phil/StarPunk
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

docs: Fix ADR numbering conflicts and create comprehensive documentation indices

Browse Source 
This commit resolves all documentation issues identified in the comprehensive review:

CRITICAL FIXES:
- Renumbered duplicate ADRs to eliminate conflicts:
  * ADR-022-migration-race-condition-fix → ADR-037
  * ADR-022-syndication-formats → ADR-038
  * ADR-023-microformats2-compliance → ADR-040
  * ADR-027-versioning-strategy-for-authorization-removal → ADR-042
  * ADR-030-CORRECTED-indieauth-endpoint-discovery → ADR-043
  * ADR-031-endpoint-discovery-implementation → ADR-044

- Updated all cross-references to renumbered ADRs in:
  * docs/projectplan/ROADMAP.md
  * docs/reports/v1.0.0-rc.5-migration-race-condition-implementation.md
  * docs/reports/2025-11-24-endpoint-discovery-analysis.md
  * docs/decisions/ADR-043-CORRECTED-indieauth-endpoint-discovery.md
  * docs/decisions/ADR-044-endpoint-discovery-implementation.md

- Updated README.md version from 1.0.0 to 1.1.0
- Tracked ADR-021-indieauth-provider-strategy.md in git

DOCUMENTATION IMPROVEMENTS:
- Created comprehensive INDEX.md files for all docs/ subdirectories:
  * docs/architecture/INDEX.md (28 documents indexed)
  * docs/decisions/INDEX.md (55 ADRs indexed with topical grouping)
  * docs/design/INDEX.md (phase plans and feature designs)
  * docs/standards/INDEX.md (9 standards with compliance checklist)
  * docs/reports/INDEX.md (57 implementation reports)
  * docs/deployment/INDEX.md (deployment guides)
  * docs/examples/INDEX.md (code samples and usage patterns)
  * docs/migration/INDEX.md (version migration guides)
  * docs/releases/INDEX.md (release documentation)
  * docs/reviews/INDEX.md (architectural reviews)
  * docs/security/INDEX.md (security documentation)

- Updated CLAUDE.md with complete folder descriptions including:
  * docs/migration/
  * docs/releases/
  * docs/security/

VERIFICATION:
- All ADR numbers now sequential and unique (50 total ADRs)
- No duplicate ADR numbers remain
- All cross-references updated and verified
- Documentation structure consistent and well-organized

These changes improve documentation discoverability, maintainability, and
ensure proper version tracking. All index files follow consistent format
with clear navigation guidance.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>
This commit is contained in:
Phil Skentelbery
2025-11-25 13:28:56 -07:00
parent f28a48f560
commit e589f5bd6c
34 changed files with 5820 additions and 30 deletions
Download Patch File Download Diff File Expand all files Collapse all files

