Back to all articles
WebSocketsHTTPLayer 7Web Development

WebSockets: Breaking the Rules of HTTP

Jamie LinJuly 6, 2024

The web as we know it is built on HTTP (Hypertext Transfer Protocol).

HTTP is fundamentally a Request-Response protocol. It operates like a very formal, polite conversation.

1. The client (your browser) asks a question: *"Please give me index.html."*

2. The server responds: *"Here is index.html."*

3. The server immediately hangs up the phone.

The server is entirely reactive. It will never speak unless spoken to. If the server suddenly has new information (like a new email arriving in your inbox), it cannot push that information to your browser. It has to wait until your browser actively asks, *"Do I have any new emails?"*

This architecture is brilliant for fetching static documents, articles, and images. It scales incredibly well because the server doesn't have to waste memory keeping a connection open after the file is delivered.

But it is absolutely terrible for the modern, dynamic web.

The Problem of Real-Time Data

Imagine you are trying to build a real-time web application, like a live stock market ticker, a multiplayer browser game, or a chat application like Slack.

In a chat app, you need to see a message the exact millisecond your friend sends it. But remember, the server isn't allowed to push data to you.

Early web developers tried to solve this with a terrible hack called Long Polling.

In Long Polling, the browser writes a script that asks the server, *"Do I have a new message?"* every 2 seconds.

If there is no message, the server says, *"No."*

Two seconds later, the browser asks again.

This works, but it is brutally inefficient. If 10,000 people are using your chat app, your server is getting hammered with 5,000 HTTP requests per second, and 99% of those requests are just returning empty "No" responses. It wastes bandwidth, CPU cycles, and battery life on mobile devices.

We needed a way to break the rules of HTTP. We needed a persistent, two-way connection. We needed WebSockets.

The WebSocket Handshake

Introduced as a formal standard in 2011, the WebSocket protocol (`ws://` or `wss://` for secure) is a massive paradigm shift in web development.

A WebSocket starts its life disguised as a perfectly normal HTTP request. The browser reaches out to the server and says, *"Hello, I would like to establish an HTTP connection. But actually, if you support it, I would like to Upgrade this connection to a WebSocket."*

The server receives this HTTP request, sees the `Upgrade: websocket` header, and if it agrees, it replies: *"Yes, I support WebSockets. Switching protocols now."*

At that exact moment, the polite rules of HTTP are thrown out the window. The TCP connection is kept wide open.

Full-Duplex Communication

Once the WebSocket is open, you have a Full-Duplex connection. This means two things:

1. Both the client and the server can send messages to each other at any time, independently.

2. The server no longer has to wait to be asked.

If a new chat message arrives at the server, the server simply shoves it down the open WebSocket pipe directly to your browser, instantly. There is no polling. There is no HTTP overhead. Just a raw, lightning-fast stream of data flowing in both directions simultaneously.

Because WebSockets don't have to constantly send bulky HTTP headers (like cookies and User-Agent strings) with every single message, the payload size drops dramatically. A WebSocket frame can be as small as 2 bytes of overhead, compared to hundreds of bytes of overhead for a standard HTTP request.

When NOT to use WebSockets

When junior developers first learn about WebSockets, they often think, *"This is amazing! It's so fast! I'm going to use WebSockets for everything!"*

This is a mistake.

WebSockets are extremely resource-intensive for the server to maintain. In the HTTP model, a server can handle 100,000 users with just a few threads, because it processes a request, drops the connection, and moves to the next user.

In the WebSocket model, if you have 10,000 users, the server must keep 10,000 TCP sockets permanently open in its RAM. It requires an entirely different architecture (usually utilizing asynchronous event loops, like Node.js or Python's asyncio) to handle that many open connections without crashing.

Furthermore, WebSockets break traditional caching. A CDN like Cloudflare can cache a standard HTTP response (like a JPEG image) and serve it to millions of users without ever bothering your server. You cannot cache WebSocket data streams.

The Golden Rule

The rule of thumb for modern architecture is:

  • Use **HTTP (REST/GraphQL)** for fetching data, submitting forms, and loading documents.
  • Use **WebSockets** exclusively for highly volatile, real-time data where latency is critical (chat, live sports scores, multiplayer games, collaborative document editing).

    • By combining the scalable, stateless nature of HTTP with the persistent, low-latency power of WebSockets, we get the incredibly responsive web applications we take for granted today.