RHCLOUD-41760 - Initial pass on refactoring the optional fields to pointer

[Rajagopalan-Ranganathan]

• Following fields
• TransactionId
• ConsoleHref
• ReporterVersion (legacy)
• ReporterRepresentation / CommonRepresentation
• OptionsConfig

PR Template:

Describe your changes

• ...

Ticket reference (if applicable)

Fixes #

Checklist

• Are the agreed upon acceptance criteria fulfilled?

• Was the 4-eye-principle applied? (async PR review, pairing, ensembling)

• Do your changes have passing automated tests and sufficient observability?

• Are the work steps you introduced repeatable by others, either through automation or documentation?

  • If automation is possible but not done due to other constraints, a ticket to the tech debt sprint is added
  • An SOP (Standard Operating Procedure) was created

• The Changes were automatically built, tested, and - if needed, behind a feature flag - deployed to our production environment. (Please check this when the new deployment is done and you could verify it.)

• Are the agreed upon coding/architectural practices applied?

• Are security needs fullfilled? (e.g. no internal URL)

• Is the corresponding Ticket in the right state? (should be on "review" now, put to done when this change made it to production)

• For changes to the public API / code dependencies: Was the whole team (or a sufficient amount of ppl) able to review?

Summary by CodeRabbit

• New Features

  • Made console reference, transaction ID, and representation data fields optional across resource management features, allowing more flexible resource reporting and configuration.

• Bug Fixes

  • Added defensive nil-safety checks in configuration loading to prevent crashes when optional settings are missing.

• Refactor

  • Updated serialization and data validation logic to properly handle optional fields throughout the resource lifecycle.

[app-sre-bot]

Can one of the admins verify this patch?

[coderabbitai]

Note

Reviews paused

It looks like this branch is under active development. To avoid overwhelming you with review comments due to an influx of new commits, CodeRabbit has automatically paused this review. You can configure this behavior by changing the reviews.auto_review.auto_pause_after_reviewed_commits setting.

Use the following commands to manage reviews:

• @coderabbitai resume to resume automatic reviews.
• @coderabbitai review to trigger a single review.

Use the checkboxes below for quick actions:

• ▶️ Resume reviews
• 🔍 Trigger review

📝 Walkthrough

Walkthrough

This PR refactors domain models to support optional fields by converting concrete types to pointers (ConsoleHref → *ConsoleHref, adding *TransactionId, making representations optional). Changes propagate across constructors, accessors, serialization, deserialization, repositories, and tests to ensure nil-safe handling throughout the codebase.

Changes

Cohort / File(s)	Summary
Core Domain Models - Reporter & Resource internal/biz/model/reporter_resource.go, internal/biz/model/resource.go, internal/biz/model/resource_report_event.go	Field types changed from values to pointers (consoleHref, transactionId, representations). Constructor and method signatures updated to accept pointers. Added nil-safe accessor logic and new deserialization functions. Conditional creation of representations only when non-nil.
BIZ Model Snapshots internal/biz/model/snapshots.go	ReporterResourceSnapshot.ConsoleHref changed from string to *string with omitempty tag for optional JSON serialization.
BIZ Model Tests internal/biz/model/reporter_resource_test.go, internal/biz/model/resource_test.go, internal/biz/model/snapshots_test.go, internal/biz/model/testdata.go	Test fixtures and call sites updated to pass pointers for transactionId, consoleHref, and representation fields. Added test cases verifying nil semantics for timestamps and optional fields.
Legacy Model Changes internal/biz/model_legacy/outboxevents.go, internal/biz/model_legacy/outboxevents_test.go	EventRelationshipReporter.ReporterVersion changed from string to *string. Added tests verifying optional ReporterVersion round-trips correctly in JSON serialization.
Service Layer internal/biz/usecase/resources/resource_service.go, internal/biz/usecase/resources/resource_service_test.go	resolveOptionalFields updated to return pointers. Auto-generates TransactionId when missing. Validation logic refactored to enforce representations only when present. Added test for nil TransactionId auto-generation and nil optional field preservation.
Data Model Layer internal/data/model/reporter_resource.go, internal/data/model/reporter_resource_test.go, internal/data/model/testdata.go, internal/data/model/common_representation.go	ReporterResource.ConsoleHref type changed from string to *string. Validation logic updated to safely derive string from pointer. Added stringPtr helper. Removed unnecessary blank line.
Data Repository Layer internal/data/resource_repository.go, internal/data/resource_repository_test.go, internal/data/fake_resource_repository.go	FindResourceByKeysResult.ConsoleHref changed to *string. Representation snapshots now deserialized conditionally only when non-nil. Test call sites updated to pass pointers for consoleHref, representations, and transactionId.
Configuration internal/config/config.go, internal/config/config_test.go	Added nil checks and conditional guards in LogConfigurationInfo, InjectClowdAppConfig, ConfigureAuthz, ConfigureStorage, and ConfigureConsumer to safely handle optional config groups. Added two new test cases verifying no panics with nil/partial configurations.
Integration Tests internal/consumer/consumer_test.go, internal/service/resources/kesselinventoryservice_test.go, cmd/jobs/resource_delete_job_test.go	Updated Resource.Update calls to pass pointers for consoleHref, representations, and transactionId. Added strPtr helper. Refined test expectations for representation-validation semantics (both required, specific error messages).