82
docs/architecture/INDEX.md Normal file
View File

@@ -0,0 +1,82 @@
# Architecture Documentation Index
This directory contains architectural documentation, system design overviews, component diagrams, and architectural patterns for StarPunk CMS.
## Core Architecture
### System Overview
- **[overview.md](overview.md)** - Complete system architecture and design principles
- **[technology-stack.md](technology-stack.md)** - Current technology stack and dependencies
- **[technology-stack-legacy.md](technology-stack-legacy.md)** - Historical technology decisions
### Feature-Specific Architecture
#### IndieAuth & Authentication
- **[indieauth-assessment.md](indieauth-assessment.md)** - Assessment of IndieAuth implementation
- **[indieauth-client-diagnosis.md](indieauth-client-diagnosis.md)** - IndieAuth client diagnostic analysis
- **[indieauth-endpoint-discovery.md](indieauth-endpoint-discovery.md)** - Endpoint discovery architecture
- **[indieauth-identity-page.md](indieauth-identity-page.md)** - Identity page architecture
- **[indieauth-questions-answered.md](indieauth-questions-answered.md)** - Architectural Q&A for IndieAuth
- **[indieauth-removal-architectural-review.md](indieauth-removal-architectural-review.md)** - Review of custom IndieAuth removal
- **[indieauth-removal-implementation-guide.md](indieauth-removal-implementation-guide.md)** - Implementation guide for removal
- **[indieauth-removal-phases.md](indieauth-removal-phases.md)** - Phased removal approach
- **[indieauth-removal-plan.md](indieauth-removal-plan.md)** - Overall removal plan
- **[indieauth-token-verification-diagnosis.md](indieauth-token-verification-diagnosis.md)** - Token verification diagnostic analysis
- **[simplified-auth-architecture.md](simplified-auth-architecture.md)** - Simplified authentication architecture
- **[endpoint-discovery-answers.md](endpoint-discovery-answers.md)** - Endpoint discovery implementation Q&A
#### Database & Migrations
- **[database-migration-architecture.md](database-migration-architecture.md)** - Database migration system architecture
- **[migration-fix-quick-reference.md](migration-fix-quick-reference.md)** - Quick reference for migration fixes
- **[migration-race-condition-answers.md](migration-race-condition-answers.md)** - Race condition resolution Q&A
#### Syndication
- **[syndication-architecture.md](syndication-architecture.md)** - RSS feed and syndication architecture
## Version-Specific Architecture
### v1.0.0
- **[v1.0.0-release-validation.md](v1.0.0-release-validation.md)** - Release validation architecture
### v1.1.0
- **[v1.1.0-feature-architecture.md](v1.1.0-feature-architecture.md)** - Feature architecture for v1.1.0
- **[v1.1.0-implementation-decisions.md](v1.1.0-implementation-decisions.md)** - Implementation decisions
- **[v1.1.0-search-ui-validation.md](v1.1.0-search-ui-validation.md)** - Search UI validation
- **[v1.1.0-validation-report.md](v1.1.0-validation-report.md)** - Overall validation report
### v1.1.1
- **[v1.1.1-architecture-overview.md](v1.1.1-architecture-overview.md)** - Architecture overview for v1.1.1
## Phase Documentation
- **[phase1-completion-guide.md](phase1-completion-guide.md)** - Phase 1 completion guide
- **[phase-5-validation-report.md](phase-5-validation-report.md)** - Phase 5 validation report
## Review Documentation
- **[review-v1.0.0-rc.5.md](review-v1.0.0-rc.5.md)** - Architectural review of v1.0.0-rc.5
## How to Use This Documentation
### For New Developers
1. Start with **overview.md** to understand the system
2. Review **technology-stack.md** for current technologies
3. Read feature-specific architecture docs relevant to your work
### For Architects
1. Review version-specific architecture for historical context
2. Consult feature-specific docs when making changes
3. Update relevant docs when architecture changes
### For Contributors
1. Read **overview.md** for system understanding
2. Consult specific architecture docs for areas you're working on
3. Follow patterns documented in architecture files
## Related Documentation
- **[../decisions/](../decisions/)** - Architectural Decision Records (ADRs)
- **[../design/](../design/)** - Detailed design documents
- **[../standards/](../standards/)** - Coding standards and conventions
---
**Last Updated**: 2025-11-25
**Maintained By**: Documentation Manager Agent

