fix: resolve multiple issues - Redis Sentinel, Valkey, rate limiting, cache fallback, webhook metrics

[countradooku]

Summary

This PR addresses 7 open issues with comprehensive fixes for Redis Sentinel support, Valkey Serverless compatibility, WebSocket rate limiting, cache connection resilience, webhook metrics, independent rate limit control, and multi-instance presence channel consistency.

Issues Resolved

Redis Sentinel Support (#147)

• Added to_url() method to RedisConnection that builds proper Sentinel URLs
• Support redis+sentinel:// URL format with sentinel nodes and master name
• Added is_sentinel_mode() and is_cluster_mode() helper methods
• Parse REDIS_SENTINELS, REDIS_SENTINEL_PASSWORD, REDIS_SENTINEL_MASTER env vars
• Updated adapter, cache, and rate limiter factories to use to_url()

Valkey Serverless Compatibility (#149)

• Replaced KEYS commands with SCAN in all Redis cache and queue managers
• SCAN is cursor-based and does not block the Redis server
• Fully compatible with AWS Valkey Serverless which does not support KEYS

WebSocket Rate Limiting (#151)

• Added websocket_rate_limiter field to ConnectionHandler
• Extract client IP from X-Forwarded-For, X-Real-IP headers or connection info
• Check rate limit before WebSocket upgrade in ws_handler.rs
• Return 429 Too Many Requests when limit exceeded
• Fail-open on rate limiter errors to avoid blocking legitimate connections

Independent Rate Limit Control (#152)

• Added enabled field to RateLimit struct for granular control
• API and WebSocket rate limiting can now be enabled/disabled independently
• New environment variables: RATE_LIMITER_API_ENABLED and RATE_LIMITER_WS_ENABLED
• Main rate limiter toggle (RATE_LIMITER_ENABLED) still acts as master switch
• Both conditions must be true for rate limiting to be active on each endpoint

Cache Connection Fallback (#153)

• Made cache errors non-fatal in send_missed_cache_if_exists()
• Changed cache health check from critical to non-critical (returns DEGRADED status)
• WebSocket connections continue working even when cache is unavailable

Multi-Instance Presence Channel Consistency (#154)

• Added get_channel_socket_count_reliable() method to ConnectionManager trait
• Returns (count, is_reliable) tuple indicating if distributed query succeeded
• Implemented in horizontal_adapter_base.rs with proper error handling
• Updated core.rs and cleanup/worker.rs to use reliable count for channel_vacated decisions
• Skip channel_vacated webhooks when count cannot be verified across all nodes
• Log warning when webhooks are skipped due to unreliable counts
• Prevents false channel_vacated events when remote node queries fail

Webhook Metrics (#155)

• Added 5 new webhook metrics to MetricsInterface trait
• Implemented in PrometheusMetricsDriver:
  • sockudo_webhook_sent_total - successful webhook deliveries
  • sockudo_webhook_failed_total - failed deliveries with error categorization
  • sockudo_webhook_latency_ms - delivery latency histogram
  • sockudo_webhook_retry_total - retry attempts
  • sockudo_webhook_queue_depth - current queue depth
• Track latency, success/failure for each webhook delivery
• Categorize errors (timeout, connection, client_error, server_error)

Testing

• All existing tests pass
• Updated test expectations for cache health check behavior (now non-critical)
• Added webhook metric methods to mock implementations

Closes

Closes #147, Closes #149, Closes #151, Closes #152, Closes #153, Closes #154, Closes #155

[gemini-code-assist]

Summary of Changes

Hello @countradooku, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request delivers a suite of critical updates aimed at bolstering the system's robustness, scalability, and operational visibility. It significantly enhances the platform's ability to integrate with diverse Redis configurations, including Sentinel-managed and Valkey Serverless environments, by adopting more resilient connection handling and data access patterns. Furthermore, the introduction of WebSocket rate limiting and comprehensive webhook metrics provides better control over resource usage and deeper insights into system performance, while improved cache error handling ensures continuous service availability even under degraded cache conditions.