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~25 minutes

🚥 Pre-merge checks | ✅ 1 | ❌ 2

❌ Failed checks (2 warnings)

Check name	Status	Explanation	Resolution
Description check	⚠️ Warning	The PR description lists the fields being refactored but does not follow the required template structure with 'Describe your changes', 'Ticket reference', and a completed checklist.	Complete the PR template by providing a detailed description of changes, including the ticket reference (#RHCLOUD-41760), and addressing each checklist item with confirmation or notes.
Docstring Coverage	⚠️ Warning	Docstring coverage is 27.85% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (1 passed)

Check name	Status	Explanation
Title check	✅ Passed	The PR title accurately describes the main objective: refactoring optional fields to use pointer types. It is specific, clear, and directly reflects the changeset.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[codecov]

Codecov Report

❌ Patch coverage is 82.58065% with 27 lines in your changes missing coverage. Please review.

Files with missing lines	Patch %	Lines
internal/biz/model/resource_report_event.go	38.09%	7 Missing and 6 partials ⚠️
internal/biz/model/resource.go	84.09%	4 Missing and 3 partials ⚠️
internal/biz/model/common.go	88.23%	2 Missing ⚠️
internal/biz/model/resource_delete_event.go	0.00%	2 Missing ⚠️
internal/biz/model/testdata.go	86.66%	2 Missing ⚠️
internal/biz/usecase/resources/resource_service.go	96.15%	1 Missing ⚠️

Flag	Coverage Δ
main	49.94% <67.09%> (+0.31%)	⬆️
v1beta2	65.58% <82.58%> (+0.41%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

Files with missing lines	Coverage Δ
internal/biz/model/errors.go	64.15% <ø> (ø)
internal/biz/model/reporter_representation.go	100.00% <100.00%> (+33.33%)	⬆️
internal/biz/model/reporter_resource.go	95.03% <100.00%> (+0.14%)	⬆️
internal/biz/model_legacy/outboxevents.go	73.68% <100.00%> (ø)
internal/data/fake_resource_repository.go	91.07% <100.00%> (+0.08%)	⬆️
internal/data/model/common_representation.go	71.11% <ø> (ø)
internal/data/model/reporter_resource.go	76.38% <100.00%> (+1.02%)	⬆️
internal/data/model/testdata.go	33.87% <100.00%> (+0.15%)	⬆️
internal/data/resource_repository.go	84.16% <100.00%> (ø)
internal/middleware/error_mapping.go	100.00% <100.00%> (ø)
... and 6 more

... and 1 file with indirect coverage changes

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[coderabbitai]

Actionable comments posted: 7

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (2)

internal/biz/model/resource_test.go (1)

262-270: ⚠️ Potential issue | 🔴 Critical

*Use TransactionId in Update calls to match the pointer-based API.

These Update invocations pass a TransactionId value. If Update now expects *TransactionId (as used elsewhere in this PR), these calls won’t compile and also bypass the “nil means unset” semantics. Wrap the value in a pointer (or use a small helper) consistently.

🔧 Example fix (apply same pattern to other Update calls)

-	err = original.Update(
-		nonExistentKey,
-		apiHref,
-		consoleHref,
-		nil,
-		commonData,
-		reporterData,
-		TransactionId("tx-nonexistent"),
-	)
+	txID := TransactionId("tx-nonexistent")
+	err = original.Update(
+		nonExistentKey,
+		apiHref,
+		consoleHref,
+		nil,
+		commonData,
+		reporterData,
+		&txID,
+	)

#!/bin/bash
# Verify Update signature and call sites
rg -n "func \\(.*\\) Update\\(" internal/biz/model
rg -n "Update\\(" internal/biz/model/resource_test.go

Also applies to: 297-305, 340-348, 398-406

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@internal/biz/model/resource_test.go` around lines 262 - 270, The Update calls
on the resource test pass a TransactionId value but Update expects a
*TransactionId; change each call (e.g., original.Update(...,
TransactionId("tx-nonexistent")) and the other occurrences around lines noted)
to pass a pointer instead (e.g., &TransactionId("tx-nonexistent")) or use a
small helper like NewTransactionIdPtr("tx-...") to produce *TransactionId;
update all matching calls (including the ones at the other ranges) so nil
semantics remain respected and the code compiles with the pointer-based Update
signature.

internal/biz/model/reporter_resource.go (1)

193-215: ⚠️ Potential issue | 🟠 Major

Remove leftover debug log.Printf statements before merging.

Lines 195–196 dump the full ReporterResourceSnapshot to stdout on every deserialization call. This is a debug artifact that:

1. Pollutes logs in production with verbose output on every resource lookup.
2. Could inadvertently log sensitive resource data.
3. Uses stdlib log instead of the structured Kratos logger used elsewhere in the codebase.

Proposed fix

 func DeserializeReporterResource(snapshot ReporterResourceSnapshot) ReporterResource {
-	log.Printf("----------------------------------")
-	log.Printf("ReporterResourceSnapshot : %+v, ", snapshot)
-
 	var consoleHref *ConsoleHref

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@internal/biz/model/reporter_resource.go` around lines 193 - 215, In
DeserializeReporterResource remove the two debug log.Printf calls that print the
entire ReporterResourceSnapshot (the stdlib log.Printf lines near the top of the
function) so you don't leak verbose/sensitive data or mix logging systems; if
you need a runtime trace instead, replace them with a single structured Kratos
logger call (using the package's logger) with minimal non-sensitive fields,
otherwise simply delete the log.Printf statements from
DeserializeReporterResource.

🧹 Nitpick comments (4)

internal/service/resources/kesselinventoryservice_test.go (1)

3080-3080: Both nil-representation error assertions use the same generic substring.

"representation required" at lines 3080 and 3093 now covers both "nil reporter (common-only)" and "nil common (reporter-only)" cases with the same substring. If the service ever swaps the error messages for the two fields, these tests would still pass. Using the field-specific prefix (e.g. "invalid ReporterRepresentation" vs "invalid CommonRepresentation") — as done in the sibling test TestInventoryService_ReportResource_NilOrEmptyRepresentationStructs at lines 2869 and 2880 — would give stronger guarantees.