233
docs/architecture/syndication-architecture.md Normal file
View File

@@ -0,0 +1,233 @@
# Syndication Architecture
## Overview
StarPunk's syndication architecture provides multiple feed formats for content distribution, ensuring broad compatibility with feed readers and IndieWeb tools while maintaining simplicity.
## Current State (v1.1.0)
```
┌─────────────┐
│ Database │
│ (Notes) │
└──────┬──────┘
┌──────▼──────┐
│ feed.py │
│ (RSS 2.0) │
└──────┬──────┘
┌──────▼──────┐
│ /feed.xml │
│ endpoint │
└─────────────┘
```
## Target Architecture (v1.1.2+)
```
┌─────────────┐
│ Database │
│ (Notes) │
└──────┬──────┘
┌──────▼──────────────────┐
│ Feed Generation Layer │
├──────────┬───────────────┤
│ feed.py │ json_feed.py │
│ RSS/ATOM│ JSON │
└──────────┴───────────────┘
┌──────▼──────────────────┐
│ Feed Endpoints │
├─────────┬───────────────┤
│/feed.xml│ /feed.atom │
│ (RSS) │ (ATOM) │
├─────────┼───────────────┤
│ /feed.json │
│ (JSON Feed) │
└─────────────────────────┘
```
## Design Principles
### 1. Format Independence
Each syndication format operates independently:
- No shared state between formats
- Failures in one don't affect others
- Can be enabled/disabled individually
### 2. Shared Data Access
All formats read from the same data source:
- Single query pattern for notes
- Consistent ordering (newest first)
- Same publication status filtering
### 3. Library Leverage
Maximize use of existing libraries:
- `feedgen` for RSS and ATOM
- Native Python `json` for JSON Feed
- No custom XML generation
## Component Design
### Feed Generation Module (`feed.py`)
**Current Responsibility**: RSS 2.0 generation
**Future Enhancement**: Add ATOM generation function
```python
# Pseudocode structure
def generate_rss_feed(notes, config) -> str
def generate_atom_feed(notes, config) -> str # New
```
### JSON Feed Module (`json_feed.py`)
**New Component**: Dedicated JSON Feed generation
```python
# Pseudocode structure
def generate_json_feed(notes, config) -> str
def format_json_item(note) -> dict
```
### Route Handlers
Simple pass-through to generation functions:
```python
@app.route('/feed.xml') # Existing
@app.route('/feed.atom') # New
@app.route('/feed.json') # New
```
## Data Flow
1. **Request**: Client requests feed at endpoint
2. **Query**: Fetch published notes from database
3. **Transform**: Convert notes to format-specific structure
4. **Serialize**: Generate final output (XML/JSON)
5. **Response**: Return with appropriate Content-Type
## Microformats2 Architecture
### Template Layer Enhancement
Microformats2 operates at the HTML template layer:
```
┌──────────────┐
│ Data Model │
│ (Notes) │
└──────┬───────┘
┌──────▼───────┐
│ Templates │
│ + mf2 markup│
└──────┬───────┘
┌──────▼───────┐
│ HTML Output │
│ (Semantic) │
└──────────────┘
```
### Markup Strategy
- **Progressive Enhancement**: Add classes without changing structure
- **CSS Independence**: Use mf2-specific classes, not styling classes
- **Validation First**: Test with parsers during development
## Configuration Requirements
### New Configuration Variables
```ini
# Author information for h-card
AUTHOR_NAME = "Site Author"
AUTHOR_URL = "https://example.com"
AUTHOR_PHOTO = "/static/avatar.jpg" # Optional
# Feed settings
FEED_LIMIT = 50
FEED_FORMATS = "rss,atom,json" # Comma-separated
```
## Performance Considerations
### Caching Strategy
- Feed generation is read-heavy, write-light
- Consider caching generated feeds (5-minute TTL)
- Invalidate cache on note creation/update
### Resource Usage
- RSS/ATOM: ~O(n) memory for n notes
- JSON Feed: Similar memory profile
- Microformats2: No additional server resources
## Security Considerations
### Content Sanitization
- HTML in feeds must be properly escaped
- CDATA wrapping for RSS/ATOM
- JSON string encoding for JSON Feed
- No script injection vectors
### Rate Limiting
- Apply same limits as HTML endpoints
- Consider aggressive caching for feeds
- Monitor for feed polling abuse
## Testing Architecture
### Unit Tests
```
tests/
├── test_feed.py # Enhanced for ATOM
├── test_json_feed.py # New test module
└── test_microformats.py # Template parsing tests
```
### Integration Tests
- Validate against external validators
- Test feed reader compatibility
- Verify IndieWeb tool parsing
## Backwards Compatibility
### URL Structure
- `/feed.xml` remains RSS 2.0 (no breaking change)
- New endpoints are additive only
- Auto-discovery links updated in templates
### Database
- No schema changes required
- All features use existing Note model
- No migration needed
## Future Extensibility
### Potential Enhancements
1. Content negotiation on `/feed`
2. WebSub (PubSubHubbub) support
3. Custom feed filtering (by tag, date)
4. Feed pagination for large sites
### Format Support Matrix
| Format | v1.1.0 | v1.1.2 | v1.2.0 |
|--------|--------|--------|--------|
| RSS 2.0 | ✅ | ✅ | ✅ |
| ATOM | ❌ | ✅ | ✅ |
| JSON Feed | ❌ | ✅ | ✅ |
| Microformats2 | Partial | Partial | ✅ |
## Decision Rationale
### Why Multiple Formats?
1. **No Universal Standard**: Different ecosystems prefer different formats
2. **Low Maintenance**: Feed formats are stable, rarely change
3. **User Choice**: Let users pick their preferred format
4. **IndieWeb Philosophy**: Embrace plurality and interoperability
### Why This Architecture?
1. **Simplicity**: Each component has single responsibility
2. **Testability**: Isolated components are easier to test
3. **Maintainability**: Changes to one format don't affect others
4. **Performance**: Can optimize each format independently
## References
- [RSS 2.0 Specification](https://www.rssboard.org/rss-specification)
- [ATOM RFC 4287](https://tools.ietf.org/html/rfc4287)
- [JSON Feed Specification](https://www.jsonfeed.org/)
- [Microformats2](https://microformats.org/wiki/microformats2)

