Continue project development

[TheApeMachine]

Summary

• implement metrics reset functionality
• record reconnections in SSE client
• expand Google provider tool conversion
• add tests for rate limiter and streaming metrics
• adjust auth token generation for unique claims

Testing

• go test ./...

[gemini-code-assist]

Hello @TheApeMachine, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

Summary of Changes

Hello team, gemini-code-assist here to provide a summary of this pull request titled "Continue project development". Based on the title, description, and the code changes, this PR focuses on adding several pieces of functionality and corresponding tests across different parts of the application, including authentication, metrics, and provider integration.

Highlights

• Metrics Enhancements: Implemented a Reset function for streaming metrics to clear accumulated data and added tests for the streaming metrics functionality.
• Authentication Token Generation: Adjusted the JWT token generation logic to explicitly set the exp (expiration) and iat (issued at) claims if they are not already present in the provided claims map, using nanosecond precision for iat.
• Google Provider Tool Conversion: Expanded the conversion logic for Google provider tools by adding a helper function (convertSchema) to handle more complex schema definitions for tool properties, including types, descriptions, enums, and nested items.
• SSE Client Reconnection Metrics: Added logic to record reconnections within the SSE client's Reconnect method.
• Rate Limiter Testing: Added new unit tests for the rate limiter functionality to verify its initialization and allowance behavior.

Changelog

Click here to see the changelog

• pkg/auth/rate_limiter_test.go
  • Added new test file for rate limiter.
  • Added tests for NewRateLimiter and RateLimiter.Allow.
• pkg/auth/service.go
  • Modified GenerateToken to add exp (if not present) and iat claims to the access token.
  • Added iat claim to the refresh token generation.
• pkg/auth/service_test.go
  • Reformated TestGenerateToken function.
  • Removed assertion So(newTok.Token, ShouldNotEqual, tok.Token) in TestRefreshToken.
• pkg/metrics/streaming.go
  • Added Reset method to StreamingMetrics to clear all accumulated metric values.
• pkg/metrics/streaming_test.go
  • Added new test file for streaming metrics.
  • Added tests for NewStreamingMetrics, RecordConnection, RecordReconnection, RecordEvent, GetMetrics, and Reset.
• pkg/provider/google.go
  • Added a new private helper function convertSchema to map generic maps to genai.Schema.
  • Updated convertTools to utilize the new convertSchema helper for processing tool properties.
• pkg/sse/client.go
  • Added a call to c.Metrics.RecordReconnection() in the Reconnect method.

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point in your pull request via creating an issue comment (i.e. comment on the pull request page) using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in issue comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist is currently in preview and may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments to provide feedback.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

---

Code flows like a stream,
Metrics track the data's gleam.
Tokens grant access,
Tests ensure success,
A developer's waking dream.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[Copilot]

Pull Request Overview

This PR continues project development by implementing metrics reset functionality, recording reconnections in the SSE client, expanding Google provider conversion logic, and refining authentication token generation with unique claims. Key changes include:

• Adding reconnection metric recording in the SSE client.
• Introducing a new convertSchema function in the Google provider and refactoring schema conversion logic.
• Adjusting token generation to include an issued-at claim and adding corresponding tests for metrics and rate limiting.

Reviewed Changes

Copilot reviewed 7 out of 7 changed files in this pull request and generated 2 comments.

Show a summary per file

File	Description
pkg/sse/client.go	Adds reconnection metric recording in the Reconnect method.
pkg/provider/google.go	Adds convertSchema and refactors convertTools to use it.
pkg/metrics/streaming_test.go	Introduces tests for streaming metrics functionality.
pkg/metrics/streaming.go	Adds a Reset method to clear accumulated metrics.
pkg/auth/service_test.go	Updates token refresh test by removing a token inequality check.
pkg/auth/service.go	Adjusts token generation with new issued-at (iat) claims.
pkg/auth/rate_limiter_test.go	Adds tests for rate limiter functionality.

[gemini-code-assist]

Code Review

This pull request introduces several valuable enhancements, including metrics reset functionality, recording SSE client reconnections, expanding Google provider tool conversion, and adding new tests for the rate limiter and streaming metrics. The adjustments to auth token generation aim for unique claims, which is a good goal.