Also applies to: 3093-3093

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@internal/service/resources/kesselinventoryservice_test.go` at line 3080, The
test assertions use the same generic expectMsgContains "representation required"
for both nil-representation cases; update each assertion to use the
field-specific error substring used elsewhere so the tests assert the correct
field-specific error: change the expectMsgContains for the reporter-related case
to "invalid ReporterRepresentation" and change the expectMsgContains for the
common-related case to "invalid CommonRepresentation" (these appear in the tests
around TestInventoryService_ReportResource_NilOrEmptyRepresentationStructs and
the two failing cases at lines ~3080/3093) so each test validates the correct
field-specific error.

internal/biz/model/errors.go (1)

15-15: Consider adding a ValidateNotNil helper for consistency.

Every other sentinel in this block has a corresponding helper (ValidateRequired, ValidateStringRequired, etc.). ErrNil is the only one without one, which means callers must manually wrap it.

♻️ Suggested addition

+// ValidateNotNil validates that a pointer is not nil
+func ValidateNotNil(field string, value any) error {
+	if value == nil {
+		return fmt.Errorf("%w: %s", ErrNil, field)
+	}
+	return nil
+}

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@internal/biz/model/errors.go` at line 15, Add a ValidateNotNil helper to
mirror the other validators so callers don't manually wrap ErrNil; implement a
function named ValidateNotNil(value interface{}, field string) error that
returns nil when value != nil and otherwise returns a wrapped ErrNil (e.g.,
fmt.Errorf("%s: %w", field, ErrNil)) so it matches the style of ValidateRequired
and ValidateStringRequired and can be used by callers of ErrNil.

internal/data/resource_repository_test.go (1)

1965-1966: Silently discarding error from NewApiHref("") in test helpers.

NewApiHref("") returns an error (per the NewApiHref constructor which validates non-empty URI), but the error is discarded with _. This yields a zero-value ApiHref("") which happens to work here, but it's fragile — if validation behavior changes, these tests will silently pass bad data.

Consider using a known-valid URL or explicitly asserting the error:

Proposed fix

-			emptyApiHref, _ := bizmodel.NewApiHref("")
-			err = resource.Update(key, emptyApiHref, nil, nil, &updatedReporter1, &updatedCommon1, &transactionId1)
+			apiHref, err := bizmodel.NewApiHref("https://api.example.com/placeholder")
+			require.NoError(t, err)
+			err = resource.Update(key, apiHref, nil, nil, &updatedReporter1, &updatedCommon1, &transactionId1)

Also applies to: 2060-2061

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@internal/data/resource_repository_test.go` around lines 1965 - 1966, The test
is discarding the error returned by NewApiHref("") which hides validation
failures; update the test to call NewApiHref with a known-valid non-empty URL
(e.g., "https://example.com") or capture and assert the error is nil before
using the value, then pass the resulting ApiHref into resource.Update (the call
that currently uses emptyApiHref). Ensure you replace both occurrences noted
(around NewApiHref("") at the Update(...) calls) so tests use a validated
ApiHref or explicitly fail if NewApiHref returns an error.

internal/biz/model/resource.go (1)

100-156: Duplicated nil-dereferencing logic between NewResource and Update.

The nil-handling for transactionId, reporterRepresentationData, commonRepresentationData, and consoleHref (lines 119–140) is nearly identical to NewResource (lines 26–63). Consider extracting a small helper to reduce duplication, e.g.:

Example helper

func resolveOptionalFields(
	transactionId *TransactionId,
	consoleHref *ConsoleHref,
	reporterRepresentationData *Representation,
	commonRepresentationData *Representation,
) (TransactionId, ConsoleHref, Representation, Representation, error) {
	var txId TransactionId
	if transactionId == nil || *transactionId == "" {
		var err error
		txId, err = GenerateTransactionId()
		if err != nil {
			return txId, ConsoleHref(""), Representation{}, Representation{}, err
		}
	} else {
		txId = *transactionId
	}
	var reporterData, commonData Representation
	if reporterRepresentationData != nil {
		reporterData = *reporterRepresentationData
	}
	if commonRepresentationData != nil {
		commonData = *commonRepresentationData
	}
	var ch ConsoleHref
	if consoleHref != nil {
		ch = *consoleHref
	}
	return txId, ch, reporterData, commonData, nil
}

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@internal/biz/model/resource.go` around lines 100 - 156, The Update method
duplicates nil-handling logic found in NewResource for transactionId,
consoleHref, reporterRepresentationData, and commonRepresentationData; extract
that logic into a small helper (e.g., resolveOptionalFields) and call it from
both NewResource and Update to return (TransactionId, ConsoleHref,
Representation, Representation, error), preserving the current behavior
including calling GenerateTransactionId when transactionId is nil/empty and
propagating any GenerateTransactionId error; update Update to use
resolveOptionalFields and remove the inlined nil checks and copying of pointer
values.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@internal/biz/model_legacy/outboxevents_test.go`:
- Around line 157-175: The test comment in
TestEventResourceReporter_ReporterVersion_Optional is inaccurate:
EventResourceReporter.ReporterVersion is not tagged with `omitempty`, so a nil
ReporterVersion serializes as the field present with value null, not as
omitted/zero; update the comment to state "Nil ReporterVersion round-trips as
JSON null (field present)" or alternatively add `omitempty` to
EventResourceReporter.ReporterVersion if you intend the field to be omitted when
nil—refer to EventResourceReporter and the ReporterVersion field when making the
change.

