attune-system/attune
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
5c0ff6f271cdcf5228740da6bd08a0b43febef01
attune/work-summary/sessions/2026-01-16-trigger-params.md
David Culbreth 3b14c65998 re-uploading work
2026-02-04 17:46:30 -06:00

9.2 KiB
Raw Blame History

Work Summary: Rule Trigger Parameters Feature

Date: 2026-01-16
Session Focus: Adding trigger_params field to rules for event filtering and trigger configuration

Overview

Implemented a new trigger_params field for the Rule table that allows rules to configure trigger behavior and filter which events should activate the rule. This complements the existing action_params field and enables more flexible rule definitions.

Problem Statement

The rule table had action_params to configure how actions should be executed, but lacked a corresponding field to configure trigger behavior or filter events. This meant:

  1. All events from a trigger type would match all rules referencing that trigger
  2. No way to have multiple rules share the same trigger but respond to different event subsets
  3. Event filtering could only be done via complex conditions expressions
  4. No declarative way to specify what types of events a rule is interested in

Solution

Added a trigger_params JSONB field to the attune.rule table that stores parameters for:

  • Event filtering (e.g., severity levels, service names)
  • Trigger configuration (e.g., thresholds, durations)
  • Metadata about event matching requirements

Changes Made

1. Database Migration

File: migrations/20240103000004_add_rule_trigger_params.sql

  • Added trigger_params JSONB DEFAULT '{}'::jsonb column to attune.rule table
  • Created GIN index on trigger_params for efficient querying
  • Added column comment documenting purpose

2. Data Model Updates

File: crates/common/src/models.rs

  • Added trigger_params: JsonValue field to Rule struct after action_params

3. Repository Layer Updates

File: crates/common/src/repositories/rule.rs

  • Added trigger_params to CreateRuleInput struct
  • Added trigger_params to UpdateRuleInput struct
  • Updated all SQL queries to include trigger_params column:
    • find_by_id() - SELECT query
    • find_by_ref() - SELECT query
    • list() - SELECT query
    • create() - INSERT query (13 parameters now)
    • update() - Dynamic UPDATE query builder
    • find_by_pack() - SELECT query
    • find_by_action() - SELECT query
    • find_by_trigger() - SELECT query
    • find_enabled() - SELECT query

4. API DTO Updates

File: crates/api/src/dto/rule.rs

  • Added trigger_params field to CreateRuleRequest (defaults to {})
  • Added trigger_params field to UpdateRuleRequest (optional)
  • Added trigger_params field to RuleResponse
  • Updated From<Rule> implementation for RuleResponse
  • Updated all test cases to include trigger_params

5. API Route Handler Updates

File: crates/api/src/routes/rules.rs

  • Updated create_rule() handler to pass trigger_params to repository
  • Updated update_rule() handler to pass trigger_params to repository
  • Updated enable_rule() handler to include trigger_params: None in update input
  • Updated disable_rule() handler to include trigger_params: None in update input

6. Axum 0.7 Route Syntax Fix

Files: All route files in crates/api/src/routes/

Fixed panic caused by Axum 0.7 breaking change where route path parameters changed from :param to {param} syntax:

  • packs.rs - Updated :ref and :id to {ref} and {id}
  • actions.rs - Updated :ref, :id, :pack_ref
  • events.rs - Updated :id
  • executions.rs - Updated :id, :status, :enforcement_id
  • inquiries.rs - Updated :id, :status, :execution_id
  • keys.rs - Updated :ref
  • rules.rs - Updated :ref, :id, :pack_ref, :action_ref, :trigger_ref
  • triggers.rs - Updated all trigger and sensor route parameters

7. Documentation

File: docs/rule-trigger-params.md (NEW)

Created comprehensive documentation covering:

  • Overview and purpose of trigger_params
  • Use cases with examples:
    • Event filtering by severity
    • Service-specific monitoring
    • Threshold-based rules
  • Architecture flow and evaluation logic
  • Comparison of trigger_params vs conditions
  • Implementation details for different services
  • Best practices
  • Schema and validation
  • Migration guide
  • Multiple real-world examples

Use Cases

1. Event Filtering by Severity

Different rules handle different severity levels from the same error trigger:

{
  "ref": "alerts.critical_errors",
  "trigger_ref": "core.error_event",
  "trigger_params": {
    "severity": "critical",
    "min_priority": 5
  },
  "action_ref": "pagerduty.create_incident"
}

