A practical lesson on lean versus rich event payloads, notification style versus event-carried state, and the trade-offs around autonomy, sensitivity, and coupling.
Payload design is a boundary decision, not just a serialization choice. What a producer includes in an event determines how autonomous consumers can be, how much sensitive information spreads through the platform, and how much schema pressure the producer accepts over time. Many weak event designs fail here by choosing one extreme by habit: either payloads are so thin that every consumer must call back for details, or they are so rich that events become oversized exports of the producer’s internal model.
The stronger question is not “should payloads be big or small?” It is “what information should cross this boundary so consumers can do their job safely without making the producer’s private model everyone else’s problem?”
flowchart TD
A["Producer fact"] --> B{"How much data should cross the boundary?"}
B -->|Minimal| C["Notification pattern"]
B -->|Rich enough for local action| D["Event-carried state"]
C --> E["Smaller payload, more callback pressure"]
D --> F["Greater autonomy, more schema pressure"]
What to notice:
Minimal notifications tell consumers that something changed but include only a small amount of data, often just identifiers and event metadata. This pattern can be useful when:
The downside is callback pressure. If most consumers immediately call the producer to fetch the same missing fields, the architecture is still tightly coupled at runtime even though it uses events.
1{
2 "eventName": "shipment.dispatched",
3 "eventId": "evt_01JQCSQ6XQ2K",
4 "occurredAt": "2026-03-23T22:50:00Z",
5 "data": {
6 "shipmentId": "shp_882"
7 }
8}
This event may be enough for some use cases, but many consumers will likely need a follow-up query.
Event-carried state transfer includes enough data for consumers to do useful work locally without immediate callbacks. This often improves autonomy, especially for projections, analytics, notification formatting, and workflows that should tolerate temporary producer unavailability.
1{
2 "eventName": "shipment.dispatched",
3 "eventId": "evt_01JQCSWFM4GP",
4 "occurredAt": "2026-03-23T22:50:00Z",
5 "data": {
6 "shipmentId": "shp_882",
7 "orderId": "ord_48392",
8 "carrier": "PostalCarrier",
9 "trackingNumber": "TRK-99221",
10 "estimatedDeliveryDate": "2026-03-27"
11 }
12}
The richer version supports more local decision-making, but it also increases the producer’s contract obligation. If the producer changes these fields carelessly, several consumers may break.
Payload design is also a security and governance issue. Just because many downstream systems could use some field does not mean it should travel broadly. Sensitive personal data, secrets, internal scoring logic, or large private blobs often do not belong in shared events. Boundary design should consider:
This is one reason event-driven design and governance are inseparable. Payload choices create long-term platform consequences.
Minimal payloads often feel simpler for the producer. Rich payloads often feel simpler for consumers. Neither side should dominate by default. The strongest balance depends on the system:
The mistake is choosing one style by ideology rather than by boundary needs.
1payloadReview:
2 event: customer.account.suspended
3 include:
4 - customerId
5 - suspendedAt
6 - suspensionReasonCode
7 avoid:
8 - full support transcript
9 - internal fraud score details
The point is not that every event should use a checklist like this. It is that payload choices should be explainable.
A producer emits customer.profile.changed with only customerId, but every consumer immediately calls the customer API for email, locale, and display name. What should you challenge?
Challenge whether the event boundary is too thin for the actual downstream needs. If most consumers require the same small set of fields, richer event-carried state may reduce runtime coupling more effectively than repeated callbacks.