attune-system/attune
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
13749409cd15db2ac0143dc7e4473d9f2b303fc9
attune/work-summary/sessions/2026-01-30-standalone-sensor-implementation.md
David Culbreth 3b14c65998 re-uploading work
2026-02-04 17:46:30 -06:00

434 lines
17 KiB
Markdown
Raw Blame History

# Standalone Sensor Implementation - Work Summary
**Date:** 2026-01-30
**Session Focus:** Implementing full standalone sensor support with automatic token provisioning
## Overview
This session focused on transitioning from subprocess-based sensors to standalone sensors that follow the Sensor Interface Specification. The implementation includes automatic service account token provisioning by the sensor service.
## Context
The project had two timer sensor implementations:
1. **`crates/timer-sensor-subprocess`** - Simplified subprocess sensor managed by sensor service
- Reads config via environment variables
- Outputs events to stdout
- Currently in use by the pack
2. **`crates/sensor-timer`** - Full-featured standalone sensor following the spec
- API authentication with transient tokens
- RabbitMQ integration for rule lifecycle
- Token refresh management
- More complete architecture
The goal was to migrate to the standalone sensor approach per the sensor interface specification.
## Work Completed
### 1. Fixed Timer Drift in Subprocess Sensor
**Issue:** The subprocess timer sensor had a drift problem where events fired anywhere from 5-7 seconds apart instead of consistently at the configured interval (e.g., 5 seconds).
**Root Cause:** Timer calculated next fire time as `next_fire = now + interval`, which accumulated drift due to:
- Check interval delays (1 second granularity)
- Processing time between checks
- Each cycle getting slightly longer
**Fix Applied:** Changed calculation to `next_fire += interval` to maintain consistent intervals based on previous scheduled time rather than current time.
**File:** `attune/crates/timer-sensor-subprocess/src/main.rs`
```rust
// Before:
state.next_fire = now + Duration::from_secs(state.interval_seconds);
// After:
state.next_fire += Duration::from_secs(state.interval_seconds);
```
**Results:** Timer now fires at consistent 5.000 ± 0.006 second intervals (millisecond-level precision).
### 2. Extended JWT Infrastructure for Sensor Tokens
Added support for sensor/service account tokens to the JWT system.
**File:** `attune/crates/api/src/auth/jwt.rs`
**Changes:**
- Added `TokenType::Sensor` enum variant
- Extended `Claims` struct with optional fields:
- `scope: Option<String>` - Token scope (e.g., "sensor")
- `metadata: Option<serde_json::Value>` - Token metadata (e.g., trigger_types)
- Implemented `generate_sensor_token()` function with:
- Custom TTL support (default: 24 hours, max: 72 hours)
- Trigger type restrictions in metadata
- Sensor-specific scope
**Example Token Claims:**
```json
{
"sub": "999",
"login": "sensor:core.timer",
"iat": 1234567890,
"exp": 1234654290,
"token_type": "sensor",
"scope": "sensor",
"metadata": {
"trigger_types": ["core.timer"]
}
}
```
### 3. Added Sensor Token Creation API Endpoint
**File:** `attune/crates/api/src/routes/auth.rs`
**New Endpoint:** `POST /auth/sensor-token`
**Request Body:**
```json
{
"sensor_ref": "core.timer",
"trigger_types": ["core.timer"],
"ttl_seconds": 86400
}
```
**Response:**
```json
{
"data": {
"identity_id": 123,
"sensor_ref": "core.timer",
"token": "eyJhbGci...",
"expires_at": "2026-01-31T12:00:00Z",
"trigger_types": ["core.timer"]
}
}
```
**Functionality:**
- Creates or reuses sensor identity with login format: `sensor:{sensor_ref}`
- Generates JWT sensor token with trigger type restrictions
- Stores sensor metadata in identity attributes
- Requires authentication (admin/service token)
### 4. Created API Client for Sensor Service
**File:** `attune/crates/sensor/src/api_client/mod.rs`
**Purpose:** Internal HTTP client for sensor service to communicate with API for token provisioning.
**Features:**
- `create_sensor_token()` - Request sensor tokens from API
- `health_check()` - Verify API connectivity
- Optional admin token authentication
- Proper error handling and context
**Added Dependency:** `reqwest` to sensor service Cargo.toml
### 5. Helper Scripts Created
Created three helper scripts for managing services:
**`scripts/start-all-services.sh`**
- Builds and starts all services in background
- Logs to `logs/<service>.log`
- Stores PIDs in `logs/<service>.pid`
**`scripts/stop-all-services.sh`**
- Stops all services gracefully
- Cleans up PID files
**`scripts/status-all-services.sh`**
- Shows running status of all services
- Reports PIDs for running services
## Work Completed (Continued)
### 6. Updated Sensor Manager for Token Provisioning ✅
**File:** `attune/crates/sensor/src/sensor_manager.rs`
**Implemented:**
- Added API client initialization in `SensorManager::new()`
- Implemented `start_standalone_sensor()` method that:
- Provisions tokens via internal API endpoint
- Passes configuration via environment variables
- Starts standalone sensor as subprocess
- Monitors stderr for logging
- Added detection logic to distinguish standalone vs subprocess sensors
- Renamed `start_long_running_sensor()` to `start_subprocess_sensor()` for clarity
### 7. Internal Service Authentication ✅
**File:** `attune/crates/api/src/routes/auth.rs`
**Solution:** Created internal endpoint `/auth/internal/sensor-token` that doesn't require authentication. This is acceptable for development and can be secured via network policies in production.
