WAI – Web Application Interface

Lean: Hale.WAI | Haskell: wai

API Reference: Hale.WAI | Network.Wai.Internal | Network.Wai

The core abstraction for Hale’s HTTP ecosystem. Every web application, middleware, and server speaks WAI.

Request Lifecycle

   Client HTTP Request
         |
         v
  +--------------+     +------------------+
  | Socket.accept |---->| parseRequest     |
  |  (.listening) |     | (headers, body)  |
  +--------------+     +--------+---------+
                                |
                     WAI Request struct
                                |
         +----------------------+----------------------+
         |                      |                      |
         v                      v                      v
  +--------------+     +--------------+     +--------------+
  |  Middleware   |---->|  Middleware   |---->|  Application |
  |  (ForceSSL)  |     |  (Logger)    |     |  (user code) |
  +--------------+     +--------------+     +------+-------+
                                                    |
                                             Response (inductive)
                                                    |
                       +----------------------------+----------+
                       |              |              |          |
                       v              v              v          v
                  responseFile   responseBuilder  responseStream  responseRaw
                  (sendfile)    (in-memory)      (chunked)       (WebSocket)
                       |              |              |          |
                       +--------------+--------------+----------+
                                       |
                                sendResponse
                                       |
                                       v
                              Socket.connected

Core Types

Application (CPS + Indexed Monad)

abbrev Application :=
  Request -> (Response -> IO ResponseReceived) -> AppM .pending .sent ResponseReceived

The return type AppM .pending .sent ResponseReceived is an indexed monad that leverages Lean 4’s dependent types to enforce exactly-once response at compile time:

.pending → .sent: The application must transition from “no response” to “response sent”. AppM.respond is the only combinator that performs this transition.
No double-respond: After respond, the state is .sent. A second respond would need AppM .sent .sent, which does not exist – type error.
No skip-respond: The return type demands .sent as post-state. Returning without calling respond would leave the state at .pending – type error.
No fabrication: AppM.mk is private. Application code cannot construct the value without going through the real combinators.

This is strictly stronger than Haskell’s WAI, where the contract is a gentleman’s agreement. Here the Lean 4 kernel verifies it.

Middleware (Monoid under Composition)

abbrev Middleware := Application -> Application

Proven algebraic properties:

Theorem	Statement
`idMiddleware_comp_left`	`id . m = m`
`idMiddleware_comp_right`	`m . id = m`
`modifyRequest_id`	`modifyRequest id = id`
`modifyResponse_id`	`modifyResponse id = id`
`ifRequest_false`	`ifRequest (fun _ => false) m = id`

Response (4 Delivery Modes)

inductive Response where
  | responseFile    (status headers path part)   -- sendfile(2)
  | responseBuilder (status headers body)        -- in-memory ByteArray
  | responseStream  (status headers body)        -- chunked streaming
  | responseRaw     (rawAction fallback)         -- raw socket (WebSocket)

Proven accessor laws (12 theorems):

status_responseBuilder s h b = s (and for File, Stream)
headers_responseBuilder s h b = h (and for File)
mapResponseHeaders id r = r (per constructor: builder, file, stream)
mapResponseStatus id r = r (per constructor: builder, file, stream)

RequestBodyLength (Dependent Encoding)

inductive RequestBodyLength where
  | chunkedBody                    -- Transfer-Encoding: chunked
  | knownLength (bytes : Nat)      -- Content-Length: N

Full Theorem List (17)

Response Accessor Laws (11, in `Internal.lean`)

Theorem	Source
`status_responseBuilder`	`Wai.Internal`
`status_responseFile`	`Wai.Internal`
`status_responseStream`	`Wai.Internal`
`headers_responseBuilder`	`Wai.Internal`
`headers_responseFile`	`Wai.Internal`
`mapResponseHeaders_id_responseBuilder`	`Wai.Internal`
`mapResponseHeaders_id_responseFile`	`Wai.Internal`
`mapResponseHeaders_id_responseStream`	`Wai.Internal`
`mapResponseStatus_id_responseBuilder`	`Wai.Internal`
`mapResponseStatus_id_responseFile`	`Wai.Internal`
`mapResponseStatus_id_responseStream`	`Wai.Internal`

Middleware Algebra (5, in `Wai.lean`)

Theorem	Source
`idMiddleware_comp_left`	`Wai`
`idMiddleware_comp_right`	`Wai`
`modifyRequest_id`	`Wai`
`modifyResponse_id`	`Wai`
`ifRequest_false`	`Wai`

Response Linearity (Compile-Time Guarantee)

Exactly-once response: The indexed AppM monad enforces at the type level that respond is invoked exactly once. AppM .pending .sent ResponseReceived can only be produced via AppM.respond (which transitions .pending → .sent). Double-respond is a compile-time error: no combinator transitions .sent → .sent. The private mk on AppM prevents circumventing the guarantee.

Files

Hale/WAI/Network/Wai/Internal.lean – Core types + 11 accessor theorems
Hale/WAI/Network/Wai.lean – Public API + 5 middleware algebra theorems

Keyboard shortcuts

Hale — Haskell's Web Ecosystem in Lean 4