Merge pull request #2596 from bcgov/feat/alex-documentation-250509

Feat: Comprehensive LCFS Wiki Documentation - 2409 2410

Author: AlexZorkin

.github/workflows/sync-wiki.yml

@@ -0,0 +1,63 @@
+name: Sync Wiki to GitHub Wiki
+
+on:
+  push:
+    branches:
+      - develop # On merge to develop
+    paths:
+      - 'wiki/**' # Only run if files in the wiki/ directory change
+
+jobs:
+  sync-wiki-content:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout Main Repository
+        uses: actions/checkout@v4
+        with:
+          path: main-repo # Checkout main repo into a specific directory
+
+      - name: Checkout Wiki Repository
+        uses: actions/checkout@v4
+        with:
+          repository: ${{ github.repository }}.wiki # bcgov/lcfs.wiki
+          path: wiki-repo # Checkout wiki repo into a specific directory
+          token: ${{ secrets.GITHUB_TOKEN }} # Use the default GITHUB_TOKEN
+
+      - name: Sync files to Wiki Repo
+        run: |
+          echo "Source (main-repo/wiki):"
+          ls -R ../main-repo/wiki
+          echo "Destination (wiki-repo) before sync:"
+          ls -R ../wiki-repo
+
+          # The wiki repo root is where the files should go.
+          # Clean the wiki-repo root, except for .git and specific preserved files/dirs like Home.md or _Sidebar.md if managed manually there
+          cd wiki-repo
+          find . -maxdepth 1 -type f ! -name 'Home.md' ! -name '_Sidebar.md' ! -name '_Footer.md' -delete
+          # Remove all directories except .git and images. Add other preserved dirs as needed.
+          find . -maxdepth 1 -mindepth 1 -type d ! -name '.git' ! -name 'images' -exec rm -rf {} + 
+          cd ..
+
+          # Copy content from main-repo/wiki to wiki-repo, effectively mirroring it
+          # The `.` after main-repo/wiki/ means copy the *contents* of the directory
+          rsync -av --delete --checksum main-repo/wiki/. wiki-repo/
+          
+          echo "Destination (wiki-repo) after sync:"
+          ls -R wiki-repo
+
+      - name: Commit and Push to Wiki
+        run: |
+          cd wiki-repo
+          git status # For debugging
+          if ! git diff --quiet || ! git diff --staged --quiet; then
+            git config user.name "GitHub Actions Bot"
+            git config user.email "actions@github.com"
+            git add .
+            git commit -m "Sync wiki content from main repository (Commit: ${{ github.sha }}) [skip ci]"
+            # The git push command will use the credentials context of the GITHUB_TOKEN
+            git push
+          else
+            echo "No changes to sync to the wiki."
+          fi
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # Ensure git push uses the GITHUB_TOKEN 

wiki/Backend-Logging-Guide.md

@@ -0,0 +1,204 @@
+# Backend Logging Guide
+
+This document provides comprehensive guidelines for developers on how to effectively use the standardized logging system in the LCFS backend. By following this guide, you will ensure consistent logging practices, facilitating easier debugging, monitoring, and analysis. This guide is based on the original "11. Backend Logging Guide" and adapted for the project's use of `structlog`.
+
+## Table of Contents
+1.  [Introduction](#introduction)
+2.  [Logging Library: Structlog](#logging-library-structlog)
+3.  [Logging Configuration](#logging-configuration)
+4.  [Logging Modes](#logging-modes)
+    *   [Development Mode](#development-mode)
+    *   [Non-Development Mode (JSON)](#non-development-mode-json)
+5.  [Logging Practices](#logging-practices)
+    *   [What to Log](#what-to-log)
+    *   [How to Log with Structlog](#how-to-log-with-structlog)
+6.  [Sample Logs](#sample-logs)
+    *   [Development Mode Logs](#development-mode-logs)
+    *   [Non-Development Mode Logs](#non-development-mode-logs)
+7.  [Logging Levels](#logging-levels)
+8.  [Correlation ID Usage](#correlation-id-usage)
+9.  [Best Practices and Guidelines](#best-practices-and-guidelines)
+    *   [Consistency](#consistency)
+    *   [Security and Privacy (Sensitive Data)](#security-and-privacy-sensitive-data)
+    *   [Performance Considerations](#performance-considerations)
+10. [Using Kibana for Log Analysis (If Applicable)](#using-kibana-for-log-analysis-if-applicable)
+11. [FAQs](#faqs)
+
+## 1. Introduction
+
+Effective logging is crucial for diagnosing issues, monitoring application behavior, and gaining insights into system performance. This guide outlines our standardized approach to backend logging using `structlog`, helping you produce logs that are both developer-friendly and suitable for production analysis.