### 8. Pack Configuration Updated ✅
**Files Updated:**
- `attune/packs/core/sensors/interval_timer_sensor.yaml` - Changed entry_point to `attune-core-timer-sensor`, runner_type to `standalone`
- Database sensor record updated via SQL
- Standalone binary copied to pack directory
### 9. Standalone Sensor Compatibility Fix ✅
**File:** `attune/crates/sensor-timer/src/main.rs`
**Fix:** Updated sensor to accept both `core.timer` and `core.intervaltimer` trigger references for backward compatibility.
## Current Status: 95% Complete
### ✅ What's Working
1. **Token Provisioning** - Sensor service successfully provisions tokens via API
2. **Standalone Sensor Launch** - Sensor starts as independent process with proper environment variables
3. **Process Management** - Standalone sensor remains running (verified with `ps aux`)
4. **Infrastructure** - All supporting code (JWT, API client, detection logic) is complete
### ⚠️ Known Issue: Rule Lifecycle Integration
**Problem:** The standalone sensor is running but not creating events.
**Root Cause:** The standalone sensor relies on RabbitMQ rule lifecycle messages (`rule.created`, `rule.enabled`) to know which timers to start. Since the rule was already enabled before the standalone sensor started, it never received the initial lifecycle event.
**Evidence:**
- Standalone sensor process is running (PID 56136)
- Token provisioned successfully
- No new events in database since sensor restart
- No event creation requests in API logs
- Sensor not logging any errors
**The Issue:** When sensors use the rule lifecycle listener pattern (listening to RabbitMQ for rule changes), they only start timers when they receive:
1. `rule.created` - When a new rule is created
2. `rule.enabled` - When a rule is enabled
3. `rule.disabled` - When a rule is disabled
If the rule was already enabled before sensor startup, the sensor never receives the event.
### Solutions to Fix Rule Lifecycle Integration
#### Option 1: Bootstrap Active Rules on Startup (Recommended)
Modify the standalone sensor to query the API for all active rules on startup:
```rust
// In attune-core-timer-sensor/src/main.rs, after starting listener:
info!("Fetching active rules for sensor...");
let active_rules = api_client.get_active_rules_for_trigger("core.intervaltimer").await?;
for rule in active_rules {
timer_manager.start_timer(rule.id, parse_timer_config(&rule.trigger_params)?).await?;
}
```
This is how most event-driven systems handle bootstrapping.
#### Option 2: Republish Rule Lifecycle Events
When sensor service starts a sensor, republish rule lifecycle events for all active rules:
```rust
// In sensor_manager.rs, after starting standalone sensor:
for rule in active_rules {
publish_rule_enabled_event(rule).await?;
}
```
#### Option 3: Manual Rule Restart
Temporarily disable and re-enable the rule to trigger the lifecycle event:
```bash
attune rule disable core.echo_every_second
attune rule enable core.echo_every_second
```
## Architecture Comparison
### Subprocess Mode (Current)
```
┌─────────────────────────────────────┐
│ Sensor Service │
│ ┌──────────────────────────────┐ │
│ │ Sensor Manager │ │
│ │ - Spawns subprocess │ │
│ │ - Passes config via env │ │
│ │ - Reads events from stdout │ │
│ │ - Creates events in DB │ │
│ └──────────────────────────────┘ │
│ │ │
│ ▼ │
│ ┌──────────────────┐ │
│ │ Timer Subprocess │ │
│ │ - Reads config │ │
│ │ - Outputs JSON │ │
│ └──────────────────┘ │
└─────────────────────────────────────┘
```
### Standalone Mode (Target)
```
┌─────────────────────────────────────┐
│ Sensor Service │
│ ┌──────────────────────────────┐ │
│ │ Sensor Manager │ │
│ │ - Provisions token via API │ │
│ │ - Spawns standalone sensor │ │
│ │ - Passes token via env │ │
│ │ - Monitors process health │ │
│ └──────────────────────────────┘ │
└─────────────────────────────────────┘
│ Token provisioning
┌─────────────────────────────────────┐
│ API Service │
│ - Creates sensor identity │
│ - Generates JWT token │
└─────────────────────────────────────┘
▼ Token + Config
┌─────────────────────────────────────┐
│ Standalone Timer Sensor │
│ - Authenticates with API │
│ - Listens to RabbitMQ │
│ - Creates events via API │
│ - Handles token refresh │
└─────────────────────────────────────┘
```
## Benefits of Standalone Sensors
1. **Standards Compliance** - Follows the sensor interface specification
2. **Decoupling** - Sensors are independent services, not subprocess children
3. **Scalability** - Sensors can run on different hosts
4. **Resilience** - Sensor crashes don't affect sensor service
5. **Security** - Token-based authentication with scoped permissions
6. **Flexibility** - Sensors can be written in any language
7. **Observability** - Structured logging, metrics, independent monitoring
## Known Issues / Considerations
1. **Admin Token Requirement:** Sensor service needs authentication to create sensor tokens. Options:
- System identity with elevated permissions
- Internal service-to-service auth mechanism
- Bootstrap token on sensor service startup
2. **Token Refresh:** Tokens expire after 24-72 hours. Need strategy:
- Sensor service monitors token expiration
- Provisions new token before expiration
- Restarts sensor with new token
- OR let standalone sensor handle refresh internally (already implemented in attune-core-timer-sensor)
3. **Migration Strategy:** How to transition from subprocess to standalone:
- Run both simultaneously during transition?
