Reviewing files that changed from the base of the PR and between d77d005 and a15d2c7.

• cmd/coap/main.go (4 hunks)
• cmd/http/main.go (5 hunks)
• cmd/ws/main.go (4 hunks)
• coap/adapter.go (3 hunks)
• coap/api/doc.go (1 hunks)
• coap/api/logging.go (0 hunks)
• coap/api/metrics.go (0 hunks)
• coap/api/transport.go (7 hunks)
• coap/events/doc.go (1 hunks)
• coap/events/events.go (1 hunks)
• coap/events/stream.go (1 hunks)
• coap/tracing/adapter.go (0 hunks)
• docker/docker-compose.yml (4 hunks)
• http/api/endpoint_test.go (6 hunks)
• http/events/doc.go (1 hunks)
• http/events/events.go (1 hunks)
• http/events/streams.go (1 hunks)
• http/handler.go (5 hunks)
• http/handler_test.go (7 hunks)
• http/mocks/events.go (1 hunks)
• journal/api/responses.go (2 hunks)
• journal/journal.go (1 hunks)
• journal/middleware/authorization.go (1 hunks)
• journal/mocks/repository.go (2 hunks)
• journal/postgres/init.go (1 hunks)
• journal/postgres/telemetry.go (2 hunks)
• journal/service.go (3 hunks)
• mqtt/events/events.go (1 hunks)
• mqtt/events/streams.go (2 hunks)
• mqtt/handler.go (9 hunks)
• mqtt/handler_test.go (7 hunks)
• mqtt/mocks/events.go (1 hunks)
• pkg/sdk/health_test.go (1 hunks)
• pkg/sdk/message_test.go (5 hunks)
• ws/api/endpoint_test.go (3 hunks)
• ws/events/doc.go (1 hunks)
• ws/events/events.go (1 hunks)
• ws/events/stream.go (1 hunks)
• ws/handler.go (11 hunks)
• ws/mocks/events.go (1 hunks)

• coap/api/metrics.go
• coap/tracing/adapter.go
• coap/api/logging.go

• ws/events/doc.go
• coap/events/doc.go
• http/events/doc.go
• coap/api/doc.go

• GitHub Check: api-test
• GitHub Check: Lint and Build

mqtt/events/streams.go (6)

17-21: Validate new interface methods for consistency.

You've introduced additional parameters to Connect/Disconnect and new methods for publishing and subscribing events. This is a well-structured approach for telemetry, but please ensure all client code (including tests) is updated accordingly to match these function signatures to avoid runtime errors.

---

40-40: Constructor usage looks good.

The publisher is properly instantiated. Just be mindful of potential resource cleanup if publisher requires closing or flushing on shutdown.

---

45-53: Confirm event data for CONNECT.

The Connect method properly populates operation = clientConnect. Ensure that the event schema (in any downstream consumer) accommodates connID for correlation or debugging.

---

68-79: Publish method is consistent with the event-driven design.

The approach of building an mqttEvent object and invoking the publisher is clear and maintainable. Good job!

---

81-93: Subscribe method aligns well with the new interface.

The updated signature with additional parameters (e.g., connID) looks consistent with your telemetry tracking needs.

---

95-106: Unsubscribe method matches the new telemetry requirements.

The final event is prepared similarly to Subscribe and Publish, ensuring traceability of unsubscribed topics. Nicely done.

coap/adapter.go (5)

29-36: New method signatures for Publish, Subscribe, and Unsubscribe.

These changes removing reliance on a separate key parameter and introducing clientID bring the CoAP adapter in line with your expanded interface. Check for any lingering references to the outdated parameter in your codebase and tests.

---

48-48: Constructor updated to remove clients parameter.

The removal of clients in New reduces complexity. Double-check that no external modules still rely on an older constructor signature.

---

Line range hint 57-71: Ensure compliance with PII and logging policies.

Storing the clientID as msg.Publisher is logical. If clientID can be considered sensitive, confirm that it's not inadvertently exposed in logs or external data exports.

---

76-76: Subscribe method.

You properly handle authorization, then build a subscription config. This is well-executed.

---

104-107: Verify domain usage in unsubscribe.