In `@internal/biz/model_legacy/outboxevents.go`:
- Around line 99-105: EventResourceReporter.ReporterVersion currently is a
*string without `omitempty`, causing nil to serialize as null while
EventRelationshipReporter.ReporterVersion uses `omitempty`; update the
EventResourceReporter struct by adding `omitempty` to the ReporterVersion tag so
both structs serialize absent/nil the same way (match
EventRelationshipReporter.ReporterVersion) — locate the EventResourceReporter
type and change the `ReporterVersion` json tag to include `omitempty`.

In `@internal/biz/model/reporter_representation.go`:
- Around line 40-45: Reinstate validation to reject empty byte representations:
in the constructor/validator that checks reporterResourceID.UUID() and data (the
code handling ReporterDataRepresentation), after the nil check add a check for
len(data) == 0 and return fmt.Errorf("%w: Representation (data)", ErrNil) for
empty slices so empty representations don't pass; if your model supports
tombstones, only skip the length check for tombstone representations (follow the
same behavior as NewCommonRepresentation).

In `@internal/config/config.go`:
- Around line 150-158: The docstring is wrong and the function leaves a
partially-configured state by always setting o.Authz.Authz = authz.Kessel even
when o.Authz.Kessel == nil; update ConfigureAuthz so it returns early if o ==
nil || o.Authz == nil || o.Authz.Kessel == nil (or alternatively only set
o.Authz.Authz and o.Authz.Kessel.URL inside a check that o.Authz.Kessel != nil),
and update the comment to reflect the real behavior (no-op if Authz or Kessel
options are nil); reference: OptionsConfig.ConfigureAuthz, o.Authz,
o.Authz.Kessel.

In `@internal/service/resources/kesselinventoryservice_test.go`:
- Line 2850: The table-driven test
TestInventoryService_ReportResource_NilOrEmptyRepresentationStructs contains a
dead field expectSuccess (and unused branch requireSuccess()) because no case
sets expectSuccess to true; either remove the expectSuccess field and the
requireSuccess() branch and call requireErrorContaining directly for each case,
or restore the missing positive test case (e.g., add a case with both non-nil,
non-empty representation structs and expectSuccess=true) so requireSuccess() is
reachable; update the test table and the test loop accordingly to keep
consistency between expectSuccess and calls to
requireSuccess()/requireErrorContaining.
- Line 3048: In TestInventoryService_ReportResource_ValidationErrorFormats the
expectSuccess boolean is dead code because no cases set it true; update the
tests by either removing the expectSuccess field and directly calling
requireErrorContaining(...) in each case (eliminate the unreachable
requireSuccess() branch), or add a test case that sets expectSuccess: true and
keeps the requireSuccess() path; apply the same change for the similar
occurrence around the second block (the other table-driven cases at the
referenced spot) so that only reachable expectation branches
(requireErrorContaining or requireSuccess) remain.
- Around line 2836-2838: The file comment above the representation validation
tests is incorrect: update the comment near the tests in
kesselinventoryservice_test.go to state that empty structs are rejected rather
than accepted; specifically, amend the block comment that currently says "Empty
structs are accepted by the domain (empty representation data)" to reflect that
empty representation structs are not allowed and produce codes.InvalidArgument
(see the test case "both empty structs" in TestCreateRepresentation / related
test functions to mirror the expected error "representation data cannot be
empty").

---

Outside diff comments:
In `@internal/biz/model/reporter_resource.go`:
- Around line 193-215: In DeserializeReporterResource remove the two debug
log.Printf calls that print the entire ReporterResourceSnapshot (the stdlib
log.Printf lines near the top of the function) so you don't leak
verbose/sensitive data or mix logging systems; if you need a runtime trace
instead, replace them with a single structured Kratos logger call (using the
package's logger) with minimal non-sensitive fields, otherwise simply delete the
log.Printf statements from DeserializeReporterResource.

In `@internal/biz/model/resource_test.go`:
- Around line 262-270: The Update calls on the resource test pass a
TransactionId value but Update expects a *TransactionId; change each call (e.g.,
original.Update(..., TransactionId("tx-nonexistent")) and the other occurrences
around lines noted) to pass a pointer instead (e.g.,
&TransactionId("tx-nonexistent")) or use a small helper like
NewTransactionIdPtr("tx-...") to produce *TransactionId; update all matching
calls (including the ones at the other ranges) so nil semantics remain respected
and the code compiles with the pointer-based Update signature.

---

Nitpick comments:
In `@internal/biz/model/errors.go`:
- Line 15: Add a ValidateNotNil helper to mirror the other validators so callers
don't manually wrap ErrNil; implement a function named ValidateNotNil(value
interface{}, field string) error that returns nil when value != nil and
otherwise returns a wrapped ErrNil (e.g., fmt.Errorf("%s: %w", field, ErrNil))
so it matches the style of ValidateRequired and ValidateStringRequired and can
be used by callers of ErrNil.

In `@internal/biz/model/resource.go`:
- Around line 100-156: The Update method duplicates nil-handling logic found in
NewResource for transactionId, consoleHref, reporterRepresentationData, and
commonRepresentationData; extract that logic into a small helper (e.g.,
resolveOptionalFields) and call it from both NewResource and Update to return
(TransactionId, ConsoleHref, Representation, Representation, error), preserving
the current behavior including calling GenerateTransactionId when transactionId
is nil/empty and propagating any GenerateTransactionId error; update Update to
use resolveOptionalFields and remove the inlined nil checks and copying of
pointer values.

In `@internal/data/resource_repository_test.go`:
- Around line 1965-1966: The test is discarding the error returned by
NewApiHref("") which hides validation failures; update the test to call
NewApiHref with a known-valid non-empty URL (e.g., "https://example.com") or
capture and assert the error is nil before using the value, then pass the
resulting ApiHref into resource.Update (the call that currently uses
emptyApiHref). Ensure you replace both occurrences noted (around NewApiHref("")
at the Update(...) calls) so tests use a validated ApiHref or explicitly fail if
NewApiHref returns an error.

