DEV Community: Chaitanya Srivastav The latest articles on DEV Community by Chaitanya Srivastav (@chaitanya_srivastav_9bd5a). https://dev.to/chaitanya_srivastav_9bd5a https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3153068%2F73e2580a-0ad7-478f-ae73-2ba0ba92e761.png DEV Community: Chaitanya Srivastav https://dev.to/chaitanya_srivastav_9bd5a en Why idempotency implementation is probably broken under concurrent load Chaitanya Srivastav Thu, 02 Apr 2026 05:03:53 +0000 https://dev.to/chaitanya_srivastav_9bd5a/why-your-idempotency-implementation-is-probably-broken-under-concurrent-load-5b22 https://dev.to/chaitanya_srivastav_9bd5a/why-your-idempotency-implementation-is-probably-broken-under-concurrent-load-5b22 <p>Most idempotency implementations are quietly broken under concurrent load.</p> <p>They work fine in testing. They even work in staging.<br> Here's why, and what actually needs to happen.</p> <h2> The problem </h2> <p>Network requests fail and get retried. Your payment client times out and fires again. A webhook gets delivered twice. Your order creation endpoint runs twice and charges the customer twice.</p> <p>The naive fix looks like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="nx">app</span><span class="p">.</span><span class="nf">post</span><span class="p">(</span><span class="dl">'</span><span class="s1">/orders</span><span class="dl">'</span><span class="p">,</span> <span class="k">async </span><span class="p">(</span><span class="nx">req</span><span class="p">,</span> <span class="nx">res</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">key</span> <span class="o">=</span> <span class="nx">req</span><span class="p">.</span><span class="nx">headers</span><span class="p">[</span><span class="dl">'</span><span class="s1">idempotency-key</span><span class="dl">'</span><span class="p">]</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">key</span><span class="p">)</span> <span class="k">return</span> <span class="nf">next</span><span class="p">()</span> <span class="kd">const</span> <span class="nx">existing</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">store</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="nx">key</span><span class="p">)</span> <span class="k">if </span><span class="p">(</span><span class="nx">existing</span><span class="p">)</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">json</span><span class="p">(</span><span class="nx">existing</span><span class="p">.</span><span class="nx">response</span><span class="p">)</span> <span class="kd">const</span> <span class="nx">result</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">createOrder</span><span class="p">(</span><span class="nx">req</span><span class="p">.</span><span class="nx">body</span><span class="p">)</span> <span class="k">await</span> <span class="nx">store</span><span class="p">.</span><span class="nf">set</span><span class="p">(</span><span class="nx">key</span><span class="p">,</span> <span class="nx">result</span><span class="p">)</span> <span class="nx">res</span><span class="p">.</span><span class="nf">json</span><span class="p">(</span><span class="nx">result</span><span class="p">)</span> <span class="p">})</span> </code></pre> </div> <p>This looks correct. It isn't.</p> <h2> The race condition </h2> <p>Under concurrent load, two retries with the same key arrive simultaneously:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Thread A: store.get(key) → null (key doesn't exist yet) Thread B: store.get(key) → null (key doesn't exist yet) Thread A: createOrder() (runs) Thread B: createOrder() (also runs — double charge) Thread A: store.set(key, result) Thread B: store.set(key, result) </code></pre> </div> <p>Both requests pass the <code>get()</code> check before either has written to the store. Both execute the handler. Both charge the customer.</p> <p><code>store.get()</code> is atomic — no thread sees it half-done. But atomicity of a single operation doesn't prevent race conditions <em>between</em> operations. The race lives in the gap between <code>get()</code> returning null and <code>set()</code> being called.</p> <h2> The fix: collapse check-and-set into one atomic operation </h2> <p>Redis gives you this for free:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>SET key value NX EX ttlSeconds </code></pre> </div> <p><code>NX</code> means "only set if the key doesn't exist." <br> <code>EX</code> sets expiry. <br> Most critically, this is a single atomic command. There is no gap. Only one caller wins across any number of concurrent processes or server instances.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">async</span> <span class="nf">acquire</span><span class="p">(</span><span class="nx">key</span><span class="p">,</span> <span class="nx">ttlSeconds</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">result</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">redis</span><span class="p">.