15 add connection pooling (#16)

# **Implement Connection Pooling**

<!-- This PR fixes #15  -->

## **Description**

<!--  📛📛
Please include a summary of the change and/or which issue is fixed.
List any dependencies required for this change, if there are any.
📛📛 -->

* This PR introduces connection pooling to improve database performance
and resource management. By implementing a pool of reusable database
connections, the overhead of establishing new connections for each
request is reduced, leading to lower latency and better scalability
under high load conditions.

---

### **Additional context**

<!-- Add any other context or additional information about the pull
request.-->

* This change addresses the issue of inefficient database connection
management by ensuring that connections are reused rather than
constantly opened and closed. This enhancement is particularly
beneficial for applications with high database request volumes, as it
optimizes resource utilization and performance.

<!-- 📛📛📛📛
If it fixes any current issue please let us know this way:
Uncomment the comment above "description", then add your number of
issues after the "#".
Example: # **This pull request fixes #NUMBER_OF_THE_ISSUE issue**
If there are multiple issues to be closed with the merge of this pull
request
please do it like so: **This pull request fixes #NUMBER_OF_THE_ISSUE,
fixes #NUMBER_OF_THE_ISSUE and fixes #NUMBER_OF_THE_ISSUE issue**.
For more information on closing issues using keywords, please check
https://docs.github.com/en/enterprise/2.16/user/github/managing-your-work-on-github/closing-issues-using-keywords#closing-multiple-issues
📛📛📛📛 -->

Author: n0nuser

.gitguardian.yml

@@ -0,0 +1,5 @@
+incident:
+  ignore:
+    - name: "Ignore example secrets"
+      match: "src/core/config.py"
+      reason: "Example credentials that are not used in production."

src/controller/api/endpoints/customer.py

@@ -30,46 +30,6 @@
 CommonDeps = Annotated[dict[str, Any], Depends(common_query_parameters)]
 
 
-@router.delete(
-    "/v1/customers/{customer_id}",
-    responses={
-        204: {"description": "No Content."},
-        400: {"model": ErrorMessage, "description": "Bad Request."},
-        401: {"model": ErrorMessage, "description": "Unauthorized."},
-        403: {"model": ErrorMessage, "description": "Forbidden."},
-        404: {"model": ErrorMessage, "description": "Not Found."},
-        405: {"model": ErrorMessage, "description": "Method Not Allowed."},
-        422: {"model": ErrorMessage, "description": "Unprocessable Entity."},
-        500: {"model": ErrorMessage, "description": "Internal Server Error."},
-        502: {"model": ErrorMessage, "description": "Bad Gateway."},
-        503: {"model": ErrorMessage, "description": "Service Unavailable."},
-        504: {"model": ErrorMessage, "description": "Gateway Timeout."},
-    },
-    tags=["Customers"],
-    summary="Delete specific customer.",
-    response_model=None,
-)
-async def delete_customer_id(
-    customer_id: Annotated[UUID4, Path(description="Id of a specific customer.")],
-    http_request_info: CommonDeps,
-    db_connection: Annotated[Session, Depends(get_db_session)],
-) -> Response:
-    """Delete the information of the customer with the matching Id."""
-    logger.info("Entering...")
-    logger.debug("Deleting customer with id %s", customer_id)
-    try:
-        CustomerApplicationService.delete_customer(db_connection, customer_id)
-        logger.debug("Customer with id %s deleted", customer_id)
-    except ElementNotFoundError as error:
-        logger.error("Customer with id %s not found", customer_id)  # noqa: TRY400
-        raise HTTP404NotFoundError from error
-    except Exception as error:
-        logger.exception("Error deleting customer with id %s", customer_id)
-        raise HTTP500InternalServerError from error
-    logger.info("Exiting...")
-    return Response(status_code=status.HTTP_204_NO_CONTENT, headers=http_request_info)
-
-
 @router.get(
     "/v1/customers",
     responses={
@@ -150,49 +110,6 @@ async def get_customers(
     )
 
