feat(websocket): add real-time WebSocket support via gorilla/websocket

[GRACENOBLE]

Closes #21

Summary

• Backend: gorilla/websocket Hub with channel-based fan-out; GET /ws endpoint with Firebase token auth via ?token= query param; Hub started as a long-lived goroutine in main.go with context-based graceful shutdown; Handler struct updated to carry verifier and hub
• Web: useWebSocket hook (lib/useWebSocket.ts) with typed WsEnvelope, exponential-backoff reconnection capped at 30 s, Firebase token appended as ?token=, cleanup on unmount
• Mobile: WebSocketManager (OkHttp with injectable WebSocketFactory + reconnectScheduler) and WebSocketViewModel exposing StateFlow<WsState>; kotlinx.serialization for JSON; WsEnvelope mirrors the backend envelope type
• Hub.Publish(type, payload) is the integration point for feat: integrate Asynq + Redis Streams for background jobs and event-driven messaging #18 (Asynq + Redis Streams) — no Redis consumer in this PR
• Docs added: backend/docs/websocket.md, web/docs/websocket.md; backend/docs/routing.md updated to reflect signature changes

Test plan

• Backend: go test ./internal/infrastructure/ws/... — 5 hub tests (register, unregister, cancel, 10 concurrent clients, Publish)
• Backend: go test ./internal/transport/... — existing handler/middleware tests unaffected
• Web: pnpm test — 8 useWebSocket tests (URL, token, connect/disconnect, messages, malformed JSON, backoff, maxRetries, unmount cleanup, send)
• Mobile: ./gradlew test — 8 WebSocketManagerTest + 6 WebSocketViewModelTest
• Manual: make docker-run && make watch, connect with websocat ws://localhost:8080/ws (no token, dev mode) — should upgrade and receive any hub.Publish calls
• Manual staging: GET /ws without ?token= returns 401; with valid Firebase token upgrades successfully

Summary by CodeRabbit

Release Notes

• New Features
  • Added WebSocket support for real-time bidirectional communication across backend, mobile, and web platforms
  • New GET /ws API endpoint with token-based authentication
  • WebSocket infrastructure with message publishing and client management capabilities
  • React hook and native SDKs for seamless WebSocket integration on client platforms

[coderabbitai]

Warning

Review limit reached

@GRACENOBLE, we couldn't start this review because you've reached your PR review rate limit.

More reviews will be available in 35 minutes and 38 seconds. Learn how PR review limits work.

Your organization has run out of usage credits. Purchase more credits in the billing tab to continue.

⌛ How to resolve this issue?

After more reviews become available, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans include higher PR review limits than trial, open-source, and free plans. In all cases, reviews become available again over time. During sustained high-volume PR review activity, CodeRabbit may temporarily slow when the next review becomes available.

Please see our Fair Usage Limits Policy for further information.

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 89fd554a-a7c2-4d89-9e34-d20414a37c8e

📥 Commits

Reviewing files that changed from the base of the PR and between d75630d and c5bee92.

📒 Files selected for processing (9)

• backend/.env.example
• backend/docs/websocket.md
• backend/internal/infrastructure/ws/client.go
• backend/internal/infrastructure/ws/hub.go
• backend/internal/transport/handlers/ws_handler.go
• mobile/app/src/main/java/com/company/template/websocket/WebSocketManager.kt
• web/docs/websocket.md
• web/lib/useWebSocket.test.ts
• web/lib/useWebSocket.ts

📝 Walkthrough

Walkthrough

Adds end-to-end WebSocket support: a Go Hub/Client infrastructure package with Firebase token auth on GET /ws, wired into the HTTP server via an updated handler and main.go lifecycle; a React useWebSocket hook with exponential-backoff reconnect; and an Android WebSocketManager/WebSocketViewModel using OkHttp, all sharing a typed JSON Envelope/WsEnvelope wire format.

