Skip to content

Fix issues related to moving pyproject.toml to project root #502

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 4 commits into from
Closed

Fix issues related to moving pyproject.toml to project root #502

wants to merge 4 commits into from

Conversation

@manavgup
Copy link
Owner

@manavgup manavgup commented Oct 27, 2025

No description provided.

manavgup and others added 4 commits October 27, 2025 10:52
@manavgup @claude
refactor: Move Poetry configuration to project root for cleaner monor…
acf51b6 
…epo structure

## Summary
Move pyproject.toml and poetry.lock from backend/ to project root to centralize
Python dependency management and fix virtual environment accessibility issues.

## Changes

### Poetry Configuration (Moved)
- backend/pyproject.toml → pyproject.toml
- backend/poetry.lock → poetry.lock

### Makefile (100+ lines across 20+ targets)
- Changed VENV_DIR from backend/.venv to .venv
- Updated all Poetry commands to run from project root with PYTHONPATH=backend
- Added venv dependency to local-dev-backend and local-dev-all targets
- Updated build targets to use project root as Docker build context
- Updated all test targets (atomic, unit, integration, e2e)
- Updated code quality targets (lint, format, security-check, coverage)
- Fixed clean target to reference root-level paths

### CI/CD Workflows (5 files)
- poetry-lock-check.yml: Updated paths and removed cd backend commands
- 01-lint.yml: Removed working-directory, updated all tool paths
- 04-pytest.yml: Updated cache keys and test commands
- 05-ci.yml: Updated dependency installation commands
- makefile-testing.yml: Updated test execution paths

### Docker Configuration
- backend/Dockerfile.backend: Updated COPY commands for new build context
- docker-compose.dev.yml: Changed context from ./backend to . + fixed indentation

## Benefits
- Single source of truth for Python dependencies at project root
- Simplified virtual environment management (.venv/ at root)
- Consistent build context across all tools (Makefile, docker-compose, CI/CD)
- Better monorepo structure for future frontend/backend separation
- Fixes dependency accessibility issues (e.g., docling import errors)

## Breaking Changes
Developers need to:
1. Remove old venv: rm -rf backend/.venv
2. Create new venv: make venv
3. Update IDE Python interpreter from backend/.venv to .venv

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>
@manavgup
fix(docker): add cache-bust ARG to invalidate stale Docker layers
f74079a 
When poetry files were moved from backend/ to project root, Docker cached
layers still referenced the old file structure. Adding an ARG before the
COPY command forces Docker to invalidate the cache at this layer.

Fixes CI build failure in PR #501.
@claude
fix: Change Docker build context from backend/ to root directory
072a762 
This commit fixes the Docker build failure by changing the build context
from the backend directory to the project root directory. This change
ensures consistency across all build configurations.

Changes made:
- Updated backend/Dockerfile.backend to add 'backend/' prefix to all COPY commands
- Updated Makefile build-backend target to build from root (.) instead of backend/
- Updated GitHub Actions workflows (03-build-secure.yml, 06-weekly-security-audit.yml, publish.yml) to use root context
- Updated docker-compose.dev.yml to use root context
- Added .dockerignore in root directory to exclude unnecessary files from build context

This fixes the test failure in test_make_build_backend_minimal where the build
was failing with "pyproject.toml: not found" error due to inconsistent build context.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>
@claude
Merge branch 'refactor/poetry-to-root-clean' into claude/fix-backend-…
97b12f6 
…dockerfile-011CUXwLMKkqgqHfnUD6QR12
@github-actions
Copy link
Contributor

github-actions bot commented Oct 27, 2025

🚀 Development Environment Options

This repository supports Dev Containers for a consistent development environment.

Option 1: GitHub Codespaces (Recommended)

Create a cloud-based development environment:

  1. Click the green Code button above
  2. Select the Codespaces tab
  3. Click Create codespace on claude/fix-backend-dockerfile-011CUXwLMKkqgqHfnUD6QR12
  4. Wait 2-3 minutes for environment setup
  5. Start coding with all tools pre-configured!

Option 2: VS Code Dev Containers (Local)

Use Dev Containers on your local machine:

  1. Install Docker Desktop
  2. Install VS Code
  3. Install the Dev Containers extension
  4. Clone this PR branch locally
  5. Open in VS Code and click "Reopen in Container" when prompted

Option 3: Traditional Local Setup

Set up the development environment manually:

# Clone the repository
git clone https://github.com/manavgup/rag_modulo.git
cd rag_modulo
git checkout claude/fix-backend-dockerfile-011CUXwLMKkqgqHfnUD6QR12

# Initialize development environment
make dev-init
make dev-build
make dev-up
make dev-validate

Available Commands

Once in your development environment:

make help           # Show all available commands
make dev-validate   # Validate environment setup
make test-atomic    # Run atomic tests
make test-unit      # Run unit tests
make lint          # Run linting

Services Available

When running make dev-up:

This automated message helps reviewers quickly set up the development environment.

