arch linter with custom analysis and golangci

Author: danicc097

.golangci.yml

@@ -8,7 +8,6 @@ linters:
     - funcorder
     - bodyclose
     - contextcheck
-    - depguard
     - dupword
     - wrapcheck
     - noinlineerr
@@ -35,6 +34,34 @@ linters:
     - maintidx
     - cyclop
   settings:
+    depguard:
+      rules:
+        domain:
+          files:
+            - "**/internal/modules/**/domain/*.go"
+            - "!**/*_test.go"
+          deny:
+            - pkg: "github.com/danicc097/todo-ddd-example/internal/modules/*/application"
+              desc: "Arch violation: Domain layer cannot depend on the Application layer."
+            - pkg: "github.com/danicc097/todo-ddd-example/internal/modules/*/infrastructure"
+              desc: "Arch violation: Domain layer cannot depend on the Infrastructure layer."
+            - pkg: "github.com/danicc097/todo-ddd-example/internal/infrastructure"
+              desc: "Arch violation: Domain layer cannot depend on global Infrastructure."
+            - pkg: "github.com/gin-gonic/gin"
+              desc: "Arch violation: Domain layer cannot know about HTTP routing."
+            - pkg: "github.com/jackc/pgx"
+              desc: "Arch violation: Domain layer cannot know about the database."
+        application:
+          files:
+            - "**/internal/modules/**/application/*.go"
+            - "!**/*_test.go"
+          deny:
+            - pkg: "github.com/danicc097/todo-ddd-example/internal/modules/*/infrastructure"
+              desc: "Arch violation: Application layer cannot depend on the Infrastructure layer."
+            - pkg: "github.com/gin-gonic/gin"
+              desc: "Arch violation: Application layer cannot know about HTTP routing."
+            - pkg: "github.com/jackc/pgx"
+              desc: "Arch violation: Application layer cannot know about the database."
     revive:
       rules:
         - name: unused-parameter
@@ -136,6 +163,7 @@ linters:
           - err113
           - errcheck
           - errchkjson
+          - exhaustruct
           - funlen
           - lll
           - nonamedreturns

Makefile

@@ -48,7 +48,12 @@ deps:
 lint:
 	go build ./... >/dev/null
 	go test -c ./tests/e2e/... -tags e2e -o /dev/null
-	$(GOLINT) run ./... --allow-parallel-runners --fix --config=.golangci.yml --issues-exit-code=0 >/dev/null
+	@echo ">>> Running custom architectural analyzer..."
+	go test ./tools/archlint/...
+	@echo ">>> Running critical linters..."
+	$(GOLINT) run ./... --allow-parallel-runners --config=.golangci.yml --issues-exit-code=1 --enable-only depguard,exhaustruct
+	@echo ">>> Running linters and fix"
+	$(GOLINT) run ./... --allow-parallel-runners --fix --config=.golangci.yml --issues-exit-code=0 >/dev/null || true
 
 dev:
 	$(AIR) -c .air.toml

internal/infrastructure/http/middleware/validation.go

@@ -193,6 +193,7 @@ func extractKinOpenApiError(err error, baseLoc []string, detail *[]api.Validatio
 		}
 
 		*detail = append(*detail, api.ValidationError{
+			Ctx: nil,
 			Loc: append([]string{}, baseLoc...),
 			Msg: msg,
 			Detail: api.ValidationErrorDetail{
@@ -224,6 +225,7 @@ func extractKinOpenApiError(err error, baseLoc []string, detail *[]api.Validatio
 		}
 
 		*detail = append(*detail, api.ValidationError{
+			Ctx: nil,
 			Loc: loc,
 			Msg: schemaErr.Reason,
 			Detail: api.ValidationErrorDetail{
@@ -241,6 +243,7 @@ func extractKinOpenApiError(err error, baseLoc []string, detail *[]api.Validatio
 
 	if len(baseLoc) > 0 {
 		*detail = append(*detail, api.ValidationError{
+			Ctx:    nil,
 			Loc:    append([]string{}, baseLoc...),
 			Msg:    err.Error(),
 			Detail: api.ValidationErrorDetail{Value: ""},

internal/modules/todo/infrastructure/http/todo.handler.go

@@ -117,6 +117,7 @@ func (h *TodoHandler) mapReadModelToAPI(t application.TodoReadModel) api.Todo {
 	}
 
 	return api.Todo{
+		CompletionLogs:     nil,
 		Id:                 t.ID,
 		WorkspaceId:        t.WorkspaceID,
 		Title:              t.Title,

