SynLotto/website
1
0
Fork 0
Code Issues 19 Pull Requests Actions Packages Projects 5 Releases Wiki Activity

Enhance Config Struct Validation, Duration Parsing, and Secret Management #16

New Issue
Open
opened 2025-10-29 08:03:54 +00:00 by H3ALY · 0 comments
H3ALY commented 2025-10-29 08:03:54 +00:00
Owner
Copy Link

The internal/platform/config package defines the strongly-typed application configuration. While the current JSON-based configuration loading works correctly, the struct contains fields which should be validated, type-enforced, or sourced securely for production environments.

Specifically:

Duration fields (lifetime, idleTimeout, rememberDuration, etc.) are strings and parsed later; invalid values fail late rather than early

Certain security-sensitive values (password, API key) are stored directly in JSON

DatabaseNamed has a JSON tag mismatch (databaseName vs databaseNamed)

Critical fields (e.g., database server/port, site name) lack upfront validation

Improving type safety and validation increases reliability and security of the bootstrap process.

Current Behavior (observed):

Config loads without validation (struct may be incomplete)

Type parsing (durations) happens separately in consuming components

Secrets are file-based instead of environment-based

Incorrect field naming does not cause breakage but reduces clarity

Why this matters:

Fail-fast behavior during bootstrap prevents obscure runtime panics

Removes silent misconfigurations

Hardens security posture by reducing accidental exposure of secrets

Architecturally aligns with immutable, strongly typed configuration

Scope of Work:
Validate required fields during bootstrap (non-empty DB server, valid port, etc.)
Convert duration strings to time.Duration at load time with structured errors
Align JSON tags (DatabaseNamed → databaseNamed)
Add environment override support for secrets (password/API key)
Improve documentation and error reporting around invalid config values
Unit tests for Load + validation failure scenarios

Non-Goals:

No change to configuration file layout unless required by tag fix

No rework of configuration merge/override strategy beyond minimal environment support

Risks / Mitigations:

Medium: Requires boot flow adjustments
Mitigation: Introduce validation incrementally with clear logs

Acceptance Criteria:
Bootstrap errors clearly if required fields are missing/invalid
Duration values are type-safe before use (no runtime parsing failures)
Sensitive values may be read from environment
JSON config linted for consistency
Tests confirm validation rules and override behavior

Effort Estimate:
Medium (2–4 dev days)

The internal/platform/config package defines the strongly-typed application configuration. While the current JSON-based configuration loading works correctly, the struct contains fields which should be validated, type-enforced, or sourced securely for production environments. Specifically: Duration fields (lifetime, idleTimeout, rememberDuration, etc.) are strings and parsed later; invalid values fail late rather than early Certain security-sensitive values (password, API key) are stored directly in JSON DatabaseNamed has a JSON tag mismatch (databaseName vs databaseNamed) Critical fields (e.g., database server/port, site name) lack upfront validation Improving type safety and validation increases reliability and security of the bootstrap process. Current Behavior (observed): Config loads without validation (struct may be incomplete) Type parsing (durations) happens separately in consuming components Secrets are file-based instead of environment-based Incorrect field naming does not cause breakage but reduces clarity Why this matters: Fail-fast behavior during bootstrap prevents obscure runtime panics Removes silent misconfigurations Hardens security posture by reducing accidental exposure of secrets Architecturally aligns with immutable, strongly typed configuration Scope of Work: ✅ Validate required fields during bootstrap (non-empty DB server, valid port, etc.) ✅ Convert duration strings to time.Duration at load time with structured errors ✅ Align JSON tags (DatabaseNamed → databaseNamed) ✅ Add environment override support for secrets (password/API key) ✅ Improve documentation and error reporting around invalid config values ✅ Unit tests for Load + validation failure scenarios Non-Goals: No change to configuration file layout unless required by tag fix No rework of configuration merge/override strategy beyond minimal environment support Risks / Mitigations: Medium: Requires boot flow adjustments ✅ Mitigation: Introduce validation incrementally with clear logs Acceptance Criteria: ✅ Bootstrap errors clearly if required fields are missing/invalid ✅ Duration values are type-safe before use (no runtime parsing failures) ✅ Sensitive values may be read from environment ✅ JSON config linted for consistency ✅ Tests confirm validation rules and override behavior Effort Estimate: Medium (2–4 dev days)
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
backend
bug
Something is not working
 duplicate
This issue or pull request already exists
 enhancement
New feature
 feature
frontend
help wanted
Need some help
 high-priority
invalid
Something is wrong
 low-priority
question
More information is needed
 security
UX
wontfix
This won't be fixed
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
H3ALY
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: SynLotto/website#16
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?