Changes

Backend Go WebSocket infrastructure and wiring

Layer / File(s)	Summary
WS message envelope, Hub, and Client core backend/internal/infrastructure/ws/message.go, backend/internal/infrastructure/ws/hub.go, backend/internal/infrastructure/ws/client.go, backend/go.mod	Defines Envelope wire type, the Hub event loop (register/unregister/broadcast/publish via channels), and the Client struct with ReadPump/WritePump keepalive; adds gorilla/websocket dependency.
Hub unit tests backend/internal/infrastructure/ws/hub_test.go	Five tests covering register+broadcast, unregister channel close, context cancellation shutdown, concurrent 10-client broadcast, and Publish end-to-end using nil-conn clients with buffered Send channels.
Handler struct, WsHandler, and route registration backend/internal/transport/handlers/handler.go, backend/internal/transport/handlers/ws_handler.go, backend/internal/transport/handlers/routes.go, backend/internal/transport/handlers/health_handler_test.go	Extends Handler with verifier and hub fields; adds WsHandler with optional Firebase ?token= auth and WebSocket upgrade; removes verifier from RegisterRoutes signature (now read from h.verifier); registers GET /ws; updates existing health handler test call sites.
NewServer and main.go hub lifecycle wiring backend/internal/server/server.go, backend/cmd/api/main.go	NewServer accepts *ws.Hub and passes it to NewHandler; main.go creates a cancellable hub context, starts hub.Run in a goroutine, and cancels the context after graceful HTTP shutdown completes.
Swagger spec and backend docs backend/docs/swagger/docs.go, backend/docs/swagger/swagger.json, backend/docs/swagger/swagger.yaml, backend/docs/websocket.md, backend/docs/routing.md, backend/docs/_index.md	Adds GET /ws to all Swagger artifacts with token parameter and 101/401 responses; new websocket.md covers Envelope, Hub, Client, route auth flow, wiring, publishing, and test strategy; updates routing.md and doc index.

Android WebSocket client (OkHttp + ViewModel)

Layer / File(s)	Summary
Gradle dependencies and WsEnvelope model mobile/gradle/libs.versions.toml, mobile/app/build.gradle.kts, mobile/app/src/main/java/com/company/template/websocket/WsEnvelope.kt	Adds OkHttp, Kotlinx coroutines/serialization, ViewModel KTX, and kotlin-serialization plugin to the version catalog and build script; introduces the @Serializable WsEnvelope data class.
WebSocketManager and WebSocketViewModel mobile/app/src/main/java/com/company/template/websocket/WebSocketManager.kt, mobile/app/src/main/java/com/company/template/websocket/WebSocketViewModel.kt	WebSocketManager wraps an injectable WebSocketFactory with connect/disconnect/send, parses JSON into WsEnvelope, and schedules exponential-backoff reconnects up to maxRetries. WebSocketViewModel exposes StateFlow<WsState> updated from manager callbacks and disconnects on onCleared().
Mobile WebSocket tests mobile/app/src/test/java/com/company/template/websocket/FakeOkHttp.kt, mobile/app/src/test/java/com/company/template/websocket/WebSocketManagerTest.kt, mobile/app/src/test/java/com/company/template/websocket/WebSocketViewModelTest.kt	FakeWebSocketFactory/FakeWebSocket provide test doubles; WebSocketManagerTest covers open/message/close callbacks, JSON parsing edge cases, retry scheduling, maxRetries limit, and disconnect cancellation; WebSocketViewModelTest covers initial state, state transitions, and cleanup.

React useWebSocket hook

Layer / File(s)	Summary
useWebSocket hook and exported types web/lib/useWebSocket.ts	Introduces WsEnvelope, UseWebSocketOptions, UseWebSocketReturn types and the useWebSocket hook implementing connection lifecycle, JSON message parsing, bounded exponential-backoff reconnect, unmount safety, and a send helper.
useWebSocket tests and web docs web/lib/useWebSocket.test.ts, web/docs/websocket.md, web/docs/_index.md	Vitest suite with MockWebSocket covers URL construction, isConnected transitions, message handling, invalid JSON resilience, exponential backoff, unmount cleanup, and send serialization. Web docs document hook API, auth, reconnect, and test strategy.

Sequence Diagram(s)

sequenceDiagram
  participant Client as Browser/Mobile Client
  participant WsHandler
  participant Firebase as Firebase Token Verifier
  participant Hub
  participant WsClient as ws.Client

  Client->>WsHandler: GET /ws?token=<firebase_id_token>
  WsHandler->>Firebase: VerifyIDToken(token)
  alt token invalid or missing
    Firebase-->>WsHandler: error
    WsHandler-->>Client: 401 Unauthorized
  else token valid
    Firebase-->>WsHandler: ok
    WsHandler->>WsHandler: websocket.Upgrader.Upgrade(conn)
    WsHandler->>WsClient: NewClient(hub, conn) → hub.Register
    WsHandler->>WsClient: go WritePump()
    WsHandler->>WsClient: go ReadPump()
    Note over Hub,WsClient: Later: worker publishes event
    Hub->>Hub: Publish("job.completed", payload) → broadcast channel
    Hub->>WsClient: non-blocking send to client.Send
    WsClient->>Client: WebSocket text frame
  end

