nebo15 / gandalf.api Goto Github PK

Open-Source Decision Engine and Scoring Table for Big-Data.

License: GNU General Public License v3.0

PHP 92.34% Shell 1.50% API Blueprint 6.16%

decision decision-table decision-making decision-rules decision-engine tables-engine gandalf gndf risk-management anti-fraud

gandalf.api's Introduction

Gandalf

This is a Back-End project for our Open-Source Decision Engine for Big-Data. You can find front-end here: Nebo15/gandalf.web.

API docs is here.

It's build on top of PHP Lumen framework and MongoDB.

How does it work?

Gandalf allows you to define multiple decision tables and to list all decisions that was made.

You can use it for anti-fraud, risk management, as part any other decision making purposes.

Features

Customizable - have the freedom to design a decision rules you need and to manage data structure on the fly in a easy to understand way.
Split testing (aka. Champion Winner) - each table can have infinite number of different variants, you can allocate traffic between them and leave only best one later.
Decision History - all decisions are saved with all metadata: request parameters, decision table at request moment of time and decision itself.
Decision Analytics - you can review all decisions made by your tables and to analyze what rules is triggered more often.
Revisions History - rollback any changes that was made by you or your collaborators.
Tooling. Debug your decision tables directly from Gandalf GUI.
SASS-based Role Model and oAuth 2.0. You can create projects and share access among users to them.
Production-tested - several large NDA-closed PSP's and online lending platforms already use Gandalf.

Use Cases

Decision Table and Rules Engine

There are many cases when you need to make decision based on input data. One good example is a decision to approve or decline lending application. You can setup set of cut-off risk rules to decline applications for a high-risk applicants or to use a decision table to specify what categories of users will receive loan on automatic basis.

Scoring Table

Instead of rule decision you can set a score point that will be added to a final result. (Also you need to pick another type of decision picking called "Sum of passed decisions").

In a result you will get a total of all scores and you can make further decision based on this value.

Support

This project is continuously supported on behalf of our customers and as part of our own SASS-service. We recommend to use it, but feel free to create your own installation of Gandalf.

Feel free to submit tickets in our GitHub repos, we will respond shortly. And if you want some custom conditions, like 99.9% SLA - contact us.

How does it work?

You simply create a decision or scoring table, define some rules and query this table via API.

It makes Gandalf suitable for anti-fraud, loan scoring, transaction scoring, risk management, and as part any other decision making processes.

Table

Decision table is the main entity in Gandalf. It consist of columns that describes API request structure, rows that describe decision-making logic, and cells that represents a single validation rule.

Decision Table

Decision table will apply all rules one by one, until one rule is passed and return value in Decision column for this rule.

Scoring Table

Scoring table will sum all values in Scoring column and return their total.

Columns

Column represent specific request parameter. You can add additional parameters on a fly by adding a column. After saving table with new column all future API request should provide data for it. (Or at least null, if you want to sometimes omit some request parts.)

All request parameters are required!

However, API consumer can provide more data and you don't need to specify column for each of request fields, in this case we will skip unused ones. Best practice is to feed table with any data you have, so you can use it when you need without changing back-end.

Column can have following settings:

Title - human-readable string that describes field in interface.
Field API Key - field name from witch data will be taken. For example, if you add a field with key name than all API consumers should provide JSON with this field: {"name": "Some User Name"}.
Type - type of data that will be submitted in this field. String, Numeric or Boolean.

Presets

You can modify field value for table rows by adding field preset. For example, you have field called salary and it's too routine to add a "salaries greater than 1000" condition in each row, instead you can create preset that turns Numeric salary into Boolean type and simply turn on this validation in each rule.

It should look something like this:

Title = Sufficient Salary;
Field API Key = salary;
Type = Numeric;
Preset Condition = greater than;
Preset Value = 1000.

By checking checkbox below Low Salary column in a row, you will make sure that this row won't pass check until salary is greater than 1000.

Rows

Row represents a single rule in decision table. All rows are checked in order it was defined. (You can reorder it by drag'n'drop.) Basically, you can think about relation between rows as OR logical operators (or as else if's).