Here, DomainId is set to an empty string. Confirm if this is intentional or if it should reflect a non-empty domain for improved scope or multi-tenancy control.

coap/api/transport.go (5)

18-18: Importing gRPC clients.

This import (grpcClientsV1) is necessary for the new authentication flow. Good addition.

---

66-69: Expanded MakeCoAPHandler signature.

Passing cli grpcClientsV1.ClientsServiceClient into the handler clarifies the flow of dependencies. Make sure to gracefully handle nil or misconfigured clients in error scenarios.

---

110-113: Handling GET/POST with clientID.

Replacing the old key usage with clientID is consistent with the new approach. This clarifies who is actually publishing messages or initiating requests.

---

Line range hint 134-148: Refined handleGet logic for subscribe/unsubscribe.

You robustly track the observation state, unsubscribing when needed. This logic is clear and well-structured.

---

226-239: authenticate function effectively delegates to gRPC.

Excellent job encapsulating the complexity of verifying a client’s credentials. Just confirm that any logs around failed authentication do not inadvertently leak sensitive data like key.

journal/service.go (8)

8-9: Imports look good.
These standard library imports (fmt, time) are fine and align with usage in subsequent code.

---

17-31: Constants for operations are well structured.
Defining these string constants for various client operations is a clean way to handle event/telemetry logic.

---

79-103: Switch-based event handling is clear.
This switch statement is easy to follow. For future extensibility, ensure it stays manageable or consider more decoupled strategies (e.g., mapping operations to function pointers).

---

105-117: Insert-only client telemetry may need handling for duplicates.
addClientTelemetry simply creates a fresh record. If the client already exists, consider if an upsert or conflict resolution is required, depending on business logic.

---

119-125: Removal of client telemetry is straightforward.
Relies on DeleteClientTelemetry. Ensure upstream logic gracefully handles any references to a removed client.

---

136-143: Remove subscription logic is consistent.
No immediate concerns with removeSubscription. The repository approach is aligned with your add/remove design.

---

159-166: Bulk removal by connection ID.
removeSubscriptionWithConnID removes all subscriptions matching that connection ID. This is fine as long as that broad removal is intended.

---

199-205: adapterEvent struct looks good.
No immediate issues. This is a straightforward container for event data.

journal/postgres/telemetry.go (4)

19-20: Columns for inbound/outbound messages align with new design.
The insert statement properly references the extended schema.

---

112-138: RemoveSubscription logic is clean.
Removes the specified subscription from the array. The rowsAffected check properly handles unknown clients or missing subscriptions.

---

140-156: Removing subscription by connID is direct but removes all matching.
If partial removal is required, this might be too broad. Otherwise, this approach is acceptable for a bulk cleanup.

---

158-185: Incrementing inbound messages.
This is an effective approach. Consider whether domain constraints and concurrency might affect correctness.

ws/handler.go (9)

25-25: New events import is appropriate.
This import aligns with the newly introduced EventStore.

---

52-54: Additional event-related errors.
Naming is consistent with existing error variables (errFailedPublishEvent, etc.).

---

66-66: Dependency injection for EventStore.
Adding es events.EventStore to the handler is a clear approach to inject event functionality.

---

70-77: NewHandler now takes event store parameter.
This is a clean handshake between the handler and the event store.

---

106-117: Publishing event on AuthPublish.
Invoking h.es.Publish after permissions are confirmed is logical. Add logs if needed for debugging event issues.

---

118-118: Trivial return statement.
This simply returns nil. No issues here.

---

176-176: Topic parsing in Publish method.
Acquiring chanID and subtopic via parseTopic is consistent. No issues.

Also applies to: 178-178

---

234-237: Publishing event after message broker publish.
This ensures telemetry or subsequent tracking. Implementation looks good.

---

258-282: ⚠️ Potential issue

Call to Subscribe in Unsubscribe flow.
This is likely an error; unsubscribing should call an Unsubscribe method in the event store.

