kaffa/cloud-server
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

refactor: comprehensive code review fixes (security, performance, QA)

Browse Source 
## Security Improvements
- Fix timing attack in verifyApiKey with fixed 256-byte buffer
- Fix sortOrder SQL injection with whitelist validation
- Fix rate limiting bypass for non-Cloudflare traffic (fail-closed)
- Remove stack trace exposure in error responses
- Add request_id for audit trail (X-Request-ID header)
- Sanitize origin header to prevent log injection
- Add content-length validation for /sync endpoint (10KB limit)
- Replace Math.random() with crypto.randomUUID() for sync IDs
- Expand sensitive data masking patterns (8 → 18)

## Performance Improvements
- Reduce rate limiter KV reads from 3 to 1 per request (66% reduction)
- Increase sync batch size from 100 to 500 (80% fewer batches)
- Fix health check N+1 query with efficient JOINs
- Fix COUNT(*) Cartesian product with COUNT(DISTINCT)
- Implement shared logger cache pattern across repositories
- Add CacheService singleton pattern in recommend.ts
- Add composite index for recommendation queries
- Implement Anvil pricing query batching (100 per chunk)

## QA Improvements
- Add BATCH_SIZE bounds validation (1-1000)
- Add pagination bounds (page >= 1, MAX_OFFSET = 100000)
- Add min/max range consistency validation
- Add DB reference validation for singleton services
- Add type guards for database result validation
- Add timeout mechanism for external API calls (10-60s)
- Use SUPPORTED_PROVIDERS constant instead of hardcoded list

## Removed
- Remove Vault integration (using Wrangler secrets)
- Remove 6-hour pricing cron (daily sync only)

## Configuration
- Add idx_instance_types_specs_filter composite index
- Add CORS Access-Control-Expose-Headers

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
This commit is contained in:
kappa
2026-01-25 23:50:37 +09:00
parent 9f3d3a245a
commit 3a8dd705e6
47 changed files with 2031 additions and 2459 deletions
Download Patch File Download Diff File Expand all files Collapse all files

439
src/connectors/README.md
View File

@@ -1,439 +0,0 @@
# Vault Connector
TypeScript client for HashiCorp Vault integration in Cloudflare Workers.
## Features
- **Secure Credential Retrieval**: Fetch provider API credentials from Vault
- **Automatic Caching**: 1-hour TTL in-memory cache to reduce API calls
- **Comprehensive Error Handling**: Type-safe error handling with specific error codes
- **Timeout Protection**: 10-second request timeout with abort controller
- **Type Safety**: Full TypeScript support with strict typing
- **Logging**: Structured logging for debugging and monitoring
## Installation
The VaultClient is part of this project. Import it directly:
```typescript
import { VaultClient, VaultError } from './connectors/vault';
```
## Quick Start
### Basic Usage
```typescript
import { VaultClient } from './connectors/vault';
const vault = new VaultClient(
'https://vault.anvil.it.com',
'hvs.your-token-here'
);
// Retrieve credentials
const credentials = await vault.getCredentials('linode');
// Use credentials for API calls (DO NOT log sensitive data)
```
### Cloudflare Workers Integration
```typescript
export default {
async fetch(request: Request, env: Env) {
const vault = new VaultClient(env.VAULT_URL, env.VAULT_TOKEN);
try {
const creds = await vault.getCredentials('linode');
// Use credentials for API calls
} catch (error) {
if (error instanceof VaultError) {
return new Response(error.message, {
status: error.statusCode || 500
});
}
}
}
};
```
## API Reference
### VaultClient
#### Constructor
```typescript
new VaultClient(baseUrl: string, token: string)
```
**Parameters:**
- `baseUrl`: Vault server URL (e.g., `https://vault.anvil.it.com`)
- `token`: Vault authentication token (e.g., `hvs.gvtS2U0TCnGkVXlfBP7MGddi`)
#### Methods
##### `getCredentials(provider: string): Promise<VaultCredentials>`
Retrieve credentials for a provider from Vault.
**Parameters:**
- `provider`: Provider name (`linode`, `vultr`, `aws`)
**Returns:**
```typescript
{
provider: string;
api_token: string;
}
```
**Throws:**
- `VaultError` on authentication, authorization, or network failures
**Example:**
```typescript
const creds = await vault.getCredentials('linode');
```
##### `clearCache(provider?: string): void`
Clear cached credentials.
**Parameters:**
- `provider` (optional): Specific provider to clear, or omit to clear all
**Example:**
```typescript
// Clear specific provider
vault.clearCache('linode');
// Clear all cache
vault.clearCache();
```
##### `getCacheStats(): { size: number; providers: string[] }`
Get current cache statistics.
**Returns:**
```typescript
{
size: number; // Number of cached providers
providers: string[]; // List of cached provider names
}
```
**Example:**
```typescript
const stats = vault.getCacheStats();
console.log(`Cached: ${stats.size} providers`);
```
### VaultError
Custom error class for Vault operations.
**Properties:**
```typescript
{
name: 'VaultError';
message: string;
statusCode?: number; // HTTP status code
provider?: string; // Provider name that caused error
}
```
## Error Handling
### HTTP Status Codes
| Code | Meaning | Action |
|------|---------|--------|
| 401 | Invalid/expired token | Check authentication token |
| 403 | Insufficient permissions | Verify token has access to provider path |
| 404 | Provider not found | Check provider name spelling |
| 500-503 | Server error | Retry request after delay |
| 504 | Timeout | Check network connectivity |
### Error Handling Pattern
```typescript
try {
const creds = await vault.getCredentials('linode');
} catch (error) {
if (error instanceof VaultError) {
switch (error.statusCode) {
case 401:
console.error('Auth failed:', error.message);
break;
case 403:
console.error('Permission denied:', error.message);
break;
case 404:
console.error('Provider not found:', error.provider);
break;
default:
console.error('Vault error:', error.message);
}
} else {
console.error('Unexpected error:', error);
}
}
```
## Caching
### Cache Behavior
- **TTL**: 1 hour (3600 seconds)
- **Storage**: In-memory (Map)
- **Automatic**: Transparent caching on first request
- **Cache Hit**: Subsequent requests within TTL use cached data
- **Cache Miss**: Expired or cleared entries fetch from Vault
### Cache Example
```typescript
const vault = new VaultClient(url, token);
// First call - fetches from Vault
const creds1 = await vault.getCredentials('linode');
console.log('[VaultClient] Cache miss, fetching from Vault');
// Second call - uses cache (no API call)
const creds2 = await vault.getCredentials('linode');
console.log('[VaultClient] Cache hit');
// Check cache
const stats = vault.getCacheStats();
console.log(`Cached: ${stats.providers.join(', ')}`);
// Manual cache clear
vault.clearCache('linode');
```
## Configuration
### Environment Variables
Store Vault configuration in environment variables for security:
```toml
# wrangler.toml
[vars]
VAULT_URL = "https://vault.anvil.it.com"
[[env.production.vars]]
VAULT_TOKEN = "hvs.production-token"
[[env.development.vars]]
VAULT_TOKEN = "hvs.development-token"
```
### Usage with Environment Variables
```typescript
export default {
async fetch(request: Request, env: Env) {
const vault = new VaultClient(env.VAULT_URL, env.VAULT_TOKEN);
// ...
}
};
```
## Vault Server Configuration
### Secret Path Structure
Credentials are stored at:
```
secret/data/{provider}
```
Example paths:
- `secret/data/linode`
- `secret/data/vultr`
- `secret/data/aws`
### Expected Secret Format
```json
{
"data": {
"data": {
"provider": "linode",
"api_token": "your-api-token-here"
},
"metadata": {
"created_time": "2024-01-21T10:00:00Z",
"version": 1
}
}
}
```
### Required Vault Permissions
Your token must have read access to the secret paths:
```hcl
path "secret/data/linode" {
capabilities = ["read"]
}
path "secret/data/vultr" {
capabilities = ["read"]
}
path "secret/data/aws" {
capabilities = ["read"]
}
```
## Performance
### Request Timeout
- Default: 10 seconds
- Implemented via `AbortController`
- Throws `VaultError` with status code 504 on timeout
### Cache Performance
- **Cache Hit**: <1ms (memory lookup)
- **Cache Miss**: ~100-500ms (network request + parsing)
- **Memory Usage**: ~1KB per cached provider
### Optimization Tips
1. **Parallel Requests**: Fetch multiple providers in parallel
```typescript
const [linode, vultr] = await Promise.all([
vault.getCredentials('linode'),
vault.getCredentials('vultr'),
]);
```
2. **Warm Cache**: Preload frequently used providers
```typescript
// Warm cache at worker startup
await Promise.all([
vault.getCredentials('linode'),
vault.getCredentials('vultr'),
]);
```
3. **Monitor Cache**: Track cache hit rate
```typescript
const stats = vault.getCacheStats();
console.log(`Cache efficiency: ${stats.size} providers cached`);
```
## Testing
Comprehensive test suite included:
```bash
npm test vault.test.ts
```
**Test Coverage:**
- ✅ Constructor initialization
- ✅ Successful credential retrieval
- ✅ Caching behavior
- ✅ HTTP error handling (401, 403, 404, 500)
- ✅ Timeout handling
- ✅ Invalid response structure
- ✅ Missing required fields
- ✅ Network errors
- ✅ Cache management
- ✅ VaultError creation
## Logging
Structured logging for debugging:
```
[VaultClient] Initialized { baseUrl: 'https://vault.anvil.it.com' }
[VaultClient] Retrieving credentials { provider: 'linode' }
[VaultClient] Cache miss, fetching from Vault { provider: 'linode' }
[VaultClient] Credentials cached { provider: 'linode', expiresIn: '3600s' }
[VaultClient] Credentials retrieved successfully { provider: 'linode' }
```
Error logging:
```
[VaultClient] HTTP error { provider: 'linode', statusCode: 401, errorMessage: 'permission denied' }
[VaultClient] Unexpected error { provider: 'linode', error: Error(...) }
```
## Examples
See [vault.example.ts](/Users/kaffa/cloud-server/src/connectors/vault.example.ts) for comprehensive usage examples:
- Basic usage
- Environment variables
- Caching demonstration
- Cache management
- Error handling patterns
- Cloudflare Workers integration
- Parallel provider fetching
- Retry logic
## Security Best Practices
1. **Never commit tokens**: Use environment variables
2. **Rotate tokens regularly**: Update tokens periodically
3. **Use least privilege**: Grant only required Vault permissions
4. **Monitor access**: Track Vault access logs
5. **Secure transmission**: Always use HTTPS
6. **Cache clearing**: Clear cache on token rotation
## Troubleshooting
### Common Issues
#### Authentication Failed (401)
**Problem**: Invalid or expired Vault token
**Solution**:
```typescript
// Verify token format
console.log('Token:', env.VAULT_TOKEN);
// Should start with 'hvs.'
```
#### Permission Denied (403)
**Problem**: Token lacks read access to provider path
**Solution**: Update Vault policy to grant read access
#### Provider Not Found (404)
**Problem**: Provider doesn't exist in Vault
**Solution**: Verify provider name and path in Vault
#### Request Timeout (504)
**Problem**: Network connectivity or slow Vault response
**Solution**:
- Check network connectivity
- Verify Vault server is responsive
- Consider increasing timeout (requires code modification)
#### Invalid Response Structure
**Problem**: Vault response format doesn't match expected structure
**Solution**: Verify Vault secret format matches documentation
## License
Internal use only - Part of Cloud Instances API project.

58
src/connectors/aws.ts
View File

@@ -1,7 +1,7 @@
import type { RegionInput, InstanceTypeInput, InstanceFamily } from '../types';
import { VaultClient, VaultError } from './vault';
import type { Env, RegionInput, InstanceTypeInput, InstanceFamily } from '../types';
import { RateLimiter } from './base';
import { TIMEOUTS, HTTP_STATUS } from '../constants';
import { createLogger } from '../utils/logger';
/**
* AWS connector error class
@@ -56,10 +56,10 @@ interface EC2ShopResponse {
* - Rate limiting: 20 requests/second
* - Hardcoded region list (relatively static)
* - Comprehensive error handling
* - Optional AWS credentials from environment for future API integration
*
* @example
* const vault = new VaultClient(vaultUrl, vaultToken);
* const connector = new AWSConnector(vault);
* const connector = new AWSConnector(env);
* await connector.initialize();
* const regions = await connector.fetchRegions();
*/
@@ -68,6 +68,7 @@ export class AWSConnector {
private readonly instanceDataUrl = 'https://ec2.shop/?json';
private readonly rateLimiter: RateLimiter;
private readonly requestTimeout = TIMEOUTS.AWS_REQUEST;
private readonly logger = createLogger('[AWSConnector]');
/**
* AWS regions list (relatively static data)
@@ -105,42 +106,27 @@ export class AWSConnector {
{ code: 'il-central-1', name: 'Israel (Tel Aviv)' },
];
constructor(private vaultClient: VaultClient) {
constructor(private env: Env) {
// Rate limit: 20 requests/second per region
// Use 10 tokens with 10/second refill to be conservative
this.rateLimiter = new RateLimiter(20, 10);
console.log('[AWSConnector] Initialized');
this.logger.info('Initialized');
}
/**
* Initialize connector by fetching credentials from Vault
* Note: Currently not required for public API access,
* Initialize connector by loading credentials from environment
* Note: Currently not required for public API access (ec2.shop),
* but included for future AWS API integration
*/
async initialize(): Promise<void> {
console.log('[AWSConnector] Fetching credentials from Vault');
this.logger.info('Loading credentials from environment');
try {
const credentials = await this.vaultClient.getCredentials(this.provider);
// AWS uses different credential keys
const awsCreds = credentials as unknown as {
aws_access_key_id?: string;
aws_secret_access_key?: string;
};
// Credentials loaded for future AWS API direct access
console.log('[AWSConnector] Credentials loaded successfully', {
hasAccessKey: !!awsCreds.aws_access_key_id,
hasSecretKey: !!awsCreds.aws_secret_access_key,
});
} catch (error) {
if (error instanceof VaultError) {
console.warn('[AWSConnector] Vault credentials not available, using public API only');
// Not critical for public API access
} else {
throw error;
}
// AWS credentials are optional since we use public ec2.shop API
// They would be required for direct AWS API access
if (this.env.AWS_ACCESS_KEY_ID && this.env.AWS_SECRET_ACCESS_KEY) {
this.logger.info('AWS credentials available for future API access');
} else {
this.logger.info('Using public ec2.shop API (no AWS credentials required)');
}
}
@@ -151,7 +137,7 @@ export class AWSConnector {
* @returns Array of AWS regions
*/
async fetchRegions(): Promise<AWSRegion[]> {
console.log('[AWSConnector] Fetching regions', { count: this.awsRegions.length });
this.logger.info('Fetching regions', { count: this.awsRegions.length });
return this.awsRegions;
}
@@ -162,7 +148,7 @@ export class AWSConnector {
* @throws AWSError on API failures
*/
async fetchInstanceTypes(): Promise<AWSInstanceType[]> {
console.log('[AWSConnector] Fetching instance types from ec2.shop');
this.logger.info('Fetching instance types from ec2.shop');
await this.rateLimiter.waitForToken();
@@ -190,13 +176,13 @@ export class AWSConnector {
const data = await response.json() as EC2ShopResponse;
const instances = data.Prices || [];
console.log('[AWSConnector] Instance types fetched', { count: instances.length });
this.logger.info('Instance types fetched', { count: instances.length });
return instances;
} catch (error) {
// Handle timeout
if (error instanceof Error && error.name === 'AbortError') {
console.error('[AWSConnector] Request timeout', { timeout: this.requestTimeout });
this.logger.error('Request timeout', { timeout: this.requestTimeout });
throw new AWSError(
`Request to ec2.shop API timed out after ${this.requestTimeout}ms`,
504
@@ -209,7 +195,7 @@ export class AWSConnector {
}
// Handle unexpected errors
console.error('[AWSConnector] Unexpected error', { error });
this.logger.error('Unexpected error', { error });
throw new AWSError(
`Failed to fetch instance types: ${error instanceof Error ? error.message : 'Unknown error'}`,
HTTP_STATUS.INTERNAL_ERROR,
@@ -515,7 +501,7 @@ export class AWSConnector {
}
// Default to general for unknown types
console.warn('[AWSConnector] Unknown instance family, defaulting to general', { type: instanceType });
this.logger.warn('Unknown instance family, defaulting to general', { type: instanceType });
return 'general';
}
}

128
src/connectors/base.ts
View File

@@ -1,5 +1,4 @@
import type { VaultClient } from './vault';
import type { VaultCredentials, RegionInput, InstanceTypeInput } from '../types';
import type { RegionInput, InstanceTypeInput } from '../types';
import { logger } from '../utils/logger';
/**
@@ -123,126 +122,7 @@ export class RateLimiter {
}
/**
* CloudConnector - Abstract base class for cloud provider connectors
*
* Implements common authentication, rate limiting, and data fetching patterns.
* Each provider (Linode, Vultr, etc.) extends this class and implements
* provider-specific API calls and data normalization.
*
* @abstract
*
* @example
* class LinodeConnector extends CloudConnector {
* provider = 'linode';
*
* async fetchRegions() {
* await this.rateLimiter.waitForToken();
* // Fetch regions from Linode API
* }
*
* normalizeRegion(raw: RawRegion): RegionInput {
* // Transform Linode region data to standard format
* }
* }
* Note: CloudConnector base class has been deprecated.
* Each connector now uses Env directly for credentials instead of Vault.
* See LinodeConnector, VultrConnector, AWSConnector for current implementation patterns.
*/
export abstract class CloudConnector {
/**
* Provider identifier (e.g., 'linode', 'vultr', 'aws')
* Must be implemented by subclass
*/
abstract provider: string;
/**
* Cached credentials from Vault
* Populated after calling authenticate()
*/
protected credentials: VaultCredentials | null = null;
/**
* Rate limiter for API requests
* Configured with provider-specific limits
*/
protected rateLimiter: RateLimiter;
/**
* Create a new cloud connector
*
* @param vault - VaultClient instance for credential management
*/
constructor(protected vault: VaultClient) {
// Default rate limiter: 10 requests, refill 2 per second
this.rateLimiter = new RateLimiter(10, 2);
}
/**
* Authenticate with provider using Vault credentials
* Fetches and caches credentials for API calls
*
* @throws ConnectorError if authentication fails
*/
async authenticate(): Promise<void> {
try {
logger.info('[CloudConnector] Authenticating', { provider: this.provider });
this.credentials = await this.vault.getCredentials(this.provider);
if (!this.credentials || !this.credentials.api_token) {
throw new ConnectorError(
this.provider,
'authenticate',
undefined,
'Invalid credentials received from Vault'
);
}
logger.info('[CloudConnector] Authentication successful', { provider: this.provider });
} catch (error) {
logger.error('[CloudConnector] Authentication failed', { provider: this.provider, error });
throw new ConnectorError(
this.provider,
'authenticate',
undefined,
`Authentication failed: ${error instanceof Error ? error.message : 'Unknown error'}`
);
}
}
/**
* Fetch raw region data from provider API
* Must be implemented by subclass
*
* @returns Array of raw region objects from provider API
* @throws ConnectorError on API failure
*/
abstract fetchRegions(): Promise<RawRegion[]>;
/**
* Fetch raw instance type data from provider API
* Must be implemented by subclass
*
* @returns Array of raw instance type objects from provider API
* @throws ConnectorError on API failure
*/
abstract fetchInstanceTypes(): Promise<RawInstanceType[]>;
/**
* Normalize raw region data to standard format
* Transforms provider-specific region structure to RegionInput
* Must be implemented by subclass
*
* @param raw - Raw region data from provider API
* @returns Normalized region data ready for database insertion
*/
abstract normalizeRegion(raw: RawRegion): RegionInput;
/**
* Normalize raw instance type data to standard format
* Transforms provider-specific instance structure to InstanceTypeInput
* Must be implemented by subclass
*
* @param raw - Raw instance type data from provider API
* @returns Normalized instance type data ready for database insertion
*/
abstract normalizeInstance(raw: RawInstanceType): InstanceTypeInput;
}