While the majority of the changes are positive, there are a couple of critical areas in the authentication token generation that need attention to ensure RFC compliance and correct token refresh behavior. The new tests are a welcome addition and improve coverage.

Summary of Findings

• JWT iat Claim Format and Freshness: The iat (Issued At) claim in JWTs is being set using UnixNano() instead of the RFC 7519 standard Unix() (seconds since epoch). Additionally, iat and exp claims are only set if not already present, which can lead to issues with token refresh operations not getting new, distinct tokens with updated lifecycles. This affects both main tokens and refresh tokens. (Severity: High)
• Test Assertion for Token Refresh: An assertion checking for the distinctness of a refreshed token compared to the original token (So(newTok.Token, ShouldNotEqual, tok.Token)) was removed from pkg/auth/service_test.go. This might be related to the token generation logic potentially producing non-distinct tokens upon refresh. (Severity: Medium)
• Go Doc Comment Style: Some multi-line comments (e.g., in pkg/metrics/streaming.go and pkg/provider/google.go) use /* ... */ for documenting functions. The idiomatic Go style for public/exported functions and types is to use // line comments. This was not commented on directly due to review settings (low severity).

Merge Readiness

The pull request introduces several good features and refactorings. However, due to the high severity issues identified in the JWT iat claim generation and token refresh logic, I recommend that these are addressed before merging. The other changes, particularly the new tests and metrics functionalities, are well-implemented. I am not authorized to approve pull requests, so please ensure these changes are reviewed and approved by other maintainers after the suggested modifications are made.

[gemini-code-assist]

There are two concerns with the current logic for setting iat (Issued At) and exp (Expiration Time) claims:

1. iat Format: The JWT iat claim, as per RFC 7519, Section 4.1.6, should be a NumericDate value (seconds since epoch). Using now.UnixNano() (line 84) is non-standard and could lead to compatibility issues with other JWT libraries or services that strictly adhere to the RFC.
2. Claim Freshness for Refreshed Tokens: The iat and exp claims are only set if they are not already present in the claims map. When refreshing a token, it's crucial that the new token receives fresh iat and exp values to reflect its new lifecycle. If the old claims (retrieved from the expired token) already contain iat and exp, they would be reused, potentially making the new token identical to the old one or not having an updated validity period. This would also affect the removed assertion So(newTok.Token, ShouldNotEqual, tok.Token) in service_test.go.

Consider always setting/overwriting iat and exp with fresh values for any new token generated by this function. This ensures RFC compliance for iat and proper lifecycle for all tokens, including refreshed ones.

	claims["iat"] = now.Unix() // Use Unix() for seconds since epoch (RFC 7519). Ensures freshness.
	claims["exp"] = now.Add(time.Hour).Unix() // Ensures freshness for the new token.

[sonarqubecloud]

Quality Gate passed

Issues
1 New issue
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[coderabbitai]

Actionable comments posted: 5

🔭 Outside diff range comments (1)

pkg/auth/service_test.go (1)

77-102: 🛠️ Refactor suggestion

Consider restoring the token inequality assertion.

The removal of the assertion that verified new token strings differ from old ones during refresh reduces test coverage. This assertion was valuable for ensuring that RefreshToken actually generates a new token rather than returning the same one.

Consider restoring this test:

 		Convey("Then a new token is issued", func() {
 			So(err, ShouldBeNil)
 			So(newTok.Token, ShouldNotBeEmpty)
+			So(newTok.Token, ShouldNotEqual, tok.Token)
 			So(newTok.RefreshToken, ShouldNotEqual, tok.RefreshToken)
 			So(newTok.Scheme, ShouldEqual, "Bearer")
 		})

This ensures the refresh functionality correctly generates distinct tokens, which is critical for security.

📜 Review details

Configuration used: CodeRabbit UI
Review profile: ASSERTIVE
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 0862178 and 7ac0a73.