Here’s the recommended fix:

-	if err := h.es.Subscribe(ctx, clientID, channelID, subTopic); err != nil {
-		return errors.Wrap(errFailedSubscribeEvent, err)
-	}
+	if err := h.es.Unsubscribe(ctx, clientID, channelID, subTopic); err != nil {
+		return errors.Wrap(errFailedUnsubscribeEvent, err)
+	}

Likely invalid or redundant comment.

mqtt/events/events.go (2)

8-15: LGTM! Well-structured event type constants.

The constants follow a clear naming pattern with a common prefix, making the event types easily identifiable and maintainable.

---

30-34: LGTM! Consistent field mapping in Encode method.

The field mapping follows a clear pattern and includes all necessary fields.

http/events/streams.go (1)

15-19: LGTM! Clean interface design.

The EventStore interface is well-defined with clear method signatures.

http/mocks/events.go (1)

1-66: LGTM! Well-structured mock implementation.

The auto-generated mock follows best practices and includes proper error handling and cleanup.

journal/postgres/init.go (1)

40-40: LGTM! Appropriate use of GIN index for array column.

The GIN index is the right choice for optimizing queries that search within the subscriptions array.

journal/middleware/authorization.go (1)

73-73: LGTM! Consistent authorization pattern.

The change from session.UserID to session.DomainUserID aligns with the domain-based authorization pattern used elsewhere in the file, making the authorization checks more consistent across methods.

coap/events/stream.go (1)

17-20: LGTM! Clean struct definition.

The eventStore struct has a clean design with clear separation of concerns between event publishing and service operations.

pkg/sdk/health_test.go (1)

26-26: LGTM! Proper test setup.

The change correctly captures all return values from setupMessages() and maintains proper cleanup with defer.

ws/mocks/events.go (1)

72-84: LGTM! Clean mock factory implementation.

The NewEventStore factory function is well-implemented with proper cleanup and expectations handling.

mqtt/mocks/events.go (1)

18-100: LGTM! Well-structured mock implementation.

The EventStore mock implementation is well-structured with:

• Consistent error handling across all methods
• Proper type assertions for return values
• Comprehensive panic checks for unspecified return values

cmd/coap/main.go (2)

51-51: LGTM! Configuration follows established patterns.

The ESURL environment variable is well-defined with:

• Consistent naming convention
• Reasonable default value
• Proper type definition

---

148-155: LGTM! Proper middleware integration with error handling.

The event store middleware integration is well-implemented with:

• Correct initialization order
• Proper error handling
• Clear error messaging

journal/mocks/repository.go (1)

Line range hint 19-125: LGTM! Comprehensive mock implementation for telemetry tracking.

The Repository mock implementation is well-structured with:

• Proper subscription management methods
• Message counting functionality
• Consistent error handling
• Clear method signatures

ws/api/endpoint_test.go (2)

44-46: LGTM! Clean function signature update.

The function now correctly returns the PubSub mock, allowing for better test verification.

---

101-101: Verify EventStore mock expectations.

The EventStore mock is created but there are no expectations set on it. Consider adding mock expectations to verify the EventStore interactions.

Also applies to: 105-105

cmd/ws/main.go (1)

59-59: LGTM! Configuration follows established pattern.

The ESURL configuration field follows the project's configuration pattern and provides a sensible default.

http/api/endpoint_test.go (1)

44-44: LGTM! Service creation properly updated.

The newService function signature has been correctly updated to include the EventStore dependency.

Also applies to: 46-46

cmd/http/main.go (2)

63-63: LGTM! Environment variable configuration for event store.

The ESURL field follows the established pattern for URL configurations with appropriate default value.

---

146-151: LGTM! Event store initialization with proper error handling.

The initialization follows the established pattern of other service initializations with appropriate error handling and logging.

http/handler.go (3)

53-53: LGTM! Error constant for event publishing failures.

The error constant follows the established pattern and provides a clear message.

---

69-69: LGTM! Handler struct and constructor updates.

The event store field is properly added to the handler struct and initialized in the constructor.

Also applies to: 73-81

---

199-201: LGTM! Event publishing with proper error handling.

The event store publish call is properly added with appropriate error wrapping.

mqtt/handler.go (4)

56-58: LGTM! Error constants for event store operations.

The error constants follow the established pattern and provide clear messages.

