pbflags

module
v0.2.1 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Apr 2, 2026 License: MIT

README

pbflags

Protocol Buffer-based feature flags with type-safe code generation, multi-tier caching, and a never-throw guarantee.

Note: This project is a learning exercise and research exploration into protobuf-driven feature flag design. It was extracted from a production system to study the patterns independently. If you're building a real product and need feature flags, you probably want Flipt, OpenFeature, or Unleash instead. Those are battle-tested, well-supported, and have ecosystems around them. pbflags exists because we found the proto-as-source-of-truth pattern interesting and wanted to share it.

Overview

pbflags lets you define feature flags as protobuf messages and generates type-safe client code for Go and Java (with TypeScript, Rust, and Node planned). Flags are evaluated by a standalone server that supports three deployment modes:

  • Root mode: Direct PostgreSQL access, serves as the source of truth
  • Proxy mode: Connects to an upstream evaluator, reduces database connection fan-out
  • Combined mode: Root mode with an embedded admin API

Architecture

┌─────────────┐     ┌─────────────────┐     ┌────────────┐
│  Your App   │────▶│  pbflags-server  │────▶│ PostgreSQL │
│ (Go/Java)   │     │  (evaluator)     │     │            │
└─────────────┘     └─────────────────┘     └────────────┘
  Generated            Three-tier cache:       Flag state,
  type-safe            - Kill set (30s)        overrides,
  client               - Global state (5m)     audit log
                       - Overrides (5m LRU)

Quick Start

1. Define flags in proto
syntax = "proto3";
import "pbflags/options.proto";

message Notifications {
  option (pbflags.feature) = {
    id: "notifications"
    description: "Notification delivery controls"
    owner: "platform-team"
  };

  bool email_enabled = 1 [(pbflags.flag) = {
    description: "Enable email notifications"
    default: { bool_value: { value: true } }
    layer: LAYER_USER
  }];

  string digest_frequency = 2 [(pbflags.flag) = {
    description: "Digest email frequency"
    default: { string_value: { value: "daily" } }
    layer: LAYER_GLOBAL
  }];
}
2. Generate client code
# Install the codegen plugin
go install github.com/SpotlightGOV/pbflags/cmd/protoc-gen-pbflags@latest

# Generate via buf
buf generate
3. Use in your application (Go)
// Create a client connected to the evaluator
client := notificationsflags.NewNotificationsFlagsClient(evaluatorClient)

// Type-safe flag access with compiled defaults
emailEnabled := client.EmailEnabled(ctx, userID)  // bool
frequency := client.DigestFrequency(ctx)           // string
4. Use in your application (Java)
// Create via factory method
NotificationsFlags flags = NotificationsFlags.forEvaluator(evaluator);

// Type-safe flag access
boolean emailEnabled = flags.emailEnabled().get(userId);
String frequency = flags.digestFrequency().get();

Running the Server

Docker Compose (quickest)
docker compose -f docker/docker-compose.yml up

This starts PostgreSQL + pbflags-server in combined mode (evaluator + admin API).

Binary
# Root mode (direct database access)
pbflags-server \
  --database=postgres://user:pass@localhost:5432/mydb?sslmode=disable \
  --descriptors=descriptors.pb \
  --listen=:9201

# Combined mode (root + admin API)
pbflags-server \
  --database=postgres://user:pass@localhost:5432/mydb?sslmode=disable \
  --descriptors=descriptors.pb \
  --listen=:9201 \
  --admin=:9200

# Proxy mode (connects to upstream)
pbflags-server \
  --server=http://root-evaluator:9201 \
  --descriptors=descriptors.pb \
  --listen=:9201
Docker Hub
docker pull ghcr.io/spotlightgov/pbflags-server

Configuration

Environment variables override CLI flags:

Variable Description
PBFLAGS_DESCRIPTORS Path to descriptors.pb
PBFLAGS_DATABASE PostgreSQL connection string (root mode)
PBFLAGS_SERVER Upstream evaluator URL (proxy mode)
PBFLAGS_LISTEN Evaluator listen address (default: localhost:9201)
PBFLAGS_ADMIN Admin API listen address (enables combined mode)

Flag Evaluation Precedence

  1. Global KILLED -> compiled default (polled every ~30s)
  2. Per-entity override KILLED/DEFAULT -> compiled default
  3. Per-entity override ENABLED -> override value
  4. Global DEFAULT -> compiled default
  5. Global ENABLED -> configured value
  6. Fallback -> compiled default (always safe)

Key Design Principles

  • Never-throw guarantee: All evaluation errors return the compiled default
  • Type-safe code generation: Generated interfaces with compile-time type checking
  • Graceful degradation: Stale cache served during outages, compiled defaults as last resort
  • Fast kill switches: ~30s polling for emergency shutoffs
  • Immutable identity: Flag identity is feature_id/field_number, safe to rename fields
  • Audit trail: All state changes logged with actor and timestamp

Repository Structure

pbflags/
├── proto/pbflags/          # Core proto definitions (options, types, services)
├── proto/example/          # Example feature flag definitions
├── gen/                    # Generated Go protobuf code
├── cmd/
│   ├── pbflags-server/     # Evaluator server binary
│   └── protoc-gen-pbflags/ # Code generation plugin
├── internal/
│   ├── evaluator/          # Evaluation engine, caching, health tracking
│   ├── admin/              # Admin API (flag management, audit log)
│   └── codegen/            # Code generators (Go, Java)
├── clients/
│   └── java/               # Java client library (Gradle)
├── db/migrations/          # PostgreSQL schema
├── docker/                 # Dockerfile and docker-compose
└── Makefile

Clients

Language Status Package
Go Stable go get github.com/SpotlightGOV/pbflags
Java Stable org.spotlightgov.pbflags:pbflags-java
TypeScript Planned -
Rust Planned -
Node Planned -

License

MIT

Directories

Path Synopsis
cmd
pbflags-server command
Binary pbflags-server is the feature flag evaluation service.
 Binary pbflags-server is the feature flag evaluation service.
pbflags-sync command
pbflags-sync reads a descriptors.pb file and syncs feature/flag definitions into PostgreSQL.
 pbflags-sync reads a descriptors.pb file and syncs feature/flag definitions into PostgreSQL.
protoc-gen-pbflags command
protoc-gen-pbflags generates type-safe flag client code from feature proto definitions.
 protoc-gen-pbflags generates type-safe flag client code from feature proto definitions.
gen
example
pbflags
pbflags/v1
pbflags/v1/pbflagsv1connect
internal
admin
codegen/gogen
Package gogen generates Go flag client code from feature proto definitions.
 Package gogen generates Go flag client code from feature proto definitions.
codegen/javagen
Package javagen generates Java flag client code from feature proto definitions.
 Package javagen generates Java flag client code from feature proto definitions.
evaluator

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.