In `@internal/service/resources/kesselinventoryservice_test.go`:
- Line 3080: The test assertions use the same generic expectMsgContains
"representation required" for both nil-representation cases; update each
assertion to use the field-specific error substring used elsewhere so the tests
assert the correct field-specific error: change the expectMsgContains for the
reporter-related case to "invalid ReporterRepresentation" and change the
expectMsgContains for the common-related case to "invalid CommonRepresentation"
(these appear in the tests around
TestInventoryService_ReportResource_NilOrEmptyRepresentationStructs and the two
failing cases at lines ~3080/3093) so each test validates the correct
field-specific error.

---

ℹ️ Review info

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Cache: Disabled due to data retention organization setting

Knowledge base: Disabled due to data retention organization setting

📥 Commits

Reviewing files that changed from the base of the PR and between e5c9d6b and 320a1e2.

📒 Files selected for processing (28)

• docs/optional-fields-inconsistent-handling.md
• docs/optional-fields-inventory.md
• docs/plan-optional-fields-refactor.md
• internal/biz/model/common_representation.go
• internal/biz/model/errors.go
• internal/biz/model/reporter_representation.go
• internal/biz/model/reporter_representation_test.go
• internal/biz/model/reporter_resource.go
• internal/biz/model/reporter_resource_test.go
• internal/biz/model/resource.go
• internal/biz/model/resource_test.go
• internal/biz/model/snapshots.go
• internal/biz/model/snapshots_test.go
• internal/biz/model/testdata.go
• internal/biz/model_legacy/outboxevents.go
• internal/biz/model_legacy/outboxevents_test.go
• internal/biz/usecase/resources/resource_service.go
• internal/biz/usecase/resources/resource_service_test.go
• internal/config/config.go
• internal/config/config_test.go
• internal/consumer/consumer_test.go
• internal/data/fake_resource_repository.go
• internal/data/model/common_representation.go
• internal/data/model/reporter_representation.go
• internal/data/model/reporter_resource.go
• internal/data/resource_repository.go
• internal/data/resource_repository_test.go
• internal/service/resources/kesselinventoryservice_test.go

[coderabbitai]

Actionable comments posted: 3

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

internal/config/config.go (1)

57-112: ⚠️ Potential issue | 🟠 Major

Add nil guards for nested pointer fields in LogConfigurationInfo.

Lines 60–61 dereference options.Server.HttpOptions and options.Server.GrpcOptions without checking if they are nil. Similarly, lines 89–95 dereference options.Storage.Postgres and lines 102–111 dereference options.Consumer.RetryOptions and options.Consumer.AuthOptions without nil checks. While the normal code path (via NewOptionsConfig()) initializes these nested pointers, the function should defend against edge cases where an option group exists but its nested fields remain nil. Add nil guards before dereferencing these nested pointer fields, or document the guarantee that they are always initialized.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@internal/config/config.go` around lines 57 - 112, The LogConfigurationInfo
routine dereferences nested pointer fields without nil guards; add checks before
accessing options.Server.HttpOptions and options.Server.GrpcOptions,
options.Storage.Postgres, options.Consumer.RetryOptions, and
options.Consumer.AuthOptions (or use local safe-default vars) so you only read
their fields when the nested pointer != nil, and fall back to empty/default
values in the log when they are nil; update the blocks that log Server, Storage
(Postgres) and Consumer configuration in LogConfigurationInfo to guard these
nested pointers (e.g., check options.Server != nil && options.Server.HttpOptions
!= nil, etc.) before using their Addr/Host/Port/RetryOptions/AuthOptions fields.

♻️ Duplicate comments (1)

internal/biz/model_legacy/outboxevents_test.go (1)

157-160: ⚠️ Potential issue | 🟡 Minor

Comment on line 160 is self-contradictory (still inaccurate after prior fix attempt).

Line 160 reads:

// Nil ReporterVersion round-trips as null in JSON (omitempty omits the field when nil)

The first clause ("as null in JSON") says the field is serialized as null, but the parenthetical correctly explains that omitempty causes the field to be omitted entirely. Both cannot be true. Since ReporterVersion is *string with omitempty, a nil value causes the key to be absent from the JSON output — not set to null.

✏️ Proposed fix

-// Nil ReporterVersion round-trips as null in JSON (omitempty omits the field when nil)
+// Nil ReporterVersion: omitempty causes the field to be absent from JSON when nil,
+// and unmarshal of that JSON leaves ReporterVersion nil.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@internal/biz/model_legacy/outboxevents_test.go` around lines 157 - 160, The
comment in TestEventResourceReporter_ReporterVersion_Optional is contradictory:
update the comment that currently states "Nil ReporterVersion round-trips as
null in JSON (omitempty omits the field when nil)" to correctly state that a nil
*string ReporterVersion is omitted from the marshaled JSON (the key is absent)
because of the `omitempty` tag; reference the
TestEventResourceReporter_ReporterVersion_Optional test name and the
ReporterVersion field when making this wording change.

🧹 Nitpick comments (2)

internal/data/resource_repository_test.go (1)

1605-1884: No test covers the nil transactionId auto-generation path in NewResource.

