docs: [#220] add ADR for infrastructure module organization

josecelano · josecelano · commit 32d31d7c760a · 2025-12-11T09:40:57.000Z
diff --git a/docs/codebase-architecture.md b/docs/codebase-architecture.md
@@ -343,13 +343,17 @@ Application-specific template rendering and configuration for external tools:
 - ✅ `src/infrastructure/external_tools/tofu/template/renderer/cloud_init.rs` - Cloud-init rendering
 - ✅ `src/infrastructure/external_tools/tofu/template/wrappers/lxd/` - LXD template wrappers
 
-**Level 3: Remote System Operations:**
+**Level 3: Remote System Operations (SSH-based, inside VM):**
 
-- ✅ `src/infrastructure/remote_actions/mod.rs` - Remote operations root
-- ✅ `src/infrastructure/remote_actions/validators/cloud_init.rs` - Validate cloud-init completion
-- ✅ `src/infrastructure/remote_actions/validators/docker.rs` - Verify Docker installation
-- ✅ `src/infrastructure/remote_actions/validators/docker_compose.rs` - Validate Docker Compose
-- ✅ `src/infrastructure/remote_actions/validators/running_services.rs` - Validate tracker services (validates all HTTP tracker instances)
+- ✅ `src/infrastructure/remote_actions/mod.rs` - Remote operations root (SSH-based validators)
+- ✅ `src/infrastructure/remote_actions/validators/cloud_init.rs` - Validate cloud-init completion (via SSH)
+- ✅ `src/infrastructure/remote_actions/validators/docker.rs` - Verify Docker installation (via SSH)
+- ✅ `src/infrastructure/remote_actions/validators/docker_compose.rs` - Validate Docker Compose (via SSH)
+
+**Level 3: External Validators (E2E, outside VM):**
+
+- ✅ `src/infrastructure/external_validators/mod.rs` - External validators root (HTTP-based E2E validation)
+- ✅ `src/infrastructure/external_validators/running_services.rs` - Validate tracker services externally (validates all HTTP tracker instances via HTTP health checks from test runner)
 
 **Persistence Layer:**
 
diff --git a/docs/decisions/infrastructure-module-organization.md b/docs/decisions/infrastructure-module-organization.md
@@ -0,0 +1,153 @@
+# Infrastructure Module Organization: Execution Context Separation
+
+**Status**: Accepted  
+**Date**: 2025-12-11  
+**Deciders**: Development Team  
+**Issue**: [#220](https://github.com/torrust/torrust-tracker-deployer/issues/220)
+
+## Context
+
+The infrastructure layer contains components that interact with external systems. However, there are two fundamentally different types of external interactions:
+
+1. **SSH-based operations**: Commands executed **inside the VM** via SSH connection
+2. **External validation**: HTTP requests made **from outside the VM** to test end-to-end functionality
+
+Previously, both types were mixed in `infrastructure/remote_actions/`, creating architectural confusion:
+
+- `remote_actions/validators/docker.rs` - Executes `docker --version` inside VM via SSH
+- `remote_actions/validators/running_services.rs` - Makes HTTP requests to services from outside VM
+
+This mixing obscured the critical distinction of **where the code executes** and **what it validates**.
+
+## Decision
+
+We separate infrastructure modules by execution context:
+
+```text
+src/infrastructure/
+├── remote_actions/          # SSH-based operations executed INSIDE the VM
+│   └── validators/
+│       ├── cloud_init.rs
+│       ├── docker.rs
+│       └── docker_compose.rs
+└── external_validators/     # E2E validation from OUTSIDE the VM
+    └── running_services.rs
+```
+
+### Module Purposes
+
+**`remote_actions/`** (SSH-based, inside VM):
+
+- Execute commands via SSH connection inside the VM
+- Validate internal VM state and configuration
+- Examples: Check if Docker is installed, verify cloud-init completion
+- Scope: Internal system state
+
+**`external_validators/`** (HTTP-based, outside VM):
+
+- Make HTTP requests from test runner/deployment machine
+- Validate end-to-end service accessibility
+- Test network configuration and firewall rules
+- Examples: Health check endpoints, service availability tests
+- Scope: External accessibility and E2E functionality
+
+## Rationale
+
+### Why Both Remain in Infrastructure Layer (DDD)
+
+Both modules are infrastructure concerns because they:
+
+- Interact with external systems (VMs, networks, services)
+- Provide technical capabilities for application layer
+- Depend on adapters (SSH client, HTTP client)
+- Are not business logic or domain concepts
+
+The distinction is **execution context**, not **DDD layer**.
+
+### Why Separation Improves Architecture
+
+1. **Clarity**: Developers immediately understand where code executes
+2. **Testability**: Different testing strategies for SSH vs HTTP operations
+3. **Documentation**: Module names self-document their purpose
+4. **Maintainability**: Related code grouped by execution context
+5. **Discoverability**: New validators know which module to use
+
+### Comparison with Remote Actions Module
+
+| Aspect             | `remote_actions/`                 | `external_validators/`        |
+| ------------------ | --------------------------------- | ----------------------------- |
+| Execution location | Inside VM via SSH                 | Outside VM (test runner)      |
+| Connection type    | SSH                               | HTTP/HTTPS                    |
+| Validates          | Internal state                    | External accessibility        |
+| Examples           | Docker version, cloud-init status | Service health, API endpoints |
+| Firewall impact    | Not validated                     | Implicitly validated          |
+
+## Consequences
+
+### Positive
+
+- **Clear architectural boundaries**: Execution context is explicit
+- **Better code organization**: Related validators grouped together
+- **Improved documentation**: Module purpose is self-evident
+- **Easier testing**: Different strategies for SSH vs HTTP
+- **Scalable**: Future validators know which module to use
+
+### Neutral
+
+- **Module proliferation**: More top-level infrastructure modules
+- **Import paths change**: Code needs import updates (one-time cost)
+
+### Negative
+
+- **None identified**: This is a pure improvement in organization
+
+## Alternatives Considered
+
+### Alternative 1: Keep Everything in `remote_actions/`
+
+**Rejected because**:
+
+- Mixes fundamentally different execution contexts
+- "Remote actions" implies SSH operations, confusing for HTTP validators
+- Harder to understand what code does without reading implementation
+
+### Alternative 2: Move to Application Layer Services
+
+**Rejected because**:
+
+- Not business logic or use cases
+- Depends on infrastructure adapters (SSH, HTTP clients)
+- Violates DDD layer boundaries (application depends on infrastructure)
+- `RunningServicesValidator` performs infrastructure concerns (external system validation)
+
+### Alternative 3: Create `e2e_validators/` Instead
+
+**Rejected because**:
+
+- "E2E" describes testing strategy, not execution context
+- Less clear than "external" for where code runs
+- Could be confused with test helpers
+
+## Implementation
+
+### File Reorganization
+
+1. Create `src/infrastructure/external_validators/mod.rs`
+2. Move `running_services.rs` from `remote_actions/validators/` to `external_validators/`
+3. Update infrastructure module exports
+4. Update all import paths in application and testing code
+
+### Documentation Updates
+
+1. Update `docs/codebase-architecture.md` with new structure
+2. Add module-level documentation explaining execution context
+3. Update validator documentation to reference execution context
+
+## Related Decisions
+
+- [Port Zero Not Supported](port-zero-not-supported.md) - Validates port configuration
+- [DDD Layer Placement](../contributing/ddd-layer-placement.md) - Explains infrastructure layer
+
+## Notes
+
+This refactoring maintains all existing functionality while improving code organization and clarity. The change is purely structural - no behavior changes.