</span><span class="nf">set</span><span class="p">(</span> <span class="nx">key</span><span class="p">,</span> <span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">({</span> <span class="na">status</span><span class="p">:</span> <span class="dl">'</span><span class="s1">processing</span><span class="dl">'</span> <span class="p">}),</span> <span class="p">{</span> <span class="na">NX</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">EX</span><span class="p">:</span> <span class="nx">ttlSeconds</span> <span class="p">}</span> <span class="p">)</span> <span class="k">return</span> <span class="nx">result</span> <span class="o">===</span> <span class="dl">'</span><span class="s1">OK</span><span class="dl">'</span> <span class="c1">// 'OK' = won, null = lost</span> <span class="p">}</span> </code></pre> </div> <p>Now only one request executes the handler. Every other concurrent duplicate hits <code>acquire()</code> returning false and gets a <code>409</code> in-progress response with a <code>Retry-After</code> header.</p> <h2> What happens if the process crashes between acquire and set? </h2> <p>The lock is stuck as "processing." The next retry arrives and sees a processing lock — it returns 409 and waits. But the handler that acquired the lock is dead. The retry waits forever.</p> <p>This is why the lock has a TTL (<code>processingTtl</code>). If the process crashes, the lock auto-expires after 30 seconds and the next retry re-acquires cleanly. Set <code>processingTtl</code> higher than your p99 handler latency so the lock doesn't expire on a slow-but-alive request.</p> <h2> The key reuse problem </h2> <p>There's another failure mode: a client reuses the same idempotency key for a different request.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>POST /orders Idempotency-Key: abc123 body: <span class="o">{</span> item: <span class="s2">"keyboard"</span> <span class="o">}</span> → 201 POST /orders Idempotency-Key: abc123 body: <span class="o">{</span> item: <span class="s2">"mouse"</span> <span class="o">}</span> → ? </code></pre> </div> <p>Without validation, the second request silently returns the cached keyboard order. The client thinks they ordered a mouse. This should be rejected.</p> <p>The fix is <code>fingerprinting</code> — hash the request shape and store it alongside the response. On every duplicate, compare the incoming fingerprint to the stored one. A mismatch means key reuse:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>POST /orders <span class="o">{</span> item: <span class="s2">"mouse"</span> <span class="o">}</span> with key abc123 → 422 idempotency_key_mismatch: This key was used with a different request. Use a new key. </code></pre> </div> <h2> Putting it together </h2> <p>Here's the full execution flow of a correct idempotency implementation:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>acquire(key) ├── true → execute handler → set(completed response) │ └── if handler throws → release(key) └── false → get(key) ├── completed → validate fingerprint → serve cached response └── processing → 409 + Retry-After header </code></pre> </div> <p>This is what <a href="https://github.com/chaitanyasrivastav/reliability-kit" rel="noopener noreferrer">reliability-kit</a> implements — a production-grade idempotency middleware for <a href="https://www.npmjs.com/package/@reliability-tools/express" rel="noopener noreferrer">Express</a> and <a href="https://www.npmjs.com/package/@reliability-tools/fastify" rel="noopener noreferrer">Fastify</a>, with pluggable store backends so you can use Redis, Postgres, DynamoDB, or any backend that supports a conditional write.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>npm <span class="nb">install</span> @reliability-tools/express </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">reliability</span><span class="p">,</span> <span class="nx">RedisStore</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">@reliability-tools/express</span><span class="dl">'</span> <span class="k">import</span> <span class="nx">Redis</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">ioredis</span><span class="dl">'</span> <span class="nx">app</span><span class="p">.</span><span class="nf">use</span><span class="p">(</span><span class="nf">reliability</span><span class="p">({</span> <span class="na">idempotency</span><span class="p">:</span> <span class="p">{</span> <span class="na">enabled</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">store</span><span class="p">:</span> <span class="k">new</span> <span class="nc">RedisStore</span><span class="p">(</span><span class="k">new</span> <span class="nc">Redis</span><span class="p">()),</span> <span class="na">ttl</span><span class="p">:</span> <span class="mi">86400</span><span class="p">,</span> <span class="na">fingerprintStrategy</span><span class="p">:</span> <span class="dl">'</span><span class="s1">full</span><span class="dl">'</span><span class="p">,</span> <span class="c1">// validates method + path + body</span> <span class="p">},</span> <span class="p">}))</span> </code></pre> </div> <p>The concurrent duplicate race, the stuck lock after a crash, the key reuse fingerprint check — all handled. The handler just handles the request.</p> node api backend distributedsystems