+
+Our logging system, powered by `structlog`, is designed to be developer-friendly and automatically enriches logs with useful metadata like source information and correlation IDs.
+
+## 2. Logging Library: Structlog
+
+The backend uses **`structlog`** (`structlog` dependency in `backend/pyproject.toml`). Structlog is a powerful library for structured logging in Python, allowing for flexible and rich log event creation.
+
+## 3. Logging Configuration
+
+*   The primary logging configuration is typically found in `backend/lcfs/logging_config.py` (or a similar path).
+*   This file sets up `structlog` processors, formatters, and integrates with standard Python logging if needed.
+*   Key features handled by the configuration include:
+    *   Adding timestamps.
+    *   Including log levels.
+    *   Capturing caller information (filename, line number, function name).
+    *   Automatic inclusion of correlation IDs.
+    *   Processors for development (console-friendly) and production (JSON) output.
+    *   Sensitive data masking.
+
+## 4. Logging Modes
+
+Our logging system operates in two distinct modes:
+
+### Development Mode
+*   **Purpose**: To provide developers with readable and highlighted logs during local development.
+*   **Features**:
+    *   Human-readable, often colorized console output.
+    *   Syntax highlighting for better readability.
+    *   Indented and structured output for complex data types.
+    *   Example Output Tool: `structlog.dev.ConsoleRenderer`.
+
+### Non-Development Mode (JSON)
+*   **Purpose**: To produce logs suitable for production environments, optimized for log aggregation and analysis tools (e.g., Kibana, Splunk, OpenSearch).
+*   **Features**:
+    *   JSON-formatted logs for easy parsing by log management systems.
+    *   Compact representation of data.
+    *   Example Output Tool: `structlog.processors.JSONRenderer`.
+
+## 5. Logging Practices
+
+### What to Log
+
+Developers should log information that aids in understanding application behavior and diagnosing issues:
+
+*   **Significant Business Events**: e.g., "Compliance report submitted", "User account created".
+*   **Key Data Points/Identifiers**: e.g., `report_id`, `user_id`, `transaction_id`, counts, statuses.
+*   **Errors and Exceptions**: All caught exceptions or significant error conditions.
+*   **Service Calls**: Start and end of important service operations or external API calls, along with their success/failure status.
+*   **Process Milestones**: Key steps in long-running or complex processes.
+*   **Configuration Values**: Important configuration settings at startup (be mindful of sensitivity).
+
+### How to Log with Structlog
+
+1.  **Get a Logger Instance**:
+    In your Python modules, obtain a `structlog` logger:
+    ```python
+    import structlog
+
+    logger = structlog.get_logger(__name__)
+    ```
+
+2.  **Log Messages with Key-Value Pairs**:
+    Log messages by calling methods on the logger object (e.g., `info`, `error`, `warning`, `debug`). Pass structured data as keyword arguments.
+    ```python
+    logger.info("fuel_supply_created", fuel_supply_id=123, compliance_report_id=456)
+    logger.error("payment_processing_failed", order_id=789, reason="Insufficient funds")
+    ```
+    The first argument is typically the main "event" or message.
+
+3.  **No Need to Manually Add Common Metadata**: The `structlog` configuration automatically adds timestamps, log levels, source information (filename, line number, function name), and correlation IDs.