 
-@router.get(
-    "/v1/customers/{customer_id}",
-    responses={
-        200: {"model": CustomerDetailResponse, "description": "OK."},
-        401: {"model": ErrorMessage, "description": "Unauthorized."},
-        403: {"model": ErrorMessage, "description": "Forbidden."},
-        404: {"model": ErrorMessage, "description": "Not Found."},
-        422: {"model": ErrorMessage, "description": "Unprocessable Entity."},
-        423: {"model": ErrorMessage, "description": "Locked."},
-        500: {"model": ErrorMessage, "description": "Internal Server Error."},
-        501: {"model": ErrorMessage, "description": "Not Implemented."},
-        502: {"model": ErrorMessage, "description": "Bad Gateway."},
-        503: {"model": ErrorMessage, "description": "Service Unavailable."},
-        504: {"model": ErrorMessage, "description": "Gateway Timeout."},
-    },
-    tags=["Customers"],
-    summary="Customer information.",
-    response_model_by_alias=True,
-    response_model=CustomerDetailResponse,
-)
-async def get_customer_id(
-    http_request_info: CommonDeps,
-    db_connection: Annotated[Session, Depends(get_db_session)],
-    customer_id: Annotated[UUID4, Path(description="Id of a specific customer.")],
-) -> JSONResponse:
-    """Retrieve the information of the customer with the matching code."""
-    logger.info("Entering...")
-    logger.debug("Getting customer with id %s", customer_id)
-    try:
-        api_data = CustomerApplicationService.get_customer_id(db_connection, customer_id)
-        logger.debug("Customer with id %s retrieved", customer_id)
-    except ElementNotFoundError as error:
-        logger.error("Customer with id %s not found", customer_id)  # noqa: TRY400
-        raise HTTP404NotFoundError from error
-    except Exception as error:
-        logger.exception("Error getting customer with id %s", customer_id)
-        raise HTTP500InternalServerError from error
-    logger.info("Exiting...")
-    return JSONResponse(
-        content=api_data.model_dump(), status_code=status.HTTP_200_OK, headers=http_request_info
-    )
-
-
 @router.post(
     "/v1/customers",
     responses={
@@ -278,6 +195,89 @@ async def put_customers_customer_id(
     return Response(status_code=status.HTTP_204_NO_CONTENT, headers=http_request_info)
 
 
+@router.delete(
+    "/v1/customers/{customer_id}",
+    responses={
+        204: {"description": "No Content."},
+        400: {"model": ErrorMessage, "description": "Bad Request."},
+        401: {"model": ErrorMessage, "description": "Unauthorized."},
+        403: {"model": ErrorMessage, "description": "Forbidden."},
+        404: {"model": ErrorMessage, "description": "Not Found."},
+        405: {"model": ErrorMessage, "description": "Method Not Allowed."},
+        422: {"model": ErrorMessage, "description": "Unprocessable Entity."},
+        500: {"model": ErrorMessage, "description": "Internal Server Error."},
+        502: {"model": ErrorMessage, "description": "Bad Gateway."},
+        503: {"model": ErrorMessage, "description": "Service Unavailable."},
+        504: {"model": ErrorMessage, "description": "Gateway Timeout."},
+    },
+    tags=["Customers"],
+    summary="Delete specific customer.",
+    response_model=None,
+)
+async def delete_customer_id(
+    customer_id: Annotated[UUID4, Path(description="Id of a specific customer.")],
+    http_request_info: CommonDeps,
+    db_connection: Annotated[Session, Depends(get_db_session)],
+) -> Response:
+    """Delete the information of the customer with the matching Id."""
+    logger.info("Entering...")
+    logger.debug("Deleting customer with id %s", customer_id)
+    try:
+        CustomerApplicationService.delete_customer(db_connection, customer_id)
+        logger.debug("Customer with id %s deleted", customer_id)
+    except ElementNotFoundError as error:
+        logger.error("Customer with id %s not found", customer_id)  # noqa: TRY400
+        raise HTTP404NotFoundError from error
+    except Exception as error:
+        logger.exception("Error deleting customer with id %s", customer_id)
+        raise HTTP500InternalServerError from error
+    logger.info("Exiting...")
+    return Response(status_code=status.HTTP_204_NO_CONTENT, headers=http_request_info)
+
+
+@router.get(
+    "/v1/customers/{customer_id}",
+    responses={
+        200: {"model": CustomerDetailResponse, "description": "OK."},
+        401: {"model": ErrorMessage, "description": "Unauthorized."},
+        403: {"model": ErrorMessage, "description": "Forbidden."},
+        404: {"model": ErrorMessage, "description": "Not Found."},
+        422: {"model": ErrorMessage, "description": "Unprocessable Entity."},
+        423: {"model": ErrorMessage, "description": "Locked."},
+        500: {"model": ErrorMessage, "description": "Internal Server Error."},
+        501: {"model": ErrorMessage, "description": "Not Implemented."},
+        502: {"model": ErrorMessage, "description": "Bad Gateway."},
+        503: {"model": ErrorMessage, "description": "Service Unavailable."},
+        504: {"model": ErrorMessage, "description": "Gateway Timeout."},
+    },
+    tags=["Customers"],
+    summary="Customer information.",
+    response_model_by_alias=True,
+    response_model=CustomerDetailResponse,
+)
+async def get_customer_id(
+    http_request_info: CommonDeps,
+    db_connection: Annotated[Session, Depends(get_db_session)],
+    customer_id: Annotated[UUID4, Path(description="Id of a specific customer.")],
+) -> JSONResponse:
+    """Retrieve the information of the customer with the matching code."""
+    logger.info("Entering...")
+    logger.debug("Getting customer with id %s", customer_id)
+    try:
+        api_data = CustomerApplicationService.get_customer_id(db_connection, customer_id)
+        logger.debug("Customer with id %s retrieved", customer_id)
+    except ElementNotFoundError as error:
+        logger.error("Customer with id %s not found", customer_id)  # noqa: TRY400
+        raise HTTP404NotFoundError from error
+    except Exception as error:
+        logger.exception("Error getting customer with id %s", customer_id)
+        raise HTTP500InternalServerError from error
+    logger.info("Exiting...")
+    return JSONResponse(
+        content=api_data.model_dump(), status_code=status.HTTP_200_OK, headers=http_request_info
+    )
+
+
 @router.post(
     "/v1/customers/{customer_id}/addresses",
     responses={