527
src/connectors/linode.README.md
View File

@@ -1,527 +0,0 @@
# Linode Connector
TypeScript client for Linode API integration in Cloudflare Workers.
## Features
- **Complete API Coverage**: Fetch regions and instance types
- **Rate Limiting**: Automatic compliance with Linode's 1600 requests/hour limit
- **Data Normalization**: Transform Linode data to standardized database format
- **Comprehensive Error Handling**: Type-safe error handling with specific codes
- **Vault Integration**: Secure credential management via VaultClient
- **Timeout Protection**: 10-second request timeout with abort controller
- **Type Safety**: Full TypeScript support with strict typing
- **Logging**: Structured logging for debugging and monitoring
## Installation
The LinodeConnector is part of this project. Import it directly:
```typescript
import { LinodeConnector, LinodeError } from './connectors/linode';
import { VaultClient } from './connectors/vault';
```
## Quick Start
### Basic Usage
```typescript
import { VaultClient } from './connectors/vault';
import { LinodeConnector } from './connectors/linode';
const vault = new VaultClient(
'https://vault.anvil.it.com',
'hvs.your-token-here'
);
const connector = new LinodeConnector(vault);
// Initialize (fetches credentials from Vault)
await connector.initialize();
// Fetch regions
const regions = await connector.fetchRegions();
// Fetch instance types
const instances = await connector.fetchInstanceTypes();
```
### Data Normalization
```typescript
const providerId = 1; // Database provider ID
// Normalize regions for database storage
const normalizedRegions = regions.map(region =>
connector.normalizeRegion(region, providerId)
);
// Normalize instance types for database storage
const normalizedInstances = instances.map(instance =>
connector.normalizeInstance(instance, providerId)
);
```
## API Reference
### LinodeConnector
#### Constructor
```typescript
new LinodeConnector(vaultClient: VaultClient)
```
**Parameters:**
- `vaultClient`: Initialized VaultClient instance for credential retrieval
#### Properties
```typescript
readonly provider = 'linode';
```
#### Methods
##### `initialize(): Promise<void>`
Initialize connector by fetching credentials from Vault. **Must be called before making API requests.**
**Throws:**
- `LinodeError` on Vault or credential loading failures
**Example:**
```typescript
await connector.initialize();
```
##### `fetchRegions(): Promise<LinodeRegion[]>`
Fetch all regions from Linode API.
**Returns:**
- Array of raw Linode region data
**Throws:**
- `LinodeError` on API failures
**Example:**
```typescript
const regions = await connector.fetchRegions();
console.log(`Fetched ${regions.length} regions`);
```
##### `fetchInstanceTypes(): Promise<LinodeInstanceType[]>`
Fetch all instance types from Linode API.
**Returns:**
- Array of raw Linode instance type data
**Throws:**
- `LinodeError` on API failures
**Example:**
```typescript
const instances = await connector.fetchInstanceTypes();
console.log(`Fetched ${instances.length} instance types`);
```
##### `normalizeRegion(raw: LinodeRegion, providerId: number): RegionInput`
Normalize Linode region data for database storage.
**Parameters:**
- `raw`: Raw Linode region data
- `providerId`: Database provider ID
**Returns:**
- Normalized region data ready for insertion
**Example:**
```typescript
const normalized = connector.normalizeRegion(rawRegion, 1);
```
**Normalization Details:**
- `region_code`: Linode region ID (e.g., "us-east")
- `region_name`: Human-readable name (e.g., "Newark, NJ")
- `country_code`: ISO 3166-1 alpha-2 lowercase
- `latitude/longitude`: Not provided by Linode (set to null)
- `available`: 1 if status is "ok", 0 otherwise
##### `normalizeInstance(raw: LinodeInstanceType, providerId: number): InstanceTypeInput`
Normalize Linode instance type data for database storage.
**Parameters:**
- `raw`: Raw Linode instance type data
- `providerId`: Database provider ID
**Returns:**
- Normalized instance type data ready for insertion
**Example:**
```typescript
const normalized = connector.normalizeInstance(rawInstance, 1);
```
**Normalization Details:**
- `memory_mb`: Already in MB (no conversion)
- `storage_gb`: Converted from MB to GB (divide by 1024)
- `transfer_tb`: Converted from GB to TB (divide by 1000)
- `network_speed_gbps`: Converted from Mbps to Gbps (divide by 1000)
- `gpu_type`: Set to "nvidia" if GPUs > 0
- `instance_family`: Mapped from Linode class (see mapping below)
### LinodeError
Custom error class for Linode operations.
**Properties:**
```typescript
{
name: 'LinodeError';
message: string;
statusCode?: number; // HTTP status code
details?: unknown; // Additional error details from API
}
```
## Instance Family Mapping
Linode instance classes are mapped to standardized families:
| Linode Class | Instance Family | Description |
|--------------|----------------|-------------|
| `nanode` | `general` | Entry-level shared instances |
| `standard` | `general` | Standard shared instances |
| `highmem` | `memory` | High-memory optimized instances |
| `dedicated` | `compute` | Dedicated CPU instances |
| `gpu` | `gpu` | GPU-accelerated instances |
| Unknown | `general` | Default fallback |
## Rate Limiting
### Linode API Limits
- **Rate Limit**: 1600 requests per hour
- **Requests Per Second**: ~0.44 (calculated from hourly limit)
- **Implementation**: Conservative 0.4 requests/second
### How It Works
The connector automatically throttles requests to comply with Linode's rate limits:
```typescript
// These requests are automatically rate-limited
await connector.fetchRegions(); // Request 1 at 0ms
await connector.fetchInstanceTypes(); // Request 2 at 2500ms
await connector.fetchRegions(); // Request 3 at 5000ms
```
**Benefits:**
- No manual rate limiting required
- Prevents 429 "Too Many Requests" errors
- Ensures API access remains available
- Transparent to the caller
## Error Handling
### HTTP Status Codes
| Code | Meaning | Action |
|------|---------|--------|
| 401 | Invalid/expired token | Check API token in Vault |
| 403 | Insufficient permissions | Verify token scope |
| 429 | Rate limit exceeded | Wait and retry (should not occur with rate limiter) |
| 500-599 | Server error | Retry request after delay |
| 504 | Timeout | Check network connectivity |
### Error Handling Pattern
```typescript
try {
await connector.initialize();
const regions = await connector.fetchRegions();
} catch (error) {
if (error instanceof LinodeError) {
switch (error.statusCode) {
case 401:
console.error('Auth failed:', error.message);
// Check Vault credentials
break;
case 403:
console.error('Permission denied:', error.message);
// Verify token permissions
break;
case 429:
console.error('Rate limit exceeded:', error.message);
// Should not occur with rate limiter, but handle gracefully
break;
case 504:
console.error('Timeout:', error.message);
// Check network or retry
break;
default:
console.error('Linode error:', error.message);
console.error('Details:', error.details);
}
} else {
console.error('Unexpected error:', error);
}
}
```
## Cloudflare Workers Integration
### Complete Example
```typescript
import { VaultClient } from './connectors/vault';
import { LinodeConnector, LinodeError } from './connectors/linode';
import type { Env } from './types';
export default {
async fetch(request: Request, env: Env) {
const vault = new VaultClient(env.VAULT_URL, env.VAULT_TOKEN);
const connector = new LinodeConnector(vault);
try {
// Initialize
await connector.initialize();
// Fetch data in parallel
const [regions, instances] = await Promise.all([
connector.fetchRegions(),
connector.fetchInstanceTypes(),
]);
// Normalize data
const providerId = 1;
const normalizedData = {
regions: regions.map(r => connector.normalizeRegion(r, providerId)),
instances: instances.map(i => connector.normalizeInstance(i, providerId)),
};
return new Response(JSON.stringify({
success: true,
data: normalizedData,
}), {
status: 200,
headers: { 'Content-Type': 'application/json' },
});
} catch (error) {
if (error instanceof LinodeError) {
return new Response(JSON.stringify({
success: false,
error: error.message,
}), {
status: error.statusCode || 500,
headers: { 'Content-Type': 'application/json' },
});
}
return new Response('Internal server error', { status: 500 });
}
}
};
```
## Vault Configuration
### Secret Path
Linode credentials are stored at:
```
secret/data/linode
```
### Expected Secret Format
```json
{
"data": {
"data": {
"provider": "linode",
"api_token": "your-linode-api-token-here"
},
"metadata": {
"created_time": "2024-01-21T10:00:00Z",
"version": 1
}
}
}
```
### Required Vault Permissions
```hcl
path "secret/data/linode" {
capabilities = ["read"]
}
```
## API Response Examples
### Region Response
```json
{
"data": [
{
"id": "us-east",
"label": "Newark, NJ",
"country": "us",
"capabilities": ["Linodes", "Block Storage"],
"status": "ok"
}
]
}
```
### Instance Type Response
```json
{
"data": [
{
"id": "g6-nanode-1",
"label": "Nanode 1GB",
"price": {
"hourly": 0.0075,
"monthly": 5.0
},
"memory": 1024,
"vcpus": 1,
"disk": 25600,
"transfer": 1000,
"network_out": 1000,
"gpus": 0,
"class": "nanode"
}
]
}
```
## Performance
### Request Timing
- **Rate Limiter**: ~2.5 seconds between requests (0.4 req/s)
- **API Response**: ~100-500ms per request
- **Timeout**: 10 seconds maximum per request
### Optimization Tips
1. **Parallel Initialization**: Warm Vault cache during startup
```typescript
// Pre-load credentials during worker startup
await connector.initialize();
```
2. **Batch Processing**: Process normalized data in batches
```typescript
const normalizedRegions = regions.map(r =>
connector.normalizeRegion(r, providerId)
);
```
3. **Error Recovery**: Implement retry logic for transient failures
```typescript
async function fetchWithRetry(fn: () => Promise<any>, retries = 3) {
for (let i = 0; i < retries; i++) {
try {
return await fn();
} catch (error) {
if (i === retries - 1) throw error;
await new Promise(resolve => setTimeout(resolve, 1000 * (i + 1)));
}
}
}
```
## Logging
Structured logging for debugging:
```
[LinodeConnector] Initialized
[LinodeConnector] Fetching credentials from Vault
[LinodeConnector] Credentials loaded successfully
[LinodeConnector] Fetching regions
[LinodeConnector] Making request { endpoint: '/regions' }
[LinodeConnector] Regions fetched { count: 25 }
[LinodeConnector] Fetching instance types
[LinodeConnector] Making request { endpoint: '/linode/types' }
[LinodeConnector] Instance types fetched { count: 50 }
```
Error logging:
```
[LinodeConnector] HTTP error { statusCode: 401, errorMessage: 'Invalid token' }
[LinodeConnector] Request timeout { endpoint: '/regions', timeout: 10000 }
[LinodeConnector] Unexpected error { endpoint: '/regions', error: Error(...) }
```
## Examples
See [linode.example.ts](/Users/kaffa/cloud-server/src/connectors/linode.example.ts) for comprehensive usage examples:
- Basic usage
- Data normalization
- Error handling patterns
- Cloudflare Workers integration
- Rate limiting demonstration
- Instance family mapping
## Security Best Practices
1. **Never commit tokens**: Store API tokens in Vault
2. **Rotate tokens regularly**: Update tokens periodically
3. **Use least privilege**: Grant only required API permissions
4. **Monitor access**: Track API usage and rate limits
5. **Secure transmission**: Always use HTTPS
6. **Cache credentials**: VaultClient handles credential caching
## Troubleshooting
### Connector Not Initialized
**Problem**: "Connector not initialized" error
**Solution**: Call `initialize()` before making API requests
```typescript
await connector.initialize();
```
### Rate Limit Exceeded (429)
**Problem**: Too many requests error
**Solution**: Should not occur with rate limiter, but if it does:
- Check if multiple connector instances are being used
- Verify rate limiter is functioning correctly
- Add additional delay between requests if needed
### Request Timeout (504)
**Problem**: Requests timing out after 10 seconds
**Solution**:
- Check network connectivity
- Verify Linode API status
- Consider increasing timeout (requires code modification)
### Invalid Instance Family
**Problem**: Warning about unknown instance class
**Solution**: Update `mapInstanceFamily()` method with new class mapping
## License
Internal use only - Part of Cloud Instances API project.

33
src/connectors/linode.ts
View File

@@ -1,5 +1,4 @@
import type { Env, RegionInput, InstanceTypeInput, InstanceFamily, GpuInstanceInput, G8InstanceInput, VpuInstanceInput } from '../types';
import { VaultClient, VaultError } from './vault';
import { RateLimiter } from './base';
import { createLogger } from '../utils/logger';
import { HTTP_STATUS } from '../constants';
@@ -60,11 +59,11 @@ interface LinodeApiResponse<T> {
* - Rate limiting: 1600 requests/hour
* - Data normalization for database storage
* - Comprehensive error handling
* - Vault integration for credentials
* - Credentials from environment variables
*
* @example
* const vault = new VaultClient(vaultUrl, vaultToken);
* const connector = new LinodeConnector(vault);
* const connector = new LinodeConnector(env);
* await connector.initialize();
* const regions = await connector.fetchRegions();
*/
export class LinodeConnector {
@@ -75,7 +74,7 @@ export class LinodeConnector {
private readonly logger: ReturnType<typeof createLogger>;
private apiToken: string | null = null;
constructor(private vaultClient: VaultClient, env?: Env) {
constructor(private env: Env) {
// Rate limit: 1600 requests/hour = ~0.44 requests/second
// Token bucket: maxTokens=5 (allow burst), refillRate=0.5 (conservative)
this.rateLimiter = new RateLimiter(5, 0.5);
@@ -84,25 +83,21 @@ export class LinodeConnector {
}
/**
* Initialize connector by fetching credentials from Vault
* Initialize connector by loading credentials from environment
* Must be called before making API requests
*/
async initialize(): Promise<void> {
this.logger.info('Fetching credentials from Vault');
this.logger.info('Loading credentials from environment');
try {
const credentials = await this.vaultClient.getCredentials(this.provider);
this.apiToken = credentials.api_token || null;
this.logger.info('Credentials loaded successfully');
} catch (error) {
if (error instanceof VaultError) {
throw new LinodeError(
`Failed to load Linode credentials: ${error.message}`,
error.statusCode
);
}
throw error;
if (!this.env.LINODE_API_TOKEN) {
throw new LinodeError(
'LINODE_API_TOKEN not found in environment',
HTTP_STATUS.INTERNAL_ERROR
);
}
this.apiToken = this.env.LINODE_API_TOKEN;
this.logger.info('Credentials loaded successfully');
}
/**

286
src/connectors/vault.ts
View File

@@ -1,286 +0,0 @@
import type { Env, VaultCredentials, VaultSecretResponse, CacheEntry } from '../types';
import { createLogger } from '../utils/logger';
import { HTTP_STATUS } from '../constants';
/**
* Custom error class for Vault operations
*/
export class VaultError extends Error {
constructor(
message: string,
public statusCode?: number,
public provider?: string
) {
super(message);
this.name = 'VaultError';
}
}
/**
* VaultClient - Manages secure credential retrieval from HashiCorp Vault
*
* Features:
* - In-memory caching with TTL (1 hour)
* - Automatic cache invalidation
* - Comprehensive error handling
* - Type-safe credential access
*
* @example
* const vault = new VaultClient('https://vault.anvil.it.com', token);
* const creds = await vault.getCredentials('linode');
*/
export class VaultClient {
private baseUrl: string;
private token: string;
private cache: Map<string, CacheEntry<VaultCredentials>>;
private readonly CACHE_TTL = 3600 * 1000; // 1 hour in milliseconds
private readonly REQUEST_TIMEOUT = 10000; // 10 seconds
private readonly logger: ReturnType<typeof createLogger>;
constructor(baseUrl: string, token: string, env?: Env) {
this.baseUrl = baseUrl.replace(/\/$/, ''); // Remove trailing slash
this.token = token;
this.cache = new Map();
this.logger = createLogger('[VaultClient]', env);
this.logger.info('Initialized', { baseUrl: this.baseUrl });
}
/**
* Retrieve credentials for a provider from Vault
* Implements caching to reduce API calls
*
* @param provider - Provider name (linode, vultr, aws)
* @returns Provider credentials with API token
* @throws VaultError on authentication, authorization, or network failures
*/
async getCredentials(provider: string): Promise<VaultCredentials> {
this.logger.info('Retrieving credentials', { provider });
// Check cache first
const cached = this.getFromCache(provider);
if (cached) {
this.logger.debug('Cache hit', { provider });
return cached;
}
this.logger.debug('Cache miss, fetching from Vault', { provider });
// Fetch from Vault
const path = `secret/data/${provider}`;
const url = `${this.baseUrl}/v1/${path}`;
try {
const controller = new AbortController();
const timeoutId = setTimeout(() => controller.abort(), this.REQUEST_TIMEOUT);
const response = await fetch(url, {
method: 'GET',
headers: {
'X-Vault-Token': this.token,
'Content-Type': 'application/json',
},
signal: controller.signal,
});
clearTimeout(timeoutId);
// Handle HTTP errors
if (!response.ok) {
await this.handleHttpError(response, provider);
}
// Parse and validate response
const data = await response.json() as VaultSecretResponse;
if (!this.isValidVaultResponse(data)) {
throw new VaultError(
`Invalid response structure from Vault for provider: ${provider}`,
HTTP_STATUS.INTERNAL_ERROR,
provider
);
}
const vaultData = data.data.data;
const credentials: VaultCredentials = {
provider: provider,
api_token: vaultData.api_token, // Linode
api_key: vaultData.api_key, // Vultr
aws_access_key_id: vaultData.aws_access_key_id, // AWS
aws_secret_access_key: vaultData.aws_secret_access_key, // AWS
};
// Validate credentials content based on provider
const hasValidCredentials =
credentials.api_token || // Linode
credentials.api_key || // Vultr
(credentials.aws_access_key_id && credentials.aws_secret_access_key); // AWS
if (!hasValidCredentials) {
throw new VaultError(
`Missing credentials in Vault response for provider: ${provider}`,
HTTP_STATUS.INTERNAL_ERROR,
provider
);
}
// Store in cache
this.setCache(provider, credentials);
this.logger.info('Credentials retrieved successfully', { provider });
return credentials;
} catch (error) {
// Handle timeout
if (error instanceof Error && error.name === 'AbortError') {
this.logger.error('Request timeout', { provider, timeout_ms: this.REQUEST_TIMEOUT });
throw new VaultError(
`Request to Vault timed out after ${this.REQUEST_TIMEOUT}ms`,
504,
provider
);
}
// Re-throw VaultError
if (error instanceof VaultError) {
throw error;
}
// Handle unexpected errors
this.logger.error('Unexpected error', { provider, error: error instanceof Error ? error.message : String(error) });
throw new VaultError(
`Failed to retrieve credentials: ${error instanceof Error ? error.message : 'Unknown error'}`,
HTTP_STATUS.INTERNAL_ERROR,
provider
);
}
}
/**
* Handle HTTP error responses from Vault
* This method always throws a VaultError
*/
private async handleHttpError(response: Response, provider: string): Promise<never> {
const statusCode = response.status;
let errorMessage: string;
try {
const errorData = await response.json() as { errors?: string[] };
errorMessage = errorData.errors?.join(', ') || response.statusText;
} catch {
errorMessage = response.statusText;
}
this.logger.error('HTTP error', { provider, statusCode, errorMessage });
// Always throw an error - TypeScript knows execution stops here
if (statusCode === 401) {
throw new VaultError(
'Vault authentication failed: Invalid or expired token',
401,
provider
);
} else if (statusCode === 403) {
throw new VaultError(
`Vault authorization failed: No permission to access ${provider} credentials`,
403,
provider
);
} else if (statusCode === 404) {
throw new VaultError(
`Provider not found in Vault: ${provider}`,
404,
provider
);
} else if (statusCode >= 500 && statusCode < 600) {
throw new VaultError(
`Vault server error: ${errorMessage}`,
statusCode,
provider
);
} else {
throw new VaultError(
`Vault request failed: ${errorMessage}`,
statusCode,
provider
);
}
}
/**
* Type guard to validate Vault API response structure
*/
private isValidVaultResponse(data: unknown): data is VaultSecretResponse {
if (typeof data !== 'object' || data === null) {
return false;
}
const response = data as VaultSecretResponse;
return (
typeof response.data === 'object' &&
response.data !== null &&
typeof response.data.data === 'object' &&
response.data.data !== null
);
}
/**
* Retrieve credentials from cache if not expired
*/
private getFromCache(provider: string): VaultCredentials | null {
const entry = this.cache.get(provider);
if (!entry) {
return null;
}
// Check if cache entry expired
if (Date.now() > entry.expiresAt) {
this.logger.debug('Cache entry expired', { provider });
this.cache.delete(provider);
return null;
}
return entry.data;
}
/**
* Store credentials in cache with TTL
*/
private setCache(provider: string, credentials: VaultCredentials): void {
const entry: CacheEntry<VaultCredentials> = {
data: credentials,
expiresAt: Date.now() + this.CACHE_TTL,
};
this.cache.set(provider, entry);
this.logger.debug('Credentials cached', {
provider,
expiresIn_seconds: this.CACHE_TTL / 1000
});
}
/**
* Clear cache for a specific provider or all providers
*/
clearCache(provider?: string): void {
if (provider) {
this.cache.delete(provider);
this.logger.info('Cache cleared', { provider });
} else {
this.cache.clear();
this.logger.info('All cache cleared');
}
}
/**
* Get cache statistics
*/
getCacheStats(): { size: number; providers: string[] } {
return {
size: this.cache.size,
providers: Array.from(this.cache.keys()),
};
}
}

