Lib.rs

Asynchronous
#job-scheduler #scientific-computing #resource-management #async

app job-orchestrator

Asynchronous job orchestrator for managing and routing payloads between services and computing resources with quota tracking

by Rodrigo Vargas Honorato

10 stable releases

Uses new Rust 2024

2.0.0 Feb 20, 2026
1.6.0 Feb 19, 2026
1.4.1 Jan 31, 2026
1.2.0 Dec 18, 2025
1.0.0 Nov 4, 2025

#81 in Asynchronous

MIT license

195KB
4.5K SLoC

job-orchestrator

GitHub License GitHub Release ci Codacy Badge Crates.io Documentation

An asynchronous job orchestration system for managing and distributing computational workloads across heterogeneous computing resources with intelligent quota-based load balancing.

Overview

The job-orchestrator is a central component of WeNMR, a worldwide e-Infrastructure for structural biology operated by the BonvinLab at Utrecht University. It serves as a reactive middleware layer that connects web applications to diverse computing resources.

Key Features:

  • Asynchronous job management with Rust + Tokio
  • Quota-based load balancing per user/service
  • Dual-mode architecture (server + client)
  • RESTful API with Swagger UI
  • Automatic job cleanup

Quick Start

# Using Docker Compose
git clone https://github.com/rvhonorato/job-orchestrator.git
cd job-orchestrator
docker compose up --build

# Submit a job
curl -X POST http://localhost:5000/upload \
  -F "file=@example/run.sh" \
  -F "file=@example/2oob_A.pdb" \
  -F "file=@example/2oob_B.pdb" \
  -F "user_id=1" \
  -F "service=example"

# Check status (returns JSON with job state)
curl http://localhost:5000/download/1

# Download results (when status is "Completed", returns zip)
curl -o results.zip http://localhost:5000/download/1

Documentation

Full Documentation

API Documentation: Available via Swagger UI at http://localhost:5000/swagger/ when running.

Installation

# From crates.io
cargo install job-orchestrator

# From source
git clone https://github.com/rvhonorato/job-orchestrator.git
cd job-orchestrator
cargo build --release

Security

The client component executes user-submitted run.sh scripts with the full privileges of the process. No filesystem isolation (chroot, namespaces, etc.) is enforced — the script has the same access as the client process itself. Input filenames are sanitized, and a built-in script validator rejects scripts containing obviously dangerous patterns (destructive commands, network exfiltration tools, reverse shells, privilege escalation, etc.).

Important: The script validator is a sanity check, not a sandbox. It can be bypassed by determined actors. Input scripts are still expected to come from trusted or semi-trusted sources. True isolation must be enforced at the deployment level.

Recommended hardening when deploying:

  • Run the client inside a container with resource limits (CPU, memory, PIDs)
  • Use a read-only root filesystem (--read-only)
  • Drop all capabilities (--cap-drop=ALL)
  • Place the client on an internal network with no direct external exposure
  • Block outbound network access from the client container (e.g., --network=internal or firewall rules)
  • Do not run the container as root
  • Mount the job data directory with noexec where possible
  • Set a per-job timeout to prevent resource exhaustion

Contributing

Contributions, bug reports, and feature requests are welcome via GitHub Issues.

See the Contributing Guide for details.

License

MIT License - see LICENSE for details.

Contact

Dependencies

~59–83MB
~1.5M SLoC