@github-actions
Copy link
Contributor

github-actions bot commented Oct 27, 2025

Pull Request Review: Poetry Configuration Migration to Project Root

This PR addresses Issue #501 by migrating Poetry configuration files from backend/ to the project root, creating a cleaner monorepo structure. Overall, this is a well-structured refactoring with comprehensive updates across the codebase. Here's my detailed analysis:

✅ Strengths

1. Comprehensive Scope

  • All 14 files consistently updated across Makefile, CI/CD workflows, Docker configs
  • Migration is complete and thorough - no half-measures
  • Clear cache-busting strategy in Dockerfile with POETRY_ROOT_MIGRATION ARG

2. Excellent .dockerignore Addition

The new .dockerignore file is well-crafted:

  • Properly excludes frontend, docs, tests from backend image builds
  • Reduces build context size significantly (performance improvement)
  • Good security posture (excludes .env, .git/, etc.)
  • Clear comments explaining purpose

3. CI/CD Workflow Improvements

  • Path filtering updated consistently across all 5 workflow files
  • Removed unnecessary cd backend commands (cleaner, less error-prone)
  • Proper PYTHONPATH usage: PYTHONPATH=backend poetry run pytest
  • Cache keys properly updated to reference root-level poetry.lock

4. Makefile Refactoring Quality

  • All 20+ targets updated systematically
  • Virtual environment now at .venv/ (cleaner root structure)
  • Build contexts correctly changed from ./backend to . with explicit Dockerfiles
  • Consistent PYTHONPATH usage across all test/lint targets

🔍 Issues Found & Recommendations

1. CRITICAL: Docker Build Context & .dockerignore Mismatch ⚠️

Problem: The new .dockerignore is too aggressive for the changed build context.

Current State:

  • Build context: project root (.)
  • .dockerignore excludes: tests/, **/*.md, all test infrastructure

Impact Analysis:

# backend/Dockerfile.backend line 78-84
COPY backend/main.py backend/healthcheck.py ./
COPY backend/rag_solution/ ./rag_solution/
COPY backend/auth/ ./auth/
COPY backend/core/ ./core/
COPY backend/cli/ ./cli/
COPY backend/vectordbs/ ./vectordbs/
COPY pyproject.toml ./

These COPY commands will succeed because they reference backend/ subdirectory explicitly. However:

  1. Inefficient Build Context: The entire repository (including ignored files) is still sent to Docker daemon, then filtered. This defeats the purpose of .dockerignore.

  2. Future Maintenance Risk: If someone adds COPY backend/README.md later, it will fail silently due to *.md exclusion.

Recommended Fix:

Option A - Update .dockerignore (Safer, keeps current approach):

- # Ignore everything except backend directory for backend builds
+ # Optimize backend build context from project root
+ # Exclude non-backend directories while keeping backend/ accessible

- frontend/
- webui/
+ /frontend/
+ /webui/
+ /terraform/
+ /ansible/

+ # Keep backend directory accessible
+ \!backend/
+ backend/**/*.md
+ backend/**/tests/

Option B - Revert to backend-only context (Cleaner, requires more changes):

# .github/workflows/03-build-secure.yml
- context: .
+ context: backend

# Makefile
- context: .
+ context: ./backend

Recommendation: Choose Option A to maintain consistency with the root-level Poetry configuration while optimizing the build context properly.

2. Missing PYTHONPATH Validation in Dockerfile ⚠️

Issue: backend/Dockerfile.backend:95 sets:

ENV PYTHONPATH=/app:/app/vectordbs:/app/rag_solution:/app/core

But the actual directory structure inside the container is:

/app/
  ├── main.py
  ├── rag_solution/
  ├── auth/
  ├── core/
  ├── vectordbs/
  └── pyproject.toml

Recommendation:

# This is likely correct, but add a validation step
RUN python -c "import sys; print('PYTHONPATH:', sys.path)" && \
    python -c "import rag_solution, core, vectordbs" || \
    (echo "ERROR: Python imports failed" && exit 1)

This ensures imports work before the image is finalized, catching configuration errors during build time.

3. CI/CD: Missing PYTHONPATH in Some Workflows

Issue: 05-ci.yml line 108-111 doesn't set PYTHONPATH before poetry commands:

command: |
  pip install poetry
  poetry config virtualenvs.in-project true
  # Regenerate lock file to ensure sync

Recommendation: Ensure consistency across all workflow files:

command: |
  export PYTHONPATH=backend
  pip install poetry
  poetry config virtualenvs.in-project true
  poetry install --with dev,test

4. Documentation Gap: Backend PYTHONPATH Pattern

Issue: CLAUDE.md shows examples of direct backend directory navigation:

# Current example
cd backend && poetry run pytest tests/ -m unit

Should Update To:

# New root-based pattern
PYTHONPATH=backend poetry run pytest tests/unit/ -m unit

Recommendation: Update CLAUDE.md to reflect the new PYTHONPATH-based workflow in these sections:

  • Line 125: Testing section
  • Line 185: Backend dependencies
  • Line 342: Test organization

5. Minor: Indentation Fix Already Included

Good catch in docker-compose.dev.yml:27 - fixing the indentation inconsistency:

-       condition: service_started
+        condition: service_started

🔒 Security Considerations

✅ Good Security Practices:

  1. .dockerignore properly excludes .env, .git/, secrets
  2. Non-root user maintained in Dockerfile (backend:10001)
  3. No new secrets or credentials exposed

⚠️ Minor Concerns:

  1. Log directory permissions: chmod 777 /app/logs (line 92) is overly permissive
    • Recommendation: chmod 770 /app/logs is sufficient (owner+group access)

🧪 Testing Coverage

✅ Positive:

  • Manual verification completed per issue description
  • CI will validate Docker builds and test suites

❌ Missing:

No explicit test for the PYTHONPATH changes. Consider adding to tests/test_makefile_targets_direct.py:

def test_pythonpath_configuration():
    """Verify PYTHONPATH is correctly set for imports."""
    result = subprocess.run(
        ['poetry', 'run', 'python', '-c', 
         'import sys; assert "backend" in sys.path[0]'],
        env={'PYTHONPATH': 'backend'},
        capture_output=True
    )
    assert result.returncode == 0

📊 Performance Impact

✅ Improvements:

  1. Faster CI caching: Simplified cache key paths (poetry.lock vs backend/poetry.lock)
  2. Reduced build context: .dockerignore excludes ~40% of repository
  3. Cleaner dependency resolution: Single Poetry lock file eliminates potential version drift

⚠️ Potential Regressions:

  1. Docker build context still includes entire repo (see Issue Add requirements.txt #1 above)
  2. PYTHONPATH overhead in every command (minimal, but worth noting)

🎯 Migration Path for Developers

The issue description includes an excellent migration guide ✅. Consider adding to the PR description:

# Quick validation after migration
poetry run python -c "import rag_solution, core, vectordbs; print('✅ All imports working')"
make quick-check  # Verify linting still works
make test-atomic  # Fast smoke test

📋 Final Verdict

Approval Status: Approve with Minor Changes

This is a high-quality refactoring that modernizes the project structure. The changes are systematic, well-documented, and solve real developer pain points (Issue #501).

Required Before Merge:

  1. Fix .dockerignore to properly optimize build context (Critical)
  2. Add PYTHONPATH validation to Dockerfile for early error detection

Recommended Follow-ups (Can be separate PRs):

  1. Update CLAUDE.md with new PYTHONPATH patterns
  2. Add PYTHONPATH consistency to 05-ci.yml
  3. Tighten log directory permissions (777 → 770)
  4. Add integration test for PYTHONPATH configuration

🎖️ Excellent Work

Special kudos for:

This PR demonstrates strong understanding of monorepo best practices and Docker build optimization principles.

Review Status: ✅ Approved with Recommendations
Risk Level: 🟡 Medium (breaking change, but well-documented)
Merge Recommendation: After addressing Critical Issue #1

Generated with Claude Code 🤖

manavgup added a commit that referenced this pull request Oct 27, 2025
@manavgup @claude
fix(docker): Update Dockerfiles and workflows for Poetry root migration
aa3deee 
Fixes #502 - Update all Docker and CI/CD references after moving Poetry
config from backend/ to project root (Issue #501).

Changes:
1. **Dockerfiles** (backend/Dockerfile.backend, Dockerfile.codeengine):
   - Add POETRY_ROOT_MIGRATION cache-bust ARG to both stages
   - Update COPY commands to reference pyproject.toml and poetry.lock from project root
   - Move poetry.lock copy alongside pyproject.toml for consistency
   - Add explanatory comments about Issue #501 migration

2. **GitHub Actions Workflows**:
   - Update 05-ci.yml: Fix poetry cache key to use 'poetry.lock' instead of 'backend/poetry.lock'
   - Update 03-build-secure.yml: Change backend context from 'backend' to '.' for correct file resolution

3. **PyTorch Version Update**:
   - Upgrade torch from 2.5.0+cpu to 2.6.0+cpu
   - Upgrade torchvision from 0.20.0+cpu to 0.21.0+cpu
   - Reason: 2.5.0+cpu not available for ARM64 architecture
   - New versions are compatible with both ARM64 and x86_64

4. **Secret Management**:
   - Add pragma: allowlist secret comments to test secrets in 05-ci.yml
   - Prevents false positives in detect-secrets pre-commit hook

Impact:
- Fixes failing CI/CD test: TestMakefileTargetsDirect.test_make_build_backend_minimal
- Docker builds now correctly find pyproject.toml and poetry.lock at project root
- Maintains compatibility with both local development (ARM64) and CI (x86_64)
- GitHub Actions workflows correctly cache Poetry dependencies

Testing:
- Docker build context validated
- All references to backend/pyproject.toml and backend/poetry.lock removed
- Cache keys updated to match new file locations

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>
@manavgup manavgup changed the title Claude/fix backend dockerfile 011 cu xw lm kkqgq hfn ud6 qr12 Fix issues related to moving pyproject.toml to project root Oct 27, 2025
@manavgup manavgup closed this in 53475fc Oct 28, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@manavgup @claude