379
docs/architecture/v1.1.1-architecture-overview.md Normal file
View File

@@ -0,0 +1,379 @@
# v1.1.1 "Polish" Architecture Overview
## Executive Summary
StarPunk v1.1.1 introduces production-focused improvements without changing the core architecture. The release adds configurability, observability, and robustness while maintaining full backward compatibility.
## Architectural Principles
### Core Principles (Unchanged)
1. **Simplicity First**: Every feature must justify its complexity
2. **Standards Compliance**: Full IndieWeb specification adherence
3. **No External Dependencies**: Use Python stdlib where possible
4. **Progressive Enhancement**: Core functionality without JavaScript
5. **Data Portability**: User data remains exportable
### v1.1.1 Additions
6. **Observable by Default**: Production visibility built-in
7. **Graceful Degradation**: Features degrade rather than fail
8. **Configuration over Code**: Behavior adjustable without changes
9. **Zero Breaking Changes**: Perfect backward compatibility
## System Architecture
### High-Level Component View
```
┌─────────────────────────────────────────────────────────┐
│ StarPunk v1.1.1 │
├─────────────────────────────────────────────────────────┤
│ Configuration Layer │
│ (Environment Variables) │
├─────────────────────────────────────────────────────────┤
│ Application Layer │
│ ┌──────────┐ ┌──────────┐ ┌──────────┐ ┌──────────┐│
│ │ Auth │ │ Micropub │ │ Search │ │ Web ││
│ └──────────┘ └──────────┘ └──────────┘ └──────────┘│
├─────────────────────────────────────────────────────────┤
│ Monitoring & Logging Layer │
│ ┌──────────────┐ ┌──────────────┐ ┌──────────────┐ │
│ │ Performance │ │ Structured │ │ Error │ │
│ │ Monitoring │ │ Logging │ │ Handling │ │
│ └──────────────┘ └──────────────┘ └──────────────┘ │
├─────────────────────────────────────────────────────────┤
│ Data Access Layer │
│ ┌──────────────────────┐ ┌──────────────────────┐ │
│ │ Connection Pool │ │ Search Engine │ │
│ │ ┌────┐...┌────┐ │ │ ┌──────┐┌────────┐ │ │
│ │ │Conn│ │Conn│ │ │ │ FTS5 ││Fallback│ │ │
│ │ └────┘ └────┘ │ │ └──────┘└────────┘ │ │
│ └──────────────────────┘ └──────────────────────┘ │
├─────────────────────────────────────────────────────────┤
│ SQLite Database │
│ (WAL mode, FTS5) │
└─────────────────────────────────────────────────────────┘
```
### Request Flow
```
HTTP Request
[Logging Middleware: Start Request ID]
[Performance Middleware: Start Timer]
[Session Middleware: Validate/Extend]
[Error Handling Wrapper]
Route Handler
├→ [Database: Connection Pool]
├→ [Search: FTS5 or Fallback]
├→ [Monitoring: Record Metrics]
└→ [Logging: Structured Output]
Response Generation
[Performance Middleware: Stop Timer, Record]
[Logging Middleware: Log Request]
HTTP Response
```
## New Components
### 1. Configuration System
**Location**: `starpunk/config.py`
**Responsibilities**:
- Load environment variables
- Provide type-safe access
- Define defaults
- Validate configuration
**Design Pattern**: Singleton with lazy loading
```python
Configuration
get_bool(key, default)
get_int(key, default)
get_float(key, default)
get_str(key, default)
```
### 2. Performance Monitoring
**Location**: `starpunk/monitoring/`
**Components**:
- `collector.py`: Metrics collection and storage
- `db_monitor.py`: Database performance tracking
