Nothing
R/request_retry.R
In gargle: Utilities for Working with Google APIs
Defines functions
announce_retryable_failure
calculate_base_wait
sheets_per_user_quota_exhaustion
retry_after_header
backoff
we_should_retry
request_retry
Documented in
request_retry
#' Make a Google API request, repeatedly
#'
#' Intended primarily for internal use in client packages that provide
#' high-level wrappers for users. It is a drop-in substitute for
#' [request_make()] that also has the ability to retry the request. Codes that
#' are considered retryable: 408, 429, 500, 502, 503.
#'
#' Consider an example where we are willing to make a request up to 5 times.
#'
#' ```
#' try 1 2 3 4 5
#' |--|----|--------|----------------|
#' wait 1 2 3 4
#' ```
#'
#' There will be up to 5 - 1 = 4 waits and we generally want the waiting period
#' to get longer, in an exponential way. Such schemes are called exponential
#' backoff. `request_retry()` implements exponential backoff with "full jitter",
#' where each waiting time is generated from a uniform distribution, where the
#' interval of support grows exponentially. A common alternative is "equal
#' jitter", which adds some noise to fixed, exponentially increasing waiting
#' times.
#'
#' Either way our waiting times are based on a geometric series, which, by
#' convention, is usually written in terms of powers of 2:
#'
#' ```
#' b, 2b, 4b, 8b, ...
#' = b * 2^0, b * 2^1, b * 2^2, b * 2^3, ...
#' ```
#'
#' The terms in this series require knowledge of `b`, the so-called exponential
#' base, and many retry functions and libraries require the user to specify
#' this. But most users find it easier to declare the total amount of waiting
#' time they can tolerate for one request. Therefore `request_retry()` asks for
#' that instead and solves for `b` internally. This is inspired by the Opnieuw
#' Python library for retries. Opnieuw's interface is designed to eliminate
#' uncertainty around:
#' * Units: Is this thing given in seconds? minutes? milliseconds?
#' * Ambiguity around how things are counted: Are we starting at 0 or 1?
#' Are we counting tries or just the retries?
#' * Non-intuitive required inputs, e.g., the exponential base.
#'
#' Let *n* be the total number of tries we're willing to make (the argument
#' `max_tries_total`) and let *W* be the total amount of seconds we're willing
#' to dedicate to making and retrying this request (the argument
#' `max_total_wait_time_in_seconds`). Here's how we determine *b*:
#'
#' ```
#' sum_{i=0}^(n - 1) b * 2^i = W
#' b * sum_{i=0}^(n - 1) 2^i = W
#' b * ( (2 ^ n) - 1) = W
#' b = W / ( (2 ^ n) - 1)
#' ```
#'
#' @section Special cases:
#' `request_retry()` departs from exponential backoff in three special cases:
#' * It actually implements *truncated* exponential backoff. There is a floor
#' and a ceiling on random wait times.
#' * `Retry-After` header: If the response has a header named `Retry-After`
#' (case-insensitive), it is assumed to provide a non-negative integer
#' indicating the number of seconds to wait. If present, we wait this many
#' seconds and do not generate a random waiting time. (In theory, this header
#' can alternatively provide a datetime after which to retry, but we have no
#' first-hand experience with this variant for a Google API.)
#' * Sheets API quota exhaustion: In the course of googlesheets4 development,
#' we've grown very familiar with the `429 RESOURCE_EXHAUSTED` error. As of
#' 2023-04-15, the Sheets API v4 has a limit of 300 requests per minute per
#' project and 60 requests per minute per user per project. Limits for reads
#' and writes are tracked separately. In our experience, the "60 (read or
#' write) requests per minute per user" limit is the one you hit most often.
#' If we detect this specific failure, the first wait time is a bit more than
#' one minute, then we revert to exponential backoff.
#'
#'
#' @param ... Passed along to [request_make()].
#' @param max_tries_total Maximum number of tries.