- Feature flag to enable standalone mode?
- Hard cutover?
4. **Backward Compatibility:** Subprocess sensors may still be useful for simple cases:
- Keep both implementations?
- Document when to use each approach?
## Files Modified
1. `attune/crates/timer-sensor-subprocess/src/main.rs` - Fixed timer drift
2. `attune/crates/api/src/auth/jwt.rs` - Added sensor token support
3. `attune/crates/api/src/routes/auth.rs` - Added sensor token endpoint
4. `attune/crates/sensor/src/api_client/mod.rs` - New API client
5. `attune/crates/sensor/src/lib.rs` - Added api_client module
6. `attune/crates/sensor/Cargo.toml` - Added reqwest dependency
7. `attune/scripts/start-all-services.sh` - New script
8. `attune/scripts/stop-all-services.sh` - New script
9. `attune/scripts/status-all-services.sh` - New script
## Testing Performed
1. **Timer Drift Fix:**
- Built and deployed subprocess timer sensor with fix
- Monitored 20+ event generations
- Confirmed consistent 5.000 ± 0.006 second intervals
2. **Service Management:**
- Started all services using helper script
- Verified all services running
- Checked logs for errors
- Confirmed API health endpoint responding
3. **JWT Token Extension:**
- Unit tests added for sensor token generation
- Verified token contains correct claims
- Confirmed metadata serialization works
## Next Steps
To complete the standalone sensor implementation:
1. **Implement token provisioning in sensor manager** (1-2 hours)
- Add API client initialization
- Detect standalone vs subprocess sensors
- Provision tokens and pass to sensors
2. **Solve authentication challenge** (30 min - 1 hour)
- Decide on sensor service auth mechanism
- Implement chosen approach
3. **Update pack configuration** (15 min)
- Switch to standalone sensor binary
- Test configuration loads correctly
4. **Integration testing** (1-2 hours)
- End-to-end test of standalone sensor
- Verify event creation via API
- Test rule lifecycle listener
- Validate timer accuracy
5. **Documentation** (30 min)
- Update sensor interface docs
- Document token provisioning flow
- Add deployment guide for standalone sensors
**Time Spent:** ~6 hours
**Estimated Time to Complete Remaining:** 1-2 hours (implementing Option 1 solution)
## References
- Sensor Interface Specification: `attune/docs/sensor-interface.md`
- Timer Sensor README: `attune/crates/sensor-timer/README.md`
- API Documentation: `http://localhost:8080/docs`
## Notes
- The standalone timer sensor (`attune-core-timer-sensor`) already implements the full spec including token refresh
- It uses `tokio::time::sleep()` which doesn't have drift issues
- All infrastructure is complete and working
- This is a breaking change but acceptable per the pre-production policy
- The only remaining issue is bootstrapping active rules on sensor startup (a common pattern in event-driven systems)
## Testing Results
### Successful Tests ✅
1. **Token Provisioning** - Verified via API logs showing successful POST to `/auth/internal/sensor-token`
2. **Standalone Sensor Launch** - Process running with PID 56136
3. **JWT Token Extension** - Unit tests pass for sensor tokens with metadata
4. **Compilation** - All code compiles without warnings
5. **Service Startup** - All services start successfully
### Failed/Incomplete Tests ❌
1. **Event Creation** - No new events created after standalone sensor startup
2. **Timer Firing** - Timers not starting because rules not bootstrapped
3. **End-to-End Flow** - Cannot verify full flow until rule bootstrapping implemented
## Recommendations
### Immediate Next Steps (1-2 hours)
1. **Implement Active Rule Bootstrapping** - Add API endpoint and client method to fetch active rules for a trigger type
2. **Update Standalone Sensor** - Call bootstrap method on startup to load existing rules
3. **Test End-to-End** - Verify events are created at correct intervals
4. **Verify Timer Accuracy** - Confirm no drift (should be good - uses tokio::time::sleep)
### Future Improvements
1. **Production Authentication** - Replace internal endpoint with proper service-to-service auth
2. **Token Refresh** - Monitor token expiration and auto-provision new tokens
3. **Health Monitoring** - Add health check endpoints to standalone sensors
4. **Graceful Shutdown** - Ensure clean shutdown when sensor service stops
5. **Documentation** - Update deployment docs with standalone sensor requirements
Reference in New Issue View Git Blame Copy Permalink