- `memory.py`: Memory usage monitoring
- `http.py`: HTTP request tracking
**Design Pattern**: Observer with circular buffer
```python
MetricsCollector
CircularBuffer (1000 metrics)
SlowQueryLog (100 queries)
MemoryTracker (background thread)
Dashboard (read-only view)
```
### 3. Structured Logging
**Location**: `starpunk/logging.py`
**Features**:
- JSON formatting in production
- Human-readable in development
- Request correlation IDs
- Log levels (DEBUG, INFO, WARNING, ERROR, CRITICAL)
**Design Pattern**: Decorator with context injection
### 4. Error Handling
**Location**: `starpunk/errors.py`
**Hierarchy**:
```
StarPunkError (Base)
├── ValidationError (400)
├── AuthenticationError (401)
├── NotFoundError (404)
├── DatabaseError (500)
├── ConfigurationError (500)
└── TransientError (503)
```
**Design Pattern**: Exception hierarchy with middleware
### 5. Connection Pool
**Location**: `starpunk/database/pool.py`
**Features**:
- Thread-safe pool management
- Configurable pool size
- Connection health checks
- Usage statistics
**Design Pattern**: Object pool with semaphore
## Data Flow Improvements
### Search Data Flow
```
Search Request
Check Config: SEARCH_ENABLED?
├─No→ Return "Search Disabled"
└─Yes↓
Check FTS5 Available?
├─Yes→ FTS5 Search Engine
│ ├→ Execute FTS5 Query
│ ├→ Calculate Relevance
│ └→ Highlight Terms
└─No→ Fallback Search Engine
├→ Execute LIKE Query
├→ No Relevance Score
└→ Basic Highlighting
```
### Error Flow
```
Exception Occurs
Catch in Middleware
Categorize Error
├→ User Error: Log INFO, Return Helpful Message
├→ System Error: Log ERROR, Return Generic Message
├→ Transient Error: Retry with Backoff
└→ Config Error: Fail Fast at Startup
```
## Database Schema Changes
### Sessions Table Enhancement
```sql
CREATE TABLE sessions (
id TEXT PRIMARY KEY,
user_id TEXT NOT NULL,
created_at TIMESTAMP NOT NULL,
expires_at TIMESTAMP NOT NULL,
last_activity TIMESTAMP,
remember BOOLEAN DEFAULT FALSE,
INDEX idx_sessions_expires (expires_at),
INDEX idx_sessions_user (user_id)
);
```
## Performance Characteristics
### Metrics
| Operation | v1.1.0 | v1.1.1 Target | v1.1.1 Actual |
|-----------|---------|---------------|---------------|
| Request Latency | ~50ms | <50ms | TBD |
| Search Response | ~100ms | <100ms (FTS5) <500ms (fallback) | TBD |
| RSS Generation | ~200ms | <100ms | TBD |
| Memory per Request | ~2MB | <1MB | TBD |
| Monitoring Overhead | N/A | <1% | TBD |
### Scalability
- Connection pool: Handles 20+ concurrent requests
- Metrics buffer: Fixed 1MB memory overhead
- RSS streaming: O(1) memory complexity
- Session cleanup: Automatic background process
## Security Enhancements
### Input Validation
- Unicode normalization in slugs
- XSS prevention in search highlighting
- SQL injection prevention via parameterization
### Session Security
- Configurable timeout
- HTTP-only cookies
- Secure flag in production
- CSRF protection maintained
### Error Information
- Sensitive data never in errors
- Stack traces only in debug mode
- Rate limiting on error endpoints
## Deployment Architecture
### Environment Variables
```
Production Server
├── STARPUNK_* Configuration
├── Process Manager (systemd/supervisor)
├── Reverse Proxy (nginx/caddy)
└── SQLite Database File
```
### Health Monitoring
```
Load Balancer
├→ /health (liveness)
└→ /health/ready (readiness)
```