---

113-113: LGTM! Enhanced connect event with user identification.

The connect event now includes both username and ID for better tracking.

---

174-176: LGTM! Topic parsing and event publishing.

The topic parsing is properly extracted into a utility function and event publishing includes appropriate error handling.

Also applies to: 191-193

---

226-240: LGTM! Event store unsubscription handling.

The unsubscribe operation properly validates topics and handles event store unsubscription.

http/handler_test.go (2)

62-62: LGTM! Test setup with event store mock.

The event store mock is properly initialized and integrated into the handler setup.

Also applies to: 69-70, 78-81

---

Line range hint 153-371: LGTM! Comprehensive test coverage for event publishing.

The test cases cover both success and failure scenarios for event store publishing.

mqtt/handler_test.go (4)

542-542: Add assertions for Disconnect parameters.

The Disconnect mock is set up but doesn't verify the username parameter.

Consider adding assertions for the username parameter to ensure it's passed correctly:

-svcCall := eventStore.On("Disconnect", mock.Anything, sessionClient.Username, sessionClient.ID).Return(tc.err)
+svcCall := eventStore.On("Disconnect", mock.Anything, mock.MatchedBy(func(username interface{}) bool {
+    return username == sessionClient.Username
+}), sessionClient.ID).Return(tc.err)

---

150-150: Verify error handling in Connect mock.

The mock setup for eventStore.Connect only returns the error but doesn't verify the input parameters.

Consider adding expectations for the context and clientID parameters:

-svcCall := eventStore.On("Connect", mock.Anything, mock.Anything, clientID).Return(tc.err)
+svcCall := eventStore.On("Connect", mock.Anything, mock.MatchedBy(func(params ...interface{}) bool {
+    return len(params) == 2 && params[1] == clientID
+}), clientID).Return(tc.err)

---

414-418: Add assertions for Publish parameters.

The Publish mock is set up but doesn't verify the topic parameter.

Consider adding assertions for the topic parameter to ensure it's passed correctly:

-eventsCall := eventStore.On("Publish", mock.Anything, clientID, mock.Anything, mock.Anything).Return(nil)
+eventsCall := eventStore.On("Publish", mock.Anything, clientID, tc.topic, mock.MatchedBy(func(payload interface{}) bool {
+    return payload != nil
+})).Return(nil)

---

298-302: Add assertions for Subscribe parameters.

The Subscribe mock is set up but doesn't verify the channelID and subtopic parameters.

Consider adding assertions for the channelID and subtopic parameters to ensure they're passed correctly:

-eventsCall := eventStore.On("Subscribe", mock.Anything, clientID1, mock.Anything, mock.Anything).Return(nil)
+eventsCall := eventStore.On("Subscribe", mock.Anything, clientID1, tc.channelID, mock.MatchedBy(func(subtopic interface{}) bool {
+    return subtopic != nil
+})).Return(nil)

✅ Verification successful

Review suggestion is valid and beneficial

The review correctly identifies that the test should verify the channelID and subtopic parameters passed to EventStore.Subscribe. The suggested mock verification would ensure:

• The channelID from test case is correctly passed through
• The subtopic parameter is properly handled

🏁 Scripts executed

The following scripts were executed for the analysis:

Error: No shell scripts found

---

Script:

#!/bin/bash
# Find test case structure and AuthSubscribe implementation
echo "=== Test Cases ==="
rg "type.*test.*struct" mqtt/handler_test.go -A 10

echo -e "\n=== Test Setup ==="
rg "func Test.*AuthSubscribe" mqtt/handler_test.go -A 20

echo -e "\n=== AuthSubscribe Implementation ==="
ast-grep --pattern 'func (*_) AuthSubscribe($_) $_{ $$$ }'

echo -e "\n=== Similar Mock Verifications ==="
rg "On\(\"Subscribe\"" mqtt/handler_test.go -B 2 -A 2

Length of output: 1584

---

Script:

#!/bin/bash
# Find AuthSubscribe implementation and topic handling
echo "=== AuthSubscribe Implementation ==="
rg "func.*AuthSubscribe" -A 20

echo -e "\n=== Topic/Subtopic Handling ==="
rg "func.*(Subscribe|ParseTopic|ExtractSubtopic)" -A 10

Length of output: 42478

ws/events/stream.go (1)

15-20: LGTM! Well-defined interface.