51
src/connectors/vultr.ts
View File

@@ -1,5 +1,4 @@
import type { Env, RegionInput, InstanceTypeInput, InstanceFamily, GpuInstanceInput } from '../types';
import { VaultClient, VaultError } from './vault';
import { RateLimiter } from './base';
import { createLogger } from '../utils/logger';
import { HTTP_STATUS } from '../constants';
@@ -53,18 +52,18 @@ interface VultrApiResponse<T> {
* - Rate limiting: 3000 requests/hour
* - Data normalization for database storage
* - Comprehensive error handling
* - Vault integration for credentials
* - Credentials from environment variables
*
* @example
* const vault = new VaultClient(vaultUrl, vaultToken);
* const connector = new VultrConnector(vault);
* const connector = new VultrConnector(env);
* await connector.initialize();
* const regions = await connector.fetchRegions();
*
* @example
* // Using custom relay URL
* const connector = new VultrConnector(vault, 'https://custom-relay.example.com');
* const connector = new VultrConnector(env, 'https://custom-relay.example.com');
*
* @param vaultClient - Vault client for credential management
* @param env - Environment with credentials
* @param relayUrl - Optional relay server URL (defaults to 'https://vultr-relay.anvil.it.com')
*/
export class VultrConnector {
@@ -76,9 +75,8 @@ export class VultrConnector {
private apiKey: string | null = null;
constructor(
private vaultClient: VaultClient,
relayUrl?: string,
env?: Env
private env: Env,
relayUrl?: string
) {
// Use relay server by default, allow override via parameter or environment variable
// Relay server mirrors Vultr API structure: /v2/regions, /v2/plans
@@ -92,36 +90,21 @@ export class VultrConnector {
}
/**
* Initialize connector by fetching credentials from Vault
* Initialize connector by loading credentials from environment
* Must be called before making API requests
*/
async initialize(): Promise<void> {
this.logger.info('Fetching credentials from Vault');
this.logger.info('Loading credentials from environment');
try {
const credentials = await this.vaultClient.getCredentials(this.provider);
// Vultr uses 'api_key' field (unlike Linode which uses 'api_token')
const apiKey = credentials.api_key || null;
if (!apiKey || apiKey.trim() === '') {
throw new VultrError(
'Vultr API key is missing or empty. Please configure api_key in Vault.',
HTTP_STATUS.INTERNAL_ERROR
);
}
this.apiKey = apiKey;
this.logger.info('Credentials loaded successfully');
} catch (error) {
if (error instanceof VaultError) {
throw new VultrError(
`Failed to load Vultr credentials: ${error.message}`,
error.statusCode
);
}
throw error;
if (!this.env.VULTR_API_KEY) {
throw new VultrError(
'VULTR_API_KEY not found in environment',
HTTP_STATUS.INTERNAL_ERROR
);
}
this.apiKey = this.env.VULTR_API_KEY;
this.logger.info('Credentials loaded successfully');
}
/**

19
src/constants.ts
View File

@@ -59,6 +59,8 @@ export const RATE_LIMIT_DEFAULTS = {
MAX_REQUESTS_INSTANCES: 100,
/** Maximum requests per window for /sync endpoint */
MAX_REQUESTS_SYNC: 10,
/** Maximum requests per window for /recommend endpoint */
MAX_REQUESTS_RECOMMEND: 50,
} as const;
// ============================================================
@@ -165,19 +167,22 @@ export type InstanceFamily = typeof INSTANCE_FAMILIES[number];
/**
* CORS configuration
*
* NOTE: localhost origin is included for development purposes.
* In production, filter allowed origins based on environment.
* Example: const allowedOrigins = CORS.ALLOWED_ORIGINS.filter(o => !o.includes('localhost'))
* Security: Explicit allowed origins only. No wildcard fallback.
* Development origins are separated and only used in development environment.
*/
export const CORS = {
/** Default CORS origin */
DEFAULT_ORIGIN: '*',
/** Allowed origins for CORS */
/** Default CORS origin - explicit production origin */
DEFAULT_ORIGIN: 'https://anvil.it.com',
/** Allowed production origins for CORS */
ALLOWED_ORIGINS: [
'https://anvil.it.com',
'https://cloud.anvil.it.com',
'https://hosting.anvil.it.com',
'http://localhost:3000', // DEVELOPMENT ONLY - exclude in production
] as string[],
/** Development origins - only used when ENVIRONMENT === 'development' */
DEVELOPMENT_ORIGINS: [
'http://localhost:3000',
'http://127.0.0.1:3000',
] as string[],
/** Max age for CORS preflight cache (24 hours) */
MAX_AGE: '86400',

132
src/index.ts
View File

@@ -15,7 +15,6 @@ import {
} from './middleware';
import { CORS, HTTP_STATUS } from './constants';
import { createLogger } from './utils/logger';
import { VaultClient } from './connectors/vault';
import { SyncOrchestrator } from './services/sync';
/**
@@ -29,21 +28,42 @@ function validateEnv(env: Env): { valid: boolean; missing: string[] } {
/**
* Get CORS origin for request
*
* Security: No wildcard fallback. Returns explicit allowed origin or default.
* Logs unmatched origins for monitoring.
*/
function getCorsOrigin(request: Request, env: Env): string {
const origin = request.headers.get('Origin');
const logger = createLogger('[CORS]', env);
// Environment variable has explicit origin configured (highest priority)
if (env.CORS_ORIGIN && env.CORS_ORIGIN !== '*') {
return env.CORS_ORIGIN;
}
// Build allowed origins list based on environment
const isDevelopment = env.ENVIRONMENT === 'development';
const allowedOrigins = isDevelopment
? [...CORS.ALLOWED_ORIGINS, ...CORS.DEVELOPMENT_ORIGINS]
: CORS.ALLOWED_ORIGINS;
// Request origin is in allowed list
if (origin && CORS.ALLOWED_ORIGINS.includes(origin)) {
if (origin && allowedOrigins.includes(origin)) {
return origin;
}
// Default fallback
// Log unmatched origins for security monitoring
if (origin && !allowedOrigins.includes(origin)) {
// Sanitize origin to prevent log injection (remove control characters)
const sanitizedOrigin = origin.replace(/[\r\n\t]/g, '').substring(0, 256);
logger.warn('Unmatched origin - using default', {
requested_origin: sanitizedOrigin,
environment: env.ENVIRONMENT || 'production',
default_origin: CORS.DEFAULT_ORIGIN
});
}
// Return explicit default (no wildcard)
return CORS.DEFAULT_ORIGIN;
}
@@ -58,7 +78,7 @@ function getCorsOrigin(request: Request, env: Env): string {
*
* Note: response.body can be null for 204 No Content or empty responses
*/
function addSecurityHeaders(response: Response, corsOrigin?: string): Response {
function addSecurityHeaders(response: Response, corsOrigin?: string, requestId?: string): Response {
const headers = new Headers(response.headers);
// Basic security headers
@@ -71,12 +91,18 @@ function addSecurityHeaders(response: Response, corsOrigin?: string): Response {
headers.set('Access-Control-Allow-Methods', 'GET, POST, OPTIONS');
headers.set('Access-Control-Allow-Headers', 'Content-Type, X-API-Key');
headers.set('Access-Control-Max-Age', CORS.MAX_AGE);
headers.set('Access-Control-Expose-Headers', 'X-RateLimit-Retry-After, Retry-After, X-Request-ID');
// Additional security headers
headers.set('Content-Security-Policy', "default-src 'none'");
headers.set('X-XSS-Protection', '1; mode=block');
headers.set('Referrer-Policy', 'no-referrer');
// Request ID for audit trail
if (requestId) {
headers.set('X-Request-ID', requestId);
}
// Create new Response with same body reference (no copy) and updated headers
return new Response(response.body, {
status: response.status,
@@ -93,25 +119,30 @@ export default {
const url = new URL(request.url);
const path = url.pathname;
// Generate request ID for audit trail (use CF-Ray if available, otherwise generate UUID)
const requestId = request.headers.get('CF-Ray') || crypto.randomUUID();
// Get CORS origin based on request and configuration
const corsOrigin = getCorsOrigin(request, env);
try {
// Handle OPTIONS preflight requests
if (request.method === 'OPTIONS') {
return addSecurityHeaders(new Response(null, { status: 204 }), corsOrigin);
return addSecurityHeaders(new Response(null, { status: 204 }), corsOrigin, requestId);
}
// Validate required environment variables
const envValidation = validateEnv(env);
if (!envValidation.valid) {
console.error('[Worker] Missing required environment variables:', envValidation.missing);
const logger = createLogger('[Worker]');
logger.error('Missing required environment variables', { missing: envValidation.missing, request_id: requestId });
return addSecurityHeaders(
Response.json(
{ error: 'Service Unavailable', message: 'Service configuration error' },
{ status: 503 }
),
corsOrigin
corsOrigin,
requestId
);
}
@@ -119,34 +150,34 @@ export default {
if (path === '/health') {
const apiKey = request.headers.get('X-API-Key');
const authenticated = apiKey ? verifyApiKey(apiKey, env) : false;
return addSecurityHeaders(await handleHealth(env, authenticated), corsOrigin);
return addSecurityHeaders(await handleHealth(env, authenticated), corsOrigin, requestId);
}
// Authentication required for all other endpoints
const isAuthenticated = await authenticateRequest(request, env);
if (!isAuthenticated) {
return addSecurityHeaders(createUnauthorizedResponse(), corsOrigin);
return addSecurityHeaders(createUnauthorizedResponse(), corsOrigin, requestId);
}
// Rate limiting for authenticated endpoints
const rateLimitCheck = await checkRateLimit(request, path, env);
if (!rateLimitCheck.allowed) {
return addSecurityHeaders(createRateLimitResponse(rateLimitCheck.retryAfter!), corsOrigin);
return addSecurityHeaders(createRateLimitResponse(rateLimitCheck.retryAfter!), corsOrigin, requestId);
}
// Query instances
if (path === '/instances' && request.method === 'GET') {
return addSecurityHeaders(await handleInstances(request, env), corsOrigin);
return addSecurityHeaders(await handleInstances(request, env), corsOrigin, requestId);
}
// Sync trigger
if (path === '/sync' && request.method === 'POST') {
return addSecurityHeaders(await handleSync(request, env), corsOrigin);
return addSecurityHeaders(await handleSync(request, env), corsOrigin, requestId);
}
// Tech stack recommendation
if (path === '/recommend' && request.method === 'POST') {
return addSecurityHeaders(await handleRecommend(request, env), corsOrigin);
return addSecurityHeaders(await handleRecommend(request, env), corsOrigin, requestId);
}
// 404 Not Found
@@ -155,17 +186,20 @@ export default {
{ error: 'Not Found', path },
{ status: HTTP_STATUS.NOT_FOUND }
),
corsOrigin
corsOrigin,
requestId
);
} catch (error) {
console.error('[Worker] Request error:', error);
const logger = createLogger('[Worker]');
logger.error('Request error', { error, request_id: requestId });
return addSecurityHeaders(
Response.json(
{ error: 'Internal Server Error' },
{ status: HTTP_STATUS.INTERNAL_ERROR }
),
corsOrigin
corsOrigin,
requestId
);
}
},
@@ -185,15 +219,32 @@ export default {
scheduled_time: new Date(event.scheduledTime).toISOString()
});
// Validate required environment variables
const requiredVars = ['DB'];
const missing = requiredVars.filter(v => !env[v as keyof Env]);
if (missing.length > 0) {
logger.error('Missing required environment variables', { missing, cron });
throw new Error(`Cron job failed: missing env vars: ${missing.join(', ')}`);
}
// Daily full sync at 00:00 UTC
if (cron === '0 0 * * *') {
const vault = new VaultClient(env.VAULT_URL, env.VAULT_TOKEN);
const orchestrator = new SyncOrchestrator(env.DB, vault, env);
const MAX_RETRIES = 3;
const executeSyncWithRetry = async (): Promise<void> => {
const orchestrator = new SyncOrchestrator(env.DB, env);
for (let attempt = 1; attempt <= MAX_RETRIES; attempt++) {
try {
logger.info('Starting sync attempt', {
attempt_number: attempt,
max_retries: MAX_RETRIES
});
const report = await orchestrator.syncAll(['linode', 'vultr', 'aws']);
ctx.waitUntil(
orchestrator.syncAll(['linode', 'vultr', 'aws'])
.then(report => {
logger.info('Daily sync complete', {
attempt_number: attempt,
total_regions: report.summary.total_regions,
total_instances: report.summary.total_instances,
successful_providers: report.summary.successful_providers,
@@ -215,20 +266,39 @@ export default {
.map(p => ({ provider: p.provider, error: p.error }))
});
}
})
.catch(error => {
logger.error('Daily sync failed', {
// Success - exit retry loop
return;
} catch (error) {
const willRetry = attempt < MAX_RETRIES;
const retryDelayMs = willRetry ? Math.min(Math.pow(2, attempt - 1) * 1000, 10000) : 0;
logger.error('Sync attempt failed', {
attempt_number: attempt,
max_retries: MAX_RETRIES,
will_retry: willRetry,
retry_delay_ms: retryDelayMs,
error: error instanceof Error ? error.message : String(error),
stack: error instanceof Error ? error.stack : undefined
});
})
);
}
// Pricing update every 6 hours
if (cron === '0 */6 * * *') {
// Skip full sync, just log for now (pricing update logic can be added later)
logger.info('Pricing update check (not implemented yet)');
if (willRetry) {
// Wait before retry with exponential backoff
await new Promise(resolve => setTimeout(resolve, retryDelayMs));
} else {
// Final failure - re-throw to make cron failure visible
logger.error('Daily sync failed after all retries', {
total_attempts: MAX_RETRIES,
error: error instanceof Error ? error.message : String(error)
});
throw error;
}
}
}
};
ctx.waitUntil(executeSyncWithRetry());
}
},
};

2
src/middleware/auth.test.ts
View File

@@ -19,8 +19,6 @@ const createMockEnv = (apiKey?: string): Env => ({
API_KEY: apiKey || 'test-api-key-12345',
DB: {} as any,
RATE_LIMIT_KV: {} as any,
VAULT_URL: 'https://vault.example.com',
VAULT_TOKEN: 'test-token',
});
/**

49
src/middleware/auth.ts
View File

@@ -6,6 +6,9 @@
*/
import { Env } from '../types';
import { createLogger } from '../utils/logger';
const logger = createLogger('[Auth]');
/**
* Authenticate incoming request using API key
@@ -25,19 +28,19 @@ export async function authenticateRequest(request: Request, env: Env): Promise<b
// Validate environment variable
const expectedKey = env.API_KEY;
if (!expectedKey) {
console.error('[Auth] API_KEY environment variable is not configured');
logger.error('API_KEY environment variable is not configured');
return false;
}
// Length comparison with safety check
if (providedKey.length !== expectedKey.length) {
return false;
}
// Pad both keys to same length to prevent timing leak on length comparison
const maxLength = Math.max(providedKey.length, expectedKey.length);
const paddedProvided = providedKey.padEnd(maxLength, '\0');
const paddedExpected = expectedKey.padEnd(maxLength, '\0');
// Use Web Crypto API for constant-time comparison
const encoder = new TextEncoder();
const providedBuffer = encoder.encode(providedKey);
const expectedBuffer = encoder.encode(expectedKey);
const providedBuffer = encoder.encode(paddedProvided);
const expectedBuffer = encoder.encode(paddedExpected);
const providedHash = await crypto.subtle.digest('SHA-256', providedBuffer);
const expectedHash = await crypto.subtle.digest('SHA-256', expectedBuffer);
@@ -45,15 +48,13 @@ export async function authenticateRequest(request: Request, env: Env): Promise<b
const providedArray = new Uint8Array(providedHash);
const expectedArray = new Uint8Array(expectedHash);
// Compare hashes byte by byte
let equal = true;
// Truly constant-time comparison using XOR to avoid branching
let result = 0;
for (let i = 0; i < providedArray.length; i++) {
if (providedArray[i] !== expectedArray[i]) {
equal = false;
}
result |= providedArray[i] ^ expectedArray[i];
}
return equal;
return result === 0;
}
/**
@@ -65,23 +66,21 @@ export async function authenticateRequest(request: Request, env: Env): Promise<b
* @returns true if key matches, false otherwise
*/
export function verifyApiKey(providedKey: string, env: Env): boolean {
// Validate environment variable
const expectedKey = env.API_KEY;
if (!expectedKey || !providedKey) {
return false;
}
// Length comparison with safety check
if (providedKey.length !== expectedKey.length) {
return false;
}
// Use fixed-size buffers to prevent length leakage
const FIXED_SIZE = 256;
const provided = (providedKey || '').slice(0, FIXED_SIZE).padEnd(FIXED_SIZE, '\0');
const expected = (expectedKey || '').slice(0, FIXED_SIZE).padEnd(FIXED_SIZE, '\0');
// Constant-time comparison to prevent timing attacks
// Constant-time comparison
let result = 0;
for (let i = 0; i < providedKey.length; i++) {
result |= providedKey.charCodeAt(i) ^ expectedKey.charCodeAt(i);
for (let i = 0; i < FIXED_SIZE; i++) {
result |= provided.charCodeAt(i) ^ expected.charCodeAt(i);
}
return result === 0;
// Both must be non-empty and match
return result === 0 && !!providedKey && !!expectedKey;
}
/**