tools/archlint/handler_check.go

@@ -0,0 +1,114 @@
+package archlint
+
+import (
+	"go/ast"
+	"go/types"
+	"strings"
+
+	"golang.org/x/tools/go/analysis"
+	"golang.org/x/tools/go/analysis/passes/inspect"
+	"golang.org/x/tools/go/ast/inspector"
+)
+
+//nolint:gochecknoglobals
+var HandlerAnalyzer = &analysis.Analyzer{
+	Name:     "handlerarch",
+	Doc:      "ensures HTTP handlers do not call Repositories directly",
+	Requires: []*analysis.Analyzer{inspect.Analyzer},
+	Run:      runHandlerArch,
+}
+
+//nolint:nilnil
+func runHandlerArch(pass *analysis.Pass) (any, error) {
+	if !strings.Contains(pass.Pkg.Path(), "/infrastructure/http") {
+		return nil, nil
+	}
+
+	insp, ok := pass.ResultOf[inspect.Analyzer].(*inspector.Inspector)
+	if !ok {
+		return nil, nil
+	}
+
+	nodeFilter := []ast.Node{(*ast.FuncDecl)(nil)}
+
+	insp.Preorder(nodeFilter, func(node ast.Node) {
+		funcDecl, ok := node.(*ast.FuncDecl)
+		if !ok || funcDecl.Recv == nil || funcDecl.Body == nil {
+			return
+		}
+
+		recvName := getReceiverName(funcDecl)
+		if !strings.HasSuffix(recvName, "Handler") {
+			return
+		}
+
+		inspectBody(pass, funcDecl.Body, recvName)
+	})
+
+	return nil, nil
+}
+
+func getReceiverName(funcDecl *ast.FuncDecl) string {
+	if len(funcDecl.Recv.List) == 0 {
+		return ""
+	}
+
+	switch exp := funcDecl.Recv.List[0].Type.(type) {
+	case *ast.StarExpr:
+		if ident, ok := exp.X.(*ast.Ident); ok {
+			return ident.Name
+		}
+	case *ast.Ident:
+		return exp.Name
+	}
+
+	return ""
+}
+
+func inspectBody(pass *analysis.Pass, body *ast.BlockStmt, recvName string) {
+	ast.Inspect(body, func(n ast.Node) bool {
+		call, ok := n.(*ast.CallExpr)
+		if !ok {
+			return true
+		}
+
+		sel, ok := call.Fun.(*ast.SelectorExpr)
+		if !ok {
+			return true
+		}
+
+		obj := pass.TypesInfo.Uses[sel.Sel]
+		if obj == nil {
+			return true
+		}
+
+		checkViolation(pass, obj, call, recvName, sel.Sel.Name)
+
+		return true
+	})
+}
+
+func checkViolation(pass *analysis.Pass, obj types.Object, call *ast.CallExpr, recvName, methodName string) {
+	sig, ok := obj.Type().(*types.Signature)
+	if !ok || sig.Recv() == nil {
+		return
+	}
+
+	recvType := sig.Recv().Type()
+
+	if ptr, isPtr := recvType.(*types.Pointer); isPtr {
+		recvType = ptr.Elem()
+	}
+
+	named, ok := recvType.(*types.Named)
+	if !ok || named.Obj().Pkg() == nil {
+		return
+	}
+
+	iface := named.Obj().Name()
+	pkgPath := named.Obj().Pkg().Path()
+
+	if strings.Contains(pkgPath, "/domain") && strings.HasSuffix(iface, "Repository") {
+		pass.Reportf(call.Pos(), "Arch violation: %s calls %s.%s directly. Handlers must route through Application UseCases.", recvName, iface, methodName)
+	}
+}

tools/archlint/handler_check_test.go

@@ -0,0 +1,16 @@
+package archlint_test
+
+import (
+	"testing"
+
+	"golang.org/x/tools/go/analysis/analysistest"
+
+	"github.com/danicc097/todo-ddd-example/tools/archlint"
+)
+
+func TestHandlerArch(t *testing.T) {
+	t.Parallel()
+
+	testdata := analysistest.TestData()
+	analysistest.Run(t, testdata, archlint.HandlerAnalyzer, "github.com/danicc097/todo-ddd-example/internal/modules/...")
+}

tools/archlint/testdata/src/github.com/danicc097/todo-ddd-example/internal/modules/todo/domain/repository.go

@@ -0,0 +1,5 @@
+package domain
+
+type TodoRepository interface {
+	Save()
+}

tools/archlint/testdata/src/github.com/danicc097/todo-ddd-example/internal/modules/todo/infrastructure/http/handler.go

@@ -0,0 +1,11 @@
+package http
+
+import "github.com/danicc097/todo-ddd-example/internal/modules/todo/domain"
+
+type TodoHandler struct {
+	repo domain.TodoRepository
+}
+
+func (h *TodoHandler) Create() {
+	h.repo.Save() // want "Arch violation: TodoHandler calls TodoRepository.Save directly. Handlers must route through Application UseCases."
+}