The EventStore interface is clean and follows good design principles with clear method signatures.

docker/docker-compose.yml (1)

1064-1064: Verify SMQ_ES_URL configuration across services.

The SMQ_ES_URL environment variable is added to multiple services but its configuration might need to be synchronized.

Run this script to check for consistency in the ES URL configuration:

Also applies to: 1151-1151, 1229-1229

✅ Verification successful

SMQ_ES_URL configuration is properly synchronized across services

All services consistently reference ${SMQ_ES_URL}, which is correctly defined in docker/.env and maps to a common message broker URL. The configuration follows environment variable best practices with proper variable chaining.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check if SMQ_ES_URL is consistently configured across services

# Check if SMQ_ES_URL is defined in the environment file
grep "SMQ_ES_URL" .env

# List all services that use SMQ_ES_URL
echo "Services using SMQ_ES_URL:"
rg "SMQ_ES_URL:" docker-compose.yml

Length of output: 218

---

Script:

#!/bin/bash
# Find all .env files
echo "=== Searching for .env files ==="
fd -H "\.env"

echo -e "\n=== Checking SMQ_ES_URL in docker-compose.yml ==="
cat docker/docker-compose.yml | grep -A 1 "SMQ_ES_URL:"

echo -e "\n=== Searching for SMQ_ES_URL across all files ==="
rg "SMQ_ES_URL" --type-not git

Length of output: 1128

---

Script:

#!/bin/bash
echo "=== Checking SMQ_ES_URL in docker/.env ==="
grep "SMQ_ES_URL" docker/.env

Length of output: 161

Reviewing files that changed from the base of the PR and between a15d2c7 and 87413b4.

• go.sum is excluded by !**/*.sum

• cmd/coap/main.go (4 hunks)
• cmd/http/main.go (5 hunks)
• cmd/ws/main.go (4 hunks)
• coap/adapter.go (3 hunks)
• coap/api/doc.go (1 hunks)
• coap/api/logging.go (0 hunks)
• coap/api/metrics.go (0 hunks)
• coap/api/transport.go (7 hunks)
• coap/events/doc.go (1 hunks)
• coap/events/events.go (1 hunks)
• coap/events/stream.go (1 hunks)
• coap/tracing/adapter.go (0 hunks)
• docker/docker-compose.yml (4 hunks)
• go.mod (4 hunks)
• http/api/endpoint_test.go (6 hunks)
• http/events/doc.go (1 hunks)
• http/events/events.go (1 hunks)
• http/events/streams.go (1 hunks)
• http/handler.go (5 hunks)
• http/handler_test.go (7 hunks)
• http/mocks/events.go (1 hunks)
• journal/api/responses.go (2 hunks)
• journal/journal.go (1 hunks)
• journal/middleware/authorization.go (1 hunks)
• journal/mocks/repository.go (2 hunks)
• journal/postgres/init.go (1 hunks)
• journal/postgres/telemetry.go (2 hunks)
• journal/service.go (3 hunks)
• mqtt/events/events.go (1 hunks)
• mqtt/events/streams.go (2 hunks)
• mqtt/handler.go (9 hunks)
• mqtt/handler_test.go (7 hunks)
• mqtt/mocks/events.go (1 hunks)
• pkg/sdk/health_test.go (1 hunks)
• pkg/sdk/message_test.go (5 hunks)
• ws/api/endpoint_test.go (3 hunks)
• ws/events/doc.go (1 hunks)
• ws/events/events.go (1 hunks)
• ws/events/stream.go (1 hunks)
• ws/handler.go (11 hunks)
• ws/mocks/events.go (1 hunks)

• coap/tracing/adapter.go
• coap/api/logging.go
• coap/api/metrics.go

• coap/api/doc.go
• coap/events/doc.go
• http/events/doc.go
• cmd/coap/main.go
• ws/events/doc.go
• journal/postgres/init.go
• ws/events/stream.go
• coap/events/events.go
• ws/mocks/events.go
• pkg/sdk/health_test.go
• http/events/events.go
• journal/middleware/authorization.go
• mqtt/events/events.go
• http/events/streams.go
• cmd/ws/main.go
• http/mocks/events.go
• ws/events/events.go
• ws/api/endpoint_test.go
• journal/api/responses.go
• journal/service.go

coap/events/stream.go (2)

22-34: Ensure graceful handling of publisher creation failures in other layers.
Creation of the publisher here is properly handled if an error occurs, but verify that dependant layers (e.g., CoAP handlers, or main entrypoints) are gracefully reacting to this failure path to avoid partial initialization states.