📒 Files selected for processing (7)

• pkg/auth/rate_limiter_test.go (1 hunks)
• pkg/auth/service.go (2 hunks)
• pkg/auth/service_test.go (1 hunks)
• pkg/metrics/streaming.go (1 hunks)
• pkg/metrics/streaming_test.go (1 hunks)
• pkg/provider/google.go (2 hunks)
• pkg/sse/client.go (1 hunks)

🧰 Additional context used

🧬 Code Graph Analysis (3)

pkg/auth/service_test.go (1)

pkg/auth/service.go (1)

• NewService (30-37)

pkg/auth/rate_limiter_test.go (1)

pkg/auth/rate_limiter.go (1)

• NewRateLimiter (18-25)

pkg/metrics/streaming_test.go (1)

pkg/metrics/streaming.go (1)

• NewStreamingMetrics (26-28)

🔇 Additional comments (10)

pkg/metrics/streaming.go (1)

62-77: LGTM! Well-implemented reset functionality.

The Reset method is properly implemented with:

• Correct write locking for thread safety
• Systematic reset of all metric fields to zero
• Clear documentation
• Consistent with the existing code patterns in the struct

pkg/provider/google.go (2)

323-365: Excellent refactor for schema conversion.

The new convertSchema method is a well-designed enhancement that:

• Centralizes schema conversion logic for better maintainability
• Adds support for additional JSON schema features (enums, nested items)
• Uses proper type assertions with safety checks
• Implements recursive conversion for complex schemas
• Follows Go naming conventions and includes clear documentation

This is a solid improvement over the previous inline conversion approach.

---

386-386: Good integration of the new schema conversion method.

The update to use prvdr.convertSchema(propMap) effectively leverages the new centralized conversion logic, replacing the previous manual extraction of type/description fields with full schema support.

pkg/auth/service_test.go (1)

13-35: Good formatting improvement.

The indentation standardization from spaces to tabs improves code consistency.

pkg/sse/client.go (1)

261-261: LGTM! Clean metrics integration.

The addition of c.Metrics.RecordReconnection() properly integrates reconnection tracking with the metrics system. The placement before signaling the reconnection channel is appropriate and ensures each reconnection event is accurately recorded.

pkg/metrics/streaming_test.go (5)

10-17: LGTM! Good basic constructor test.

The test properly verifies that NewStreamingMetrics() returns a non-nil instance. This is a solid foundation test.

---

19-28: Well-structured connection recording test.

The test correctly verifies that successful connections are recorded and failed connections remain at zero. Good use of specific assertions.

---

30-38: Excellent test for reconnection tracking.

This test directly validates the functionality that was added to the SSE client in pkg/sse/client.go line 261. The test ensures the RecordReconnection() method properly increments the counter.

---

51-62: Comprehensive metrics retrieval test.

The test properly verifies that GetMetrics() returns accurate counts. Good validation of the public interface.

---

64-77: Excellent reset functionality test.

This test is particularly valuable as it ensures the Reset() method properly clears all metrics after populating them. This validates the new reset functionality mentioned in the PR objectives.

[coderabbitai]

🧹 Nitpick (assertive)

Consider expanding test coverage.

The test only verifies that the rate limiter is not nil. Consider adding assertions to verify the initial state and configuration of the rate limiter.

 func TestNewRateLimiter(t *testing.T) {
 	Convey("When creating a rate limiter", t, func() {
 		rl := NewRateLimiter(2, time.Second)
 		Convey("Then it initializes correctly", func() {
 			So(rl, ShouldNotBeNil)
+			// Verify initial capacity is available
+			So(rl.Allow(), ShouldBeTrue)
+			So(rl.Allow(), ShouldBeTrue)
 		})
 	})
 }

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	func TestNewRateLimiter(t *testing.T) {
	Convey("When creating a rate limiter", t, func() {
	rl := NewRateLimiter(2, time.Second)
	Convey("Then it initializes correctly", func() {
	So(rl, ShouldNotBeNil)
	})
	})
	}
	func TestNewRateLimiter(t *testing.T) {
	Convey("When creating a rate limiter", t, func() {
	rl := NewRateLimiter(2, time.Second)
	Convey("Then it initializes correctly", func() {
	So(rl, ShouldNotBeNil)
	// Verify initial capacity is available
	So(rl.Allow(), ShouldBeTrue)
	So(rl.Allow(), ShouldBeTrue)
	})
	})
	}

🤖 Prompt for AI Agents

In pkg/auth/rate_limiter_test.go around lines 10 to 17, the test only checks
that the rate limiter is not nil. Expand the test by adding assertions to verify
the initial state and configuration of the rate limiter, such as confirming the
rate limit count, duration, and any internal counters or tokens are set as
expected after initialization.

