ErrorResponse JSON encoded body.
{
"errorMessage": "Unsupported notify protocol.",
"errorCode": 400,
"exceptionType": "INVALID_PARAMETER",
"origin": "POST /serviceorchestration/orchestration/subscribe"
}
unsubscribe
The service operation request requires an identity related header or certificate and a subscription UUID as path parameter.
DELETE /serviceorchestration/orchestration/unsubscribe/d4d61873-07db-4e93-a16e-9465852bdabf HTTP/1.1
Authorization: Bearer <identity-info>
The service operation responds with the status code 200 if called successfully and an existing subscription was removed and 204 if no matching subscription was found. The success response does not contain any response body.
The error codes are 400 if the request is malformed, 401 if the requester authentication was unsuccessful,
403 if the authenticated requester has no permission and
500 if an unexpected error happens. The error response also contains an
ErrorResponse JSON encoded body.
{
"errorMessage": "Invalid subscription id.",
"errorCode": 400,
"exceptionType": "INVALID_PARAMETER",
"origin": "DELETE /serviceorchestration/orchestration/unsubscribe"
}