replicatedhq
diff --git a/‎.cursor/rules/go-best-practices.mdc
Lines changed: 15 additions & 6 deletions b/‎.cursor/rules/go-best-practices.mdc
Lines changed: 15 additions & 6 deletions
diff --git a/‎.cursor/rules/go-ec-api-architecture.mdc
Lines changed: 16 additions & 0 deletions b/‎.cursor/rules/go-ec-api-architecture.mdc
Lines changed: 16 additions & 0 deletions
diff --git a/‎.cursor/rules/go-testing.mdc
Lines changed: 112 additions & 169 deletions b/‎.cursor/rules/go-testing.mdc
Lines changed: 112 additions & 169 deletions
diff --git a/‎api/README.md
Lines changed: 2 additions & 2 deletions b/‎api/README.md
Lines changed: 2 additions & 2 deletions
@@ -31,11 +31,20 @@ Use the functional options pattern for component initialization. This is the sta
 
 ### Error Wrapping and Context
 
-- **Wrap Errors**: Always add context when propagating errors using `fmt.Errorf("operation failed: %w", err)`
+- **Wrap Errors**: Always add context when propagating errors using `fmt.Errorf("operation context: %w", err)`
 - **Use %w verb for error wrapping**: Use `%w` instead of `%v` when wrapping errors to maintain the error chain
+- **Avoid verbose prefixes**: Don't use "failed to" or "unable to" prefixes as they create repetitive error chains
   ```go
-  return fmt.Errorf("processing config: %w", err)  // Good - contextual, no prefix
-  return fmt.Errorf("reading config file: %w", err)  // Good - specific context
+  return fmt.Errorf("processing config: %w", err)      // Good - concise context
+  return fmt.Errorf("reading config file: %w", err)    // Good - specific context
+  return fmt.Errorf("failed to process config: %w", err)   // Bad - verbose prefix
+  return fmt.Errorf("unable to read config file: %w", err) // Bad - verbose prefix
+  ```
+- **Use gerunds or nouns for context**: Describe the operation being performed
+  ```go
+  return fmt.Errorf("creating directory: %w", err)     // Good - gerund
+  return fmt.Errorf("config validation: %w", err)      // Good - noun
+  return fmt.Errorf("installing component: %w", err)   // Good - gerund
   ```
 - **Preserve Original**: Store the original error for unwrapping when using custom error types
 - **Meaningful Messages**: Error messages should be actionable and include relevant context without redundant prefixes
@@ -109,9 +118,9 @@ Use the functional options pattern for component initialization. This is the sta
 - Always use defer for unlocking: `defer mu.Unlock()`
 
 ### Context Usage
-- Pass `context.Context` as the first parameter to functions that may block or need cancellation
-- Use `ctx context.Context` as the parameter name
-- Don't store contexts in structs; pass them through function calls
+- **Context parameter placement**: When added, use `ctx context.Context` as the first parameter
+- **Only add context when it's actually used**: Don't add `context.Context` parameters unless the function will actually use it for cancellation, deadlines, or passing values
+- **Don't store contexts in structs**: Pass them through function calls
 
 ## Logging
 
 
@@ -75,6 +75,22 @@ Create constructor functions for common API error types.
 - Define interfaces for all external dependencies
 - Inject dependencies via constructors
 
+### Manager Architecture (API-Specific)
+
+- **Never inject managers into other managers**: Pass data/config between managers via controller
+- **Controller orchestration**: Controllers read from one manager and pass data to another
+- **Semantic option naming**: Use `WithConfigFile()` for paths, `WithConfigData()` for actual data
+- **Independent testing**: Mock managers separately, test controller orchestration logic independently
+
+```go
+// ✅ CORRECT: Pass data through controller
+configData, err := controller.managerA.GetData()
+controller.managerB = NewManagerB(WithConfigData(configData))
+
+// ❌ INCORRECT: Manager-to-manager injection
+controller.managerB = NewManagerB(WithManagerA(controller.managerA))
+```
+
 ### API Documentation
 
 Add Swagger annotations to all handlers for API documentation.
 