All helper functions pass &transactionId (non-nil). The NewResource docstring explicitly states that passing nil causes it to auto-generate a new TransactionId, but this behavior is untested. A simple variant in one of the helpers (or a dedicated test) would close this coverage gap for a newly introduced pointer-based API.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@internal/data/resource_repository_test.go` around lines 1605 - 1884, Test
coverage is missing for the NewResource(nil) auto-generation of TransactionId;
add a new unit helper/test that calls bizmodel.NewResource with a nil
transactionId (e.g., create a new helper similar to
createTestResourceWithReporter or createTestResourceWithReporterDataOnly but
pass nil instead of &transactionId) and assert the returned Resource contains a
non-nil/valid TransactionId (and that it differs from zero values or matches
NewTransactionId format), using the same validation helpers (require.NoError,
etc.) to ensure the auto-generated transaction id path in NewResource is
exercised.

internal/biz/model/resource_test.go (1)

15-18: Remove the unused timeVal function (lines 15–18).

This helper is declared but never called anywhere in the codebase. The function body is a no-op identity wrapper, so it can be safely removed.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@internal/biz/model/resource_test.go` around lines 15 - 18, Remove the unused
identity helper function timeVal by deleting its declaration (func timeVal(t
time.Time) time.Time { return t }) from the test file; ensure no references
remain and run go test / go vet to confirm the codebase still builds cleanly
after the function is removed.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@internal/biz/model_legacy/outboxevents_test.go`:
- Around line 157-158: Update the stale doc comment in
TestEventResourceReporter_ReporterVersion_Optional: remove the forward-reference
"Phase 2 will align EventRelationshipReporter" since
TestEventRelationshipReporter_ReporterVersion_Optional already implements that
alignment in this PR; leave the rest of the comment describing that
EventResourceReporter uses *string for ReporterVersion (nil = not set) so the
intent remains clear.

In `@internal/biz/model/errors.go`:
- Around line 76-81: ValidateNotNil currently only checks value == nil which
misses typed nil pointers; update ValidateNotNil to detect underlying nils
(e.g., using reflect.ValueOf(value).Kind()==reflect.Ptr &&
reflect.ValueOf(value).IsNil()) and return ErrNil when the underlying pointer is
nil, or replace the signature with a generic pointer version (ValidateNotNil[T
any](field string, value *T) error) so callers passing typed nil pointers are
correctly treated as nil; ensure the function still formats the error with
ErrNil and the field name as before.

In `@internal/biz/model/resource_test.go`:
- Around line 445-447: NewTransactionId returns a single TransactionId, but the
test code is unpacking two values; update each occurrence where you do
emptyTxID, _ := NewTransactionId("") to use a single-value assignment emptyTxID
:= NewTransactionId("") (e.g., the uses around the Update call that passes
&emptyTxID and other places in the same file), ensuring all references to
NewTransactionId in resource_test.go use the single return value.

---

Outside diff comments:
In `@internal/config/config.go`:
- Around line 57-112: The LogConfigurationInfo routine dereferences nested
pointer fields without nil guards; add checks before accessing
options.Server.HttpOptions and options.Server.GrpcOptions,
options.Storage.Postgres, options.Consumer.RetryOptions, and
options.Consumer.AuthOptions (or use local safe-default vars) so you only read
their fields when the nested pointer != nil, and fall back to empty/default
values in the log when they are nil; update the blocks that log Server, Storage
(Postgres) and Consumer configuration in LogConfigurationInfo to guard these
nested pointers (e.g., check options.Server != nil && options.Server.HttpOptions
!= nil, etc.) before using their Addr/Host/Port/RetryOptions/AuthOptions fields.

---

Duplicate comments:
In `@internal/biz/model_legacy/outboxevents_test.go`:
- Around line 157-160: The comment in
TestEventResourceReporter_ReporterVersion_Optional is contradictory: update the
comment that currently states "Nil ReporterVersion round-trips as null in JSON
(omitempty omits the field when nil)" to correctly state that a nil *string
ReporterVersion is omitted from the marshaled JSON (the key is absent) because
of the `omitempty` tag; reference the
TestEventResourceReporter_ReporterVersion_Optional test name and the
ReporterVersion field when making this wording change.

---

Nitpick comments:
In `@internal/biz/model/resource_test.go`:
- Around line 15-18: Remove the unused identity helper function timeVal by
deleting its declaration (func timeVal(t time.Time) time.Time { return t }) from
the test file; ensure no references remain and run go test / go vet to confirm
the codebase still builds cleanly after the function is removed.

In `@internal/data/resource_repository_test.go`:
- Around line 1605-1884: Test coverage is missing for the NewResource(nil)
auto-generation of TransactionId; add a new unit helper/test that calls
bizmodel.NewResource with a nil transactionId (e.g., create a new helper similar
to createTestResourceWithReporter or createTestResourceWithReporterDataOnly but
pass nil instead of &transactionId) and assert the returned Resource contains a
non-nil/valid TransactionId (and that it differs from zero values or matches
NewTransactionId format), using the same validation helpers (require.NoError,
etc.) to ensure the auto-generated transaction id path in NewResource is
exercised.

---

ℹ️ Review info

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Cache: Disabled due to data retention organization setting

Knowledge base: Disabled due to data retention organization setting

📥 Commits

Reviewing files that changed from the base of the PR and between 320a1e2 and eb56436.

📒 Files selected for processing (7)

• internal/biz/model/errors.go
• internal/biz/model/resource_test.go
• internal/biz/model_legacy/outboxevents.go
• internal/biz/model_legacy/outboxevents_test.go
• internal/config/config.go
• internal/data/resource_repository_test.go
• internal/service/resources/kesselinventoryservice_test.go

🚧 Files skipped from review as they are similar to previous changes (1)

• internal/biz/model_legacy/outboxevents.go

[snehagunta]

Hey @Rajagopalan-Ranganathan the big one that stands out to me is

1. transactionId -> this should be optional in the proto, command and service layer, but required in domain, snapshot and gorm.
2. reporterRepresentation and commonRepresntation -> these are optional in the proto layer, command and usecase layer, but will be validated via the schema service in ReportResource. So required or not is enforced by schema. For domain, they both can be optional, but atleast one value needs to be present.