Row will return value selected in "Decision" column only if all validation rules in it have passed. Rules are checked in a same order as you see them in a table. You can reorder them by drug'n'drop.

If no one of defined rows passed all conditions, then we will return final_decision that equals a value specified in "Default Decision" dropdown.

IF rule1 then return rule1.decision ELSEIF rule2 then return rule2.decision ELSEIF rule3 then return rule3.decision ELSEIF ruleN then return ruleN.decision ELSE default return default.decision

Cells

All cells in a row represent validations in an AND logical operator style (or you can thing about them as a bunch of conditions joined with && inside if statement).

Sometimes you have a big table and in some rows you prefer to skip some validations. For this case you can select special validation rule called is set. Logically it means that {field_name} is set and this condition will always pass validation.

IF rule1(cellCondition1 && cellCondition2 && cellConditionN) then return rule1.decision ELSEIF ruleN(cellCondition1 && cellCondition2 && cellConditionN) then return ruleN.decision ELSE default return default.decision

Validation Conditions

Available rules can differ based on a column type. Generally you should consider all rules logic as follows: {request_field_vale} {condition} {condition_value}. For some conditions you can omit their value.

String fields support following conditions:

= - validation will pass if field value equals specified value.
!= - validation will pass if field value does not equal specified value.
in - validation will pass if field value eqals to one of listed values. Separate values by comma with space. If searched string have comma you can surround value by single qoute. For example: d,e in a, b, c, 'd,e' will return true.
not in - validation will pass if field value does not eqal to any of listed values.
contains - validation will pass if field value is contains specified value.
is set - validation will always pass. (Use it to skip some columns.)
is null - validation will pass if field value equals null. (Use it check if some column is skipped.)

Numeric supports:

= - validation will pass if field value equals specified value.
> - validation will pass if field value is greater than specified value.
>= - validation will pass if field value is greater or equal to a specified value.
< - validation will pass if field value is less than specified value.
<= - validation will pass if field value is less or equal to a specified value.
!= - validation will pass if field value does not equal specified value.
in - validation will pass if field value eqals to one of listed values. Separate values by comma with space. If searched string have comma you can surround value by single qoute. For example: d,e in a, b, c, 'd,e' will return true.
not in - validation will pass if field value does not eqal to any of listed values.
is set - validation will always pass. (Use it to skip some columns.)
is null - validation will pass if field value equals null. (Use it check if some column is skipped.)

Boolean supports:

true - will pass if field value is true, 1, "1" or '1'.
false - will pass if field value is false, 0, "0" or '0'.
is set - validation will always pass. (Use it to skip some columns.)
is null - validation will pass if field value equals null. (Use it check if some column is skipped.)

Installation Guide

Docker

Gandalf can be deployed as Docker containers, they can be found in official DockerHub repos:

nebo15/gandalf.api - REST API back-end.
nebo15/gandalf.web - Management front-end.
nebo15/alpine-mongodb - Nebo #15 MongoDB container. Feel free to use any MongoDB containers instead.

Full Docs

You can find a full GUI and API docs on this page.

gandalf.api's People

Contributors

Stargazers

Watchers

Forkers

maduhu madmaxcode bjhorn hirashiki charles-qi-chen robertbrook davgit number0 zeagord koirala benli2023 warehousman alex-catalyst amirsaga sujitrulz aminhossein edenlabllc diegocaldeira moshekruger soup5678 pawel-detka piotrekgie thecocce landofthepanda walterayalae pandiyanmkm brunopazz dividofinancialservices aleksanderfundu xiaoqiyukitang hamedhr nirdshabo blueshift-brasil mucalo fazley-kholil-cko sakho3600 whiteeyehansel mathielen maiax pulin2004 straybro izzyp datoslabs shism2 thiagobarradas

gandalf.api's Issues

Possible to use different DB?

Can use this with something else than MongoBD? I would prefer PostgreSQL. Will this just work or did you put MongoDB specific code on top of the Laravel DB abstraction library? Thanks!

Add Gandalf to Heroku Addons

I think It will be cool to add Gandalf to Heroku marketplace, that anyone can add it for free in his project. What do you think about it?