118
src/middleware/rateLimit.test.ts
View File

@@ -21,20 +21,40 @@ import type { Env } from '../types';
*/
const createMockKV = () => {
const store = new Map<string, string>();
const metadata = new Map<string, Record<string, any>>();
return {
get: vi.fn(async (key: string) => store.get(key) || null),
put: vi.fn(async (key: string, value: string) => {
put: vi.fn(async (key: string, value: string, options?: { expirationTtl?: number; metadata?: Record<string, any> }) => {
store.set(key, value);
if (options?.metadata) {
metadata.set(key, options.metadata);
}
}),
delete: vi.fn(async (key: string) => {
store.delete(key);
metadata.delete(key);
}),
list: vi.fn(),
getWithMetadata: vi.fn(),
getWithMetadata: vi.fn(async (key: string) => {
const value = store.get(key) || null;
const meta = metadata.get(key) || null;
return {
value,
metadata: meta,
};
}),
// Helper to manually set values for testing
_setStore: (key: string, value: string) => store.set(key, value),
_clearStore: () => store.clear(),
_setStore: (key: string, value: string, meta?: Record<string, any>) => {
store.set(key, value);
if (meta) {
metadata.set(key, meta);
}
},
_clearStore: () => {
store.clear();
metadata.clear();
},
};
};
@@ -44,8 +64,6 @@ const createMockKV = () => {
const createMockEnv = (kv: ReturnType<typeof createMockKV>): Env => ({
DB: {} as any,
RATE_LIMIT_KV: kv as any,
VAULT_URL: 'https://vault.example.com',
VAULT_TOKEN: 'test-token',
API_KEY: 'test-api-key',
});
@@ -92,12 +110,12 @@ describe('Rate Limiting Middleware', () => {
const request = createMockRequest('192.168.1.1');
const now = Date.now();
// Set existing entry at limit
// Set existing entry at limit with version metadata
const entry = {
count: 100, // Already at limit
windowStart: now,
};
mockKV._setStore('ratelimit:192.168.1.1:/instances', JSON.stringify(entry));
mockKV._setStore('ratelimit:192.168.1.1:/instances', JSON.stringify(entry), { version: 1 });
const result = await checkRateLimit(request, '/instances', env);
@@ -114,11 +132,11 @@ describe('Rate Limiting Middleware', () => {
count: 100,
windowStart: now - 120000, // 2 minutes ago (window is 1 minute)
};
mockKV._setStore('ratelimit:192.168.1.1:/instances', JSON.stringify(entry));
mockKV._setStore('ratelimit:192.168.1.1:/instances', JSON.stringify(entry), { version: 99 });
const result = await checkRateLimit(request, '/instances', env);
// Should allow because window expired
// Should allow because window expired (version resets to 0)
expect(result.allowed).toBe(true);
});
@@ -166,8 +184,8 @@ describe('Rate Limiting Middleware', () => {
it('should fail-closed on KV errors for security', async () => {
const request = createMockRequest('192.168.1.1');
// Mock KV error
mockKV.get.mockRejectedValue(new Error('KV connection failed'));
// Mock KV error on getWithMetadata
mockKV.getWithMetadata.mockRejectedValue(new Error('KV connection failed'));
const result = await checkRateLimit(request, '/instances', env);
@@ -214,12 +232,12 @@ describe('Rate Limiting Middleware', () => {
const request = createMockRequest('192.168.1.1');
const now = Date.now();
// Set entry at limit with known window start
// Set entry at limit with known window start and version metadata
const entry = {
count: 100,
windowStart: now - 30000, // 30 seconds ago
};
mockKV._setStore('ratelimit:192.168.1.1:/instances', JSON.stringify(entry));
mockKV._setStore('ratelimit:192.168.1.1:/instances', JSON.stringify(entry), { version: 5 });
const result = await checkRateLimit(request, '/instances', env);
@@ -228,6 +246,78 @@ describe('Rate Limiting Middleware', () => {
expect(result.retryAfter).toBeGreaterThan(25);
expect(result.retryAfter).toBeLessThan(35);
});
it('should use optimistic locking with version metadata', async () => {
const request = createMockRequest('192.168.1.1');
// First request - should create entry with version 0
await checkRateLimit(request, '/instances', env);
// Verify version metadata was set
const putCall = mockKV.put.mock.calls[0];
expect(putCall[2]).toMatchObject({ metadata: { version: 0 } });
});
it('should increment version on each write', async () => {
const request = createMockRequest('192.168.1.1');
const now = Date.now();
// Set existing entry with version 5
const entry = {
count: 10,
windowStart: now,
};
mockKV._setStore('ratelimit:192.168.1.1:/instances', JSON.stringify(entry), { version: 5 });
// Second request - should increment version to 6
await checkRateLimit(request, '/instances', env);
// Find the put call with version 6
const putCalls = mockKV.put.mock.calls;
const versionedCall = putCalls.find(call => call[2]?.metadata?.version === 6);
expect(versionedCall).toBeDefined();
});
it('should reset version to 0 on new window', async () => {
const request = createMockRequest('192.168.1.1');
const now = Date.now();
// Set expired entry with high version
const entry = {
count: 50,
windowStart: now - 120000, // Expired
};
mockKV._setStore('ratelimit:192.168.1.1:/instances', JSON.stringify(entry), { version: 999 });
// Request in new window - should reset version to 0
await checkRateLimit(request, '/instances', env);
// Verify version was reset
const putCall = mockKV.put.mock.calls[0];
expect(putCall[2]).toMatchObject({ metadata: { version: 0 } });
});
it('should handle backward compatibility with entries without version metadata', async () => {
const request = createMockRequest('192.168.1.1');
const now = Date.now();
// Set entry without version metadata (old format)
const entry = {
count: 5,
windowStart: now,
};
mockKV._setStore('ratelimit:192.168.1.1:/instances', JSON.stringify(entry));
// No version metadata set
// Should treat as version 0 and increment to 1
const result = await checkRateLimit(request, '/instances', env);
expect(result.allowed).toBe(true);
// Verify version was set to 1
const putCall = mockKV.put.mock.calls[0];
expect(putCall[2]).toMatchObject({ metadata: { version: 1 } });
});
});
describe('createRateLimitResponse', () => {

111
src/middleware/rateLimit.ts
View File

@@ -3,10 +3,37 @@
*
* Distributed rate limiting using Cloudflare KV for multi-worker support.
* Different limits for different endpoints.
*
* CONCURRENCY CONTROL:
*
* Uses optimistic locking with versioned metadata for race condition safety.
* Each KV entry includes a version number that is incremented on every write.
* Accepts eventual consistency - no post-write verification needed for
* abuse prevention use case.
*
* KNOWN LIMITATIONS:
*
* 1. EVENTUAL CONSISTENCY: KV writes are eventually consistent, which may
* cause slight inaccuracies in rate counting across edge locations.
* This is acceptable for abuse prevention.
*
* 2. RACE CONDITIONS: Multiple concurrent requests may all succeed if they
* read before any writes complete. This is acceptable - rate limiting
* provides statistical protection, not strict guarantees.
*
* For strict rate limiting requirements (billing, quotas), consider:
* - Cloudflare Durable Objects for atomic counters with strong consistency
* - Cloudflare's built-in Rate Limiting rules for global enforcement
*
* This implementation is suitable for abuse prevention with single KV read
* per request (30-50ms overhead).
*/
import { Env } from '../types';
import { RATE_LIMIT_DEFAULTS, HTTP_STATUS } from '../constants';
import { createLogger } from '../utils/logger';
const logger = createLogger('[RateLimit]');
/**
* Rate limit configuration per endpoint
@@ -40,6 +67,10 @@ const RATE_LIMITS: Record<string, RateLimitConfig> = {
maxRequests: RATE_LIMIT_DEFAULTS.MAX_REQUESTS_SYNC,
windowMs: RATE_LIMIT_DEFAULTS.WINDOW_MS,
},
'/recommend': {
maxRequests: RATE_LIMIT_DEFAULTS.MAX_REQUESTS_RECOMMEND,
windowMs: RATE_LIMIT_DEFAULTS.WINDOW_MS,
},
};
/**
@@ -53,15 +84,25 @@ function getClientIP(request: Request): string {
const cfIP = request.headers.get('CF-Connecting-IP');
if (cfIP) return cfIP;
// If CF-Connecting-IP is missing, request may not be from Cloudflare
// Use unique identifier to still apply rate limit
console.warn('[RateLimit] CF-Connecting-IP missing, possible direct access');
return `unknown-${Date.now()}-${Math.random().toString(36).substring(7)}`;
// For non-Cloudflare requests, fail-closed: use a fixed identifier
// This applies a shared rate limit to all non-Cloudflare traffic
logger.warn('CF-Connecting-IP missing - applying shared rate limit');
return 'non-cloudflare-traffic';
}
/**
* Check if request is rate limited using Cloudflare KV
*
* Simplified flow accepting eventual consistency:
* 1. Read entry with version from KV metadata
* 2. Check if limit exceeded
* 3. Increment counter and version
* 4. Write with new version
* 5. Return decision based on pre-increment count
*
* No post-write verification - accepts eventual consistency for rate limiting.
* Version metadata is still incremented for race condition safety.
*
* @param request - HTTP request to check
* @param path - Request path for rate limit lookup
* @param env - Cloudflare Worker environment with KV binding
@@ -80,71 +121,75 @@ export async function checkRateLimit(
try {
const clientIP = getClientIP(request);
const now = Date.now();
const key = `ratelimit:${clientIP}:${path}`;
const now = Date.now();
// Get current entry from KV
const entryJson = await env.RATE_LIMIT_KV.get(key);
// 1. Read current entry with version metadata (single read)
const kvResult = await env.RATE_LIMIT_KV.getWithMetadata<{ version?: number }>(key);
const currentVersion = kvResult.metadata?.version ?? 0;
let entry: RateLimitEntry | null = null;
if (entryJson) {
if (kvResult.value) {
try {
entry = JSON.parse(entryJson);
entry = JSON.parse(kvResult.value);
} catch {
// Invalid JSON, treat as no entry
entry = null;
}
}
// Check if window has expired
// 2. Check if window has expired or no entry exists
if (!entry || entry.windowStart + config.windowMs <= now) {
// New window - allow and create new entry
// New window - create entry with count 1
const newEntry: RateLimitEntry = {
count: 1,
windowStart: now,
};
// Store with TTL (convert ms to seconds, round up)
const ttlSeconds = Math.ceil(config.windowMs / 1000);
// Write with version 0 (reset on new window) - no verification
await env.RATE_LIMIT_KV.put(key, JSON.stringify(newEntry), {
expirationTtl: ttlSeconds,
metadata: { version: 0 },
});
// Allow request - first in new window
return { allowed: true };
}
// Increment count
entry.count++;
// 3. Check current count against limit
const currentCount = entry.count;
const isOverLimit = currentCount >= config.maxRequests;
// Check if over limit
if (entry.count > config.maxRequests) {
const windowEnd = entry.windowStart + config.windowMs;
const retryAfter = Math.ceil((windowEnd - now) / 1000);
// 4. Increment count and version for next request
const newVersion = currentVersion + 1;
const updatedEntry: RateLimitEntry = {
count: currentCount + 1,
windowStart: entry.windowStart,
};
// Still update KV to persist the attempt
const ttlSeconds = Math.ceil((windowEnd - now) / 1000);
if (ttlSeconds > 0) {
await env.RATE_LIMIT_KV.put(key, JSON.stringify(entry), {
expirationTtl: ttlSeconds,
});
}
return { allowed: false, retryAfter };
}
// Update entry in KV
const windowEnd = entry.windowStart + config.windowMs;
const ttlSeconds = Math.ceil((windowEnd - now) / 1000);
// 5. Write updated count (only if TTL valid) - no verification
if (ttlSeconds > 0) {
await env.RATE_LIMIT_KV.put(key, JSON.stringify(entry), {
await env.RATE_LIMIT_KV.put(key, JSON.stringify(updatedEntry), {
expirationTtl: ttlSeconds,
metadata: { version: newVersion },
});
}
// 6. Return decision based on pre-increment count
if (isOverLimit) {
const retryAfter = Math.ceil((windowEnd - now) / 1000);
return { allowed: false, retryAfter };
}
return { allowed: true };
} catch (error) {
// Fail-closed on KV errors for security
console.error('[RateLimit] KV error, blocking request for safety:', error);
logger.error('KV error, blocking request for safety', { error });
return { allowed: false, retryAfter: 60 };
}
}
@@ -214,7 +259,7 @@ export async function getRateLimitStatus(
resetAt: entry.windowStart + config.windowMs,
};
} catch (error) {
console.error('[RateLimit] Status check error:', error);
logger.error('Status check error', { error });
return null;
}
}

9
src/repositories/anvil-instances.ts
View File

@@ -5,11 +5,9 @@
import { BaseRepository } from './base';
import { AnvilInstance, AnvilInstanceInput, RepositoryError, ErrorCodes } from '../types';
import { createLogger } from '../utils/logger';
export class AnvilInstancesRepository extends BaseRepository<AnvilInstance> {
protected tableName = 'anvil_instances';
protected logger = createLogger('[AnvilInstancesRepository]');
protected allowedColumns = [
'name',
'display_name',
@@ -243,12 +241,7 @@ export class AnvilInstancesRepository extends BaseRepository<AnvilInstance> {
);
});
const results = await this.executeBatch(statements);
const successCount = results.reduce(
(sum, result) => sum + (result.meta.changes ?? 0),
0
);
const successCount = await this.executeBatchCount(statements);
this.logger.info('Upserted Anvil instances', { count: successCount });
return successCount;

9
src/repositories/anvil-pricing.ts
View File

@@ -5,11 +5,9 @@
import { BaseRepository } from './base';
import { AnvilPricing, AnvilPricingInput, RepositoryError, ErrorCodes } from '../types';
import { createLogger } from '../utils/logger';
export class AnvilPricingRepository extends BaseRepository<AnvilPricing> {
protected tableName = 'anvil_pricing';
protected logger = createLogger('[AnvilPricingRepository]');
protected allowedColumns = [
'anvil_instance_id',
'anvil_region_id',
@@ -186,12 +184,7 @@ export class AnvilPricingRepository extends BaseRepository<AnvilPricing> {
);
});
const results = await this.executeBatch(statements);
const successCount = results.reduce(
(sum, result) => sum + (result.meta.changes ?? 0),
0
);
const successCount = await this.executeBatchCount(statements);
this.logger.info('Upserted Anvil pricing records', { count: successCount });
return successCount;

9
src/repositories/anvil-regions.ts
View File

@@ -5,11 +5,9 @@
import { BaseRepository } from './base';
import { AnvilRegion, AnvilRegionInput, RepositoryError, ErrorCodes } from '../types';
import { createLogger } from '../utils/logger';
export class AnvilRegionsRepository extends BaseRepository<AnvilRegion> {
protected tableName = 'anvil_regions';
protected logger = createLogger('[AnvilRegionsRepository]');
protected allowedColumns = [
'name',
'display_name',
@@ -186,12 +184,7 @@ export class AnvilRegionsRepository extends BaseRepository<AnvilRegion> {
);
});
const results = await this.executeBatch(statements);
const successCount = results.reduce(
(sum, result) => sum + (result.meta.changes ?? 0),
0
);
const successCount = await this.executeBatchCount(statements);
this.logger.info('Upserted Anvil regions', { count: successCount });
return successCount;

9
src/repositories/anvil-transfer-pricing.ts
View File

@@ -5,11 +5,9 @@
import { BaseRepository } from './base';
import { AnvilTransferPricing, AnvilTransferPricingInput, RepositoryError, ErrorCodes } from '../types';
import { createLogger } from '../utils/logger';
export class AnvilTransferPricingRepository extends BaseRepository<AnvilTransferPricing> {
protected tableName = 'anvil_transfer_pricing';
protected logger = createLogger('[AnvilTransferPricingRepository]');
protected allowedColumns = [
'anvil_region_id',
'price_per_gb',
@@ -67,12 +65,7 @@ export class AnvilTransferPricingRepository extends BaseRepository<AnvilTransfer
);
});
const results = await this.executeBatch(statements);
const successCount = results.reduce(
(sum, result) => sum + (result.meta.changes ?? 0),
0
);
const successCount = await this.executeBatchCount(statements);
this.logger.info('Upserted Anvil transfer pricing records', { count: successCount });
return successCount;

