backend: GDPR export + retention cleanups + worker metrics (BE-1/2/3) · b54493f785 - honeyDueAPI

backend: GDPR export + retention cleanups + worker metrics (BE-1/2/3)

Backend CI / Test (push) Has been cancelled

Details

Backend CI / Contract Tests (push) Has been cancelled

Details

Backend CI / Lint (push) Has been cancelled

Details

Backend CI / Secret Scanning (push) Has been cancelled

Details

Backend CI / Build (push) Has been cancelled

Details

BE-3 observability: expose the worker's Prometheus metrics on :6060/metrics
(apns/fcm/asynq histograms + a new cache_ops_total counter were recorded all
along but never scraped — which is why those dashboard panels read empty); add
the worker containerPort, the vmagent worker scrape job, and two additive
NetworkPolicies. Instrument cache Get/Set hit/miss.

BE-2 retention: three periodic Asynq cleanup crons mirroring the reminder-log
cleanup — notifications (90d), webhook dedup log (180d), audit_log (365d).

BE-1 GDPR data export: POST /api/auth/export/ enqueues a low-priority Asynq job
that gathers all of the user's data (owned residences + their tasks/contractors/
documents/share-codes, plus profile/notifications/prefs/push-tokens/subscription/
audit log), zips one JSON file per category, and emails it as an attachment.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>

This commit is contained in:

Trey T

2026-06-08 22:15:26 -05:00

parent 3b2ea9959a

commit b54493f785

14 changed files with 421 additions and 13 deletions

									
										internal/services/audit_service.go
									
		+1
		
												View File
												
				@@ -19,6 +19,7 @@ const (

					AuditEventPasswordReset   = "auth.password_reset"

					AuditEventPasswordChanged = "auth.password_changed"

					AuditEventAccountDeleted  = "auth.account_deleted"

					AuditEventDataExport      = "auth.data_export_requested"

				)

				// AuditService handles audit logging for security-relevant events.