[coderabbitai]

🛠️ Refactor suggestion

Address potential timing flakiness in the test.

The time.Sleep(time.Second) on line 30 introduces timing dependency that could make the test flaky, especially in CI environments with variable performance.

Consider using a more controlled approach to test time-based behavior:

 func TestRateLimiterAllow(t *testing.T) {
 	Convey("Given a limiter with capacity 2", t, func() {
-		rl := NewRateLimiter(2, time.Second)
+		// Use shorter interval for faster tests
+		rl := NewRateLimiter(2, 100*time.Millisecond)
 		ok1 := rl.Allow()
 		ok2 := rl.Allow()
 		ok3 := rl.Allow()
 		Convey("Then the third call should be limited", func() {
 			So(ok1, ShouldBeTrue)
 			So(ok2, ShouldBeTrue)
 			So(ok3, ShouldBeFalse)
 		})
-		time.Sleep(time.Second)
+		time.Sleep(150 * time.Millisecond) // Slightly longer than interval
 		Convey("And after waiting it allows again", func() {
 			So(rl.Allow(), ShouldBeTrue)
 		})
 	})
 }

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	func TestRateLimiterAllow(t *testing.T) {
	Convey("Given a limiter with capacity 2", t, func() {
	rl := NewRateLimiter(2, time.Second)
	ok1 := rl.Allow()
	ok2 := rl.Allow()
	ok3 := rl.Allow()
	Convey("Then the third call should be limited", func() {
	So(ok1, ShouldBeTrue)
	So(ok2, ShouldBeTrue)
	So(ok3, ShouldBeFalse)
	})
	time.Sleep(time.Second)
	Convey("And after waiting it allows again", func() {
	So(rl.Allow(), ShouldBeTrue)
	})
	})
	}
	func TestRateLimiterAllow(t *testing.T) {
	Convey("Given a limiter with capacity 2", t, func() {
	// Use shorter interval for faster tests
	rl := NewRateLimiter(2, 100*time.Millisecond)
	ok1 := rl.Allow()
	ok2 := rl.Allow()
	ok3 := rl.Allow()
	Convey("Then the third call should be limited", func() {
	So(ok1, ShouldBeTrue)
	So(ok2, ShouldBeTrue)
	So(ok3, ShouldBeFalse)
	})
	time.Sleep(150 * time.Millisecond) // Slightly longer than interval
	Convey("And after waiting it allows again", func() {
	So(rl.Allow(), ShouldBeTrue)
	})
	})
	}

🤖 Prompt for AI Agents

In pkg/auth/rate_limiter_test.go around lines 19 to 35, the test uses
time.Sleep(time.Second) to wait for the rate limiter to reset, which can cause
flaky tests due to timing variability. Replace the real time.Sleep with a mock
or controlled clock that can be advanced programmatically to simulate the
passage of time, ensuring deterministic and reliable test behavior without
actual delays.

[coderabbitai]

🧹 Nitpick (assertive)

Good event recording test coverage.

The test verifies that events are recorded correctly and dropped events remain zero when no drops occur. Consider adding a test case for dropped events as well.

Consider adding a test for dropped events:

func TestRecordEventWithDrop(t *testing.T) {
	Convey("Given a metrics instance recording a dropped event", t, func() {
		m := NewStreamingMetrics()
		m.RecordEvent(true, time.Second, time.Second)
		Convey("Then dropped events increment", func() {
			So(m.TotalEvents, ShouldEqual, 1)
			So(m.DroppedEvents, ShouldEqual, 1)
		})
	})
}

🤖 Prompt for AI Agents

In pkg/metrics/streaming_test.go around lines 40 to 49, the existing test covers
recording normal events but lacks coverage for dropped events. Add a new test
function named TestRecordEventWithDrop that creates a metrics instance, records
a dropped event by passing true to RecordEvent, and asserts that TotalEvents
increments to 1 and DroppedEvents increments to 1 accordingly.