#' @param max_total_wait_time_in_seconds Total seconds we are willing to
#' dedicate to waiting, summed across all tries. This is a technical upper
#' bound and actual cumulative waiting will be less.
#'
#' @seealso
#' * <https://aws.amazon.com/blogs/architecture/exponential-backoff-and-jitter/>
#' * <https://tech.channable.com/posts/2020-02-05-opnieuw.html>
#' * <https://github.com/channable/opnieuw>
#' * <https://cloud.google.com/storage/docs/retry-strategy>
#' * <https://www.rfc-editor.org/rfc/rfc7231#section-7.1.3>
#' * <https://developers.google.com/sheets/api/limits>
#' * <https://googleapis.dev/python/google-api-core/latest/retry.html>
#'
#' @inherit request_make return
#' @export
#'
#' @examples
#' \dontrun{
#' req <- gargle::request_build(
#' method = "GET",
#' path = "path/to/the/resource",
#' token = "PRETEND_I_AM_TOKEN"
#' )
#' gargle::request_retry(req)
#' }
request_retry <- function(
...,
max_tries_total = 5,
max_total_wait_time_in_seconds = 100
) {
resp <- request_make(...)
tries_made <- 1
per_user_failures <- 0
b <- calculate_base_wait(
n_waits = max_tries_total - 1,
total_wait_time = max_total_wait_time_in_seconds
)
while (we_should_retry(tries_made, max_tries_total, resp)) {
wait_info <- backoff(tries_made, resp, base = b, per_user_failures)
wait_time <- wait_info$wait_time
announce_retryable_failure(resp, tries_made, wait_info)
# n = progress updates per second, which is really about the spinner
n <- 20
cli::cli_progress_bar(
format = "{cli::pb_spin} Retry happens in {cli::pb_eta}",
total = wait_time * n
)
for (i in seq_len(wait_time * n)) {
Sys.sleep(1 / n)
cli::cli_progress_update()
}
resp <- request_make(...)
tries_made <- tries_made + 1
if (sheets_per_user_quota_exhaustion(resp)) {
per_user_failures <- per_user_failures + 1
}
}
if (tries_made > 1) {
code <- httr::status_code(resp)
adjective <- if (code >= 200 && code < 300) "successful!" else "failed :("
gargle_info(c("v" = "Request {tries_made} {adjective}"))
}
invisible(resp)
}
retryable_codes <- c("408", "429", "500", "502", "503")
we_should_retry <- function(tries_made, max_tries_total, resp) {
if (tries_made >= max_tries_total) {
FALSE
} else if (httr::status_code(resp) %in% retryable_codes) {
TRUE
} else {
FALSE
}
}
backoff <- function(
tries_made,
resp,
base = 1,
per_user_failures = 0,
min_wait = 1,
max_wait = 64
) {
wait_time <- stats::runif(1, 0, base * (2^(tries_made - 1)))
wait_rationale <- "exponential backoff, full jitter"
if (wait_time < min_wait) {
wait_time <- min_wait + stats::runif(1)
wait_rationale <- glue(
"{wait_rationale}, clipped to floor of {min_wait} seconds"
)
}
if (wait_time > max_wait) {
wait_time <- max_wait + stats::runif(1)
wait_rationale <- glue(
"{wait_rationale}, clipped to ceiling of {max_wait} seconds"
)
}
if (sheets_per_user_quota_exhaustion(resp) && per_user_failures < 1) {
# 60s plus 1s and some jitter, for some wiggle
wait_time <- 60 + 1 + stats::runif(1)
wait_rationale <- "fixed 60 second wait for first per user quota exhaustion"
}
retry_after <- retry_after_header(resp)
if (!is.null(retry_after)) {
wait_time <- retry_after
wait_rationale <- "'Retry-After' header"
}
list(wait_time = wait_time, wait_rationale = wait_rationale)
}
retry_after_header <- function(resp) {
# TODO: consider honoring Retry-After with status codes besides 429
if (!(httr::status_code(resp) == "429")) {
return(NULL)
}
h <- httr::headers(resp)
retry_after <- resp$headers[["retry-after"]]
if (is.null(retry_after)) {
NULL
} else {
as.numeric(retry_after)
}
}
# targets the most common quota problem, which is the per user per minute quota
# from the Sheets API
sheets_per_user_quota_exhaustion <- function(resp) {
msg <- gargle_error_message(resp)
# the structure of this error and the wording of this message have changed
# over time
any(grepl("per user per 60 seconds", msg)) ||
any(grepl("per minute per user", msg))
}
calculate_base_wait <- function(n_waits, total_wait_time) {
stopifnot(is.numeric(n_waits), length(n_waits) == 1L, n_waits > 0)
stopifnot(
is.numeric(total_wait_time),
length(total_wait_time) == 1L,
total_wait_time > 0
)
b <- total_wait_time / (2^(n_waits) - 1)
gargle_debug(c("i" = "Exponential base for retries is {round(b, 1)}s."))