@@ -5,200 +5,143 @@ alwaysApply: false
 ---
 # Testing
 
-## Testing Philosophy
-
-- **Test for behavior, not implementation**: Tests should verify the public behavior of a unit, not its internal implementation details.
-- **Readable and maintainable**: Tests should be easy to read, understand, and maintain. A good test serves as documentation.
-- **Fast and reliable**: Tests should run quickly and produce consistent results.
-
-## Test Organization
+## Core Rules
+
+1. **One test function per code function** - Never create multiple test functions for the same code function
+2. **Use table-driven tests** for multiple scenarios within a single test function
+3. **Test behavior, not implementation** - Focus on public API behavior
+4. **Mock all external dependencies** using `testify/mock`
+
+## Test Function Organization
+
+### DON'T - Multiple Test Functions
+```go
+func TestNewController_BasicScenario(t *testing.T) { ... }
+func TestNewController_ErrorHandling(t *testing.T) { ... }
+func TestNewController_ConfigValues(t *testing.T) { ... }
+```
+
+### DO - Single Function with Table Tests
+```go
+func TestNewController(t *testing.T) {
+    tests := []struct {
+        name     string
+        setup    func()
+        wantErr  bool
+    }{
+        {name: "basic scenario", setup: ..., wantErr: false},
+        {name: "error handling", setup: ..., wantErr: true},
+        {name: "config values", setup: ..., wantErr: false},
+    }
+    for _, tt := range tests {
+        t.Run(tt.name, func(t *testing.T) {
+            // test implementation
+        })
+    }
+}
+```
+
+## Test Types & Organization
 
 ### Test Types
-
 1. **Unit Tests**: Test individual functions/methods in isolation using mocks for dependencies
-2. **Integration Tests**: Test the interaction between multiple components, often with real HTTP requests
+2. **Integration Tests**: Test interaction between multiple components, often with real HTTP requests
 3. **API Tests**: Test HTTP endpoints end-to-end with request/response validation
 
 ### File Structure
-
 - Unit tests: `*_test.go` files alongside the code they test
 - Integration tests: `api/integration/*_test.go` files
 - Test assets: Store test data in `assets/` subdirectories within test packages
 
-## Test Structure Patterns
-
-### Table-Driven Tests
-
-Use table-driven tests for testing multiple scenarios. This is the standard pattern across the codebase:
-
-### Test Naming
+## Naming Conventions
+
+- **Test functions**: `TestFunctionName` or `TestType_MethodName`
+- **Test cases**: Descriptive scenario names: `"empty input should return error"`
+- **Mock types**: `MockTypeName struct { mock.Mock }`
+- **Use semantic naming**: Meaningful test case names, not "test case 1"
+
+## Required Libraries
+
+```go
+import (
+    "testing"
+    "github.com/stretchr/testify/assert"
+    "github.com/stretchr/testify/require" 
+    "github.com/stretchr/testify/mock"
+)
+```
+
+## Mock Patterns
+
+### Setup in Table Tests
+```go
+tests := []struct {
+    name      string
+    setupMock func(*MockType)
+}{
+    {
+        name: "successful operation",
+        setupMock: func(m *MockType) {
+            m.On("Method", mock.Anything).Return(nil)
+        },
+    },
+}
+```
 
-- Test functions: `TestFunctionName` or `TestTypeName_MethodName`
-- Use table-driven tests for multiple scenarios: `tests := []struct{name string, ...}{}`
-- Subtest names: Descriptive of the specific scenario being tested in table entries
-- Use underscores for method tests: `TestAPIError_Error`
-
-## Tooling and Libraries
-
-### Core Libraries
-
-- **Standard testing**: Use the built-in `testing` package
-- **Assertions**: Use `github.com/stretchr/testify/assert` and `github.com/stretchr/testify/require`
-  - `assert.*`: For non-fatal assertions that continue test execution
-  - `require.*`: For fatal assertions that stop test execution on failure
-- **Mocks**: Use `github.com/stretchr/testify/mock` for creating mocks
-
-### HTTP Testing
+### Mock Lifecycle
+- Create fresh mocks for each test case
+- Use `mock.InOrder()` for sequential mock calls
+- Use `mock.MatchedBy()` for complex argument matching
+- **Always verify mocks**: `mockManager.AssertExpectations(t)`
 