Loading

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~60 minutes

Poem

🐇 Hop hop, the wires are live today,
A Hub spins up and sends its data away!
Go channels whisper, Kotlin flows run free,
React hooks reconnect with backoff — whee!
From /ws to Android, the envelopes fly,
This bunny loves real-time streaming by and by. 🌐

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 9.09% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title 'feat(websocket): add real-time WebSocket support via gorilla/websocket' accurately and concisely describes the main change in the PR.
Linked Issues check	✅ Passed	All acceptance criteria from issue #21 are met: GET /ws endpoint with 401 rejection, hub broadcasting, web hook implementation, mobile client support, cleanup without leaks, concurrent tests, and documentation.
Out of Scope Changes check	✅ Passed	All changes are directly aligned with WebSocket feature implementation from issue #21; no unrelated modifications detected.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch 21-feat-add-websocket-support-via-gorilla-websocket

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 8

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (2)

backend/docs/routing.md (1)

33-34: ⚠️ Potential issue | 🟡 Minor | ⚡ Quick win

Update stale signature text to match current wiring.

The prose still says NewServer(app *bootstrap.App) *http.Server and references passing verifier to RegisterRoutes, but the shown code now uses NewServer(app *bootstrap.App, hub *ws.Hub) and RegisterRoutes(rps, burst, sentryDSN).

Suggested fix

-`internal/server/server.go` contains `NewServer(app *bootstrap.App) *http.Server` — wiring only, no logic.
+`internal/server/server.go` contains `NewServer(app *bootstrap.App, hub *ws.Hub) *http.Server` — wiring only, no logic.
@@
-`verifier` is a `usecase.FirebaseTokenVerifier`; pass `nil` to skip Firebase auth (development only — see [auth](auth.md)).
+Firebase verification for `/api/v1` routes is derived from `h.verifier` on `Handler`; when `h.verifier == nil`, Firebase middleware is skipped (development only — see [auth](auth.md)).

Also applies to: 53-53

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@backend/docs/routing.md` around lines 33 - 34, Update the documentation in
backend/docs/routing.md to reflect the current function signatures. The
`NewServer` function signature should be updated to include the `hub *ws.Hub`
parameter (currently shown as only taking `app *bootstrap.App`). The
`RegisterRoutes` function parameters should be updated to reflect that it now
accepts `rps, burst, sentryDSN` instead of `verifier`. These corrections are
needed at both line 33-34 (anchor) and line 53 (sibling) where the same outdated
signatures appear.

backend/cmd/api/main.go (1)

3-16: ⚠️ Potential issue | 🟠 Major

Add godotenv/autoload blank import in cmd/api entrypoint.

backend/cmd/api/main.go is missing _ "github.com/joho/godotenv/autoload". Per coding guidelines, environment variables must be loaded automatically via this blank import in all cmd entrypoints without explicit calls.

Suggested fix

 import (
 	"context"
 	"fmt"
 	"log/slog"
 	"net/http"
 	"os"
 	"os/signal"
 	"syscall"
 	"time"
 
+	_ "github.com/joho/godotenv/autoload"
+
 	"backend/internal/bootstrap"
 	"backend/internal/infrastructure/ws"
 	"backend/internal/server"
 )

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@backend/cmd/api/main.go` around lines 3 - 16, The import section in
backend/cmd/api/main.go is missing the required blank import for
godotenv/autoload. Add the line _ "github.com/joho/godotenv/autoload" to the
import block to ensure environment variables are automatically loaded on startup
according to the project's coding guidelines. This blank import should be placed
with the other third-party imports in the import statement that begins at line
3.

Source: Coding guidelines

🧹 Nitpick comments (2)

backend/internal/infrastructure/ws/hub_test.go (2)

121-129: Strengthen TestHub_Publish to assert envelope contract, not only non-empty bytes.

The test currently validates only that bytes are received, not that they form a valid message. Unmarshal got into Envelope and assert Type == "job.completed" plus the payload contains the expected fields (e.g., "id": "123").