+
+## 6. Sample Logs
+
+*(These are conceptual examples; actual format depends on `logging_config.py`.)*
+
+### Development Mode Logs
+*(Example from original wiki, adapted for structlog style)*
+```
+2024-11-03 18:50:23 [info     ] Getting fuel supply list for compliance report [your_module]compliance_report_id=123 correlation_id=177b381a-ca37-484d-a3b9-bbb16061775a filename=reports/views.py func_name=get_fuel_supply_list lineno=101
+```
+`structlog.dev.ConsoleRenderer` often provides more structured, multi-line output for key-value pairs.
+
+### Non-Development Mode Logs (JSON)
+*(Example from original wiki, adapted for structlog style)*
+```json
+{
+  "event": "Getting fuel supply list for compliance report",
+  "compliance_report_id": 123,
+  "correlation_id": "816dbbdf-11fe-4df5-8dc8-754c07610742",
+  "level": "info",
+  "logger": "your_module.reports.views", 
+  "filename": "reports/views.py", 
+  "func_name": "get_fuel_supply_list", 
+  "lineno": 101,
+  "timestamp": "2024-11-03T18:50:23.123456Z"
+}
+```
+
+## 7. Logging Levels
+
+Use appropriate logging levels:
+
+*   `logger.debug(...)`: Detailed information, typically for diagnosing problems. Often disabled in production.
+*   `logger.info(...)`: Confirmation that things are working as expected; significant lifecycle events.
+*   `logger.warning(...)`: Indication of an unexpected event or potential problem that doesn't prevent current operation but might cause issues later.
+*   `logger.error(...)`: A more serious problem where the software was unable to perform some function.
+*   `logger.critical(...)`: A very serious error, indicating the program itself may be unable to continue running.
+
+## 8. Correlation ID Usage
+
+*   **Purpose**: A unique ID to trace a single request or operation across multiple log entries, services, or components.
+*   **Automatic Inclusion**: The logging infrastructure (via `structlog` processors) should automatically generate/propagate and include correlation IDs in every log entry.
+*   **Future Integration**: Aim for end-to-end tracing by passing the correlation ID from the frontend through to all backend services.
+
+## 9. Best Practices and Guidelines
+
+### Consistency
+*   **Event Names**: Use consistent and descriptive event names (the first argument to log methods like `logger.info("event_name", ...)`).
+*   **Key Names**: Use consistent key names for common data points (e.g., `user_id`, `report_id`).
+
+### Security and Privacy (Sensitive Data)
+*   **DO NOT Log Sensitive Data**: Avoid logging PII (Personally Identifiable Information), passwords, access tokens, API keys, financial details, or any other confidential information directly.
+*   **Automatic Data Masking**: The `structlog` configuration should include a processor to automatically mask or censor known sensitive keys (e.g., `password`, `token`, `authorization`). An example processor function from the original wiki:
+    ```python
+    # In backend/lcfs/logging_config.py (conceptual)
+    # def censor_sensitive_data_processor(_, __, event_dict):
+    #     sensitive_keys = {'password', 'token', 'secret_key', 'authorization', 'api_key'}
+    #     for key in event_dict:
+    #         if key in sensitive_keys:
+    #             event_dict[key] = '***' # Or a more robust redaction
+    #     return event_dict
+    ```
+    Ensure such a processor is active in your `structlog` pipeline.
+*   **Be Mindful**: Even with masking, exercise caution. It's best not to log sensitive data at all if avoidable.
+
+### Performance Considerations
+*   **Avoid Excessive Logging**: Log necessary information but avoid overly verbose logging in high-throughput code paths or tight loops, as it can impact performance.
+*   **Deferred Evaluation**: `structlog` can be configured to defer string formatting or a_lambda_based_value_computation until it's certain a log message will actually be emitted (e.g., based on log level), which can save resources.
+*   **Asynchronous Logging**: For very high-performance scenarios, consider asynchronous logging handlers (though this adds complexity).
