feat(phase-34): resolve blocking tech debt — Redis, domain exceptions, indexes, CI

Foundational changes required before any new feature work can begin. - 0.1 Redis infrastructure: add redis:7-alpine to docker-compose dev and prod, REDIS_URL config, singleton client in app/infrastructure/redis_client.py - 0.2 Token blacklist on Redis SEC-001: replace in-memory dict with Redis SETEX keyed by jti, auto-expiring TTL derived from token exp - 0.3 Database indexes SR-006: Alembic migration b019 with 5 composite indexes for scoring, MTTD/MTTR, remediation, and notification queries - 0.4 Domain exceptions TD-003: app/domain/exceptions.py with typed errors, error_handler middleware mapping them to HTTP, services decoupled from FastAPI - 0.5 Fix silenced exceptions TD-007: replace 4 bare except-pass blocks in test_workflow_service with logger.warning with exc_info - 0.6 CI pipeline TD-009: GitHub Actions workflow with Postgres and Redis service containers, ruff lint, pytest; ruff.toml for baseline config
2026-02-17 15:43:05 +01:00
parent 6a327f6b51
commit 6d18a5417d
21 changed files with 464 additions and 124 deletions
--- a/backend/alembic/versions/b019_add_composite_indexes.py
+++ b/backend/alembic/versions/b019_add_composite_indexes.py
@@ -0,0 +1,67 @@
+"""add_composite_indexes
+
+Additional composite indexes for scoring, heatmap, metrics, reports,
+MTTD/MTTR calculations, and notification queries.
+
+Revision ID: b019composite
+Revises: b018perfidx
+Create Date: 2026-02-17 14:00:00.000000
+
+"""
+from typing import Sequence, Union
+
+from alembic import op
+
+# revision identifiers, used by Alembic.
+revision: str = "b019composite"
+down_revision: Union[str, None] = "b018perfidx"
+branch_labels: Union[str, Sequence[str], None] = None
+depends_on: Union[str, Sequence[str], None] = None
+
+
+def upgrade() -> None:
+    # ── Tests ────────────────────────────────────────────────────────
+    # Used by scoring queries that filter by state + validation date
+    op.create_index(
+        "ix_tests_state_red_validated_at",
+        "tests",
+        ["state", "red_validated_at"],
+    )
+
+    # Used by remediation dashboard and metrics
+    op.create_index(
+        "ix_tests_remediation_status",
+        "tests",
+        ["remediation_status"],
+    )
+
+    # ── Audit logs ───────────────────────────────────────────────────
+    # Three-column index for MTTD/MTTR queries that filter by entity + action
+    op.create_index(
+        "ix_audit_logs_entity_type_entity_id_action",
+        "audit_logs",
+        ["entity_type", "entity_id", "action"],
+    )
+
+    # Used for per-user audit trail queries
+    op.create_index(
+        "ix_audit_logs_user_id",
+        "audit_logs",
+        ["user_id"],
+    )
+
+    # ── Notifications ────────────────────────────────────────────────
+    # Used by "unread notifications" badge and inbox queries
+    op.create_index(
+        "ix_notifications_user_id_read",
+        "notifications",
+        ["user_id", "read"],
+    )
+
+
+def downgrade() -> None:
+    op.drop_index("ix_notifications_user_id_read", table_name="notifications")
+    op.drop_index("ix_audit_logs_user_id", table_name="audit_logs")
+    op.drop_index("ix_audit_logs_entity_type_entity_id_action", table_name="audit_logs")
+    op.drop_index("ix_tests_remediation_status", table_name="tests")
+    op.drop_index("ix_tests_state_red_validated_at", table_name="tests")