Operations Service

       ┌───────────┐
       │  Cloud    │
       │ Scheduler │
       └─────┬─────┘
             │
             ▼
    ┌─────────────────┐
    │   Operations    │
    │    Service      │
    └────────┬────────┘
             │
    ┌────────┴────────┐
    ▼                 ▼
┌──────────┐   ┌─────────────┐
│   API    │   │   PubSub    │
│ Gateways │   │   Topics    │
└──────────┘   └─────────────┘

ApiGatewayPaginator.visitAll():
  - Accepts project ID and location codes
  - Queries API Gateway service for all gateways
  - Handles paginated results automatically (25 per page)
  - Extracts gateway key from resource path
  - Visits each gateway with location context
  - Processes multiple locations sequentially
  - Resolves when all pages exhausted
 
Visitor pattern:
  - Gateway name extraction from full resource path
  - Default hostname capture for routing
  - Location code tracking for regional operations
  - Callback-based pagination handling

FanoutService.fanout():
  - Publishes warmer fanout started event
  - Discovers all gateways across configured locations
  - Enqueues Cloud Task for each gateway
  - Tracks failures with error messages
  - Publishes success or failure event with details
 
Fanout details tracking:
  - Discovered gateways array
  - Failures array with receive + error message
  - Locations to discover array
  - All-or-nothing success tracking
 
Task creation:
  - Retry with exponential backoff (3 attempts)
  - Custom X-E11-Warmer header for identification
  - HTTPS URL construction from gateway address
  - Queue targeting: operations-warmer-receive

TaskService features:
  - Lazy project ID resolution from client
  - Project number from configuration service
  - Service account email generation
  - Audience URL construction for Cloud Run
  - HTTP task creation with custom headers
 
Task configuration:
  - Parent: queue path in default location
  - HTTP method: GET for keepalive
  - URL: gateway address + warmer endpoint
  - Headers: X-E11-Warmer identification
  - Automatic service account attachment
 
Error handling:
  - Publishes warmer receive exhausted event
  - Returns undefined on failure
  - Allows fanout to continue despite individual failures

RequestMiddleware.use():
  - Checks if publishing is available
  - Records request start time with hrtime
  - Initializes response.locals.extra for metadata
  - Runs request model filter chain
  - Attaches finish event handler
  - Non-blocking publish on response complete
 
RequestPublisher.publish():
  - Calculates request duration in milliseconds
  - Filters excluded headers (auth, forwarded-auth)
  - Extracts all request metadata (method, path, query, params)
  - Captures response status and content length
  - Includes custom extra metadata from filters
  - Publishes to operations-request-completed topic
 
Captured metadata:
  - baseUrl, originalUrl, url, path, routePath
  - method, protocol, statusCode, contentLength
  - ip, ips, userAgent
  - headers (filtered), query, params
  - durationMs, timestamp, sourceType
  - extra custom metadata

Request filter execution:
  - Injected via REQUEST_MODEL_FILTERS provider
  - Executed in order before response
  - Can reject processing (breaks chain)
  - Failures logged but don't block original request
  - Access to req and res for metadata extraction
 
Filter interface:
  - use(req, res): boolean
  - Returns false to stop filter chain
  - Throws to stop chain with error
  - Modifies res.locals.extra for custom data
 
Error handling:
  - Filter rejection logged with warning
  - Filter failure caught and logged
  - Original request always proceeds
  - No latency impact from filter failures

RequestPublisher.init():
  - Checks if REQUEST_COMPLETED topic exists
  - Sets internal canPublish flag
  - Warns if topic unreachable
  - Includes topic name in warning
 
Publishing guard:
  - Early return if topic unreachable
  - No middleware overhead when disabled
  - No request latency impact
  - Silent degradation in dev environments
 
Module initialization:
  - Async topic check on module init
  - Warning logged with error details
  - Includes missing topic name
  - Service continues operating normally

CloudSchedulerGuard.canActivate():
  - Checks for X-CloudScheduler or X-Appengine-Cron header
  - Logs warning if headers missing
  - Returns false to block unauthorized requests
  - Handles null/undefined request edge cases
 
Protected endpoints:
  - Warmer fanout task handler
  - Scheduled maintenance operations
  - Platform-wide coordination tasks
 
Security model:
  - Header-based authentication
  - Logged rejection attempts
  - No credentials in request body
  - Leverages platform-level security

Location configuration:
  - Configurable locations array
  - Default to Project.defaultLocation()
  - Per-location gateway discovery
  - Location code tracking in events
 
Gateway address resolution:
  - Extracts defaultHostname from gateway
  - Constructs HTTPS URLs for tasks
  - Appends warmer receive endpoint path
  - Stores location context for debugging
 
Fanout details:
  - Locations to discover array
  - Per-gateway location tracking
  - Failure association with location
  - Success reporting per region

Event types:
  - WarmerFanoutStarted: Fanout operation began
  - WarmerFanoutSuccess: All gateways enqueued
  - WarmerFanoutFailed: Partial or complete failure
  - WarmerReceiveExhausted: Gateway not responding
 
Event payloads:
  - FanoutStarted: Simple message
  - FanoutSuccess: Discovered gateways + failures
  - FanoutFailed: Details + failure reason
  - ReceiveExhausted: Gateway address + location
 
Error handling:
  - Silent logging on publish failure
  - No impact on warmer operation
  - Continues despite event failures

Path exclusions:
  - /_ah/* (App Engine health checks)
  - /task/* (Task handler endpoints)
  - /tasks/* (Task handler endpoints)
 
Middleware configuration:
  - Applied globally to all routes
  - Exclusion patterns in constants
  - Frozen configuration object
  - Express route matching
 
Purpose:
  - Avoids capturing internal traffic
  - Reduces noise in request analytics
  - Prevents task recursion in telemetry
  - Optimizes event volume

Timing implementation:
  - process.hrtime() for start time
  - [seconds, nanoseconds] tuple format
  - Duration calculation on response finish
  - Millisecond precision conversion
 
Calculation:
  - hrtime() difference from start
  - seconds * 1000 + nanoseconds / 1000000
  - Rounded to nearest millisecond
  - Attached to published request model
 
Accuracy:
  - Nanosecond resolution capture
  - Wall-clock time measurement
  - Includes full middleware stack
  - End-to-end request duration

TaskService caching:
  - Project ID cached after first fetch
  - Project number cached from config service
  - Audience URL cached for tasks
  - Service account email generated once
 
Pattern:
  - Check cached value first
  - Async fetch if not present
  - Store in protected property
  - Return cached on subsequent calls
 
Benefits:
  - Reduces API calls
  - Improves fanout performance
  - Simplifies configuration management
  - Tolerates transient failures on first call