326
src/repositories/base.test.ts Normal file
View File

@@ -0,0 +1,326 @@
/**
* Base Repository Tests
* Tests for table name validation and security
*/
import { describe, it, expect, beforeEach, vi } from 'vitest';
import { BaseRepository } from './base';
import { RepositoryError } from '../types';
// Mock D1Database
const createMockD1Database = () => {
return {
prepare: vi.fn(),
dump: vi.fn(),
batch: vi.fn(),
exec: vi.fn(),
withSession: vi.fn(),
};
};
// Concrete implementation for testing
class TestRepository extends BaseRepository<any> {
protected allowedColumns: string[] = ['id', 'name', 'value'];
constructor(db: D1Database, protected tableName: string) {
super(db);
}
}
describe('BaseRepository - Table Name Validation', () => {
let db: D1Database;
beforeEach(() => {
db = createMockD1Database();
});
describe('Valid table names', () => {
it('should accept lowercase table name', async () => {
const repo = new TestRepository(db, 'users');
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo.count()).resolves.toBe(0);
});
it('should accept table name with underscores', async () => {
const repo = new TestRepository(db, 'user_profiles');
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo.count()).resolves.toBe(0);
});
it('should accept table name starting with underscore', async () => {
const repo = new TestRepository(db, '_internal_table');
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo.count()).resolves.toBe(0);
});
it('should accept uppercase table name', async () => {
const repo = new TestRepository(db, 'USERS');
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo.count()).resolves.toBe(0);
});
it('should accept mixed case table name', async () => {
const repo = new TestRepository(db, 'User_Profiles');
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo.count()).resolves.toBe(0);
});
it('should accept table name with numbers', async () => {
const repo = new TestRepository(db, 'users_v2');
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo.count()).resolves.toBe(0);
});
it('should accept long valid table name (64 chars)', async () => {
const longName = 'a'.repeat(64);
const repo = new TestRepository(db, longName);
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo.count()).resolves.toBe(0);
});
});
describe('Invalid table names - Format', () => {
it('should reject table name with spaces', async () => {
const repo = new TestRepository(db, 'user profiles');
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo.count()).rejects.toThrow(RepositoryError);
await expect(repo.count()).rejects.toThrow('Invalid table name');
});
it('should reject table name with hyphens', async () => {
const repo = new TestRepository(db, 'user-profiles');
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo.count()).rejects.toThrow(RepositoryError);
});
it('should reject table name with special characters', async () => {
const repo1 = new TestRepository(db, 'users@table');
const repo2 = new TestRepository(db, 'users#table');
const repo3 = new TestRepository(db, 'users$table');
const repo4 = new TestRepository(db, 'users!table');
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo1.count()).rejects.toThrow(RepositoryError);
await expect(repo2.count()).rejects.toThrow(RepositoryError);
await expect(repo3.count()).rejects.toThrow(RepositoryError);
await expect(repo4.count()).rejects.toThrow(RepositoryError);
});
it('should reject table name starting with number', async () => {
const repo = new TestRepository(db, '123users');
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo.count()).rejects.toThrow(RepositoryError);
await expect(repo.count()).rejects.toThrow('Invalid table name');
});
it('should reject empty table name', async () => {
const repo = new TestRepository(db, '');
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo.count()).rejects.toThrow(RepositoryError);
});
it('should reject table name with dots', async () => {
const repo = new TestRepository(db, 'schema.users');
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo.count()).rejects.toThrow(RepositoryError);
});
});
describe('Invalid table names - SQL Keywords', () => {
it('should reject SELECT keyword', async () => {
const repo = new TestRepository(db, 'SELECT');
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo.count()).rejects.toThrow(RepositoryError);
await expect(repo.count()).rejects.toThrow('SQL keyword');
});
it('should reject INSERT keyword', async () => {
const repo = new TestRepository(db, 'INSERT');
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo.count()).rejects.toThrow(RepositoryError);
});
it('should reject UPDATE keyword', async () => {
const repo = new TestRepository(db, 'UPDATE');
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo.count()).rejects.toThrow(RepositoryError);
});
it('should reject DELETE keyword', async () => {
const repo = new TestRepository(db, 'DELETE');
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo.count()).rejects.toThrow(RepositoryError);
});
it('should reject DROP keyword', async () => {
const repo = new TestRepository(db, 'DROP');
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo.count()).rejects.toThrow(RepositoryError);
});
it('should reject CREATE keyword', async () => {
const repo = new TestRepository(db, 'CREATE');
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo.count()).rejects.toThrow(RepositoryError);
});
it('should reject ALTER keyword', async () => {
const repo = new TestRepository(db, 'ALTER');
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo.count()).rejects.toThrow(RepositoryError);
});
it('should reject TRUNCATE keyword', async () => {
const repo = new TestRepository(db, 'TRUNCATE');
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo.count()).rejects.toThrow(RepositoryError);
});
it('should reject GRANT keyword', async () => {
const repo = new TestRepository(db, 'GRANT');
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo.count()).rejects.toThrow(RepositoryError);
});
it('should reject REVOKE keyword', async () => {
const repo = new TestRepository(db, 'REVOKE');
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo.count()).rejects.toThrow(RepositoryError);
});
it('should reject lowercase SQL keywords', async () => {
const repo1 = new TestRepository(db, 'select');
const repo2 = new TestRepository(db, 'delete');
const repo3 = new TestRepository(db, 'drop');
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo1.count()).rejects.toThrow(RepositoryError);
await expect(repo2.count()).rejects.toThrow(RepositoryError);
await expect(repo3.count()).rejects.toThrow(RepositoryError);
});
it('should reject mixed case SQL keywords', async () => {
const repo1 = new TestRepository(db, 'Select');
const repo2 = new TestRepository(db, 'DeLeTe');
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo1.count()).rejects.toThrow(RepositoryError);
await expect(repo2.count()).rejects.toThrow(RepositoryError);
});
});
describe('Invalid table names - Length', () => {
it('should reject table name longer than 64 characters', async () => {
const tooLongName = 'a'.repeat(65);
const repo = new TestRepository(db, tooLongName);
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo.count()).rejects.toThrow(RepositoryError);
await expect(repo.count()).rejects.toThrow('too long');
});
it('should reject extremely long table name', async () => {
const extremelyLongName = 'users_' + 'x'.repeat(100);
const repo = new TestRepository(db, extremelyLongName);
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo.count()).rejects.toThrow(RepositoryError);
});
});
describe('Edge cases', () => {
it('should accept single character table name', async () => {
const repo1 = new TestRepository(db, 'a');
const repo2 = new TestRepository(db, '_');
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo1.count()).resolves.toBe(0);
await expect(repo2.count()).resolves.toBe(0);
});
it('should accept table name at exact 64 character limit', async () => {
const exactLimit = 'a'.repeat(64);
const repo = new TestRepository(db, exactLimit);
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo.count()).resolves.toBe(0);
});
it('should reject SQL keyword even with different casing', async () => {
const repo = new TestRepository(db, 'sElEcT');
db.prepare = () => ({
first: async () => ({ count: 0 }),
}) as any;
await expect(repo.count()).rejects.toThrow(RepositoryError);
});
});
});

162
src/repositories/base.ts
View File

@@ -9,14 +9,69 @@ import { createLogger } from '../utils/logger';
export abstract class BaseRepository<T> {
protected abstract tableName: string;
protected abstract allowedColumns: string[];
protected logger = createLogger('[BaseRepository]');
private static _loggerCache = new Map<string, ReturnType<typeof createLogger>>();
private _tableNameValidated = false;
constructor(protected db: D1Database) {}
/**
* Shared logger getter with per-class caching
* Creates one logger instance per class type instead of per repository instance
*/
protected get logger(): ReturnType<typeof createLogger> {
const className = this.constructor.name;
if (!BaseRepository._loggerCache.has(className)) {
BaseRepository._loggerCache.set(className, createLogger(`[${className}]`));
}
return BaseRepository._loggerCache.get(className)!;
}
/**
* Validate table name to prevent SQL injection
* Called lazily on first use to ensure tableName is initialized
* @throws RepositoryError if table name is invalid
*/
private validateTableName(): void {
// Only validate once
if (this._tableNameValidated) {
return;
}
// Validate format: only alphanumeric and underscores, starting with letter or underscore
if (!/^[a-z_][a-z0-9_]*$/i.test(this.tableName)) {
throw new RepositoryError(
`Invalid table name: ${this.tableName}`,
ErrorCodes.VALIDATION_ERROR
);
}
// Prevent SQL keywords
const sqlKeywords = ['SELECT', 'INSERT', 'UPDATE', 'DELETE', 'DROP', 'CREATE', 'ALTER', 'TRUNCATE', 'GRANT', 'REVOKE'];
if (sqlKeywords.includes(this.tableName.toUpperCase())) {
throw new RepositoryError(
`Table name cannot be SQL keyword: ${this.tableName}`,
ErrorCodes.VALIDATION_ERROR
);
}
// Max length check (SQLite identifier limit is 64 characters)
if (this.tableName.length > 64) {
throw new RepositoryError(
`Table name too long: ${this.tableName}`,
ErrorCodes.VALIDATION_ERROR
);
}
this._tableNameValidated = true;
}
/**
* Find a record by ID
*/
async findById(id: number): Promise<T | null> {
this.validateTableName();
try {
const result = await this.db
.prepare(`SELECT * FROM ${this.tableName} WHERE id = ?`)
@@ -42,6 +97,7 @@ export abstract class BaseRepository<T> {
* Find all records with optional pagination
*/
async findAll(options?: PaginationOptions): Promise<T[]> {
this.validateTableName();
try {
const limit = options?.limit ?? 100;
const offset = options?.offset ?? 0;
@@ -71,6 +127,7 @@ export abstract class BaseRepository<T> {
* Create a new record
*/
async create(data: Partial<T>): Promise<T> {
this.validateTableName();
try {
const columnNames = Object.keys(data);
@@ -129,6 +186,7 @@ export abstract class BaseRepository<T> {
* Update a record by ID
*/
async update(id: number, data: Partial<T>): Promise<T> {
this.validateTableName();
try {
const columnNames = Object.keys(data);
@@ -179,6 +237,7 @@ export abstract class BaseRepository<T> {
* Delete a record by ID
*/
async delete(id: number): Promise<boolean> {
this.validateTableName();
try {
const result = await this.db
.prepare(`DELETE FROM ${this.tableName} WHERE id = ?`)
@@ -204,6 +263,7 @@ export abstract class BaseRepository<T> {
* Count total records
*/
async count(): Promise<number> {
this.validateTableName();
try {
const result = await this.db
.prepare(`SELECT COUNT(*) as count FROM ${this.tableName}`)
@@ -253,6 +313,7 @@ export abstract class BaseRepository<T> {
* Automatically chunks operations into batches of 100 (D1 limit)
*/
protected async executeBatch(statements: D1PreparedStatement[]): Promise<D1Result[]> {
this.validateTableName();
try {
const BATCH_SIZE = 100;
const totalStatements = statements.length;
@@ -338,4 +399,103 @@ export abstract class BaseRepository<T> {
);
}
}
/**
* Execute batch operations and return only the total count of changes
* Optimized for large batches to avoid memory accumulation
* @returns Total number of rows affected across all operations
*/
protected async executeBatchCount(statements: D1PreparedStatement[]): Promise<number> {
this.validateTableName();
try {
const BATCH_SIZE = 100;
const totalStatements = statements.length;
let totalChanges = 0;
// If statements fit within single batch, execute directly
if (totalStatements <= BATCH_SIZE) {
this.logger.info('Executing batch (count mode)', {
table: this.tableName,
statements: totalStatements
});
const results = await this.db.batch(statements);
totalChanges = results.reduce((sum, r) => sum + (r.meta.changes ?? 0), 0);
this.logger.info('Batch completed successfully', {
table: this.tableName,
changes: totalChanges
});
return totalChanges;
}
// Process chunks and aggregate counts without storing all results
const chunks = Math.ceil(totalStatements / BATCH_SIZE);
this.logger.info('Executing large batch (count mode)', {
table: this.tableName,
statements: totalStatements,
chunks
});
for (let i = 0; i < chunks; i++) {
const start = i * BATCH_SIZE;
const end = Math.min(start + BATCH_SIZE, totalStatements);
const chunk = statements.slice(start, end);
this.logger.info('Processing chunk', {
table: this.tableName,
chunk: i + 1,
total: chunks,
range: `${start + 1}-${end}`
});
try {
const chunkResults = await this.db.batch(chunk);
const chunkChanges = chunkResults.reduce((sum, r) => sum + (r.meta.changes ?? 0), 0);
totalChanges += chunkChanges;
this.logger.info('Chunk completed successfully', {
table: this.tableName,
chunk: i + 1,
total: chunks,
changes: chunkChanges,
totalChanges
});
} catch (chunkError) {
this.logger.error('Chunk failed', {
table: this.tableName,
chunk: i + 1,
total: chunks,
range: `${start + 1}-${end}`,
error: chunkError instanceof Error ? chunkError.message : 'Unknown error'
});
throw new RepositoryError(
`Batch chunk ${i + 1}/${chunks} failed for ${this.tableName} (statements ${start + 1}-${end})`,
ErrorCodes.TRANSACTION_FAILED,
chunkError
);
}
}
this.logger.info('All chunks completed successfully', {
table: this.tableName,
chunks,
totalChanges
});
return totalChanges;
} catch (error) {
// Re-throw RepositoryError from chunk processing
if (error instanceof RepositoryError) {
throw error;
}
this.logger.error('Batch count execution failed', {
table: this.tableName,
error: error instanceof Error ? error.message : 'Unknown error'
});
throw new RepositoryError(
`Batch count operation failed for ${this.tableName}`,
ErrorCodes.TRANSACTION_FAILED,
error
);
}
}
}

2
src/repositories/g8-instances.ts
View File

@@ -5,11 +5,9 @@
import { BaseRepository } from './base';
import { G8Instance, G8InstanceInput, RepositoryError, ErrorCodes } from '../types';
import { createLogger } from '../utils/logger';
export class G8InstancesRepository extends BaseRepository<G8Instance> {
protected tableName = 'g8_instances';
protected logger = createLogger('[G8InstancesRepository]');
protected allowedColumns = [
'provider_id',
'instance_id',

25
src/repositories/g8-pricing.ts
View File

@@ -5,19 +5,14 @@
import { BaseRepository } from './base';
import { G8Pricing, G8PricingInput, RepositoryError, ErrorCodes } from '../types';
import { createLogger } from '../utils/logger';
import { calculateRetailHourly, calculateRetailMonthly } from '../constants';
export class G8PricingRepository extends BaseRepository<G8Pricing> {
protected tableName = 'g8_pricing';
protected logger = createLogger('[G8PricingRepository]');
protected allowedColumns = [
'g8_instance_id',
'region_id',
'hourly_price',
'monthly_price',
'hourly_price_retail',
'monthly_price_retail',
'currency',
'available',
];
@@ -85,42 +80,28 @@ export class G8PricingRepository extends BaseRepository<G8Pricing> {
try {
const statements = pricingData.map((pricing) => {
const hourlyRetail = calculateRetailHourly(pricing.hourly_price);
const monthlyRetail = calculateRetailMonthly(pricing.monthly_price);
return this.db.prepare(
`INSERT INTO g8_pricing (
g8_instance_id, region_id, hourly_price, monthly_price,
hourly_price_retail, monthly_price_retail,
currency, available
) VALUES (?, ?, ?, ?, ?, ?, ?, ?)
) VALUES (?, ?, ?, ?, ?, ?)
ON CONFLICT(g8_instance_id, region_id)
DO UPDATE SET
hourly_price = excluded.hourly_price,
monthly_price = excluded.monthly_price,
hourly_price_retail = excluded.hourly_price_retail,
monthly_price_retail = excluded.monthly_price_retail,
currency = excluded.currency,
available = excluded.available,
updated_at = datetime('now')`
available = excluded.available`
).bind(
pricing.g8_instance_id,
pricing.region_id,
pricing.hourly_price,
pricing.monthly_price,
hourlyRetail,
monthlyRetail,
pricing.currency,
pricing.available
);
});
const results = await this.executeBatch(statements);
const successCount = results.reduce(
(sum, result) => sum + (result.meta.changes ?? 0),
0
);
const successCount = await this.executeBatchCount(statements);
this.logger.info('Upserted G8 pricing records', { count: successCount });
return successCount;

9
src/repositories/gpu-instances.ts
View File

@@ -5,11 +5,9 @@
import { BaseRepository } from './base';
import { GpuInstance, GpuInstanceInput, RepositoryError, ErrorCodes } from '../types';
import { createLogger } from '../utils/logger';
export class GpuInstancesRepository extends BaseRepository<GpuInstance> {
protected tableName = 'gpu_instances';
protected logger = createLogger('[GpuInstancesRepository]');
protected allowedColumns = [
'provider_id',
'instance_id',
@@ -144,13 +142,8 @@ export class GpuInstancesRepository extends BaseRepository<GpuInstance> {
);
});
const results = await this.executeBatch(statements);
// Count successful operations
const successCount = results.reduce(
(sum, result) => sum + (result.meta.changes ?? 0),
0
);
const successCount = await this.executeBatchCount(statements);
this.logger.info('Upserted GPU instances', {
providerId,

22
src/repositories/gpu-pricing.ts
View File

@@ -5,19 +5,14 @@
import { BaseRepository } from './base';
import { GpuPricing, GpuPricingInput, RepositoryError, ErrorCodes } from '../types';
import { createLogger } from '../utils/logger';
import { calculateRetailHourly, calculateRetailMonthly } from '../constants';
export class GpuPricingRepository extends BaseRepository<GpuPricing> {
protected tableName = 'gpu_pricing';
protected logger = createLogger('[GpuPricingRepository]');
protected allowedColumns = [
'gpu_instance_id',
'region_id',
'hourly_price',
'monthly_price',
'hourly_price_retail',
'monthly_price_retail',
'currency',
'available',
];
@@ -113,21 +108,15 @@ export class GpuPricingRepository extends BaseRepository<GpuPricing> {
try {
const statements = pricingData.map((pricing) => {
const hourlyRetail = calculateRetailHourly(pricing.hourly_price);
const monthlyRetail = calculateRetailMonthly(pricing.monthly_price);
return this.db.prepare(
`INSERT INTO gpu_pricing (
gpu_instance_id, region_id, hourly_price, monthly_price,
hourly_price_retail, monthly_price_retail,
currency, available
) VALUES (?, ?, ?, ?, ?, ?, ?, ?)
) VALUES (?, ?, ?, ?, ?, ?)
ON CONFLICT(gpu_instance_id, region_id)
DO UPDATE SET
hourly_price = excluded.hourly_price,
monthly_price = excluded.monthly_price,
hourly_price_retail = excluded.hourly_price_retail,
monthly_price_retail = excluded.monthly_price_retail,
currency = excluded.currency,
available = excluded.available`
).bind(
@@ -135,19 +124,12 @@ export class GpuPricingRepository extends BaseRepository<GpuPricing> {
pricing.region_id,
pricing.hourly_price,
pricing.monthly_price,
hourlyRetail,
monthlyRetail,
pricing.currency,
pricing.available
);
});
const results = await this.executeBatch(statements);
const successCount = results.reduce(
(sum, result) => sum + (result.meta.changes ?? 0),
0
);
const successCount = await this.executeBatchCount(statements);
this.logger.info('Upserted GPU pricing records', { count: successCount });
return successCount;

9
src/repositories/instances.ts
View File

@@ -5,11 +5,9 @@
import { BaseRepository } from './base';
import { InstanceType, InstanceTypeInput, InstanceFamily, RepositoryError, ErrorCodes } from '../types';
import { createLogger } from '../utils/logger';
export class InstancesRepository extends BaseRepository<InstanceType> {
protected tableName = 'instance_types';
protected logger = createLogger('[InstancesRepository]');
protected allowedColumns = [
'provider_id',
'instance_id',
@@ -144,13 +142,8 @@ export class InstancesRepository extends BaseRepository<InstanceType> {
);
});
const results = await this.executeBatch(statements);
// Count successful operations
const successCount = results.reduce(
(sum, result) => sum + (result.meta.changes ?? 0),
0
);
const successCount = await this.executeBatchCount(statements);
this.logger.info('Upserted instance types', {
providerId,

9
src/repositories/pricing.ts
View File

@@ -5,11 +5,9 @@
import { BaseRepository } from './base';
import { Pricing, PricingInput, PriceHistory, RepositoryError, ErrorCodes } from '../types';
import { createLogger } from '../utils/logger';
export class PricingRepository extends BaseRepository<Pricing> {
protected tableName = 'pricing';
protected logger = createLogger('[PricingRepository]');
protected allowedColumns = [
'instance_type_id',
'region_id',
@@ -132,13 +130,8 @@ export class PricingRepository extends BaseRepository<Pricing> {
);
});
const results = await this.executeBatch(statements);
// Count successful operations
const successCount = results.reduce(
(sum, result) => sum + (result.meta.changes ?? 0),
0
);
const successCount = await this.executeBatchCount(statements);
this.logger.info('Upserted pricing records', { count: successCount });
return successCount;

2
src/repositories/providers.ts
View File

@@ -5,11 +5,9 @@
import { BaseRepository } from './base';
import { Provider, ProviderInput, RepositoryError, ErrorCodes } from '../types';
import { createLogger } from '../utils/logger';
export class ProvidersRepository extends BaseRepository<Provider> {
protected tableName = 'providers';
protected logger = createLogger('[ProvidersRepository]');
protected allowedColumns = [
'name',
'display_name',