## Testing Architecture
### Test Isolation
```
Test Suite
├── Isolated Database per Test
├── Mocked Time/Random
├── Controlled Configuration
└── Deterministic Execution
```
### Performance Testing
```
Benchmarks
├── Baseline Measurements
├── With Monitoring Enabled
├── Memory Profiling
└── Load Testing
```
## Migration Path
### From v1.1.0 to v1.1.1
1. Install new version
2. Run migrations (automatic)
3. Configure as needed (optional)
4. Restart service
### Rollback Plan
1. Restore previous version
2. No database changes to revert
3. Remove new config vars (optional)
## Observability
### Metrics Available
- Request count and latency
- Database query performance
- Memory usage over time
- Error rates by type
- Session statistics
### Logging Output
```json
{
"timestamp": "2025-11-25T10:00:00Z",
"level": "INFO",
"logger": "starpunk.micropub",
"message": "Note created",
"request_id": "abc123",
"user": "alice@example.com",
"duration_ms": 45
}
```
## Future Considerations
### Extensibility Points
1. **Monitoring Plugins**: Hook for external monitoring
2. **Search Providers**: Interface for alternative search
3. **Cache Layer**: Ready for Redis/Memcached
4. **Queue System**: Prepared for async operations
### Technical Debt Addressed
1. ✅ Test race conditions fixed
2. ✅ Unicode handling improved
3. ✅ Memory usage optimized
4. ✅ Error handling standardized
5. ✅ Configuration centralized
## Design Decisions Summary
| Decision | Rationale | Alternative Considered |
|----------|-----------|----------------------|
| Environment variables for config | 12-factor app, container-friendly | Config files |
| Built-in monitoring | Zero dependencies, privacy | External APM |
| Connection pooling | Reduce latency, handle concurrency | Single connection |
| Structured logging | Production parsing, debugging | Plain text logs |
| Graceful degradation | Reliability, user experience | Fail fast |
## Risks and Mitigations
| Risk | Impact | Mitigation |
|------|--------|------------|
| FTS5 not available | Slow search | Automatic fallback to LIKE |
| Memory leak in monitoring | OOM | Circular buffer with fixed size |
| Configuration complexity | User confusion | Sensible defaults, clear docs |
| Performance regression | Slow responses | Comprehensive benchmarking |
## Success Metrics
1. **Reliability**: 99.9% uptime capability
2. **Performance**: <1% overhead from monitoring
3. **Usability**: Zero configuration required to upgrade
4. **Observability**: Full visibility into production
5. **Compatibility**: 100% backward compatible
## Documentation References
- [Configuration System](/home/phil/Projects/starpunk/docs/decisions/ADR-052-configuration-system-architecture.md)
- [Performance Monitoring](/home/phil/Projects/starpunk/docs/decisions/ADR-053-performance-monitoring-strategy.md)
- [Structured Logging](/home/phil/Projects/starpunk/docs/decisions/ADR-054-structured-logging-architecture.md)
- [Error Handling](/home/phil/Projects/starpunk/docs/decisions/ADR-055-error-handling-philosophy.md)
- [Implementation Guide](/home/phil/Projects/starpunk/docs/design/v1.1.1/implementation-guide.md)
---
This architecture maintains StarPunk's commitment to simplicity while adding production-grade capabilities. Every addition has been carefully considered to ensure it provides value without unnecessary complexity.