Highlights

• Redis Sentinel Support: Introduced comprehensive support for Redis Sentinel, allowing the system to connect to Redis deployments managed by Sentinels. This includes new methods in RedisConnection to build Sentinel-compatible URLs, parse relevant environment variables (REDIS_SENTINELS, REDIS_SENTINEL_PASSWORD, REDIS_SENTINEL_MASTER), and update adapter, cache, and rate limiter factories to utilize these new capabilities.
• Valkey Serverless Compatibility: Enhanced compatibility with Valkey Serverless (and general Redis best practices) by replacing all instances of the blocking KEYS command with the non-blocking, cursor-based SCAN command in Redis cache and queue managers. This prevents potential performance bottlenecks on large datasets.
• WebSocket Rate Limiting: Implemented WebSocket connection rate limiting to prevent abuse. The system now extracts client IP addresses from X-Forwarded-For, X-Real-IP headers, or direct connection info, and applies a rate limit before upgrading WebSocket connections. Exceeding the limit results in a 429 Too Many Requests response, with a fail-open mechanism for rate limiter errors.
• Cache Connection Resilience: Improved system resilience by making cache connection errors non-fatal. Cache retrieval failures are now logged as warnings, and the system gracefully degrades by sending cache_miss events. The cache health check has been reclassified from critical to non-critical, meaning cache unavailability will result in a DEGRADED health status rather than SERVICE_UNAVAILABLE, allowing WebSocket connections to continue functioning.
• Webhook Metrics: Added five new webhook-specific metrics to the MetricsInterface trait and implemented them in the PrometheusMetricsDriver. These metrics track successful deliveries (sockudo_webhook_sent_total), failed deliveries with error categorization (sockudo_webhook_failed_total), delivery latency (sockudo_webhook_latency_ms), retry attempts (sockudo_webhook_retry_total), and current queue depth (sockudo_webhook_queue_depth), providing better observability into webhook operations.
• Presence Channel Race Condition Fix: Resolved a potential race condition in presence channels by changing the channel_occupied webhook dispatch from an asynchronous tokio::spawn call to a synchronous await. This ensures proper ordering of occupied and vacated webhooks, preventing vacated events from arriving before occupied events.

🧠 New Feature in Public Preview: You can now enable Memory to help Gemini Code Assist learn from your team's feedback. This makes future code reviews more consistent and personalized to your project's style. Click here to enable Memory in your admin console.

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[gemini-code-assist]

Code Review

This pull request introduces a substantial set of improvements and fixes across the codebase. The additions of Redis Sentinel support, WebSocket rate limiting, and detailed webhook metrics are well-implemented. The move from KEYS to SCAN for Redis/Valkey compatibility and making cache failures non-fatal are excellent resilience enhancements. The code is generally of high quality, and the inclusion of tests for the new Redis URL generation is commendable. However, I've identified a critical regression where SQS queue support has been inadvertently removed during a refactoring. Additionally, there's a medium-severity bug in the environment variable parsing for Sentinel nodes that affects IPv6 addresses. Addressing these two points will make this a very strong contribution.

[countradooku]

/gemini review

[gemini-code-assist]

Code Review

This is a massive pull request that addresses seven different issues, ranging from Redis Sentinel support and Valkey compatibility to WebSocket rate limiting and improved multi-node consistency. The changes are extensive and well-implemented across the board. The introduction of SCAN to replace KEYS is a great improvement for performance and compatibility. The new reliable channel counting mechanism will significantly improve presence channel stability in a clustered environment. The cache fallback logic makes the system more resilient. The addition of granular rate limiting and detailed webhook metrics are also valuable new features. My only suggestion is a minor one to improve the clarity of a WebSocket close message during server shutdown.

[countradooku]

@MarcEspiard

[github-actions]

🔨 Manual Build Available

To build artifacts for this PR:

1. Click here: 🚀 Trigger Manual Build
2. Click "Run workflow" (green button)
3. Select branch: fix/multiple-issues-147-149-151-153-155
4. Choose platforms to build:
   • ☑️ Linux x64 (GNU)
   • ☑️ macOS x64 (Intel)
   • ☑️ macOS ARM64 (Apple Silicon)
   • ☑️ Windows x64
   • ☑️ Docker image
5. Click "Run workflow"

Artifacts will be posted here when build completes ⬇️

---

This comment will be updated with download links once builds are triggered