-- **Unit-level HTTP testing**: Use `net/http/httptest` for testing individual handlers
-- **Integration HTTP testing**: Create full API instances with `httptest.NewServer`
-- **API Client testing**: Test both direct HTTP calls and API client wrapper methods
+### Mock Management
+- **Reuse existing mock interfaces** across tests - use same mock type for same interface
+- **Implement complete interfaces** - mock all methods even if some tests don't use them
+- **Follow consistent patterns** - all mocks use `testify/mock` with `type MockTypeName struct { mock.Mock }`
 
-## Testing Patterns by Component Type
+## Testing Patterns by Component
 
 ### API Handlers
-
-Test HTTP handlers by:
-1. Creating mock dependencies
-2. Setting up HTTP requests with `httptest.NewRequest`
-3. Using `httptest.NewRecorder` to capture responses
-4. Validating status codes, headers, and response bodies
+1. Create mock dependencies
+2. Set up HTTP requests with `httptest.NewRequest`
+3. Use `httptest.NewRecorder` to capture responses
+4. Validate status codes, headers, and response bodies
 
 ### Controllers (Business Logic)
-
-Test controllers by:
-1. Mocking all dependencies (managers, utilities, etc.)
-2. Setting up mock expectations with `mock.On()` and `mock.InOrder()`
-3. Testing both success and error paths
-4. Verifying mock expectations with `AssertExpectations(t)`
-
-### Types and Data Structures
-
-Test types by:
-1. Validating serialization/deserialization (JSON marshaling)
-2. Testing validation methods
-3. Testing error handling and edge cases
-4. Using table-driven tests for multiple validation scenarios
+1. Mock all dependencies (managers, utilities, etc.)
+2. Set up mock expectations with `mock.On()` and `mock.InOrder()`
+3. Test both success and error paths
+4. Verify mock expectations with `AssertExpectations(t)`
 
 ### Integration Tests
+1. Create real API instances with test configurations
+2. Use `httptest.NewServer` for full HTTP testing
+3. Test authentication flows end-to-end
+4. Validate complete request/response cycles
 
-Structure integration tests by:
-1. Creating real API instances with test configurations
-2. Using `httptest.NewServer` for full HTTP testing
-3. Testing authentication flows end-to-end
-4. Validating complete request/response cycles
-5. Testing with both direct HTTP calls and API client libraries
+## HTTP Testing
 
-## Mock Usage
+- **Unit-level**: Use `net/http/httptest` for testing individual handlers
+- **Integration**: Create full API instances with `httptest.NewServer`
+- **API Client**: Test both direct HTTP calls and API client wrapper methods
 
-### Mock Setup Patterns
+## What NOT to Test
 
-- Use setup functions in table tests: `setupMock func(*MockType)`
-- Use `mock.InOrder()` for sequential mock calls
-- Use `mock.MatchedBy()` for complex argument matching
-- Always call `AssertExpectations(t)` to verify all mocks were called
+- Data structure existence: `assert.NotNil(t, &Config{})` 
+- Private implementation details
+- External library behavior
+- Tests that don't call any functions or validate actual behavior
 