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@backend/internal/infrastructure/ws/hub_test.go` around lines 121 - 129, The
TestHub_Publish test currently only validates that the message is non-empty but
does not verify the actual message structure or contents. Replace the non-empty
check on got with proper unmarshaling of got into an Envelope struct, then
assert that the Type field equals "job.completed" and that the payload contains
the expected fields (such as "id": "123"). This ensures the test validates the
full message contract rather than just checking for non-empty bytes.

---

20-21: Replace fixed sleeps with deterministic synchronization in hub tests.

These tests rely on hardcoded sleeps (5–10ms) to allow the hub.Run() goroutine to process channel operations before assertions. This creates timing-sensitive tests that may fail if the hub's processing time changes. Instead, use observable state signals—such as a sync channel handshake, sync.WaitGroup, or polling with a timeout—to ensure the goroutine has completed the operation before proceeding.

Applies to lines 20, 41, 44, 64, 67, 89, and 119.

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@backend/internal/infrastructure/ws/hub_test.go` around lines 20 - 21, Replace
the hardcoded time.Sleep calls in the hub tests with deterministic
synchronization mechanisms. Instead of relying on fixed delays to allow the
hub.Run() goroutine to process operations, use observable state signals such as
a sync channel handshake, sync.WaitGroup, or a polling loop with timeout to
explicitly wait until the goroutine has completed the operation before
proceeding with assertions. Apply this pattern to all occurrences of time.Sleep
throughout the test file to eliminate timing-sensitive test behavior.

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@backend/docs/websocket.md`:
- Line 65: The markdown file has unlabeled fenced code blocks that trigger
markdownlint error MD040, requiring explicit language specifiers. At line 65,
add the language identifier `text` to the opening fence of the code block
showing the goroutine communication diagram (the block starting with `caller
goroutine`). At line 98, add the language identifier `text` to the opening fence
of the code block showing the GET request example (the block starting with `GET
/ws?token`). Both changes involve changing the bare triple backticks to triple
backticks followed by the language name to satisfy the linting rules.

In `@backend/internal/infrastructure/ws/client.go`:
- Line 45: Remove the //nolint:errcheck directives from the websocket I/O
operations (SetReadDeadline, SetWriteDeadline, WriteMessage, and Write
operations) and properly handle their returned errors by returning them up the
stack instead of suppressing them. This aligns with the error-handling guideline
for backend/internal code and makes the error handling consistent with other
operations in the same file (such as the SetReadDeadline call that already
returns its error and the WriteMessage operation that already handles errors
correctly).
- Around line 40-43: The defer block in the `ReadPump` function sends on the
unbuffered `Unregister` channel without checking if `Hub.Run` has already
exited, causing a deadlock during shutdown because the channel will have no
receiver. Use a non-blocking send with a select statement and default case when
sending on `c.hub.Unregister` to prevent blocking, ensuring that
`c.conn.Close()` always executes to avoid goroutine leaks. Additionally, remove
all `//nolint:errcheck` directives throughout the file (which suppress I/O
operation errors) and instead properly handle errors by either logging them,
returning them to the caller, or explicitly documenting why they can be safely
ignored in a way that aligns with returning errors up the stack rather than
swallowing them.

In `@backend/internal/infrastructure/ws/hub.go`:
- Around line 61-72: The Publish method in the Hub type performs a blocking send
on the h.broadcast channel that can indefinitely block when the buffer is full,
causing worker stalls and backpressure issues. Replace the blocking channel send
(h.broadcast <- env) with a non-blocking send using a select statement with a
default case that handles the full channel scenario by returning an appropriate
error or dropping the message with logging/metrics.

In `@backend/internal/transport/handlers/ws_handler.go`:
- Around line 12-17: The `upgrader` variable's `CheckOrigin` function currently
returns `true` for all origins, creating a cross-site WebSocket hijacking
vulnerability. Replace the permissive `CheckOrigin` function with
environment-aware logic that returns `true` only in local development
environments (based on environment configuration) and restricts incoming
WebSocket requests to a whitelist of known, trusted origins in production.
Extract the allowed origins list from configuration and validate that the
request's origin header matches one of the allowed origins before granting
access.

In `@mobile/app/src/main/java/com/company/template/websocket/WebSocketManager.kt`:
- Around line 46-51: The connect() method opens a new socket without closing any
existing connection, which causes connection leaks and duplicate message streams
when called repeatedly. Before calling openSocket() in the connect(token:
String?) method, ensure any existing socket connection is properly closed by
checking if an active socket exists and invoking the appropriate cleanup or
disconnection method on it first.