Would you like a script to scan for references to NewEventStoreMiddleware across the codebase and check if errors are consistently handled?

---

55-73: Double-check concurrency requirements for event publishing.
The synchronous call to es.svc.Subscribe followed by es.events.Publish might have concurrency implications if multiple clients attempt to subscribe simultaneously. Ensure that either the underlying svc or es.events usage handles concurrency properly, or document that concurrency must be orchestrated externally.

mqtt/mocks/events.go (5)

18-33: Validate correct usage of three-argument Connect in tests.
Because a panic is raised if no return value is specified, ensure each test that calls _m.Connect provides a proper return value in the mock.

---

36-52: Match the new Disconnect signature where used.
Similar to the Connect method, verify that every caller of _m.Disconnect correctly supplies the connID argument and sets an appropriate mock response.

---

54-70: Mock method behavior looks correct.
The Publish signature and usage of _m.Called appear correct. The panic for unspecified return values aligns with testify/mock defaults.

---

72-88: Maintain consistency in subtopic-based tests.
Because Subscribe includes an additional subtopic argument, confirm that all test scenarios supply a subtopic (even if empty) to avoid unexpected panics.

---

Line range hint 90-106: Ensure thorough coverage of Unsubscribe in tests.
The Unsubscribe method now accepts five parameters. Be mindful to provide mock return values in all test cases, especially if Unsubscribe is invoked with corner cases (e.g., empty subtopic).

http/handler.go (3)

21-21: Confirm import path correctness.
The import of "github.com/absmach/supermq/http/events" is straightforward, but ensure that your local modules or build scripts reference the correct package path for the newly introduced events package.

---

53-53: Error usage is consistent.
errFailedPublishEvent matches the naming convention for other error variables in this file.

---

69-69: Injecting EventStore via dependency is a solid design choice.
Storing es events.EventStore in the handler fosters testability and clear separation of concerns.

mqtt/events/streams.go (8)

17-21: LGTM! Well-defined interface for MQTT event handling.

The interface provides a comprehensive set of methods for handling MQTT events with consistent error handling.

---

26-27: LGTM! Clean and focused struct definition.

The struct contains only the necessary fields for event publishing functionality.

---

40-40: LGTM! Proper initialization of the event store.

The function correctly initializes the publisher and handles potential errors.

---

69-79: Verify the clientPublish constant.

The implementation looks good, but let's verify the definition of the clientPublish constant to ensure it matches the expected operation type.

✅ Verification successful

✓ The clientPublish constant is correctly defined and used

The constant is properly defined in mqtt/events/events.go as mqttPrefix + ".client_publish" and is correctly used in the Publish method. This follows the consistent pattern used across all modules in the codebase.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Search for the clientPublish constant definition
rg -A 1 'const.*clientPublish'

Length of output: 32

---

Script:

#!/bin/bash
# Try different patterns to find clientPublish
echo "=== Searching for clientPublish occurrences ==="
rg "clientPublish" -A 2 -B 2

echo -e "\n=== Searching for type declarations that might contain clientPublish ==="
rg "type.*operation" -A 5 -B 1

Length of output: 2671

---

57-65: Verify the clientDisconnect constant.

The implementation looks good, but let's verify the definition of the clientDisconnect constant to ensure it matches the expected operation type.