b
}
announce_retryable_failure <- function(resp, tries_made, wait_info) {
status_code <- httr::status_code(resp)
# add a bit more info, without doing full-blown error processing
status_rpc <- tryCatch(
{
# oops is defined in response_process.R
oops$RPC[[match(status_code, oops$HTTP)]]
},
error = function(e) NULL
)
status_extra <- glue(": {status_rpc}") %||% ""
if (sheets_per_user_quota_exhaustion(resp)) {
status_extra <- glue("{status_extra}, per user quota")
}
gargle_info(c(
"x" = "Request {tries_made} failed [{status_code}{status_extra}].",
"i" = "Will retry in {round(wait_info$wait_time, 1)}s."
))
gargle_debug(c(
"i" = "Wait time strategy: {wait_info$wait_rationale}",
" " = gargle_error_message(resp)
))
}
Try the gargle package in your browser
Any scripts or data that you put into this service are public.
gargle documentation built on Sept. 11, 2025, 1:08 a.m.
R Package Documentation
Browse R Packages
We want your feedback!
Note that we can't provide technical support on individual packages. You should contact the package authors for that.
Defines functions announce_retryable_failure calculate_base_wait sheets_per_user_quota_exhaustion retry_after_header backoff we_should_retry request_retry
Documented in request_retry
#' Make a Google API request, repeatedly
#'
#' Intended primarily for internal use in client packages that provide
#' high-level wrappers for users. It is a drop-in substitute for
#' [request_make()] that also has the ability to retry the request. Codes that
#' are considered retryable: 408, 429, 500, 502, 503.
#'
#' Consider an example where we are willing to make a request up to 5 times.
#'
#' ```
#' try 1 2 3 4 5
#' |--|----|--------|----------------|
#' wait 1 2 3 4
#' ```
#'
#' There will be up to 5 - 1 = 4 waits and we generally want the waiting period
#' to get longer, in an exponential way. Such schemes are called exponential
#' backoff. `request_retry()` implements exponential backoff with "full jitter",
#' where each waiting time is generated from a uniform distribution, where the
#' interval of support grows exponentially. A common alternative is "equal
#' jitter", which adds some noise to fixed, exponentially increasing waiting
#' times.
#'
#' Either way our waiting times are based on a geometric series, which, by
#' convention, is usually written in terms of powers of 2:
#'
#' ```
#' b, 2b, 4b, 8b, ...
#' = b * 2^0, b * 2^1, b * 2^2, b * 2^3, ...
#' ```
#'
#' The terms in this series require knowledge of `b`, the so-called exponential
#' base, and many retry functions and libraries require the user to specify
#' this. But most users find it easier to declare the total amount of waiting
#' time they can tolerate for one request. Therefore `request_retry()` asks for
#' that instead and solves for `b` internally. This is inspired by the Opnieuw
#' Python library for retries. Opnieuw's interface is designed to eliminate
#' uncertainty around:
#' * Units: Is this thing given in seconds? minutes? milliseconds?
#' * Ambiguity around how things are counted: Are we starting at 0 or 1?
#' Are we counting tries or just the retries?