Docs: https://www.heroku.com/elements/join

Not able to run the gandalf.api in browser

Hello,

I'm new to Docker. I have successfully installed and using the command docker-compose up I'm able to run the servers too. But when I access the site https://gandalf.dev it is showing This site can’t be reached message in Chrome.
What I have noticed is the volumes are not mapped including the gandalf.api.conf and vendor folder is not created in the container.

How can I fix this issue?

Thanks in advance,
Saneesh

Please mention in your documentation about installing Mongo PHP Drivers.

I dont think puppet handles the installation of the MongoPHP Drivers and the vagrant box does not either.

Bad performance when listing history of decisions

I think we have some issues with pagination there. PR's are welcome.

Gandalf Web does not display Variants with Conditions like the Data Shows.

Gandalf Web does not display the conditions for variants in the same order as from the Object or data in MongoDB. Please see the data from MongoDB and compare with screen shot from Gandalf Web. All fields for Rupee should be $is_set, but its taking properties from other fields. Thank you.

"variants" : [
		{
			"title" : "name",
			"description" : "description",
			"default_title" : "You may pass",
			"default_description" : "You may pass",
			"probability" : 0,
			"default_decision" : "You may pass",
			"rules" : [
				{
					"than" : "You are a NEWB",
					"title" : "You are a NEWB",
					"description" : "You are a NEWB",
					"conditions" : [
						{
							"field_key" : "profession",
							"condition" : "$eq",
							"value" : true,
							"_id" : ObjectId("58d3a8de917f1a6d63150fdc")
						},
						{
							"field_key" : "level",
							"condition" : "$eq",
							"value" : false,
							"_id" : ObjectId("58d3a8de917f1a6d63150fdd")
						},
						{
							"field_key" : "key",
							"condition" : "$eq",
							"value" : true,
							"_id" : ObjectId("58d3a8de917f1a6d63150fde")
						},
						{
							"field_key" : "rupee",
							"condition" : "$is_set",
							"value" : true,
							"_id" : ObjectId("58d3a8de917f1a6d63150fdf")
						}
					],
					"_id" : ObjectId("58d3a8de917f1a6d63150fe0")
				},
				{
					"than" : "You are not a WIZARD",
					"title" : "You are not a WIZARD",
					"description" : "You are not a WIZARD",
					"conditions" : [
						{
							"field_key" : "profession",
							"condition" : "$eq",
							"value" : false,
							"_id" : ObjectId("58d3a8de917f1a6d63150fe1")
						},
						{
							"field_key" : "level",
							"condition" : "$is_set",
							"value" : true,
							"_id" : ObjectId("58d3a8de917f1a6d63150fe2")
						},
						{
							"field_key" : "key",
							"condition" : "$is_set",
							"value" : true,
							"_id" : ObjectId("58d3a8de917f1a6d63150fe3")
						},
						{
							"field_key" : "rupee",
							"condition" : "$is_set",
							"value" : true,
							"_id" : ObjectId("58d3a8de917f1a6d63150fe4")
						}
					],
					"_id" : ObjectId("58d3a8de917f1a6d63150fe5")
				},
				{
					"than" : "You do not have the KEY",
					"title" : "You do not have the KEY",
					"description" : "You do not have the KEY",
					"conditions" : [
						{
							"field_key" : "profession",
							"condition" : "$eq",
							"value" : true,
							"_id" : ObjectId("58d3a8de917f1a6d63150fe6")
						},
						{
							"field_key" : "level",
							"condition" : "$eq",
							"value" : true,
							"_id" : ObjectId("58d3a8de917f1a6d63150fe7")
						},
						{
							"field_key" : "key",
							"condition" : "$eq",
							"value" : false,
							"_id" : ObjectId("58d3a8de917f1a6d63150fe8")
						},
						{
							"field_key" : "rupee",
							"condition" : "$is_set",
							"value" : true,
							"_id" : ObjectId("58d3a8de917f1a6d63150fe9")
						}
					],
					"_id" : ObjectId("58d3a8de917f1a6d63150fea")
				}
			],
			"_id" : ObjectId("58d3a8de917f1a6d63150feb")
		}
	],

Any chance of having a webhook invoked when a table gets modified?