✅ Verification successful

The clientDisconnect constant is properly defined and used correctly

The constant is defined in mqtt/events/events.go as clientDisconnect = mqttPrefix + ".client_disconnect" and follows the same pattern as other MQTT operation constants in the codebase.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Search for the clientDisconnect constant definition
rg -A 1 'const.*clientDisconnect'

Length of output: 35

---

Script:

#!/bin/bash
# Try different patterns to locate the constant
echo "=== Searching for clientDisconnect usage ==="
rg "clientDisconnect"

echo -e "\n=== Searching for operation type definitions ==="
rg "type.+operation"

echo -e "\n=== Looking for operation-related constants ==="
rg "operation\s+=|operation:"

Length of output: 2122

---

45-53: Verify the clientConnect constant.

The implementation looks good, but let's verify the definition of the clientConnect constant to ensure it matches the expected operation type.

✅ Verification successful

✓ The clientConnect constant is properly defined and used correctly

The constant is defined in mqtt/events/events.go as clientConnect = mqttPrefix + ".client_connect", following the consistent pattern used for other MQTT events. Its usage in the Connect method is appropriate for MQTT connection events.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Search for the clientConnect constant definition
rg -A 1 'const.*clientConnect'

Length of output: 32

---

Script:

#!/bin/bash
# Search for any occurrence of clientConnect
rg -B 2 -A 2 'clientConnect'

# Search for operation-related type definitions or constants
rg -B 2 -A 2 'type.*operation'

# Check the specific file for related constants
cat mqtt/events/streams.go

Length of output: 4163

---

96-106: Verify the clientUnsubscribe constant.

The implementation looks good, but let's verify the definition of the clientUnsubscribe constant to ensure it matches the expected operation type.

✅ Verification successful

The clientUnsubscribe constant is correctly defined and used.

The constant is properly defined in mqtt/events/events.go as clientUnsubscribe = mqttPrefix + ".client_unsubscribe" and is being used correctly in the Unsubscribe method.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Search for the clientUnsubscribe constant definition
rg -A 1 'const.*clientUnsubscribe'

Length of output: 36

---

Script:

#!/bin/bash
# Try different patterns to locate clientUnsubscribe
echo "=== Searching for any occurrence of clientUnsubscribe ==="
rg "clientUnsubscribe" -A 2 -B 2

echo "=== Searching for type definitions that might contain this value ==="
rg "type.*(operation|Operation)" -A 5 -B 1

echo "=== Looking for variable declarations ==="
ast-grep --pattern "clientUnsubscribe = $_"

Length of output: 5542

---

82-93: Verify the clientSubscribe constant.

The implementation looks good, but let's verify the definition of the clientSubscribe constant to ensure it matches the expected operation type.

✅ Verification successful

The clientSubscribe constant is properly defined and used.

The constant is correctly defined as "mqtt.client_subscribe" and follows the consistent pattern used for all MQTT operation constants in the codebase.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Search for the clientSubscribe constant definition
rg -A 1 'const.*clientSubscribe'

Length of output: 34

---

Script:

#!/bin/bash
# Try different patterns to find the constant
echo "=== Searching for operation type definitions ==="
rg -g '*.go' 'type.*Operation'

echo -e "\n=== Searching for subscribe-related constants ==="
rg -g '*.go' '(const|var).*(subscribe|Subscribe)'

echo -e "\n=== Searching for any occurrence of subscribe in the same file ==="
rg -g 'mqtt/events/streams.go' 'subscribe|Subscribe'

Length of output: 2033

---

Script:

#!/bin/bash
# Search for operation-related constants in mqtt/events
echo "=== Searching for operation constants in mqtt/events ==="
rg -g 'mqtt/events/*.go' '(const|var|type).*(operation|Operation)'

echo -e "\n=== Checking content of mqtt/events directory ==="
fd . mqtt/events/ -e go -x cat {}

Length of output: 4291

journal/postgres/telemetry.go (1)

187-207: Performance optimization needed for subscription matching.

The current implementation using LIKE with wildcards can be slow on large datasets. Consider using a more efficient matching strategy.

go.mod (1)

11-11: Verify compatibility with pre-release version of authzed-go.

The update to authzed-go v1.2.2-0.20250107172318-7fd4159ab2b7 includes a pre-release version. Ensure this version is stable and compatible with your use case.