#' * Non-intuitive required inputs, e.g., the exponential base.
#'
#' Let *n* be the total number of tries we're willing to make (the argument
#' `max_tries_total`) and let *W* be the total amount of seconds we're willing
#' to dedicate to making and retrying this request (the argument
#' `max_total_wait_time_in_seconds`). Here's how we determine *b*:
#'
#' ```
#' sum_{i=0}^(n - 1) b * 2^i = W
#' b * sum_{i=0}^(n - 1) 2^i = W
#' b * ( (2 ^ n) - 1) = W
#' b = W / ( (2 ^ n) - 1)
#' ```
#'
#' @section Special cases:
#' `request_retry()` departs from exponential backoff in three special cases:
#' * It actually implements *truncated* exponential backoff. There is a floor
#' and a ceiling on random wait times.
#' * `Retry-After` header: If the response has a header named `Retry-After`
#' (case-insensitive), it is assumed to provide a non-negative integer
#' indicating the number of seconds to wait. If present, we wait this many
#' seconds and do not generate a random waiting time. (In theory, this header
#' can alternatively provide a datetime after which to retry, but we have no
#' first-hand experience with this variant for a Google API.)
#' * Sheets API quota exhaustion: In the course of googlesheets4 development,
#' we've grown very familiar with the `429 RESOURCE_EXHAUSTED` error. As of
#' 2023-04-15, the Sheets API v4 has a limit of 300 requests per minute per
#' project and 60 requests per minute per user per project. Limits for reads
#' and writes are tracked separately. In our experience, the "60 (read or
#' write) requests per minute per user" limit is the one you hit most often.
#' If we detect this specific failure, the first wait time is a bit more than
#' one minute, then we revert to exponential backoff.
#'
#'
#' @param ... Passed along to [request_make()].
#' @param max_tries_total Maximum number of tries.
#' @param max_total_wait_time_in_seconds Total seconds we are willing to
#' dedicate to waiting, summed across all tries. This is a technical upper
#' bound and actual cumulative waiting will be less.
#'
#' @seealso
#' * <https://aws.amazon.com/blogs/architecture/exponential-backoff-and-jitter/>
#' * <https://tech.channable.com/posts/2020-02-05-opnieuw.html>
#' * <https://github.com/channable/opnieuw>
#' * <https://cloud.google.com/storage/docs/retry-strategy>
#' * <https://www.rfc-editor.org/rfc/rfc7231#section-7.1.3>
#' * <https://developers.google.com/sheets/api/limits>
#' * <https://googleapis.dev/python/google-api-core/latest/retry.html>
#'
#' @inherit request_make return
#' @export
#'
#' @examples
#' \dontrun{
#' req <- gargle::request_build(
#' method = "GET",
#' path = "path/to/the/resource",
#' token = "PRETEND_I_AM_TOKEN"
#' )
#' gargle::request_retry(req)
#' }
request_retry <- function(
...,
max_tries_total = 5,
max_total_wait_time_in_seconds = 100
) {
resp <- request_make(...)
tries_made <- 1
per_user_failures <- 0
b <- calculate_base_wait(
n_waits = max_tries_total - 1,
total_wait_time = max_total_wait_time_in_seconds
)
while (we_should_retry(tries_made, max_tries_total, resp)) {
wait_info <- backoff(tries_made, resp, base = b, per_user_failures)
wait_time <- wait_info$wait_time
announce_retryable_failure(resp, tries_made, wait_info)
# n = progress updates per second, which is really about the spinner
n <- 20
cli::cli_progress_bar(
format = "{cli::pb_spin} Retry happens in {cli::pb_eta}",
total = wait_time * n
)
for (i in seq_len(wait_time * n)) {
Sys.sleep(1 / n)
cli::cli_progress_update()
}
resp <- request_make(...)