9
src/repositories/regions.ts
View File

@@ -5,11 +5,9 @@
import { BaseRepository } from './base';
import { Region, RegionInput, RepositoryError, ErrorCodes } from '../types';
import { createLogger } from '../utils/logger';
export class RegionsRepository extends BaseRepository<Region> {
protected tableName = 'regions';
protected logger = createLogger('[RegionsRepository]');
protected allowedColumns = [
'provider_id',
'region_code',
@@ -104,13 +102,8 @@ export class RegionsRepository extends BaseRepository<Region> {
);
});
const results = await this.executeBatch(statements);
// Count successful operations
const successCount = results.reduce(
(sum, result) => sum + (result.meta.changes ?? 0),
0
);
const successCount = await this.executeBatchCount(statements);
this.logger.info('Upserted regions', {
providerId,

2
src/repositories/vpu-instances.ts
View File

@@ -5,11 +5,9 @@
import { BaseRepository } from './base';
import { VpuInstance, VpuInstanceInput, RepositoryError, ErrorCodes } from '../types';
import { createLogger } from '../utils/logger';
export class VpuInstancesRepository extends BaseRepository<VpuInstance> {
protected tableName = 'vpu_instances';
protected logger = createLogger('[VpuInstancesRepository]');
protected allowedColumns = [
'provider_id',
'instance_id',

25
src/repositories/vpu-pricing.ts
View File

@@ -5,19 +5,14 @@
import { BaseRepository } from './base';
import { VpuPricing, VpuPricingInput, RepositoryError, ErrorCodes } from '../types';
import { createLogger } from '../utils/logger';
import { calculateRetailHourly, calculateRetailMonthly } from '../constants';
export class VpuPricingRepository extends BaseRepository<VpuPricing> {
protected tableName = 'vpu_pricing';
protected logger = createLogger('[VpuPricingRepository]');
protected allowedColumns = [
'vpu_instance_id',
'region_id',
'hourly_price',
'monthly_price',
'hourly_price_retail',
'monthly_price_retail',
'currency',
'available',
];
@@ -85,42 +80,28 @@ export class VpuPricingRepository extends BaseRepository<VpuPricing> {
try {
const statements = pricingData.map((pricing) => {
const hourlyRetail = calculateRetailHourly(pricing.hourly_price);
const monthlyRetail = calculateRetailMonthly(pricing.monthly_price);
return this.db.prepare(
`INSERT INTO vpu_pricing (
vpu_instance_id, region_id, hourly_price, monthly_price,
hourly_price_retail, monthly_price_retail,
currency, available
) VALUES (?, ?, ?, ?, ?, ?, ?, ?)
) VALUES (?, ?, ?, ?, ?, ?)
ON CONFLICT(vpu_instance_id, region_id)
DO UPDATE SET
hourly_price = excluded.hourly_price,
monthly_price = excluded.monthly_price,
hourly_price_retail = excluded.hourly_price_retail,
monthly_price_retail = excluded.monthly_price_retail,
currency = excluded.currency,
available = excluded.available,
updated_at = datetime('now')`
available = excluded.available`
).bind(
pricing.vpu_instance_id,
pricing.region_id,
pricing.hourly_price,
pricing.monthly_price,
hourlyRetail,
monthlyRetail,
pricing.currency,
pricing.available
);
});
const results = await this.executeBatch(statements);
const successCount = results.reduce(
(sum, result) => sum + (result.meta.changes ?? 0),
0
);
const successCount = await this.executeBatchCount(statements);
this.logger.info('Upserted VPU pricing records', { count: successCount });

19
src/routes/health.ts
View File

@@ -5,6 +5,9 @@
import { Env } from '../types';
import { HTTP_STATUS } from '../constants';
import { createLogger } from '../utils/logger';
const logger = createLogger('[Health]');
/**
* Component health status
@@ -74,7 +77,7 @@ async function checkDatabaseHealth(db: D1Database): Promise<DatabaseHealth> {
latency_ms: latency,
};
} catch (error) {
console.error('[Health] Database check failed:', error);
logger.error('Database check failed', { error });
return {
status: 'unhealthy',
error: error instanceof Error ? error.message : 'Database connection failed',
@@ -212,9 +215,17 @@ export async function handleHealth(
p.last_sync_at,
p.sync_status,
p.sync_error,
(SELECT COUNT(*) FROM regions WHERE provider_id = p.id) as regions_count,
(SELECT COUNT(*) FROM instance_types WHERE provider_id = p.id) as instances_count
COALESCE(r.regions_count, 0) as regions_count,
COALESCE(i.instances_count, 0) as instances_count
FROM providers p
LEFT JOIN (
SELECT provider_id, COUNT(*) as regions_count
FROM regions GROUP BY provider_id
) r ON r.provider_id = p.id
LEFT JOIN (
SELECT provider_id, COUNT(*) as instances_count
FROM instance_types GROUP BY provider_id
) i ON i.provider_id = p.id
`).all<{
id: number;
name: string;
@@ -304,7 +315,7 @@ export async function handleHealth(
return Response.json(detailedResponse, { status: statusCode });
} catch (error) {
console.error('[Health] Health check failed:', error);
logger.error('Health check failed', { error });
// Public response: minimal information
if (!authenticated) {

37
src/routes/instances.ts
View File

@@ -32,15 +32,19 @@ import {
*/
let cachedQueryService: QueryService | null = null;
let cachedCacheService: CacheService | null = null;
let cachedDb: D1Database | null = null;
/**
* Get or create QueryService singleton
* Lazy initialization on first request, then reused for subsequent requests
* Invalidates cache if database binding changes (rolling deploy scenario)
*/
function getQueryService(db: D1Database, env: Env): QueryService {
if (!cachedQueryService) {
// Invalidate cache if db binding changed (rolling deploy scenario)
if (!cachedQueryService || cachedDb !== db) {
cachedQueryService = new QueryService(db, env);
logger.debug('[Instances] QueryService singleton initialized');
cachedDb = db;
logger.debug('[Instances] QueryService singleton initialized/refreshed');
}
return cachedQueryService;
}
@@ -288,6 +292,31 @@ function parseQueryParams(url: URL): {
params.offset = offset;
}
// Range consistency validation
if (params.min_vcpu !== undefined && params.max_vcpu !== undefined) {
if (params.min_vcpu > params.max_vcpu) {
return {
error: {
code: 'INVALID_RANGE',
message: 'min_vcpu cannot be greater than max_vcpu',
parameter: 'min_vcpu',
},
};
}
}
if (params.min_memory_gb !== undefined && params.max_memory_gb !== undefined) {
if (params.min_memory_gb > params.max_memory_gb) {
return {
error: {
code: 'INVALID_RANGE',
message: 'min_memory_gb cannot be greater than max_memory_gb',
parameter: 'min_memory_gb',
},
};
}
}
return { params };
}
@@ -463,8 +492,8 @@ export async function handleInstances(
success: false,
error: {
code: 'QUERY_FAILED',
message: 'Instance query failed',
details: error instanceof Error ? error.message : 'Unknown error',
message: 'Instance query failed. Please try again later.',
request_id: crypto.randomUUID(),
},
},
{ status: HTTP_STATUS.INTERNAL_ERROR }

22
src/routes/recommend.ts
View File

@@ -33,6 +33,23 @@ interface RecommendRequestBody {
*/
const SUPPORTED_SCALES: readonly ScaleType[] = ['small', 'medium', 'large'] as const;
/**
* Cached CacheService instance for singleton pattern
*/
let cachedCacheService: CacheService | null = null;
/**
* Get or create CacheService singleton
*
* @returns CacheService instance with INSTANCES TTL
*/
function getCacheService(): CacheService {
if (!cachedCacheService) {
cachedCacheService = new CacheService(CACHE_TTL.INSTANCES);
}
return cachedCacheService;
}
/**
* Handle POST /recommend endpoint
*
@@ -157,7 +174,7 @@ export async function handleRecommend(request: Request, env: Env): Promise<Respo
// 7. Initialize cache service and generate cache key
logger.info('[Recommend] Validation passed', { stack, scale, budgetMax });
const cacheService = new CacheService(CACHE_TTL.INSTANCES);
const cacheService = getCacheService();
// Generate cache key from sorted stack, scale, and budget
// Sort stack to ensure consistent cache keys regardless of order
@@ -270,7 +287,8 @@ export async function handleRecommend(request: Request, env: Env): Promise<Respo
success: false,
error: {
code: 'INTERNAL_ERROR',
message: error instanceof Error ? error.message : 'Unknown error',
message: 'Recommendation request failed. Please try again later.',
request_id: crypto.randomUUID(),
details: {
duration_ms: duration,
},

24
src/routes/sync.ts
View File

@@ -7,7 +7,6 @@
import type { Env } from '../types';
import { SyncOrchestrator } from '../services/sync';
import { VaultClient } from '../connectors/vault';
import { logger } from '../utils/logger';
import { SUPPORTED_PROVIDERS, HTTP_STATUS } from '../constants';
import { parseJsonBody, validateProviders, createErrorResponse } from '../utils/validation';
@@ -45,6 +44,18 @@ export async function handleSync(
logger.info('[Sync] Request received', { timestamp: startedAt });
try {
// Validate content-length before parsing body
const contentLength = request.headers.get('content-length');
if (contentLength) {
const bodySize = parseInt(contentLength, 10);
if (isNaN(bodySize) || bodySize > 10240) { // 10KB limit for sync
return Response.json(
{ success: false, error: { code: 'PAYLOAD_TOO_LARGE', message: 'Request body too large' } },
{ status: 413 }
);
}
}
// Parse and validate request body
const contentType = request.headers.get('content-type');
let body: SyncRequestBody = {};
@@ -78,18 +89,15 @@ export async function handleSync(
logger.info('[Sync] Validation passed', { providers, force });
// Initialize Vault client
const vault = new VaultClient(env.VAULT_URL, env.VAULT_TOKEN, env);
// Initialize SyncOrchestrator
const orchestrator = new SyncOrchestrator(env.DB, vault, env);
const orchestrator = new SyncOrchestrator(env.DB, env);
// Execute synchronization
logger.info('[Sync] Starting synchronization', { providers });
const syncReport = await orchestrator.syncAll(providers);
// Generate unique sync ID
const syncId = `sync_${Date.now()}_${Math.random().toString(36).substr(2, 9)}`;
const syncId = `sync_${Date.now()}_${crypto.randomUUID().substring(0, 9)}`;
logger.info('[Sync] Synchronization completed', {
syncId,
@@ -120,9 +128,9 @@ export async function handleSync(
success: false,
error: {
code: 'SYNC_FAILED',
message: 'Sync operation failed',
message: 'Sync operation failed. Please try again later.',
request_id: crypto.randomUUID(),
details: {
error: error instanceof Error ? error.message : 'Unknown error',
duration_ms: totalDuration,
started_at: startedAt,
completed_at: completedAt

121
src/services/cache.manual-test.md
View File

@@ -80,6 +80,65 @@
* Post-sync invalidation:
* - After sync operation, call cache.delete(key) for all relevant keys
* - Verify next request fetches fresh data from database
*
* Test 9: clearAll Method
* -----------------------
* 1. Set multiple cache entries:
* - await cache.set('key1', { data: 'test1' }, 300)
* - await cache.set('key2', { data: 'test2' }, 300)
* - await cache.set('key3', { data: 'test3' }, 300)
* 2. Call clearAll: const count = await cache.clearAll()
* 3. Expected: count === 0 (enumeration not supported)
* 4. Expected: Log message about TTL-based expiration
* 5. Note: Individual entries will expire based on TTL
*
* Test 10: clearAll with Prefix
* ------------------------------
* 1. Set entries with different prefixes:
* - await cache.set('https://cache.internal/instances?foo=bar', data1)
* - await cache.set('https://cache.internal/pricing?foo=bar', data2)
* 2. Call with prefix: await cache.clearAll('https://cache.internal/instances')
* 3. Expected: count === 0, log shows prefix parameter
* 4. Note: Prefix is logged but enumeration not supported by Cache API
*
* Test 11: clearByEndpoint Method
* --------------------------------
* 1. Set endpoint cache: await cache.set('https://cache.internal/instances', data, 300)
* 2. Clear by endpoint: const deleted = await cache.clearByEndpoint('instances')
* 3. Expected: deleted === true if cache entry existed
* 4. Get data: const result = await cache.get('https://cache.internal/instances')
* 5. Expected: result === null (entry deleted)
* 6. Note: Only exact matches deleted, parameterized queries remain cached
*
* Test 12: clearByEndpoint with Non-existent Endpoint
* ----------------------------------------------------
* 1. Clear non-existent: const deleted = await cache.clearByEndpoint('non-existent')
* 2. Expected: deleted === false
* 3. Expected: Log message about non-existent endpoint
*
* Test 13: Cache Invalidation Strategy
* -------------------------------------
* 1. Set parameterized cache entries:
* - cache.generateKey({ provider: 'linode', region: 'us-east' })
* - cache.generateKey({ provider: 'linode', region: 'eu-west' })
* - cache.generateKey({ provider: 'vultr', region: 'us-east' })
* 2. After schema change or full sync, call clearAll()
* 3. Verify entries expire based on TTL
* 4. For production: Consider using KV-backed cache index for enumeration
*
* Test 14: Error Handling in clearAll
* ------------------------------------
* 1. Mock cache.delete to throw error
* 2. Call clearAll: await cache.clearAll()
* 3. Expected: Error is logged and re-thrown
* 4. Verify error message includes context
*
* Test 15: Error Handling in clearByEndpoint
* -------------------------------------------
* 1. Mock cache.delete to throw error
* 2. Call clearByEndpoint: await cache.clearByEndpoint('instances')
* 3. Expected: Returns false, error logged
* 4. Application continues without crashing
*/
import { CacheService } from './cache';
@@ -146,4 +205,64 @@ async function exampleCacheInvalidationAfterSync(
console.log('[Sync] Cache invalidation complete');
}
export { exampleInstanceEndpointWithCache, exampleCacheInvalidationAfterSync };
/**
* Example: Using clearAll after schema changes
*/
async function exampleClearAllAfterSchemaChange(): Promise<void> {
const cache = new CacheService();
// After major schema changes or data migrations
console.log('[Migration] Clearing all cache entries');
const count = await cache.clearAll();
console.log(`[Migration] Cache clear requested. Entries will expire based on TTL.`);
console.log('[Migration] Consider using KV-backed cache index for enumeration in production.');
}
/**
* Example: Using clearByEndpoint for targeted invalidation
*/
async function exampleClearByEndpointAfterUpdate(endpoint: string): Promise<void> {
const cache = new CacheService();
// Clear cache for specific endpoint after data update
console.log(`[Update] Clearing cache for endpoint: ${endpoint}`);
const deleted = await cache.clearByEndpoint(endpoint);
if (deleted) {
console.log(`[Update] Successfully cleared ${endpoint} cache`);
} else {
console.log(`[Update] No cache entry found for ${endpoint}`);
}
}
/**
* Example: Force cache refresh strategy
*/
async function exampleForceCacheRefresh(
endpoint: string,
fetchFunction: () => Promise<unknown>
): Promise<void> {
const cache = new CacheService();
// Strategy 1: Clear specific endpoint
await cache.clearByEndpoint(endpoint);
// Strategy 2: Clear with prefix (logged but not enumerated)
await cache.clearAll(`https://cache.internal/${endpoint}`);
// Strategy 3: Fetch fresh data and update cache
const freshData = await fetchFunction();
const cacheKey = `https://cache.internal/${endpoint}`;
await cache.set(cacheKey, freshData, 3600);
console.log(`[Refresh] Cache refreshed for ${endpoint}`);
}
export {
exampleInstanceEndpointWithCache,
exampleCacheInvalidationAfterSync,
exampleClearAllAfterSchemaChange,
exampleClearByEndpointAfterUpdate,
exampleForceCacheRefresh
};

82
src/services/cache.ts
View File

@@ -180,6 +180,88 @@ export class CacheService {
return `https://cache.internal/instances?${sorted}`;
}
/**
* Clear all cache entries with optional prefix filter
*
* Note: The Cloudflare Workers Cache API doesn't support listing/enumerating keys,
* so this method can only track operations via logging. Individual entries will
* expire based on their TTL. For production use cases requiring enumeration,
* consider using KV-backed cache index.
*
* @param prefix - Optional URL prefix to filter entries (e.g., 'https://cache.internal/instances')
* @returns Number of entries cleared (0, as enumeration is not supported)
*
* @example
* // Clear all cache entries
* const count = await cache.clearAll();
*
* // Clear entries with specific prefix
* const count = await cache.clearAll('https://cache.internal/instances');
*/
async clearAll(prefix?: string): Promise<number> {
try {
const targetPrefix = prefix ?? 'https://cache.internal/';
// The Cache API doesn't support listing keys directly
// We log the clear operation for audit purposes
// Individual entries will naturally expire based on TTL
logger.info('[CacheService] Cache clearAll requested', {
prefix: targetPrefix,
note: 'Individual entries will expire based on TTL. Consider using KV-backed cache index for enumeration.'
});
// Return 0 as we can't enumerate Cache API entries
// In production, use KV-backed cache index for enumeration
return 0;
} catch (error) {
logger.error('[CacheService] Cache clearAll failed', {
error: error instanceof Error ? error.message : String(error),
prefix
});
throw error;
}
}
/**
* Clear cache entries for a specific endpoint
*
* This method deletes cache entries matching a specific endpoint pattern.
* Useful for targeted cache invalidation after data updates.
*
* @param endpoint - Endpoint path (e.g., 'instances', 'pricing')
* @returns true if at least one entry was deleted, false otherwise
*
* @example
* // Clear all instance cache entries
* await cache.clearByEndpoint('instances');
*/
async clearByEndpoint(endpoint: string): Promise<boolean> {
try {
const cacheKey = `https://cache.internal/${endpoint}`;
// Delete the base endpoint cache entry
// Note: This only deletes exact matches, not parameterized queries
const deleted = await this.cache.delete(new Request(cacheKey, { method: 'GET' }));
logger.info('[CacheService] Endpoint cache cleared', {
endpoint,
success: deleted,
note: 'Only exact matches are deleted. Parameterized queries remain cached until TTL expiry.'
});
return deleted;
} catch (error) {
logger.error('[CacheService] Endpoint cache clear failed', {
endpoint,
error: error instanceof Error ? error.message : String(error)
});
return false;
}
}
/**
* Invalidate all cache entries matching a pattern
* Note: Cloudflare Workers Cache API doesn't support pattern matching