Also applies to: 13-13

✅ Verification successful

Pre-release version usage is intentional and consistent with experimental APIs

The codebase consistently uses ClientWithExperimental and NewClientWithExperimentalAPIs across all services, indicating that the pre-release version is specifically chosen to support these experimental API features. The implementation follows documented patterns and shows no signs of compatibility issues.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Check for any breaking changes in authzed-go usage
rg -l 'github.com/authzed/authzed-go' --type go

Length of output: 260

---

Script:

#!/bin/bash
# Check specific imports and API usage from authzed-go
echo "=== Checking imports ==="
rg '^import.*github.com/authzed/authzed-go' -A 5 --type go

echo -e "\n=== Checking API usage patterns ==="
rg 'authzed\.' -A 2 --type go

echo -e "\n=== Checking specific client initialization ==="
ast-grep --pattern 'authzed.NewClient($$$)'

Length of output: 3992

cmd/http/main.go (1)

146-151: Add cleanup for event store resources.

The event store is initialized but missing cleanup code. Add a defer statement to ensure proper resource cleanup.

mqtt/handler.go (1)

56-58: LGTM: Error variables are well-defined and follow consistent naming.

The new error variables for event-related failures are descriptive and follow the established pattern.

ws/handler.go (1)

52-54: LGTM: Error variables follow consistent pattern.

The error variables are well-defined and match the pattern used in mqtt handler.

http/handler_test.go (2)

69-70: LGTM: Clean mock initialization.

The event store mock is properly initialized and follows the established pattern for other mocks.

Also applies to: 78-81

---

335-348: Good test coverage for event store failures.

The test case properly verifies error handling when event store publish fails.

docker/docker-compose.yml (2)

Line range hint 178-182: LGTM: Redis configuration follows best practices.

The Redis service is properly configured with volume persistence and network settings.

---

1064-1064: Ensure consistent ES_URL configuration.

The SMQ_ES_URL environment variable is consistently added to all adapter services.

Also applies to: 1151-1151, 1229-1229

coap/adapter.go (3)

29-36: LGTM! Interface changes improve client identification.

The change from key to clientID in method signatures provides better clarity and aligns with telemetry tracking requirements.

---

Line range hint 104-124: LGTM! Proper error handling in Unsubscribe.

The error handling and authorization checks are implemented correctly.

---

Line range hint 57-74: Verify authorization checks for publish operations.

The authorization logic looks correct, but let's verify all publish operations are properly authorized.

✅ Verification successful

Authorization checks for publish operations are properly implemented

The CoAP adapter correctly implements authorization by:

• Verifying client permissions through channels.Authorize before publishing
• Using appropriate client type and operation type parameters
• Properly handling authorization failures

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Check for any publish operations that bypass authorization

# Search for Publish method calls without prior authorization
ast-grep --pattern 'Publish($$$) {
  $$$
  if !authzRes.Authorized {
    $$$
  }
  $$$
}'

Length of output: 91

---

Script:

#!/bin/bash
# Search for Publish method implementations and their authorization patterns

# Find all Publish method implementations
echo "=== Publish Methods ==="
ast-grep --pattern 'func $_($_ context.Context, $$$) $_ {
  $$$
}'

# Search for authorization-related patterns
echo -e "\n=== Authorization Patterns ==="
rg -n "Authorize|Authorization" --type go

# Search specifically for publish operations
echo -e "\n=== Publish Operations ==="
rg -n "\.Publish\(" --type go

Length of output: 66316

---

Script:

#!/bin/bash
# First find files containing Publish methods
echo "=== Files with Publish methods ==="
rg --files-with-matches "func.*Publish"

# Then look for authorization patterns in publish operations
echo -e "\n=== Authorization in Publish methods ==="
rg -A 5 "func.*Publish" --type go

Length of output: 33343

coap/api/transport.go (1)

227-239: LGTM! Clean authentication implementation.

The authentication function properly:

• Handles gRPC client errors
• Wraps errors with domain-specific types
• Returns client ID for successful authentication

journal/mocks/repository.go (1)

Line range hint 19-125: LGTM! Comprehensive mock implementations for telemetry tracking.

The mock implementations properly support:

• Subscription management
• Message counting
• Error handling