tries_made <- tries_made + 1
if (sheets_per_user_quota_exhaustion(resp)) {
per_user_failures <- per_user_failures + 1
}
}
if (tries_made > 1) {
code <- httr::status_code(resp)
adjective <- if (code >= 200 && code < 300) "successful!" else "failed :("
gargle_info(c("v" = "Request {tries_made} {adjective}"))
}
invisible(resp)
}
retryable_codes <- c("408", "429", "500", "502", "503")
we_should_retry <- function(tries_made, max_tries_total, resp) {
if (tries_made >= max_tries_total) {
FALSE
} else if (httr::status_code(resp) %in% retryable_codes) {
TRUE
} else {
FALSE
}
}
backoff <- function(
tries_made,
resp,
base = 1,
per_user_failures = 0,
min_wait = 1,
max_wait = 64
) {
wait_time <- stats::runif(1, 0, base * (2^(tries_made - 1)))
wait_rationale <- "exponential backoff, full jitter"
if (wait_time < min_wait) {
wait_time <- min_wait + stats::runif(1)
wait_rationale <- glue(
"{wait_rationale}, clipped to floor of {min_wait} seconds"
)
}
if (wait_time > max_wait) {
wait_time <- max_wait + stats::runif(1)
wait_rationale <- glue(
"{wait_rationale}, clipped to ceiling of {max_wait} seconds"
)
}
if (sheets_per_user_quota_exhaustion(resp) && per_user_failures < 1) {
# 60s plus 1s and some jitter, for some wiggle
wait_time <- 60 + 1 + stats::runif(1)
wait_rationale <- "fixed 60 second wait for first per user quota exhaustion"
}
retry_after <- retry_after_header(resp)
if (!is.null(retry_after)) {
wait_time <- retry_after
wait_rationale <- "'Retry-After' header"
}
list(wait_time = wait_time, wait_rationale = wait_rationale)
}
retry_after_header <- function(resp) {
# TODO: consider honoring Retry-After with status codes besides 429
if (!(httr::status_code(resp) == "429")) {
return(NULL)
}
h <- httr::headers(resp)
retry_after <- resp$headers[["retry-after"]]
if (is.null(retry_after)) {
NULL
} else {
as.numeric(retry_after)
}
}
# targets the most common quota problem, which is the per user per minute quota
# from the Sheets API
sheets_per_user_quota_exhaustion <- function(resp) {
msg <- gargle_error_message(resp)
# the structure of this error and the wording of this message have changed
# over time
any(grepl("per user per 60 seconds", msg)) ||
any(grepl("per minute per user", msg))
}
calculate_base_wait <- function(n_waits, total_wait_time) {
stopifnot(is.numeric(n_waits), length(n_waits) == 1L, n_waits > 0)
stopifnot(
is.numeric(total_wait_time),
length(total_wait_time) == 1L,
total_wait_time > 0
)
b <- total_wait_time / (2^(n_waits) - 1)
gargle_debug(c("i" = "Exponential base for retries is {round(b, 1)}s."))
b
}
announce_retryable_failure <- function(resp, tries_made, wait_info) {
status_code <- httr::status_code(resp)
# add a bit more info, without doing full-blown error processing
status_rpc <- tryCatch(
{
# oops is defined in response_process.R
oops$RPC[[match(status_code, oops$HTTP)]]
},
error = function(e) NULL
)
status_extra <- glue(": {status_rpc}") %||% ""
if (sheets_per_user_quota_exhaustion(resp)) {
status_extra <- glue("{status_extra}, per user quota")
}
gargle_info(c(
"x" = "Request {tries_made} failed [{status_code}{status_extra}].",
"i" = "Will retry in {round(wait_info$wait_time, 1)}s."
))
gargle_debug(c(
"i" = "Wait time strategy: {wait_info$wait_rationale}",
" " = gargle_error_message(resp)
))
}
Try the gargle package in your browser
Any scripts or data that you put into this service are public.
R Package Documentation
Browse R Packages
We want your feedback!
Note that we can't provide technical support on individual packages. You should contact the package authors for that.
Embedding an R snippet on your website
Add the following code to your website.
For more information on customizing the embed code, read Embedding Snippets.