-### Mock Lifecycle
+## Required Assertions
 
-- Create fresh mocks for each test case
-- Set up mock expectations before running the test
-- Verify mock expectations after the test completes
-
-## Test Structure
-
-### Test Naming
-- Use table-driven tests for multiple scenarios with descriptive test case names
-- Test functions follow pattern: `TestFunctionName` for simple cases, `TestTypeName_MethodName` for methods
-- Test case names in tables should be descriptive: `name: "empty data directory should return error"`
-- Example of proper table-driven test structure:
-  ```go
-  func TestValidateConfig(t *testing.T) {
-      tests := []struct {
-          name           string
-          input          *Config
-          expectedError  string
-      }{
-          {
-              name:          "empty data directory should return error",
-              input:         &Config{DataDirectory: ""},
-              expectedError: "data directory cannot be empty",
-          },
-          {
-              name:          "valid directory should succeed",
-              input:         &Config{DataDirectory: "/opt/data"},
-              expectedError: "",
-          },
-      }
-      for _, tt := range tests {
-          t.Run(tt.name, func(t *testing.T) {
-              err := ValidateConfig(tt.input)
-              // test logic here
-          })
-      }
-  }
-  ```
-
-### Use Semantic Naming for Test Cases
-
-- **Name test cases descriptively**: Use meaningful names for test cases rather than generic names like "test case 1"
-  ```go
-  tests := []struct {
-      name           string
-      input          *Config
-      expectedError  string
-  }{
-      {
-          name:          "empty data directory should return error",
-          input:         &Config{DataDirectory: ""},
-          expectedError: "data directory cannot be empty",
-      },
-      {
-          name:          "test case 2",
-          input:         &Config{DataDirectory: "/opt/data"},
-          expectedError: "",
-      },
-  }
-  ```
-
-### Test Organization
-- Create one test file per source file (`file.go` → `file_test.go`)
-- Use subtests for variations within table-driven tests
-- Keep test files focused on testing their corresponding source file
-
-### Test Coverage and Quality
-
-- **Remove tests that don't call any functions or validate actual behavior**: Tests should assert on real functionality, not just test data structures
-  ```go
-  func TestValidateConfig_EmptyDirectory_ReturnsError(t *testing.T) {
-      config := &Config{DataDirectory: ""}
-      err := ValidateConfig(config) // Actually calls the function
-      assert.Error(t, err)
-  }
-  
-  func TestConfigStruct_Fields_Exist(t *testing.T) {
-      config := &Config{}
-      assert.NotNil(t, config) // Just tests data structure
-  }
-  ```
+- Use `require.*` for fatal assertions (stop test on failure)
+- Use `assert.*` for non-fatal assertions (continue test)
+- Always call `AssertExpectations(t)` on mocks
 
-### Mock Management
+## Test Quality Rules
 
-- **Reuse existing mock interfaces across tests**: Use the same mock type for the same interface rather than creating multiple mock types
-  ```go
-  // Good - reuse the same mock across different tests
-  type MockInstallationManager struct {
-      mock.Mock
-  }
-  func (m *MockInstallationManager) GetConfig() (Config, error) { ... }
-  func (m *MockInstallationManager) SetConfig(config Config) error { ... }
-  
-  // Use this mock in multiple test files for the same interface
-  
-  // Bad - creating separate mocks for the same interface
-  type MockInstallManager struct { ... }      // for installation tests
-  type MockConfigManager struct { ... }       // for config tests  
-  // Both implementing the same InstallationManager interface
-  ```
-- **Follow consistent mock patterns**: All mocks use `testify/mock` with `type MockTypeName struct { mock.Mock }`
-- **Implement complete interfaces**: Mock all methods of the interface even if some tests don't use them
+- **Test for behavior, not implementation**: Verify public behavior, not internal details
+- **Readable and maintainable**: Tests should serve as documentation
+- **Fast and reliable**: Tests should run quickly and produce consistent results
+- **Remove meaningless tests**: Tests should assert on real functionality, not just data structures
 
@@ -10,13 +10,13 @@ The root directory contains the main API setup files and request handlers.
 ### Subpackages
 
 #### `/controllers`
-Contains the business logic for different API endpoints. Each controller package focuses on a specific domain of functionality or workflow (e.g., authentication, console, install, upgrade, join, etc.) and implements the core business logic for that domain or workflow. Controllers can utilize multiple managers with each manager handling a specific subdomain of functionality.
+Contains the business logic for different API endpoints. Each controller package focuses on a specific domain of functionality or workflow (e.g., authentication, console, install, upgrade, join, etc.) and implements the core business logic for that domain or workflow. Controllers can utilize multiple managers with each manager handling a specific subdomain of functionality. Controllers act as orchestrators that read from one manager and pass data to another - never inject managers into other managers.
 
 #### `/internal`
 Contains shared utilities and helper packages that provide common functionality used across different parts of the API. This includes both general-purpose utilities and domain-specific helpers.
 
 #### `/internal/managers`
-Each manager is responsible for a specific subdomain of functionality and provides a clean interface for controllers to interact with. For example, the Preflight Manager manages system requirement checks and validation.
+Each manager is responsible for a specific subdomain of functionality and provides a clean interface for controllers to interact with. For example, the Preflight Manager manages system requirement checks and validation. Managers must remain independent with no cross-manager dependencies - data flows between managers through the controller, not directly between managers.
 
 #### `/internal/statemachine`
 The statemachine is used by controllers to capture workflow state and enforce valid transitions.