WebSocket Protocol

Endpoint: ws://<host>:2900/v1/ws
Transport: RFC 6455
Message format: JSON text frames (server may send gzip-compressed binary frames for larger payloads)

Connection And Authentication

Upgrade

Client opens GET /v1/ws.

Server can reject pre-upgrade for:

shutdown mode
origin policy failure
strict origin check with missing Origin header

Origin policy

Origin allow-list resolution:

security.allowed_ws_origins if non-empty
otherwise security.cors.allowed_origins

Post-connect auth (required)

JSON

1{2  "type": "authenticate",3  "method": "jwt",4  "token": "<JWT_TOKEN>"5}

Success:

JSON

1{2  "type": "auth_success",3  "user_id": "u_...",4  "role": "Dba"5}

Failure:

JSON

1{2  "type": "auth_error",3  "message": "Invalid username or password"4}

Client Messages

authenticate
subscribe
next_batch
unsubscribe

`subscribe`

JSON

1{2  "type": "subscribe",3  "subscription": {4    "id": "orders_live",5    "sql": "SELECT * FROM app.orders WHERE status = 'open'",6    "options": {7      "batch_size": 200,8      "last_rows": 100,9      "from": 1234510    }11  }12}

`next_batch`

JSON

1{2  "type": "next_batch",3  "subscription_id": "orders_live",4  "last_seq_id": 123455}

`unsubscribe`

JSON

1{2  "type": "unsubscribe",3  "subscription_id": "orders_live"4}

Server Messages

auth_success / auth_error
subscription_ack
initial_data_batch
change
error

`subscription_ack`

JSON

1{2  "type": "subscription_ack",3  "subscription_id": "orders_live",4  "total_rows": 0,5  "batch_control": {6    "batch_num": 0,7    "has_more": true,8    "status": "loading",9    "last_seq_id": 12345,10    "snapshot_end_seq": 1300011  },12  "schema": [13    {"name":"id","data_type":"BigInt","index":0}14  ]15}

`initial_data_batch`

JSON

1{2  "type": "initial_data_batch",3  "subscription_id": "orders_live",4  "rows": [{"id":1,"status":"open","_seq":12346}],5  "batch_control": {6    "batch_num": 0,7    "has_more": true,8    "status": "loading",9    "last_seq_id": 12346,10    "snapshot_end_seq": 1300011  }12}

`change`

JSON

1{2  "type": "change",3  "subscription_id": "orders_live",4  "change_type": "insert",5  "rows": [{"id":2,"status":"open","_seq":13001}]6}

change_type values:

insert
update
delete

`error`

JSON

1{2  "type": "error",3  "subscription_id": "orders_live",4  "code": "INVALID_SQL",5  "message": "..."6}

Limits

rate_limit.max_subscriptions_per_user (default 10)
hard cap per connection: 100
security.max_ws_message_size (default 1MB)
rate_limit.max_messages_per_sec (default 50)
auth timeout: websocket.auth_timeout_secs (default 3)

Error Codes

Common WebSocket protocol/error codes include:

AUTH_REQUIRED
INVALID_SUBSCRIPTION_ID
SUBSCRIPTION_LIMIT_EXCEEDED
INVALID_SQL
RATE_LIMIT_EXCEEDED
MESSAGE_TOO_LARGE
UNSUPPORTED_DATA
PROTOCOL

For endpoint auth matrix and SQL payload contracts, see HTTP API Reference.