Skip to content
Documentation

Synchronization

When users connect in Osvauld, they synchronize both their network knowledge and shared resource state. This process ensures users can discover collaborators and maintain up-to-date views of shared documents and permissions.

Synchronization Scope

Section titled “Synchronization Scope”

Synchronization focuses on shared context between two users rather than complete data sync. When Alice and Bob synchronize, they exchange:

User Information:

  • Other users who have access to the same resources
  • Device information for those mutual connections
  • Connection tokens to enable direct peer relationships

Resource Information:

  • Shared documents and their current state
  • Permission changes and new collaborators
  • Vector clock information for conflict detection

This creates a transitive discovery network where sharing documents enables collaborators to discover and connect to each other directly.

Manifest-Based Synchronization

Section titled “Manifest-Based Synchronization”

Discovery Process

Section titled “Discovery Process”

User sync uses a three-phase manifest comparison:

Manifest-based synchronization flow diagram showing manifest generation, comparison, and data exchange

Manifest Generation

Section titled “Manifest Generation”

When Alice initiates sync with Bob, she creates a manifest containing both user and resource information by examining their shared context. The system first identifies all resources that both users have shared access to, then gathers information about other users who also have access to those same resources, along with their device information. This creates a snapshot of their mutual collaboration network.

The manifest includes user identities with their associated devices, and resource metadata containing vector clocks and share record information. This allows both peers to understand not just who they mutually know, but also the current state of shared resources.

Manifest Comparison

Section titled “Manifest Comparison”

The comparison process identifies gaps in both user knowledge and resource state. For users, the system finds people that one peer knows but the other doesn’t, as well as differences in device lists for users they both know. For resources, it compares metadata to determine which shared documents need synchronization.

The comparison examines share records to detect permission changes and vector clocks to identify resources where content may have diverged. Resources requiring sync are those where either the collaboration permissions have changed or the content state differs between peers.

Delegated Connection Token Generation

Section titled “Delegated Connection Token Generation”

The key innovation in synchronization is automatic generation of delegated connection tokens with embedded proof chains. When Alice shares information about Carol with Bob, she creates a connection token that allows Bob to connect directly to Carol, even if Alice doesn’t have a direct permanent token with Carol.

Embedded Proof Chain Mechanism

Section titled “Embedded Proof Chain Mechanism”

Unlike traditional UCAN delegation that requires resolving proof CIDs, Osvauld embeds the complete proof chain within each token:

  1. Alice’s Token for Carol: May itself be a delegated token (e.g., Alice ← Dave → Carol)
  2. Generate Token for Bob: Creates new token (Bob ← Alice → Carol path)
  3. Embed Complete Chain: The full proof chain is embedded in the facts field
  4. Validation to Root: Bob can validate all the way back to Carol’s root authority

Token Creation Process

Section titled “Token Creation Process”

For each user that one peer knows but the other doesn’t, the system generates a delegated connection token. This process takes the existing UCAN token that Alice has for Carol (which may itself be delegated from another user) and creates a new token that allows Bob to connect directly to Carol.

The key innovation is that Alice doesn’t need a direct permanent token with Carol. Even if Alice’s relationship with Carol goes through multiple delegation hops (like Alice ← Dave → Carol), the system can still create a valid token for Bob. The complete proof chain is embedded within the token itself, allowing Bob to validate his connection authority all the way back to Carol’s root authority without needing to contact intermediate parties.

Transitive Trust Network with Proof Chains

Section titled “Transitive Trust Network with Proof Chains”

This creates a network where any user can delegate connection authority through embedded proof chains:

Transitive trust network with proof chains diagram showing initial sharing scenario, synchronization delegation, and validation process

Sync Triggers and Timing

Section titled “Sync Triggers and Timing”

User synchronization occurs in several scenarios:

Login Sync

Section titled “Login Sync”
  • Trigger: User logs into application
  • Scope: Connect to all known peers and sync
  • Purpose: Get updated view of network and shared resources

Resource Share Sync

Section titled “Resource Share Sync”
  • Trigger: User shares a resource with someone new
  • Scope: Immediate sync with new collaborator
  • Purpose: Exchange network knowledge and enable discovery

Document Open Sync

Section titled “Document Open Sync”
  • Trigger: User opens a shared document
  • Scope: Connect to known collaborators on that document
  • Purpose: Prepare for real-time collaboration session

Network Discovery Benefits

Section titled “Network Discovery Benefits”

This synchronization approach provides several advantages:

Reduced Network Hops: Users can connect directly rather than routing through intermediaries

Offline Resilience: Multiple paths to the same resource through different collaborators

Scalable Discovery: Network knowledge spreads organically through collaboration

Privacy Preservation: Users only learn about others in their shared context

Data Storage and Management

Section titled “Data Storage and Management”

After synchronization, newly discovered users are stored with specific flags:

  • first_sync: false: Mark for full handshake on first connection
  • Device Information: Complete device lists for direct connection

The system maintains a clear distinction between:

  • Direct Connections: Users who directly shared resources
  • Transitive Connections: Users discovered through mutual collaborators
  • Device vs User Identity: Separate tracking of user identities and their devices

Resource Synchronization

Section titled “Resource Synchronization”

While this document covers the user and network discovery aspects of synchronization, the actual resource content synchronization (CRDT state transfer, vector clock resolution, and document merging) is covered in a separate Resource Synchronization document. That process handles:

  • Transferring actual document content and CRDT states
  • Resolving vector clock differences for shared resources
  • Managing encrypted AES key distribution for new collaborators
  • Handling permission changes and access revocation

This separation allows user network discovery to work independently of resource content sync, enabling efficient synchronization patterns based on different use cases.