[snehagunta]

I am also wondering if config files need to be updated at all. I have to look more closely to confirm

[snehagunta]

full_cross-layer_field_analysis_18ef4719.plan.md

I am attaching an analysis that I got from cursor that makes sense to me, this has the full list of fields where there is a mismatch.

The prompt I used, in case you were interested

"I want to refactor to use optionals consistently across the codebase. Look for options where something is optional in the proto but not modeled as such in other layers. an exception is transactionId where it is optional in the proto, but required in the domain and db. But transactioId should be generated pretty early in the service layer if not provided in the input. show me a table across layers for fields that should be optional but are not modeled as such"

This did not get me all the fields I was expecting, so I did

"can you do the same analysis for all the fields across all apis"

This got representations incorrectly, so I did this

"representations are similar, but slightly different. Both are optional, but atleast one needs to be provided. also if it is required or not is determined by schema which is validated in the usecase."

Hope this helps.

[coderabbitai]

Actionable comments posted: 1

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

internal/biz/model/resource.go (1)

201-244: ⚠️ Potential issue | 🟠 Major

Nil representation inputs currently create an invalid “latest” state.

When either side is omitted, this helper just leaves that representation nil. On Update, the new event becomes the only current report event, and Serialize() then emits a nil snapshot for the omitted side. That means a reporter-only/common-only update can silently drop the other representation from the aggregate’s latest state. The both-nil case also succeeds here even though the PR requires at least one representation to be populated.

Please either carry the previous representation/version forward for omitted inputs or fail fast here.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@internal/biz/model/resource.go` around lines 201 - 244, The constructor path
currently allows reporterRepresentation or commonRepresentation to be nil which
leads NewResourceReportEvent/Serialize to produce an invalid “latest” state;
update the code around NewReporterDataRepresentation/NewCommonRepresentation so
that if reporterData or commonData is nil you either (a) look up and clone the
prior/latest ReporterDataRepresentation/CommonRepresentation and their version
values and pass those into NewResourceReportEvent, or (b) return an explicit
error when both representations are nil (and when one is nil but no prior state
exists), ensuring NewResourceReportEvent always receives at least one non-nil
representation and correct version info rather than dropping previous state.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@internal/biz/model/resource.go`:
- Around line 25-35: The NewResource constructor currently mints a TransactionId
when the caller passes nil/empty (using GenerateTransactionId), which breaks
idempotency; remove that generation and make transactionId required by the
domain: in NewResource (and any other constructors using the same pattern) stop
calling GenerateTransactionId, validate that transactionId is non-nil and
non-empty, and return an error if it's missing; simply assign txId =
*transactionId when valid so TransactionId is always supplied by the service
layer.

---

Outside diff comments:
In `@internal/biz/model/resource.go`:
- Around line 201-244: The constructor path currently allows
reporterRepresentation or commonRepresentation to be nil which leads
NewResourceReportEvent/Serialize to produce an invalid “latest” state; update
the code around NewReporterDataRepresentation/NewCommonRepresentation so that if
reporterData or commonData is nil you either (a) look up and clone the
prior/latest ReporterDataRepresentation/CommonRepresentation and their version
values and pass those into NewResourceReportEvent, or (b) return an explicit
error when both representations are nil (and when one is nil but no prior state
exists), ensuring NewResourceReportEvent always receives at least one non-nil
representation and correct version info rather than dropping previous state.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 6f849dbf-286e-41f1-b1e4-4892c8b34c6c

📥 Commits

Reviewing files that changed from the base of the PR and between 315abfe and 66871cc.

📒 Files selected for processing (15)

• cmd/jobs/resource_delete_job_test.go
• internal/biz/model/common_representation.go
• internal/biz/model/reporter_representation.go
• internal/biz/model/resource.go
• internal/biz/model/resource_report_event.go
• internal/biz/model/snapshots.go
• internal/biz/model/snapshots_test.go
• internal/biz/model_legacy/outboxevents_test.go
• internal/data/fake_resource_repository.go
• internal/data/model/common_representation.go
• internal/data/model/reporter_resource.go
• internal/data/model/reporter_resource_test.go
• internal/data/model/testdata.go
• internal/data/resource_repository.go
• internal/data/resource_repository_test.go

💤 Files with no reviewable changes (1)

• internal/data/model/common_representation.go

🚧 Files skipped from review as they are similar to previous changes (3)

• internal/biz/model/common_representation.go
• internal/biz/model/reporter_representation.go
• internal/biz/model_legacy/outboxevents_test.go

[coderabbitai]

Actionable comments posted: 4

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (2)

internal/biz/model/resource.go (2)

84-124: ⚠️ Potential issue | 🟠 Major

Validate/build before mutating the aggregate.

Line 93 increments commonVersion, and Line 100 updates reporterResource, before the new transactionId check on Line 102 and before resourceEventAndRepresentations(...) can fail. That means a bad transaction ID or invalid representation can return an error after Resource has already been partially mutated.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@internal/biz/model/resource.go` around lines 84 - 124, The Update method
mutates the aggregate (r.commonVersion and reporterResource via
reporterResource.Update) before validating transactionId and before calling
resourceEventAndRepresentations which can fail; move validation and construction
of resourceEvent first: check transactionId (nil/empty) up-front, then call
resourceEventAndRepresentations using the existing reporterResource fields
(resourceID, representationVersion, generation, Id()) to build/validate the
event, and only after that increment r.commonVersion and call
reporterResource.Update and any other mutations; keep the same error returns but
ensure no state changes happen before the event is successfully created.