{
  "ref": "alerts.minor_errors",
  "trigger_ref": "core.error_event",
  "trigger_params": {
    "severity": "warning",
    "max_priority": 2
  },
  "action_ref": "slack.post_message"
}

2. Service-Specific Monitoring

Multiple rules monitor the same trigger type but for different services:

{
  "ref": "monitoring.api_gateway_health",
  "trigger_ref": "core.health_check",
  "trigger_params": {
    "service": "api-gateway",
    "environment": "production"
  },
  "action_ref": "alerts.notify_team"
}

3. Threshold-Based Rules

Different alert thresholds for the same metric:

{
  "ref": "metrics.cpu_high_warning",
  "trigger_ref": "monitoring.cpu_usage",
  "trigger_params": {
    "threshold": 80,
    "comparison": "greater_than",
    "duration_seconds": 300
  },
  "action_ref": "slack.post_message"
}

Technical Details

Database Schema

ALTER TABLE attune.rule
ADD COLUMN trigger_params JSONB DEFAULT '{}'::jsonb;

CREATE INDEX idx_rule_trigger_params_gin ON attune.rule USING GIN (trigger_params);

Default Value

All existing rules automatically get trigger_params = {} which means "match all events from this trigger" (no filtering). This ensures backward compatibility.

Trigger Params vs Conditions

Feature trigger_params conditions
Purpose Declare intent about which events this rule handles Complex conditional logic for rule activation
Format Simple JSON key-value pairs JSON Logic expressions or complex DSL
Evaluation Direct comparison/matching Expression evaluation engine
Use Case Event filtering, metadata Business logic, complex conditions
Performance Fast direct matching May require expression parsing

Testing Performed

  1. Database migration applied successfully
  2. attune-common crate compiles
  3. attune-api service compiles
  4. API service starts without errors
  5. All route handlers updated correctly
  6. Axum 0.7 route syntax issues resolved

Future Work

Executor Service Integration

The Executor service will need to be updated to use trigger_params when evaluating which rules should fire for an event:

// Pseudo-code for future implementation
async fn evaluate_rules_for_event(event: &Event) -> Vec<Enforcement> {
    let rules = find_rules_by_trigger(event.trigger_id);
    let mut enforcements = Vec::new();
    
    for rule in rules {
        // NEW: Check trigger_params match
        if !matches_trigger_params(&rule.trigger_params, &event.payload) {
            continue; // Skip this rule
        }
        
        // Existing: Check conditions
        if !evaluate_conditions(&rule.conditions, &event.payload) {
            continue;
        }
        
        // Rule matches - create enforcement
        enforcements.push(create_enforcement(&rule, &event));
    }
    
    enforcements
}

Validation

Consider adding validation that checks if trigger_params match the trigger's param_schema (similar to how action_params should match action's param_schema).

Impact

  • Backward Compatible: Existing rules default to {} (no filtering)
  • API Compatible: New field is optional in create/update requests
  • Performance: GIN index enables efficient querying of trigger_params
  • Flexibility: Enables more expressive rule definitions
  • Organization: Multiple rules can share triggers without conflicts

Files Modified

  1. migrations/20240103000004_add_rule_trigger_params.sql - NEW
  2. crates/common/src/models.rs - Added field to Rule struct
  3. crates/common/src/repositories/rule.rs - Updated all queries and structs
  4. crates/api/src/dto/rule.rs - Updated all DTOs
  5. crates/api/src/routes/rules.rs - Updated handlers
  6. crates/api/src/routes/packs.rs - Fixed Axum 0.7 route syntax
  7. crates/api/src/routes/actions.rs - Fixed Axum 0.7 route syntax
  8. crates/api/src/routes/events.rs - Fixed Axum 0.7 route syntax
  9. crates/api/src/routes/executions.rs - Fixed Axum 0.7 route syntax
  10. crates/api/src/routes/inquiries.rs - Fixed Axum 0.7 route syntax
  11. crates/api/src/routes/keys.rs - Fixed Axum 0.7 route syntax
  12. crates/api/src/routes/triggers.rs - Fixed Axum 0.7 route syntax
  13. docs/rule-trigger-params.md - NEW (comprehensive documentation)
  14. CHANGELOG.md - Added entry for this feature

Conclusion

Successfully implemented the trigger_params feature for rules, providing a declarative way to filter events and configure trigger behavior. The implementation is backward compatible, well-documented, and sets the foundation for more flexible rule definitions in the Attune platform.

The bonus fix for Axum 0.7 route syntax ensures the API service runs correctly after the recent dependency upgrades.

Reference in New Issue View Git Blame Copy Permalink