Skip to content
Emit

Distributed Locks

IDistributedLockProvider gives your application distributed mutual exclusion backed by the same persistence layer you already registered. No extra infrastructure, no separate locking service.

Registration

Distributed locks are registered automatically when you call UseDistributedLock() on a persistence backend:

emit.AddMongoDb(mongo =>
{
    mongo.Configure((sp, ctx) => { ... })
         .UseDistributedLock();
});

UseDistributedLock() and UseOutbox() are independent. You do not need to enable one to use the other.

Using IDistributedLockProvider

Consider a building access control system that needs to serialize concurrent unlock requests for the same door. Inject IDistributedLockProvider and call TryAcquireAsync:

public class BuildingAccessService(IDistributedLockProvider locks)
{
    public async Task UnlockDoorAsync(string doorId, CancellationToken ct)
    {
        await using var handle = await locks.TryAcquireAsync(
            key: $"door:{doorId}",
            ttl: TimeSpan.FromSeconds(30),
            timeout: TimeSpan.FromSeconds(5),
            cancellationToken: ct);


        if (handle is null)
        {
            throw new InvalidOperationException("Could not acquire lock; another process is handling this door.");
        }


        // Process the access request.
    }
}

await using releases the lock when the block exits. TryAcquireAsync returns null if the timeout elapsed without acquiring the lock.

Parameters

ParameterDescription
keyThe resource being locked. Any string; use a prefix convention to avoid collisions.
ttlHow long the lock lives before auto-expiring. Call ExtendAsync to renew it.
timeoutHow long to retry before giving up. TimeSpan.Zero (default) tries once and returns null on failure. Timeout.InfiniteTimeSpan retries until acquired or the cancellation token fires.
cancellationTokenCancels the wait.

Extending a lock

If your work takes longer than the TTL, call ExtendAsync before it expires. ExtendAsync resets the lock’s expiration to the given duration from the current server time: it does not add to the remaining time.

await using var handle = await locks.TryAcquireAsync("door:front-entrance", TimeSpan.FromSeconds(30));


// ... work in progress ...


// Resets expiration to 30 s from now, regardless of how much time was left.
var extended = await handle!.ExtendAsync(TimeSpan.FromSeconds(30), ct);
if (!extended)
{
    // The lock was already lost (TTL expired before we could extend it).
}

ExtendAsync returns false if the lock was already lost. Design for this: it means another node may have taken over.

Retry behavior

When timeout is nonzero, the provider retries acquisition with exponential backoff:

  • Base interval: 100 ms
  • Maximum interval: 5 seconds
  • Jitter: +/-25%

The backoff resets on each new TryAcquireAsync call.

Provider implementations

MongoDB

Uses an atomic upsert with a TTL index. The upsert succeeds only when no document with the same key exists or the existing one has expired. All operations are atomic at the document level.

EF Core (PostgreSQL)

Uses INSERT ... ON CONFLICT DO NOTHING to attempt lock insertion. Expired lock rows are removed by a background cleanup worker that runs on the same node automatically.

Custom providers

DistributedLockProviderBase is the abstract base class both built-in providers inherit from. It handles the retry loop, exponential backoff, and jitter. You supply three methods:

public class RedisDistributedLockProvider : DistributedLockProviderBase
{
    protected override Task<IDistributedLockHandle?> TryAcquireCoreAsync(
        string key, TimeSpan ttl, CancellationToken ct)
    {
        // Single atomic acquire attempt. Return a handle on success, null on failure.
    }


    protected override Task ReleaseCoreAsync(string key, CancellationToken ct)
    {
        // Release the lock for the given key.
    }


    protected override Task<bool> ExtendCoreAsync(string key, TimeSpan ttl, CancellationToken ct)
    {
        // Extend the lock's TTL. Return true if still held, false if lost.
    }
}

The base class calls TryAcquireCoreAsync in a retry loop when a timeout is provided to TryAcquireAsync. Retry parameters match the built-in providers:

  • Base interval: 100 ms
  • Maximum interval: 5 seconds
  • Jitter: +/-25% per attempt

Your implementation only needs to handle a single atomic attempt. The base class handles retries, backoff timing, and cancellation token propagation.