82
src/services/query.ts
View File

@@ -89,26 +89,56 @@ export class QueryService {
this.logger.debug('Executing query', { sql });
this.logger.debug('Main query bindings', { bindings });
this.logger.debug('Count query bindings', { countBindings });
// Execute count and main queries in a single batch for performance
const [countResult, queryResult] = await this.db.batch([
this.db.prepare(countSql).bind(...countBindings),
this.db.prepare(sql).bind(...bindings),
]);
// Calculate pagination metadata
const page = Math.max(params.page ?? 1, 1);
const perPage = Math.min(Math.max(params.limit ?? 50, 1), 100); // Min 1, Max 100
const offset = (page - 1) * perPage;
// Validate batch results and extract data with type safety
if (!countResult.success || !queryResult.success) {
const errors = [
!countResult.success ? `Count query failed: ${countResult.error}` : null,
!queryResult.success ? `Main query failed: ${queryResult.error}` : null,
].filter(Boolean);
throw new Error(`Batch query execution failed: ${errors.join(', ')}`);
// Performance optimization: Only run COUNT query on first page or when explicitly requested
// This avoids expensive full table scan with JOINs on every paginated request
const shouldRunCount = offset === 0 || params.include_count === true;
let totalResults = 0;
let queryResult: D1Result;
if (shouldRunCount) {
this.logger.debug('Running COUNT query (first page or explicit request)', { countBindings });
// Execute count and main queries in a single batch for performance
const [countResult, mainResult] = await this.db.batch([
this.db.prepare(countSql).bind(...countBindings),
this.db.prepare(sql).bind(...bindings),
]);
// Validate batch results and extract data with type safety
if (!countResult.success || !mainResult.success) {
const errors = [
!countResult.success ? `Count query failed: ${countResult.error}` : null,
!mainResult.success ? `Main query failed: ${mainResult.error}` : null,
].filter(Boolean);
throw new Error(`Batch query execution failed: ${errors.join(', ')}`);
}
// Extract total count with type casting and fallback
totalResults = (countResult.results?.[0] as { total: number } | undefined)?.total ?? 0;
queryResult = mainResult;
} else {
// Skip COUNT query for subsequent pages (performance optimization)
this.logger.debug('Skipping COUNT query (subsequent page)', { page, offset });
queryResult = await this.db.prepare(sql).bind(...bindings).all();
if (!queryResult.success) {
throw new Error(`Main query failed: ${queryResult.error}`);
}
// Estimate total based on current results for pagination metadata
// If we got full page of results, there might be more pages
const resultCount = queryResult.results?.length ?? 0;
totalResults = resultCount === perPage ? offset + perPage + 1 : offset + resultCount;
}
// Extract total count with type casting and fallback
const totalResults = (countResult.results?.[0] as { total: number } | undefined)?.total ?? 0;
// Extract main query results with type casting
const results = (queryResult.results ?? []) as RawQueryResult[];
@@ -116,8 +146,6 @@ export class QueryService {
const instances = this.transformResults(results);
// Calculate pagination metadata
const page = params.page ?? 1;
const perPage = Math.min(params.limit ?? 50, 100); // Max 100
const totalPages = Math.ceil(totalResults / perPage);
const hasNext = page < totalPages;
const hasPrevious = page > 1;
@@ -268,6 +296,9 @@ export class QueryService {
const sortBy = params.sort_by ?? 'hourly_price';
const sortOrder = params.sort_order ?? 'asc';
// Validate sort order at service level (defense in depth)
const validatedSortOrder = sortOrder?.toLowerCase() === 'desc' ? 'DESC' : 'ASC';
// Map sort fields to actual column names
const sortFieldMap: Record<string, string> = {
price: 'pr.hourly_price',
@@ -285,15 +316,17 @@ export class QueryService {
// Handle NULL values in pricing columns (NULL values go last)
if (sortColumn.startsWith('pr.')) {
// Use CASE to put NULL values last regardless of sort order
orderByClause = ` ORDER BY CASE WHEN ${sortColumn} IS NULL THEN 1 ELSE 0 END, ${sortColumn} ${sortOrder.toUpperCase()}`;
orderByClause = ` ORDER BY CASE WHEN ${sortColumn} IS NULL THEN 1 ELSE 0 END, ${sortColumn} ${validatedSortOrder}`;
} else {
orderByClause = ` ORDER BY ${sortColumn} ${sortOrder.toUpperCase()}`;
orderByClause = ` ORDER BY ${sortColumn} ${validatedSortOrder}`;
}
// Build LIMIT and OFFSET
const page = params.page ?? 1;
const limit = Math.min(params.limit ?? 50, 100); // Max 100
const offset = (page - 1) * limit;
const MAX_OFFSET = 100000; // Reasonable limit for pagination to prevent extreme offsets
const page = Math.max(params.page ?? 1, 1);
const limit = Math.min(Math.max(params.limit ?? 50, 1), 100); // Min 1, Max 100
const rawOffset = (page - 1) * limit;
const offset = Math.min(rawOffset, MAX_OFFSET);
bindings.push(limit);
bindings.push(offset);
@@ -304,8 +337,9 @@ export class QueryService {
const sql = selectClause + whereClause + orderByClause + limitClause;
// Count query (without ORDER BY and LIMIT)
// Use COUNT(DISTINCT it.id) to avoid Cartesian product from LEFT JOINs
const countSql = `
SELECT COUNT(*) as total
SELECT COUNT(DISTINCT it.id) as total
FROM instance_types it
JOIN providers p ON it.provider_id = p.id
LEFT JOIN pricing pr ON pr.instance_type_id = it.id

86
src/services/recommendation.test.ts
View File

@@ -153,6 +153,92 @@ describe('RecommendationService', () => {
});
});
describe('input validation', () => {
it('should reject empty stack array', async () => {
const request: RecommendationRequest = {
stack: [],
scale: 'small',
};
await expect(service.recommend(request)).rejects.toThrow(
'Stack must be a non-empty array'
);
});
it('should reject non-array stack', async () => {
const request = {
stack: 'nginx' as any,
scale: 'small' as any,
};
await expect(service.recommend(request as any)).rejects.toThrow(
'Stack must be a non-empty array'
);
});
it('should reject invalid scale value', async () => {
const request = {
stack: ['nginx'],
scale: 'invalid-scale' as any,
};
await expect(service.recommend(request as any)).rejects.toThrow(
'Invalid scale: invalid-scale'
);
});
it('should reject negative budget_max', async () => {
const request: RecommendationRequest = {
stack: ['nginx'],
scale: 'small',
budget_max: -10,
};
await expect(service.recommend(request)).rejects.toThrow(
'budget_max must be a positive number'
);
});
it('should reject zero budget_max', async () => {
const request: RecommendationRequest = {
stack: ['nginx'],
scale: 'small',
budget_max: 0,
};
await expect(service.recommend(request)).rejects.toThrow(
'budget_max must be a positive number'
);
});
it('should reject excessive budget_max', async () => {
const request: RecommendationRequest = {
stack: ['nginx'],
scale: 'small',
budget_max: 150000,
};
await expect(service.recommend(request)).rejects.toThrow(
'budget_max exceeds maximum allowed value'
);
});
it('should accept valid budget_max at boundary', async () => {
const request: RecommendationRequest = {
stack: ['nginx'],
scale: 'small',
budget_max: 100000,
};
mockDb.prepare.mockReturnValue({
bind: vi.fn().mockReturnThis(),
all: vi.fn().mockResolvedValue({ results: [] }),
});
await expect(service.recommend(request)).resolves.toBeDefined();
});
});
describe('scoreInstance (via recommend)', () => {
it('should score optimal memory fit with high score', async () => {
const request: RecommendationRequest = {

128
src/services/recommendation.ts
View File

@@ -14,15 +14,16 @@ import type {
RecommendationResponse,
InstanceRecommendation,
ResourceRequirements,
ScaleType,
} from '../types';
import { validateStack, calculateRequirements } from './stackConfig';
import { getAsiaRegionCodes, getRegionDisplayName } from './regionFilter';
import { logger } from '../utils/logger';
/**
* Database row interface for instance query results
* Database row interface for instance query results (raw from database)
*/
interface InstanceQueryRow {
interface InstanceQueryRowRaw {
id: number;
instance_id: string;
instance_name: string;
@@ -37,41 +38,61 @@ interface InstanceQueryRow {
monthly_price: number | null;
}
/**
* Database row interface for instance query results (with parsed metadata)
*/
interface InstanceQueryRow {
id: number;
instance_id: string;
instance_name: string;
vcpu: number;
memory_mb: number;
storage_gb: number;
metadata: { monthly_price?: number } | null;
provider_name: string;
region_code: string;
region_name: string;
hourly_price: number | null;
monthly_price: number | null;
}
/**
* Recommendation Service
* Calculates and ranks cloud instances based on stack requirements
*/
export class RecommendationService {
// Cache parsed metadata to avoid repeated JSON.parse calls
private metadataCache = new Map<number, { monthly_price?: number }>();
constructor(private db: D1Database) {}
/**
* Generate instance recommendations based on stack and scale
*
* Process:
* 1. Validate stack components
* 2. Calculate resource requirements
* 3. Query Asia-Pacific instances matching requirements
* 4. Score and rank instances
* 5. Return top 5 recommendations
* 1. Validate stack array
* 2. Validate stack components
* 3. Validate scale enum
* 4. Validate budget_max
* 5. Calculate resource requirements
* 6. Query Asia-Pacific instances matching requirements
* 7. Score and rank instances
* 8. Return top 5 recommendations
*
* @param request - Recommendation request with stack, scale, and budget
* @returns Recommendation response with requirements and ranked instances
* @throws Error if stack validation fails or database query fails
* @throws Error if validation fails or database query fails
*/
async recommend(request: RecommendationRequest): Promise<RecommendationResponse> {
// Clear metadata cache for new recommendation request
this.metadataCache.clear();
logger.info('[Recommendation] Processing request', {
stack: request.stack,
scale: request.scale,
budget_max: request.budget_max,
});
// 1. Validate stack components
// 1. Validate stack array
if (!Array.isArray(request.stack) || request.stack.length === 0) {
throw new Error('Stack must be a non-empty array');
}
// 2. Validate stack components
const validation = validateStack(request.stack);
if (!validation.valid) {
const errorMsg = `Invalid stacks: ${validation.invalidStacks.join(', ')}`;
@@ -81,24 +102,40 @@ export class RecommendationService {
throw new Error(errorMsg);
}
// 2. Calculate resource requirements based on stack and scale
// 3. Validate scale enum
const validScales: ScaleType[] = ['small', 'medium', 'large'];
if (!validScales.includes(request.scale)) {
throw new Error(`Invalid scale: ${request.scale}. Must be one of: ${validScales.join(', ')}`);
}
// 4. Validate budget_max (if provided)
if (request.budget_max !== undefined) {
if (typeof request.budget_max !== 'number' || request.budget_max <= 0) {
throw new Error('budget_max must be a positive number');
}
if (request.budget_max > 100000) {
throw new Error('budget_max exceeds maximum allowed value ($100,000)');
}
}
// 5. Calculate resource requirements based on stack and scale
const requirements = calculateRequirements(request.stack, request.scale);
logger.info('[Recommendation] Resource requirements calculated', {
min_memory_mb: requirements.min_memory_mb,
min_vcpu: requirements.min_vcpu,
});
// 3. Query instances from Asia-Pacific regions
// 6. Query instances from Asia-Pacific regions
const instances = await this.queryInstances(requirements, request.budget_max);
logger.info('[Recommendation] Found instances', { count: instances.length });
// 4. Calculate match scores and sort by score (highest first)
// 7. Calculate match scores and sort by score (highest first)
const scored = instances.map(inst =>
this.scoreInstance(inst, requirements, request.budget_max)
);
scored.sort((a, b) => b.match_score - a.match_score);
// 5. Return top 5 recommendations with rank
// 8. Return top 5 recommendations with rank
const recommendations = scored.slice(0, 5).map((inst, idx) => ({
...inst,
rank: idx + 1,
@@ -202,7 +239,30 @@ export class RecommendationService {
found: result.results?.length || 0,
});
return (result.results as unknown as InstanceQueryRow[]) || [];
// Parse metadata once during result transformation (not in hot scoring loop)
const rawResults = (result.results as unknown as InstanceQueryRowRaw[]) || [];
const parsedResults: InstanceQueryRow[] = rawResults.map(row => {
let parsedMetadata: { monthly_price?: number } | null = null;
if (row.metadata) {
try {
parsedMetadata = JSON.parse(row.metadata) as { monthly_price?: number };
} catch (error) {
logger.warn('[Recommendation] Failed to parse metadata', {
instance_id: row.instance_id,
instance_name: row.instance_name,
});
// Continue with null metadata
}
}
return {
...row,
metadata: parsedMetadata,
};
});
return parsedResults;
} catch (error) {
logger.error('[Recommendation] Query failed', { error });
throw new Error('Failed to query instances from database');
@@ -318,10 +378,10 @@ export class RecommendationService {
*
* Pricing sources:
* 1. Direct monthly_price column (Linode)
* 2. metadata JSON field (Vultr, AWS) - cached to avoid repeated JSON.parse
* 2. Pre-parsed metadata field (Vultr, AWS)
* 3. Calculate from hourly_price if available
*
* @param instance - Instance query result
* @param instance - Instance query result with pre-parsed metadata
* @returns Monthly price in USD, or 0 if not available
*/
private getMonthlyPrice(instance: InstanceQueryRow): number {
@@ -330,27 +390,9 @@ export class RecommendationService {
return instance.monthly_price;
}
// Extract from metadata (Vultr, AWS) with caching
if (instance.metadata) {
// Check cache first
if (!this.metadataCache.has(instance.id)) {
try {
const meta = JSON.parse(instance.metadata) as { monthly_price?: number };
this.metadataCache.set(instance.id, meta);
} catch (error) {
logger.warn('[Recommendation] Failed to parse metadata', {
instance: instance.instance_name,
error,
});
// Cache empty object to prevent repeated parse attempts
this.metadataCache.set(instance.id, {});
}
}
const cachedMeta = this.metadataCache.get(instance.id);
if (cachedMeta?.monthly_price) {
return cachedMeta.monthly_price;
}
// Extract from pre-parsed metadata (Vultr, AWS)
if (instance.metadata?.monthly_price) {
return instance.metadata.monthly_price;
}
// Calculate from hourly price (730 hours per month average)