---

189-232: ⚠️ Potential issue | 🔴 Critical

Add validation to reject when both representations are nil.

The helper currently allows reporterData == nil and commonData == nil, then forwards both as nil to NewResourceReportEvent(...). While upstream validation in the service layer requires at least one representation, the domain model layer (NewResource, Update, resourceEventAndRepresentations, and NewResourceReportEvent) does not enforce this invariant. Add a validation check to reject the both-nil case in the helper or constructor to ensure the invariant is maintained at the domain model level, preventing empty report events even if called outside the service layer context.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@internal/biz/model/resource.go` around lines 189 - 232, The code currently
allows creating a ResourceReportEvent with both reporterRepresentation and
commonRepresentation nil; add a validation that returns an error when both are
nil (either in this helper before calling NewResourceReportEvent or inside
NewResourceReportEvent / resourceEventAndRepresentations) to enforce the
invariant required by the domain model; specifically check the pointers
reporterRepresentation and commonRepresentation and return a descriptive error
(e.g., "at least one representation required") from this function (or have
NewResourceReportEvent return that error) so NewResource, Update,
resourceEventAndRepresentations and NewResourceReportEvent never produce empty
report events.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@internal/biz/model/reporter_resource.go`:
- Around line 193-200: The function DeserializeReporterResource is currently
dumping the entire ReporterResourceSnapshot via log.Printf (the two log lines at
the top of DeserializeReporterResource), which leaks metadata; remove those
log.Printf calls so the snapshot is not emitted on the normal load path. Locate
DeserializeReporterResource and delete the lines that call
log.Printf("----------------------------------") and
log.Printf("ReporterResourceSnapshot : %+v, ", snapshot); if you still need
diagnostics consider using a debug-level logger behind a flag rather than
printing the snapshot directly.

In `@internal/biz/model/resource_test.go`:
- Around line 339-347: The test is passing a non-nil pointer (&consoleHref) so
it doesn't exercise the "omitted consoleHref" path; in the call to
original.Update (with TransactionId("tx-empty-console-href"),
reporterResourceKey, apiHref, ... reporterData, commonData, txID) replace the
&consoleHref argument with nil so the Update invocation models an absent
consoleHref and triggers the omitted-field behavior in
ReporterResource.Serialize.

In `@internal/biz/model/snapshots_test.go`:
- Around line 238-255: The test is incorrectly "blessing" an empty TransactionId
on snapshot structs; update
TestCommonRepresentationSnapshot_TransactionId_EmptyMeansNotSet (and the similar
ReporterRepresentationSnapshot test at 257-275) so they do not set TransactionId
to the empty string on
CommonRepresentationSnapshot/ReporterRepresentationSnapshot; instead provide a
valid non-empty TransactionId (e.g., a UUID string) or omit the field so the
domain generator simulates missing IDs, and adjust the assertion to expect the
provided non-empty TransactionId to round-trip (or to assert that an empty input
is treated as invalid rather than silently preserved).

In `@internal/biz/usecase/resources/resource_service.go`:
- Around line 563-572: The current early-return checks that reject when
cmd.ReporterRepresentation or cmd.CommonRepresentation are nil (returning
RepresentationRequiredError) are too strict; remove these conditional branches
so this service no longer enforces presence of either representation and instead
lets schema validation (per guidance and implementations in
internal/service/resources/kesselinventoryservice.go) decide required fields.
Locate the block referencing cmd.ReporterRepresentation,
cmd.CommonRepresentation and RepresentationRequiredError in resource_service.go
and delete the three if-return checks so the flow continues to schema validation
rather than failing early.

---

Outside diff comments:
In `@internal/biz/model/resource.go`:
- Around line 84-124: The Update method mutates the aggregate (r.commonVersion
and reporterResource via reporterResource.Update) before validating
transactionId and before calling resourceEventAndRepresentations which can fail;
move validation and construction of resourceEvent first: check transactionId
(nil/empty) up-front, then call resourceEventAndRepresentations using the
existing reporterResource fields (resourceID, representationVersion, generation,
Id()) to build/validate the event, and only after that increment r.commonVersion
and call reporterResource.Update and any other mutations; keep the same error
returns but ensure no state changes happen before the event is successfully
created.
- Around line 189-232: The code currently allows creating a ResourceReportEvent
with both reporterRepresentation and commonRepresentation nil; add a validation
that returns an error when both are nil (either in this helper before calling
NewResourceReportEvent or inside NewResourceReportEvent /
resourceEventAndRepresentations) to enforce the invariant required by the domain
model; specifically check the pointers reporterRepresentation and
commonRepresentation and return a descriptive error (e.g., "at least one
representation required") from this function (or have NewResourceReportEvent
return that error) so NewResource, Update, resourceEventAndRepresentations and
NewResourceReportEvent never produce empty report events.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 889c138a-3cb2-451c-9592-12fa9951c3ed

📥 Commits

Reviewing files that changed from the base of the PR and between 66871cc and f0e33d1.

📒 Files selected for processing (10)

• internal/biz/model/reporter_resource.go
• internal/biz/model/reporter_resource_test.go
• internal/biz/model/resource.go
• internal/biz/model/resource_report_event.go
• internal/biz/model/resource_test.go
• internal/biz/model/snapshots.go
• internal/biz/model/snapshots_test.go
• internal/biz/model/testdata.go
• internal/biz/model_legacy/outboxevents_test.go
• internal/biz/usecase/resources/resource_service.go

🚧 Files skipped from review as they are similar to previous changes (1)

• internal/biz/model/resource_report_event.go

[Rajagopalan-Ranganathan]

/lgtm

[snehagunta]

ephemeral-test-summary.md