Would be great for clearing remote applications' caches.

Any hint of where I should implement that myself to send you a PR?

Thanks
Markus

Error: certificate has expired

Here is a full messages

021-01-07-06:36:34 0|app      | {"message":"Gandalf is started to listen at localhost:8080\n","timestamp":"2021-01-07T06:36:34.603Z","type":"out","process_id":0,"app_name":"app"} 
[STREAMING] Now streaming realtime logs for [all] processes 
2021-09-02-10:08:25 0|app      | {"message":"Gandalf is started to listen at localhost:8080\n","timestamp":"2021-09-02T10:08:25.141Z","type":"out","process_id":0,"app_name":"app"} 
2021-10-01-13:48:44 0|app      | {"message":"Error: certificate has expired\n    at Error (native)\n    at TLSSocket.<anonymous> (_tls_wrap.js:1079:38)\n    at emitNone (events.js:86:13)\n    at TLSSocket.emit (
events.js:185:7)\n    at TLSSocket._finishInit (_tls_wrap.js:603:8)\n    at TLSWrap.ssl.onhandshakedone (_tls_wrap.js:433:38)\n","timestamp":"2021-10-01T13:48:44.065Z","type":"err","process_id":0,"app_name":"app

Do you have a instruction to resolve CERT for Gandalf API app?

JSON Path in fields extractor

It will be nice to be able to extract value from deep objects in json response inside a "Field" config.

You should set correct 'X-Application' header

What is the expected x-appliaction header here?
Also testing the https://gandalf4.docs.apiary.io/#reference/projects/project-consumers/list-all-users leads to the same error as I have in a local installation...

422 Unprocessable Entity error(Validation failed)

Hi All,
My cURL is looks like this for a test rule.

$ curl -u CLIENT_ID:CLIENT_SECRET -H 'X-Application: <applicaiton id>' https://api.gndf.io/api/v1/tables/<some alphanumeric>/decisions \ -d '{"created":8}'

with cURL in PHP it works fine.

But, when I call this from Laravel(GuzzleHttp) the following error is showing.

{"meta":{"code":422,"error":"validation","error_message":"Validation failed"},"data":{"created":["validation.present"]}}

What could be the reason?

Regards,
Saneesh

gandalf.api installation with docker

@AndrewDryga
Hello Guys,
I have used following steps to setup gandalf using docker

dcoker-compose up
docker exec -it "php-container-id" /bin/ash
php artisan migrate --seed
when i am using php artisan command then i have getting following error -

[Symfony\Component\Debug\Exception\FatalThrowableError] Class 'Barryvdh\LaravelIdeHelper\IdeHelperServiceProvider' not found

I have also run composer install and composer update command but getting same error.

Please help to setup gandalf using docker.

Thanks and Regards
Prince Verma

Client and User Management

Hi,

I have been evaluating this project for several days and looking through the code, however, I have been unable to locate any client management. How do I register the UI client user with the API application? I assume user management happens after I can login to the UI which is complaining about invalid_clinet due to not knowing how to manage that data.

Thanks,
Alex

Website BAD CERTIFICATE

cert expired on main website. sigh. why not use your own rule engine to test for expired cert?

Multiple matches in Decision Table

Hi Andrew,

is it possible to search the Decision Table for all matches, instead of only the first match?

Best wishes,
Paul

Recommend Projects

React

A declarative, efficient, and flexible JavaScript library for building user interfaces.
Vue.js

🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript

TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
TensorFlow

An Open Source Machine Learning Framework for Everyone
Django

The Web framework for perfectionists with deadlines.
Laravel

A PHP framework for web artisans
D3

Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

javascript

JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
web

Some thing interesting about web. New door for the world.
server

A server is a program made to process requests and deliver data to clients.
Machine learning

Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Visualization

Some thing interesting about visualization, use data art
Game

Some thing interesting about game, make everyone happy.

Recommend Org

Facebook

We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft

Open source projects and samples from Microsoft.
Google

Google ❤️ Open Source for everyone.
Alibaba

Alibaba Open Source for everyone
D3

Data-Driven Documents codes.
Tencent

China tencent open source team.