In `@web/docs/websocket.md`:
- Around line 62-64: The fenced code block containing the delay calculation
formula lacks a language identifier, which violates markdownlint rule MD040. Add
a language identifier to the opening fence marks of the code block that contains
"delay = min(1000ms × 2^retryCount, 30 000ms)" by changing the opening ``` to
```txt (or another appropriate language identifier).

In `@web/lib/useWebSocket.ts`:
- Around line 52-53: The wsUrl construction logic at line 52 in useWebSocket.ts
unconditionally appends the token using a question mark, which creates malformed
URLs when the input url already contains query parameters. Fix this by checking
if the url already contains a query string (look for the presence of `?`), and
if it does, append the token parameter using `&` instead of `?`. Additionally,
add a regression test to verify that the token parameter is correctly appended
to URLs that already include existing query parameters.

---

Outside diff comments:
In `@backend/cmd/api/main.go`:
- Around line 3-16: The import section in backend/cmd/api/main.go is missing the
required blank import for godotenv/autoload. Add the line _
"github.com/joho/godotenv/autoload" to the import block to ensure environment
variables are automatically loaded on startup according to the project's coding
guidelines. This blank import should be placed with the other third-party
imports in the import statement that begins at line 3.

In `@backend/docs/routing.md`:
- Around line 33-34: Update the documentation in backend/docs/routing.md to
reflect the current function signatures. The `NewServer` function signature
should be updated to include the `hub *ws.Hub` parameter (currently shown as
only taking `app *bootstrap.App`). The `RegisterRoutes` function parameters
should be updated to reflect that it now accepts `rps, burst, sentryDSN` instead
of `verifier`. These corrections are needed at both line 33-34 (anchor) and line
53 (sibling) where the same outdated signatures appear.

---

Nitpick comments:
In `@backend/internal/infrastructure/ws/hub_test.go`:
- Around line 121-129: The TestHub_Publish test currently only validates that
the message is non-empty but does not verify the actual message structure or
contents. Replace the non-empty check on got with proper unmarshaling of got
into an Envelope struct, then assert that the Type field equals "job.completed"
and that the payload contains the expected fields (such as "id": "123"). This
ensures the test validates the full message contract rather than just checking
for non-empty bytes.
- Around line 20-21: Replace the hardcoded time.Sleep calls in the hub tests
with deterministic synchronization mechanisms. Instead of relying on fixed
delays to allow the hub.Run() goroutine to process operations, use observable
state signals such as a sync channel handshake, sync.WaitGroup, or a polling
loop with timeout to explicitly wait until the goroutine has completed the
operation before proceeding with assertions. Apply this pattern to all
occurrences of time.Sleep throughout the test file to eliminate timing-sensitive
test behavior.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 5ecbb672-f9d7-434c-bc16-b2d5f21e5930

📥 Commits

Reviewing files that changed from the base of the PR and between ca3564f and d75630d.

⛔ Files ignored due to path filters (1)

• backend/go.sum is excluded by !**/*.sum

📒 Files selected for processing (29)

• backend/cmd/api/main.go
• backend/docs/_index.md
• backend/docs/routing.md
• backend/docs/swagger/docs.go
• backend/docs/swagger/swagger.json
• backend/docs/swagger/swagger.yaml
• backend/docs/websocket.md
• backend/go.mod
• backend/internal/infrastructure/ws/client.go
• backend/internal/infrastructure/ws/hub.go
• backend/internal/infrastructure/ws/hub_test.go
• backend/internal/infrastructure/ws/message.go
• backend/internal/server/server.go
• backend/internal/transport/handlers/handler.go
• backend/internal/transport/handlers/health_handler_test.go
• backend/internal/transport/handlers/routes.go
• backend/internal/transport/handlers/ws_handler.go
• mobile/app/build.gradle.kts
• mobile/app/src/main/java/com/company/template/websocket/WebSocketManager.kt
• mobile/app/src/main/java/com/company/template/websocket/WebSocketViewModel.kt
• mobile/app/src/main/java/com/company/template/websocket/WsEnvelope.kt
• mobile/app/src/test/java/com/company/template/websocket/FakeOkHttp.kt
• mobile/app/src/test/java/com/company/template/websocket/WebSocketManagerTest.kt
• mobile/app/src/test/java/com/company/template/websocket/WebSocketViewModelTest.kt
• mobile/gradle/libs.versions.toml
• web/docs/_index.md
• web/docs/websocket.md
• web/lib/useWebSocket.test.ts
• web/lib/useWebSocket.ts