src/core/config.py

@@ -35,7 +35,6 @@ class Settings(BaseSettings):
     """Represents the configuration settings for the application."""
 
     # CORE SETTINGS
-    ## Could be improved by using a secret manager like AWS Secrets Manager or Hashicorp Vault
     SECRET_KEY: str = "HDx09iYK97MzUqezQ8InThpcEBk791oi"
     ENVIRONMENT: Literal["DEV", "PYTEST", "PREPROD", "PROD"] = "DEV"
     ## BACKEND_CORS_ORIGINS and ALLOWED_HOSTS are a JSON-formatted list of origins
@@ -45,13 +44,23 @@ class Settings(BaseSettings):
     APP_LOG_FILE_PATH: str = "logs/app.log"
 
     # POSTGRESQL DATABASE
-    POSTGRES_SERVER: str = "db"
-    POSTGRES_USER: str = "postgres"
-    POSTGRES_PASSWORD: str = "postgres"
-    POSTGRES_PORT: int = 5432
-    POSTGRES_DB: str = "app-db"
+    POSTGRES_SERVER: str = "db"  # The name of the service in the docker-compose file
+    POSTGRES_USER: str = "postgres"  # The default username for the PostgreSQL database
+    POSTGRES_PASSWORD: str = "postgres"  # The default password for the PostgreSQL database
+    POSTGRES_PORT: int = 5432  # The default port for the PostgreSQL database
+    POSTGRES_DB: str = "app-db"  # The default database name for the PostgreSQL database
     SQLALCHEMY_DATABASE_URI: PostgresDsn | None = None
 
+    # CONNECTION POOL SETTINGS
+    # The size of the pool to be maintained, defaults to 5
+    POOL_SIZE: int = 10
+    # Controls the number of connections that can be created after the pool reached its size
+    MAX_OVERFLOW: int = 20
+    # Number of seconds to wait before giving up on getting a connection from the pool
+    POOL_TIMEOUT: int = 30
+    # Number of seconds after which a connection is recycled (preventing stale connections)
+    POOL_RECYCLE: int = 1800
+
     @field_validator("SQLALCHEMY_DATABASE_URI", mode="before")
     @classmethod
     def assemble_db_connection(

src/repository/session.py

@@ -5,13 +5,22 @@
 
 from sqlalchemy import create_engine
 from sqlalchemy.orm import Session, sessionmaker
+from sqlalchemy.pool import QueuePool
 
 from src.core.config import settings
 
 logger = logging.getLogger(__name__)
 
-# Create a new engine
-engine = create_engine(str(settings.SQLALCHEMY_DATABASE_URI), pool_pre_ping=True)
+# Create a new engine with connection pooling
+engine = create_engine(
+    str(settings.SQLALCHEMY_DATABASE_URI),
+    pool_pre_ping=True,
+    poolclass=QueuePool,
+    pool_size=settings.POOL_SIZE,
+    max_overflow=settings.MAX_OVERFLOW,
+    pool_timeout=settings.POOL_TIMEOUT,
+    pool_recycle=settings.POOL_RECYCLE,
+)
 
 # Create a session factory
 session_local = sessionmaker(autocommit=False, autoflush=False, bind=engine)