+
+## 10. Using Kibana for Log Analysis (If Applicable)
+
+If logs are shipped to an Elasticsearch, Logstash, Kibana (ELK) stack or similar (like OpenSearch):
+
+*   **Accessing Kibana**: Via OpenShift Platform or a direct URL.
+*   **Index Pattern**: Typically `app-*` or similar depending on your log shipping configuration.
+*   **Timestamp Field**: Usually `@timestamp`.
+*   **Searching/Filtering**: Utilize Kibana Query Language (KQL) or Lucene syntax to search and filter logs.
+    *   Filter by `correlation_id` to trace a request.
+    *   Filter by `level` (e.g., `level:error`).
+    *   Filter by `kubernetes.namespace_name`, `kubernetes.pod_name`, `kubernetes.container_name` for specific services in OpenShift.
+    *   Example Kibana Query (from original wiki):
+        `kubernetes.namespace_name:"YOUR_PROJECT_NAME-tools" AND kubernetes.container_name.raw:"lcfs-backend" AND level:"error"`
+
+## 11. FAQs
+
+*   **Q1: Do I need to include source info (filename, line number) in logs?**
+    A: No, `structlog` is configured to add this automatically.
+*   **Q2: How do I include additional context?**
+    A: Pass key-value pairs as keyword arguments to the logger methods: `logger.info("event", key1=value1, key2=value2)`.
+*   **Q3: Do I need to manage the correlation ID?**
+    A: No, this is handled by the logging infrastructure.
+*   **Q4: How to log exceptions?**
+    A: Use `logger.exception("event_description")` within an `except` block to automatically include exception info and stack trace, or log manually with `logger.error("event", error=str(e), exc_info=True)`.
+    ```python
+    try:
+        # ... some operation ...
+    except ValueError as e:
+        logger.error("value_error_occurred", input_data=some_data, error_message=str(e))
+        # For full stack trace (especially in dev or if needed for error level):
+        # logger.exception("value_error_details") 
+    ```
+
+---
+*Adherence to these logging guidelines will greatly improve the observability and maintainability of the LCFS backend. Consult `backend/lcfs/logging_config.py` for specific `structlog` processor chain details.* 

wiki/CI-CD-Pipeline.md

@@ -0,0 +1,81 @@
+# CI/CD Pipeline
+
+This document describes the Continuous Integration (CI) and Continuous Deployment (CD) pipeline for the LCFS project. This is part of the requirements for ticket #2410.
+
+## 1. Overview
+
+The CI/CD pipeline automates the process of building, testing, and deploying the LCFS application, ensuring rapid and reliable delivery of new features and fixes.
+
+*   **Platform**: GitHub Actions (inferred from the presence of `.github/workflows` directory in typical projects, and common for modern development).
+    *   **Action**: Verify if GitHub Actions is indeed the CI/CD platform. If other tools are used (e.g., Jenkins, Azure DevOps, OpenShift Pipelines), this section needs to be updated.
+
+## 2. Continuous Integration (CI)
+
+CI is triggered on every push to a branch or when a Pull Request (PR) is created/updated targeting `main` (or `develop`).
+
+### Key CI Steps (Typical)
+
+1.  **Checkout Code**: Fetches the latest code from the branch/PR.
+2.  **Setup Environment**: 
+    *   Sets up specific versions of Node.js (for frontend) and Python (for backend).
+    *   Installs dependencies (npm for frontend, Poetry for backend).
+    *   Caches dependencies to speed up subsequent runs.
+3.  **Linting & Formatting Checks**:
+    *   **Frontend**: Runs ESLint and Prettier to check for code style and potential errors.
+    *   **Backend**: Runs Flake8, Black (check mode), Isort (check mode), and MyPy for style, formatting, and type checking.
+4.  **Automated Testing**:
+    *   **Frontend Unit/Integration Tests**: Runs Vitest tests (`npm run test:run`). Generates code coverage reports.
+    *   **Backend Unit/Integration Tests**: Runs Pytest tests (`poetry run pytest`). Generates code coverage reports.