314
src/services/sync.ts
View File

@@ -8,17 +8,16 @@
* - Batch operations for efficiency
*
* @example
* const orchestrator = new SyncOrchestrator(db, vault);
* const orchestrator = new SyncOrchestrator(db, env);
* const report = await orchestrator.syncAll(['linode']);
*/
import { VaultClient } from '../connectors/vault';
import { LinodeConnector } from '../connectors/linode';
import { VultrConnector } from '../connectors/vultr';
import { AWSConnector } from '../connectors/aws';
import { RepositoryFactory } from '../repositories';
import { createLogger } from '../utils/logger';
import { calculateRetailHourly, calculateRetailMonthly } from '../constants';
import { calculateRetailHourly, calculateRetailMonthly, SUPPORTED_PROVIDERS } from '../constants';
import type {
Env,
ProviderSyncResult,
@@ -28,9 +27,34 @@ import type {
PricingInput,
GpuInstanceInput,
GpuPricingInput,
G8InstanceInput,
G8PricingInput,
VpuInstanceInput,
VpuPricingInput,
} from '../types';
import { SyncStage } from '../types';
/**
* Wraps a promise with a timeout
* @param promise - The promise to wrap
* @param ms - Timeout in milliseconds
* @param operation - Operation name for error message
* @returns Promise result if completed within timeout
* @throws Error if operation times out
*/
async function withTimeout<T>(promise: Promise<T>, ms: number, operation: string): Promise<T> {
let timeoutId: ReturnType<typeof setTimeout>;
const timeoutPromise = new Promise<never>((_, reject) => {
timeoutId = setTimeout(() => reject(new Error(`${operation} timed out after ${ms}ms`)), ms);
});
try {
return await Promise.race([promise, timeoutPromise]);
} finally {
clearTimeout(timeoutId!);
}
}
/**
* Cloud provider connector interface for SyncOrchestrator
*
@@ -53,10 +77,10 @@ export interface SyncConnectorAdapter {
getGpuInstances?(): Promise<GpuInstanceInput[]>;
/** Fetch G8 instances (optional, only for Linode) */
getG8Instances?(): Promise<any[]>;
getG8Instances?(): Promise<G8InstanceInput[]>;
/** Fetch VPU instances (optional, only for Linode) */
getVpuInstances?(): Promise<any[]>;
getVpuInstances?(): Promise<VpuInstanceInput[]>;
/**
* Fetch pricing data for instances and regions
@@ -84,15 +108,12 @@ export interface SyncConnectorAdapter {
export class SyncOrchestrator {
private repos: RepositoryFactory;
private logger: ReturnType<typeof createLogger>;
private env?: Env;
constructor(
db: D1Database,
private vault: VaultClient,
env?: Env
private env: Env
) {
this.repos = new RepositoryFactory(db, env);
this.env = env;
this.logger = createLogger('[SyncOrchestrator]', env);
this.logger.info('Initialized');
}
@@ -121,21 +142,20 @@ export class SyncOrchestrator {
await this.repos.providers.updateSyncStatus(provider, 'syncing');
this.logger.info(`${provider}${stage}`);
// Stage 2: Fetch credentials from Vault
stage = SyncStage.FETCH_CREDENTIALS;
// Stage 2: Initialize connector and authenticate
const connector = await this.createConnector(provider, providerRecord.id);
await connector.authenticate();
this.logger.info(`${provider}${stage}`);
await withTimeout(connector.authenticate(), 10000, `${provider} authentication`);
this.logger.info(`${provider}initialized`);
// Stage 3: Fetch regions from provider API
stage = SyncStage.FETCH_REGIONS;
const regions = await connector.getRegions();
const regions = await withTimeout(connector.getRegions(), 15000, `${provider} fetch regions`);
this.logger.info(`${provider}${stage}`, { regions: regions.length });
// Stage 4: Fetch instance types from provider API
stage = SyncStage.FETCH_INSTANCES;
const instances = await connector.getInstanceTypes();
const instances = await withTimeout(connector.getInstanceTypes(), 30000, `${provider} fetch instances`);
this.logger.info(`${provider}${stage}`, { instances: instances.length });
// Stage 5: Normalize data (add provider_id)
@@ -170,8 +190,8 @@ export class SyncOrchestrator {
if (provider.toLowerCase() === 'linode') {
// GPU instances
if ('getGpuInstances' in connector) {
const gpuInstances = await (connector as any).getGpuInstances();
if (connector.getGpuInstances) {
const gpuInstances = await withTimeout(connector.getGpuInstances(), 15000, `${provider} fetch GPU instances`);
if (gpuInstances && gpuInstances.length > 0) {
gpuInstancesCount = await this.repos.gpuInstances.upsertMany(
providerRecord.id,
@@ -181,8 +201,8 @@ export class SyncOrchestrator {
}
// G8 instances
if ('getG8Instances' in connector) {
const g8Instances = await (connector as any).getG8Instances();
if (connector.getG8Instances) {
const g8Instances = await withTimeout(connector.getG8Instances(), 15000, `${provider} fetch G8 instances`);
if (g8Instances && g8Instances.length > 0) {
g8InstancesCount = await this.repos.g8Instances.upsertMany(
providerRecord.id,
@@ -192,8 +212,8 @@ export class SyncOrchestrator {
}
// VPU instances
if ('getVpuInstances' in connector) {
const vpuInstances = await (connector as any).getVpuInstances();
if (connector.getVpuInstances) {
const vpuInstances = await withTimeout(connector.getVpuInstances(), 15000, `${provider} fetch VPU instances`);
if (vpuInstances && vpuInstances.length > 0) {
vpuInstancesCount = await this.repos.vpuInstances.upsertMany(
providerRecord.id,
@@ -205,8 +225,8 @@ export class SyncOrchestrator {
// Handle Vultr GPU instances
if (provider.toLowerCase() === 'vultr') {
if ('getGpuInstances' in connector) {
const gpuInstances = await (connector as any).getGpuInstances();
if (connector.getGpuInstances) {
const gpuInstances = await withTimeout(connector.getGpuInstances(), 15000, `${provider} fetch GPU instances`);
if (gpuInstances && gpuInstances.length > 0) {
gpuInstancesCount = await this.repos.gpuInstances.upsertMany(
providerRecord.id,
@@ -234,9 +254,27 @@ export class SyncOrchestrator {
throw new Error('Failed to fetch regions/instances for pricing');
}
// Type-safe extraction of IDs and mapping data from batch results
const regionIds = (dbRegionsResult.results as Array<{ id: number }>).map(r => r.id);
const dbInstancesData = dbInstancesResult.results as Array<{ id: number; instance_id: string }>;
// Validate and extract region IDs
if (!Array.isArray(dbRegionsResult.results)) {
throw new Error('Unexpected database result format for regions');
}
const regionIds = dbRegionsResult.results.map((r: any) => {
if (typeof r?.id !== 'number') {
throw new Error('Invalid region id in database result');
}
return r.id;
});
// Validate and extract instance type data
if (!Array.isArray(dbInstancesResult.results)) {
throw new Error('Unexpected database result format for instances');
}
const dbInstancesData = dbInstancesResult.results.map((i: any) => {
if (typeof i?.id !== 'number' || typeof i?.instance_id !== 'string') {
throw new Error('Invalid instance data in database result');
}
return { id: i.id, instance_id: i.instance_id };
});
const instanceTypeIds = dbInstancesData.map(i => i.id);
// Create instance mapping to avoid redundant queries in getPricing
@@ -244,26 +282,56 @@ export class SyncOrchestrator {
dbInstancesData.map(i => [i.id, { instance_id: i.instance_id }])
);
// Create specialized instance mappings
// Create specialized instance mappings with validation
if (!Array.isArray(dbGpuResult.results)) {
throw new Error('Unexpected database result format for GPU instances');
}
const dbGpuMap = new Map(
(dbGpuResult.results as Array<{ id: number; instance_id: string }>).map(i => [i.id, { instance_id: i.instance_id }])
dbGpuResult.results.map((i: any) => {
if (typeof i?.id !== 'number' || typeof i?.instance_id !== 'string') {
throw new Error('Invalid GPU instance data in database result');
}
return [i.id, { instance_id: i.instance_id }];
})
);
if (!Array.isArray(dbG8Result.results)) {
throw new Error('Unexpected database result format for G8 instances');
}
const dbG8Map = new Map(
(dbG8Result.results as Array<{ id: number; instance_id: string }>).map(i => [i.id, { instance_id: i.instance_id }])
dbG8Result.results.map((i: any) => {
if (typeof i?.id !== 'number' || typeof i?.instance_id !== 'string') {
throw new Error('Invalid G8 instance data in database result');
}
return [i.id, { instance_id: i.instance_id }];
})
);
if (!Array.isArray(dbVpuResult.results)) {
throw new Error('Unexpected database result format for VPU instances');
}
const dbVpuMap = new Map(
(dbVpuResult.results as Array<{ id: number; instance_id: string }>).map(i => [i.id, { instance_id: i.instance_id }])
dbVpuResult.results.map((i: any) => {
if (typeof i?.id !== 'number' || typeof i?.instance_id !== 'string') {
throw new Error('Invalid VPU instance data in database result');
}
return [i.id, { instance_id: i.instance_id }];
})
);
// Get pricing data - may return array or count depending on provider
// Pass all instance maps for specialized pricing
const pricingResult = await connector.getPricing(
instanceTypeIds,
regionIds,
dbInstanceMap,
dbGpuMap,
dbG8Map,
dbVpuMap
const pricingResult = await withTimeout(
connector.getPricing(
instanceTypeIds,
regionIds,
dbInstanceMap,
dbGpuMap,
dbG8Map,
dbVpuMap
),
60000,
`${provider} fetch pricing`
);
// Handle both return types: array (Linode, Vultr) or number (AWS with generator)
@@ -294,7 +362,7 @@ export class SyncOrchestrator {
this.logger.info(`${provider}${stage}`);
// Stage 8: Sync Anvil Pricing (if applicable)
stage = 'SYNC_ANVIL_PRICING' as SyncStage;
stage = SyncStage.SYNC_ANVIL_PRICING;
let anvilPricingCount = 0;
try {
anvilPricingCount = await this.syncAnvilPricing(provider);
@@ -349,7 +417,7 @@ export class SyncOrchestrator {
error_details: {
stage,
message: errorMessage,
stack: error instanceof Error ? error.stack : undefined,
// Stack trace logged server-side only, not exposed to clients
},
};
}
@@ -357,46 +425,51 @@ export class SyncOrchestrator {
/**
* Synchronize all providers
* Runs synchronizations in parallel for efficiency
*
* IMPORTANT: Providers are synced sequentially (not in parallel) to avoid
* exceeding Cloudflare Workers' 30-second CPU time limit. Each provider
* sync involves multiple API calls and database operations.
*
* For production deployments with large datasets, consider using
* Cloudflare Queues to process each provider as a separate job.
*
* @param providers - Array of provider names to sync (defaults to all supported providers)
* @returns Complete sync report with statistics
*/
async syncAll(providers = ['linode', 'vultr', 'aws']): Promise<SyncReport> {
async syncAll(providers: string[] = [...SUPPORTED_PROVIDERS]): Promise<SyncReport> {
const startedAt = new Date().toISOString();
const startTime = Date.now();
this.logger.info('Starting sync for providers', { providers: providers.join(', ') });
this.logger.info('Starting sequential sync for providers', { providers: providers.join(', ') });
// Run all provider syncs in parallel
const results = await Promise.allSettled(
providers.map(p => this.syncProvider(p))
);
// Run provider syncs sequentially to avoid CPU timeout
// Each provider sync is independent and can complete within time limits
const providerResults: ProviderSyncResult[] = [];
// Extract results
const providerResults: ProviderSyncResult[] = results.map((result, index) => {
if (result.status === 'fulfilled') {
return result.value;
} else {
// Handle rejected promises
const provider = providers[index];
const errorMessage = result.reason instanceof Error
? result.reason.message
: 'Unknown error';
for (const provider of providers) {
try {
const result = await this.syncProvider(provider);
providerResults.push(result);
this.logger.error(`${provider} promise rejected`, { error: result.reason instanceof Error ? result.reason.message : String(result.reason) });
return {
// Log progress after each provider
this.logger.info('Provider sync completed', {
provider,
success: result.success,
elapsed_ms: Date.now() - startTime
});
} catch (error) {
// Handle unexpected errors
providerResults.push({
provider,
success: false,
regions_synced: 0,
instances_synced: 0,
pricing_synced: 0,
duration_ms: 0,
error: errorMessage,
};
error: error instanceof Error ? error.message : 'Unknown error',
});
}
});
}
const completedAt = new Date().toISOString();
const totalDuration = Date.now() - startTime;
@@ -452,7 +525,7 @@ export class SyncOrchestrator {
dbInstanceMap: Map<number, { instance_id: string }>,
rawInstanceMap: Map<string, { Cost: number; MonthlyPrice: number }>
): Generator<PricingInput[], void, void> {
const BATCH_SIZE = 100;
const BATCH_SIZE = 500;
let batch: PricingInput[] = [];
for (const regionId of regionIds) {
@@ -515,7 +588,10 @@ export class SyncOrchestrator {
rawInstanceMap: Map<string, { id: string; price: { hourly: number; monthly: number } }>,
env?: Env
): Generator<PricingInput[], void, void> {
const BATCH_SIZE = parseInt(env?.SYNC_BATCH_SIZE || '100', 10);
const BATCH_SIZE = Math.min(
Math.max(parseInt(env?.SYNC_BATCH_SIZE || '500', 10) || 500, 1),
1000
);
let batch: PricingInput[] = [];
for (const regionId of regionIds) {
@@ -578,7 +654,10 @@ export class SyncOrchestrator {
rawPlanMap: Map<string, { id: string; monthly_cost: number }>,
env?: Env
): Generator<PricingInput[], void, void> {
const BATCH_SIZE = parseInt(env?.SYNC_BATCH_SIZE || '100', 10);
const BATCH_SIZE = Math.min(
Math.max(parseInt(env?.SYNC_BATCH_SIZE || '500', 10) || 500, 1),
1000
);
let batch: PricingInput[] = [];
for (const regionId of regionIds) {
@@ -644,7 +723,10 @@ export class SyncOrchestrator {
rawInstanceMap: Map<string, { id: string; price: { hourly: number; monthly: number } }>,
env?: Env
): Generator<GpuPricingInput[], void, void> {
const BATCH_SIZE = parseInt(env?.SYNC_BATCH_SIZE || '100', 10);
const BATCH_SIZE = Math.min(
Math.max(parseInt(env?.SYNC_BATCH_SIZE || '500', 10) || 500, 1),
1000
);
let batch: GpuPricingInput[] = [];
for (const regionId of regionIds) {
@@ -707,7 +789,10 @@ export class SyncOrchestrator {
rawPlanMap: Map<string, { id: string; monthly_cost: number }>,
env?: Env
): Generator<GpuPricingInput[], void, void> {
const BATCH_SIZE = parseInt(env?.SYNC_BATCH_SIZE || '100', 10);
const BATCH_SIZE = Math.min(
Math.max(parseInt(env?.SYNC_BATCH_SIZE || '500', 10) || 500, 1),
1000
);
let batch: GpuPricingInput[] = [];
for (const regionId of regionIds) {
@@ -759,9 +844,12 @@ export class SyncOrchestrator {
dbG8InstanceMap: Map<number, { instance_id: string }>,
rawInstanceMap: Map<string, { id: string; price: { hourly: number; monthly: number } }>,
env?: Env
): Generator<any[], void, void> {
const BATCH_SIZE = parseInt(env?.SYNC_BATCH_SIZE || '100', 10);
let batch: any[] = [];
): Generator<G8PricingInput[], void, void> {
const BATCH_SIZE = Math.min(
Math.max(parseInt(env?.SYNC_BATCH_SIZE || '500', 10) || 500, 1),
1000
);
let batch: G8PricingInput[] = [];
for (const regionId of regionIds) {
for (const g8InstanceId of g8InstanceTypeIds) {
@@ -809,9 +897,12 @@ export class SyncOrchestrator {
dbVpuInstanceMap: Map<number, { instance_id: string }>,
rawInstanceMap: Map<string, { id: string; price: { hourly: number; monthly: number } }>,
env?: Env
): Generator<any[], void, void> {
const BATCH_SIZE = parseInt(env?.SYNC_BATCH_SIZE || '100', 10);
let batch: any[] = [];
): Generator<VpuPricingInput[], void, void> {
const BATCH_SIZE = Math.min(
Math.max(parseInt(env?.SYNC_BATCH_SIZE || '500', 10) || 500, 1),
1000
);
let batch: VpuPricingInput[] = [];
for (const regionId of regionIds) {
for (const vpuInstanceId of vpuInstanceTypeIds) {
@@ -910,37 +1001,56 @@ export class SyncOrchestrator {
count: anvilPricingRecords.length
});
// Step 4: Fetch source pricing data in batch
const sourcePricingResult = await this.repos.db
.prepare(`
SELECT
instance_type_id,
region_id,
hourly_price,
monthly_price
FROM pricing
WHERE instance_type_id IN (${anvilPricingRecords.map(() => '?').join(',')})
AND region_id IN (${anvilPricingRecords.map(() => '?').join(',')})
`)
.bind(
...anvilPricingRecords.map(r => r.source_instance_id),
...anvilPricingRecords.map(r => r.source_region_id)
)
.all<{
instance_type_id: number;
region_id: number;
hourly_price: number;
monthly_price: number;
}>();
// Step 4: Fetch source pricing data with paired conditions
// Batch queries to avoid SQLite limits (max 100 pairs per query)
const CHUNK_SIZE = 100;
const allSourcePricing: Array<{
instance_type_id: number;
region_id: number;
hourly_price: number;
monthly_price: number;
}> = [];
if (!sourcePricingResult.success || sourcePricingResult.results.length === 0) {
for (let i = 0; i < anvilPricingRecords.length; i += CHUNK_SIZE) {
const chunk = anvilPricingRecords.slice(i, i + CHUNK_SIZE);
if (chunk.length === 0) continue;
const conditions = chunk
.map(() => '(instance_type_id = ? AND region_id = ?)')
.join(' OR ');
const params = chunk.flatMap(r => [r.source_instance_id, r.source_region_id]);
const chunkResult = await this.repos.db
.prepare(`
SELECT
instance_type_id,
region_id,
hourly_price,
monthly_price
FROM pricing
WHERE ${conditions}
`)
.bind(...params)
.all<{
instance_type_id: number;
region_id: number;
hourly_price: number;
monthly_price: number;
}>();
if (chunkResult.success && chunkResult.results) {
allSourcePricing.push(...chunkResult.results);
}
}
if (allSourcePricing.length === 0) {
this.logger.warn('No source pricing data found', { provider });
return 0;
}
// Step 5: Build lookup map: `${instance_type_id}_${region_id}` → pricing
const sourcePricingMap = new Map<string, { hourly_price: number; monthly_price: number }>(
sourcePricingResult.results.map(p => [
allSourcePricing.map(p => [
`${p.instance_type_id}_${p.region_id}`,
{ hourly_price: p.hourly_price, monthly_price: p.monthly_price }
])
@@ -1021,7 +1131,7 @@ export class SyncOrchestrator {
private async createConnector(provider: string, providerId: number): Promise<SyncConnectorAdapter> {
switch (provider.toLowerCase()) {
case 'linode': {
const connector = new LinodeConnector(this.vault);
const connector = new LinodeConnector(this.env);
// Cache instance types for pricing extraction
let cachedInstanceTypes: Awaited<ReturnType<typeof connector.fetchInstanceTypes>> | null = null;
@@ -1059,7 +1169,7 @@ export class SyncOrchestrator {
const gpuInstances = cachedInstanceTypes.filter(i => i.gpus > 0);
return gpuInstances.map(i => connector.normalizeGpuInstance(i, providerId));
},
getG8Instances: async (): Promise<any[]> => {
getG8Instances: async (): Promise<G8InstanceInput[]> => {
// Use cached instances if available to avoid redundant API calls
if (!cachedInstanceTypes) {
this.logger.info('Fetching instance types for G8 extraction');
@@ -1072,7 +1182,7 @@ export class SyncOrchestrator {
);
return g8Instances.map(i => connector.normalizeG8Instance(i, providerId));
},
getVpuInstances: async (): Promise<any[]> => {
getVpuInstances: async (): Promise<VpuInstanceInput[]> => {
// Use cached instances if available to avoid redundant API calls
if (!cachedInstanceTypes) {
this.logger.info('Fetching instance types for VPU extraction');
@@ -1239,7 +1349,7 @@ export class SyncOrchestrator {
}
case 'vultr': {
const connector = new VultrConnector(this.vault);
const connector = new VultrConnector(this.env);
// Cache plans for pricing extraction
let cachedPlans: Awaited<ReturnType<typeof connector.fetchPlans>> | null = null;
@@ -1356,7 +1466,7 @@ export class SyncOrchestrator {
}
case 'aws': {
const connector = new AWSConnector(this.vault);
const connector = new AWSConnector(this.env);
// Cache instance types for pricing extraction
let cachedInstanceTypes: Awaited<ReturnType<typeof connector.fetchInstanceTypes>> | null = null;

54
src/types.ts
View File

@@ -1,38 +1,3 @@
/**
* Vault Credentials Types - supports different providers
*/
export interface VaultCredentials {
provider: string;
api_token?: string; // Linode
api_key?: string; // Vultr
aws_access_key_id?: string; // AWS
aws_secret_access_key?: string; // AWS
}
/**
* Vault API Response Structure - flexible for different providers
*/
export interface VaultSecretResponse {
data: {
data: Record<string, string>; // Flexible key-value pairs
metadata: {
created_time: string;
custom_metadata: null;
deletion_time: string;
destroyed: boolean;
version: number;
};
};
}
/**
* Cache Entry Structure
*/
export interface CacheEntry<T> {
data: T;
expiresAt: number;
}
// ============================================================
// Database Entity Types
// ============================================================
@@ -283,6 +248,8 @@ export interface InstanceQueryParams {
page?: number;
/** Number of results per page */
limit?: number;
/** Force total count calculation (performance optimization: only runs on first page by default) */
include_count?: boolean;
}
/**
@@ -430,20 +397,23 @@ export interface Env {
DB: D1Database;
/** KV namespace for rate limiting */
RATE_LIMIT_KV: KVNamespace;
/** Vault server URL for credentials management */
VAULT_URL: string;
/** Vault authentication token */
VAULT_TOKEN: string;
/** API key for request authentication */
API_KEY: string;
/** Provider API credentials (from Wrangler secrets) */
LINODE_API_TOKEN?: string;
VULTR_API_KEY?: string;
AWS_ACCESS_KEY_ID?: string;
AWS_SECRET_ACCESS_KEY?: string;
/** Batch size for synchronization operations */
SYNC_BATCH_SIZE?: string;
/** Cache TTL in seconds */
CACHE_TTL_SECONDS?: string;
/** Log level (debug, info, warn, error, none) - Controls logging verbosity */
LOG_LEVEL?: string;
/** CORS origin for Access-Control-Allow-Origin header (default: '*') */
/** CORS origin for Access-Control-Allow-Origin header */
CORS_ORIGIN?: string;
/** Environment (development|production) - Controls development-specific features */
ENVIRONMENT?: string;
}
// ============================================================
@@ -458,8 +428,6 @@ export enum SyncStage {
IDLE = 'idle',
/** Initialization stage */
INIT = 'init',
/** Fetching provider credentials from Vault */
FETCH_CREDENTIALS = 'fetch_credentials',
/** Fetching regions from provider API */
FETCH_REGIONS = 'fetch_regions',
/** Fetching instance types from provider API */
@@ -476,6 +444,8 @@ export enum SyncStage {
STORE_DATA = 'store_data',
/** Validation stage */
VALIDATE = 'validate',
/** Synchronizing Anvil pricing from source provider */
SYNC_ANVIL_PRICING = 'sync_anvil_pricing',
/** Sync completed successfully */
COMPLETE = 'complete',
/** Legacy alias for COMPLETE */

2
src/utils/logger.test.ts
View File

@@ -20,8 +20,6 @@ const createMockEnv = (logLevel?: string): Env => ({
LOG_LEVEL: logLevel,
DB: {} as any,
RATE_LIMIT_KV: {} as any,
VAULT_URL: 'https://vault.example.com',
VAULT_TOKEN: 'test-token',
API_KEY: 'test-api-key',
});

7
src/utils/logger.ts
View File

@@ -59,7 +59,12 @@ export class Logger {
const MAX_DEPTH = 5; // Prevent infinite recursion
if (depth > MAX_DEPTH) return data;
const sensitiveKeys = ['api_key', 'api_token', 'password', 'secret', 'token', 'key', 'authorization', 'credential'];
const sensitiveKeys = [
'api_key', 'api_token', 'password', 'secret', 'token', 'key',
'authorization', 'credential', 'access_key', 'private_key',
'bearer', 'auth', 'session', 'cookie', 'jwt', 'refresh_token',
'client_secret', 'aws_secret', 'linode_token', 'vultr_key'
];
const masked: Record<string, unknown> = {};
for (const [key, value] of Object.entries(data)) {