+    *   **(Optional) Frontend E2E Tests**: May run Cypress tests against a preview environment or a mocked backend, though E2E tests are often part of a separate, scheduled pipeline or triggered manually due to their longer execution time.
+5.  **Build Application**:
+    *   **Frontend**: Creates a production build (`npm run build`).
+    *   **Backend**: No explicit build step for Python itself, but checks might include ensuring the Poetry project is valid.
+6.  **Build Docker Images** (Optional in CI, more common in CD, but can be a check):
+    *   Validates that `Dockerfile` and `Dockerfile.openshift` files can build successfully.
+7.  **Security Scans** (Optional but Recommended):
+    *   Dependency vulnerability scans (e.g., `npm audit`, `safety` or `pip-audit`).
+    *   Static Application Security Testing (SAST) tools.
+    *   Container image vulnerability scans (if images are built).
+8.  **Notifications**: Reports build status (success/failure) to GitHub, PR comments, or team communication channels (e.g., Slack).
+
+## 3. Continuous Deployment (CD)
+
+CD is typically triggered after a successful merge to the `main` branch (for production deployment) or a `develop`/`staging` branch (for pre-production environments).
+
+### Key CD Steps (Typical for OpenShift)
+
+1.  **Checkout Code**: Fetches the code from the branch that triggered the deployment (e.g., `main`).
+2.  **Build Docker Images** (if not already built and pushed by CI):
+    *   Builds the `backend` and `frontend` Docker images using their respective `Dockerfile.openshift` files.
+    *   Tags the images appropriately (e.g., with Git commit SHA, version number).
+    *   Pushes the images to a container registry accessible by OpenShift (e.g., OpenShift Internal Registry, BC Gov Artefact Repository).
+3.  **Deploy to OpenShift Environment** (e.g., Dev, Test, Prod):
+    *   Connects to the target OpenShift cluster using `oc login` (credentials stored as GitHub Secrets).
+    *   Applies OpenShift templates/configurations:
+        *   May use `oc process -f template.yaml | oc apply -f -` if using OpenShift templates.
+        *   May use `kustomize build | oc apply -f -` if using Kustomize.
+        *   May use Helm charts (`helm upgrade --install ...`).
+        *   This updates `DeploymentConfigs` or `Deployments`, which triggers new pod rollouts.
+    *   The `backend-bc.yaml` and `frontend-bc.yaml` `BuildConfigs` found in `openshift/templates/` might be triggered here if the strategy is to build images directly within OpenShift using S2I or Docker strategy based on code changes.
+4.  **Run Database Migrations**: For the backend, Alembic migrations (`./migrate.sh -u head` or similar) are run against the target environment's database before the new application version goes live.
+5.  **Health Checks / Smoke Tests**: Performs basic checks to ensure the deployed application is running and healthy.
+6.  **Notifications**: Reports deployment status.
+
+## 4. Workflow Files
+
+*   CI/CD pipelines are defined as YAML files in the `.github/workflows/` directory of the repository.
+*   There might be separate workflow files for CI (e.g., `ci.yml`, `pull-request.yml`) and CD (e.g., `deploy-dev.yml`, `deploy-prod.yml`).
+
+## 5. Wiki Documentation Synchronization
+
+*   A dedicated GitHub Actions workflow can be set up to automatically synchronize changes made to Markdown files in the `wiki/` directory of the main codebase repository to the actual GitHub Wiki repository (`lcfs.wiki.git`).
+*   See [GitHub Workflow for Wiki Sync](GitHub-Workflow-for-Wiki-Sync.md) for the implementation.
+
+## Further Investigation
+
+*   **Action**: Review the `.github/workflows/` directory in the LCFS repository to confirm the exact CI/CD tools, triggers, and steps.
+*   Document specific workflow file names and their purposes.
+*   Detail how environment variables and secrets are managed for different environments in the CI/CD pipeline.
+
+---
+*This document provides a general outline. The actual implementation details are in the workflow files within the repository.*